This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft File: ddl3qipMEMe0evKt2WgESH4idKk.mft (raw, json) Hash identifier: UgS1FFgH+T2yINMJY5sAUhWbTry6vnuSvtwNxba59Mo= Subject key identifier: 72:32:12:A4:E8:2F:B5:DD:AD:B5:E5:07:20:53:0A:1C:F6:39:30:00 Authority key identifier: 75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9 Certificate issuer: /CN=75d977aa2a4c10c7b47af2add96804487e2274a9 Certificate serial: 019BFAD24210412EF37946A24A50B127AF80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft Manifest number: 17EC Signing time: Mon 26 Jan 2026 15:00:41 +0000 Manifest this update: Mon 26 Jan 2026 15:00:41 +0000 Manifest next update: Tue 27 Jan 2026 15:00:41 +0000 Files and hashes: 1: ddl3qipMEMe0evKt2WgESH4idKk.crl (hash: tP1TMd3y2tQ8h5EKkpH7UupDSabZRu37clYPG8O84eI=) 2: loApgUuhhUyY_cfPzGEHPAhUKDo.roa (hash: 0LTaxDqD8Hr++G5h4F+by4f48kCJnGS42cv5zu1L9RE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:d2:42:10:41:2e:f3:79:46:a2:4a:50:b1:27:af:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75d977aa2a4c10c7b47af2add96804487e2274a9 Validity Not Before: Jan 26 15:00:41 2026 GMT Not After : Jan 27 15:00:41 2026 GMT Subject: CN=723212a4e82fb5ddadb5e50720530a1cf6393000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:4e:54:1d:5e:33:7a:13:8d:f3:e5:3a:27:db: c3:3f:e5:cf:87:9b:32:a5:80:c0:df:27:44:fb:b0: 68:a8:53:dc:87:ee:05:81:e6:da:b0:f9:90:5c:e6: 0b:a2:c3:af:03:cf:f4:c3:7c:a9:b1:2d:0d:32:b2: f0:6f:cb:65:36:02:64:88:7b:8f:d5:bb:5f:74:c1: 4c:22:14:2a:f7:b4:9d:69:5c:2e:96:dd:cb:97:7d: 70:0d:5a:4e:bd:1f:4a:6d:45:d1:94:95:e5:02:8f: 40:8a:c1:1f:cc:39:78:e1:0c:d9:8f:fc:25:ff:98: c3:8b:b8:a6:62:66:8c:58:ed:fe:1c:61:22:46:5e: 59:b4:60:ca:53:a4:e4:80:4c:f5:1a:f4:b3:63:5d: bc:93:65:50:e0:fb:e7:66:8e:b2:78:12:59:d9:9f: e6:ac:cf:e8:07:0b:58:63:e6:45:e7:aa:ba:50:91: b7:e7:5e:a9:de:63:f8:fc:53:a6:37:80:96:08:9a: 10:a6:e1:97:96:23:ea:9a:78:b4:c8:a3:80:70:87: d3:98:e4:8e:2d:98:76:9b:c7:90:6b:30:5d:07:3a: 5d:c8:fc:eb:e7:42:d6:94:c1:3d:00:60:50:17:f9: 1a:aa:13:c2:af:6d:8d:f0:bb:89:5e:d4:40:45:c7: 46:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:32:12:A4:E8:2F:B5:DD:AD:B5:E5:07:20:53:0A:1C:F6:39:30:00 X509v3 Authority Key Identifier: keyid:75:D9:77:AA:2A:4C:10:C7:B4:7A:F2:AD:D9:68:04:48:7E:22:74:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddl3qipMEMe0evKt2WgESH4idKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8038fe-a9de-4a2c-adc7-126df5446de9/1/ddl3qipMEMe0evKt2WgESH4idKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:bf:b9:bb:89:7b:69:d7:25:d0:8b:66:e1:e1:95:66:58:b4: bd:d5:00:6a:4c:78:a5:55:f2:94:e0:9d:6c:35:0c:2b:bc:14: 47:12:61:52:bf:16:06:67:f0:3e:4f:b1:bd:a8:30:6b:20:59: 86:6d:cf:1d:c8:dc:7e:42:14:f8:08:f8:af:c0:f5:70:20:c2: 80:47:b6:02:9d:66:4c:df:12:75:7d:58:a3:be:5c:5f:dd:65: fa:23:e5:cc:62:6d:02:68:46:68:a2:fe:12:b2:0e:7f:0e:9e: 24:f1:78:82:58:b0:c7:e3:47:b5:35:ed:40:b3:3e:26:37:41: 57:88:4e:53:0f:11:8f:29:7c:90:86:7b:5c:69:af:43:8f:0d: 81:79:0b:71:1a:a1:08:e7:39:31:c3:ab:03:87:d0:b4:78:df: 54:7c:f9:99:b2:de:2e:b4:0d:43:37:88:1e:66:a1:01:ec:89: b1:25:4d:dd:31:a5:c8:85:59:26:68:00:59:41:14:5a:49:b5: e1:6d:b1:52:b5:73:2a:8e:ae:95:9f:23:13:bf:c6:5e:47:81: c4:4f:26:a7:76:01:fb:bd:a8:52:b7:f6:3d:a7:fd:d3:84:c9: 56:6a:e5:9f:d9:1d:19:00:dd:fc:20:2a:55:2f:71:aa:aa:82: d5:0f:2f:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv60kIQQS7zeUaiSlCxJ6+AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1ZDk3N2FhMmE0YzEwYzdiNDdhZjJhZGQ5NjgwNDQ4N2Uy Mjc0YTkwHhcNMjYwMTI2MTUwMDQxWhcNMjYwMTI3MTUwMDQxWjAzMTEwLwYDVQQD Eyg3MjMyMTJhNGU4MmZiNWRkYWRiNWU1MDcyMDUzMGExY2Y2MzkzMDAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkU5UHV4zehON8+U6J9vDP+XPh5sy pYDA3ydE+7BoqFPch+4FgebasPmQXOYLosOvA8/0w3ypsS0NMrLwb8tlNgJkiHuP 1btfdMFMIhQq97SdaVwult3Ll31wDVpOvR9KbUXRlJXlAo9AisEfzDl44QzZj/wl /5jDi7imYmaMWO3+HGEiRl5ZtGDKU6TkgEz1GvSzY128k2VQ4PvnZo6yeBJZ2Z/m rM/oBwtYY+ZF56q6UJG3516p3mP4/FOmN4CWCJoQpuGXliPqmni0yKOAcIfTmOSO LZh2m8eQazBdBzpdyPzr50LWlME9AGBQF/kaqhPCr22N8LuJXtRARcdGkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHIyEqToL7XdrbXlByBTChz2OTAAMB8GA1UdIwQY MBaAFHXZd6oqTBDHtHryrdloBEh+InSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84MDM4ZmUtYTlkZS00YTJjLWFkYzct MTI2ZGY1NDQ2ZGU5LzEvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC84MDM4ZmUtYTlkZS00YTJjLWFkYzctMTI2ZGY1NDQ2ZGU5 LzEvZGRsM3FpcE1FTWUwZXZLdDJXZ0VTSDRpZEtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL7+5u4l7 adcl0Itm4eGVZli0vdUAakx4pVXylOCdbDUMK7wURxJhUr8WBmfwPk+xvagwayBZ hm3PHcjcfkIU+Aj4r8D1cCDCgEe2Ap1mTN8SdX1Yo75cX91l+iPlzGJtAmhGaKL+ ErIOfw6eJPF4gliwx+NHtTXtQLM+JjdBV4hOUw8Rjyl8kIZ7XGmvQ48NgXkLcRqh COc5McOrA4fQtHjfVHz5mbLeLrQNQzeIHmahAeyJsSVN3TGlyIVZJmgAWUEUWkm1 4W2xUrVzKo6ulZ8jE7/GXkeBxE8mp3YB+72oUrf2Paf904TJVmrln9kdGQDd/CAq VS9xqqqC1Q8vrg== -----END CERTIFICATE-----Generated at Mon Jan 26 23:27:18 2026 by rpki-client