This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft File: lHMg0DCTAXjm987vkdKrh4TT3BY.mft (raw, json) Hash identifier: G8CBdlMt5EZgjWSLrk9ziNlrzlmBDH0pACZCyl2z5KI= Subject key identifier: 41:C5:D9:90:75:74:CD:F5:06:3A:90:DA:40:51:EA:2F:69:9F:69:A6 Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16 Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16 Certificate serial: 019BFD657C85DD7D5A1558DF7C5655C3C597 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft Manifest number: 141E Signing time: Tue 27 Jan 2026 03:00:45 +0000 Manifest this update: Tue 27 Jan 2026 03:00:45 +0000 Manifest next update: Wed 28 Jan 2026 03:00:45 +0000 Files and hashes: 1: 15WLZBLgJ9g9rpon7ikwmnOpu2o.roa (hash: cDtWR/sWDEjocXdbWFuLldw8hA+RRTGqd9G5Qgigc2g=) 2: L4FVL-IOve6YhBWZ8jz8Nor0cv4.roa (hash: IchcC27uPlsKIbmA49GFEPAY66Qr3a8M8fgjbxbsGQs=) 3: j7qwhPrSo-8ueCrFJo_GWwM93Tg.roa (hash: gJyu32k59hXhVllwZCm02crtrLnwlpxMsqibTEWrODw=) 4: jb81OuVJup1PLJeMNccOVNPoCJ8.roa (hash: deKoWNZnlpwFwiqew1tUzp1N8o/V+tWA//EpRC0uV3s=) 5: kEA4tj_KkVDLvM2DWnwX5k8m6BI.roa (hash: pnHIraVgBAZPz/3bw02SbdT0VFhTYaLYb8ZPwjAg3r4=) 6: lHMg0DCTAXjm987vkdKrh4TT3BY.crl (hash: 5I0wULgftHwR4TjrVrEnEcdHUsIyc2DTPKPt5sdZNxQ=) 7: q-8ltpoThmmPBuTuT5C4cGm14Tk.roa (hash: 5hF8BW/BSTiPn3vyhPttnkUg4VDyaJiwZYhFxh/LtpA=) 8: zjv8SZhQ9gV8oRmS9YUAJhkKaT8.roa (hash: 9mmbxYMsoWHE5kxulUQxb1ol9WOyJhGIh77y7/oMRtM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:65:7c:85:dd:7d:5a:15:58:df:7c:56:55:c3:c5:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16 Validity Not Before: Jan 27 03:00:45 2026 GMT Not After : Jan 28 03:00:45 2026 GMT Subject: CN=41c5d9907574cdf5063a90da4051ea2f699f69a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:dd:c4:57:c7:bd:16:ce:38:03:1e:4a:2e:39: 71:8d:8a:b6:ca:fc:3d:86:98:25:9e:36:aa:de:22: 43:9f:d2:ac:b3:e5:e0:54:f9:8c:db:0e:bc:3c:54: 20:77:83:64:97:b0:a0:0e:48:6f:6a:fe:9c:41:ab: 3a:1a:01:50:e2:d2:25:a6:3e:36:3a:8d:a3:84:d1: e0:63:71:86:da:61:7d:48:44:92:58:42:bc:4b:ec: 3b:ba:b3:2f:ce:7a:99:d9:9d:45:b3:b9:c2:f7:fa: fe:1b:45:db:40:85:ee:d8:99:c7:ca:f9:34:f2:43: 26:83:75:0f:bd:c6:42:72:b3:fb:6d:71:9c:c8:83: 43:84:69:38:b6:28:35:25:fc:fe:6b:ff:dc:7f:9e: fd:81:5b:2d:c6:71:3e:83:27:77:cd:9a:c1:ed:76: 7f:6d:4b:9c:87:d9:82:c1:9b:be:4f:d9:1a:5c:d5: 62:ae:d6:96:1b:b3:54:b1:c0:ad:33:a4:cd:4b:ab: 2a:3a:23:62:64:f9:9c:36:08:b0:01:56:a3:8d:5a: da:e9:75:4b:bb:68:e6:67:df:9e:e7:52:bf:77:af: 28:f5:a1:49:bc:60:b0:cf:ab:f1:a2:6d:27:1e:87: 7b:a6:f0:7a:a0:3d:a4:32:5d:77:91:c6:32:b2:03: 8b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C5:D9:90:75:74:CD:F5:06:3A:90:DA:40:51:EA:2F:69:9F:69:A6 X509v3 Authority Key Identifier: keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:1c:bd:f7:18:8e:c3:eb:5b:fb:a3:9b:fd:79:35:51:a0:ea: 13:1c:b8:ee:74:28:25:3a:cb:12:21:83:f7:85:40:1e:1b:8d: 83:de:85:f5:3e:75:7f:46:c5:35:e9:81:a1:47:2e:ce:e5:b2: de:f0:43:53:a3:f7:86:ba:e6:15:6c:dc:5f:11:7c:29:70:3d: 69:ed:db:09:c6:87:67:f5:d6:c5:60:d9:91:23:62:d5:ce:84: a8:e5:49:45:88:16:fa:9c:76:12:3d:b8:4e:de:4c:c8:6f:bd: 3b:8f:5c:b0:59:1a:38:9d:3e:e7:56:af:fd:b8:ff:33:09:2a: 70:b1:54:a6:2b:09:d2:b5:ef:bc:0f:e0:b0:91:fb:43:a2:01: 9b:4f:07:b0:17:7c:0f:23:bd:71:91:db:05:6e:35:c0:bc:ef: 4f:72:74:17:75:c3:a1:41:70:26:68:51:00:c0:01:cb:7f:b7: 9c:29:5a:ef:cd:2e:98:78:83:7c:eb:7c:b0:8e:5d:af:26:20: 2a:96:55:84:a6:6b:19:27:fe:f4:80:3e:8f:d1:01:aa:03:a9: 1b:24:87:2f:c0:c4:91:0c:d1:54:2f:99:9b:8d:7c:64:18:4b: b2:e5:12:26:01:5a:cd:be:7c:2f:fd:b5:59:7e:db:98:42:11: 75:b6:b8:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9ZXyF3X1aFVjffFZVw8WXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0NzMyMGQwMzA5MzAxNzhlNmY3Y2VlZjkxZDJhYjg3ODRk M2RjMTYwHhcNMjYwMTI3MDMwMDQ1WhcNMjYwMTI4MDMwMDQ1WjAzMTEwLwYDVQQD Eyg0MWM1ZDk5MDc1NzRjZGY1MDYzYTkwZGE0MDUxZWEyZjY5OWY2OWE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA493EV8e9Fs44Ax5KLjlxjYq2yvw9 hpglnjaq3iJDn9Kss+XgVPmM2w68PFQgd4Nkl7CgDkhvav6cQas6GgFQ4tIlpj42 Oo2jhNHgY3GG2mF9SESSWEK8S+w7urMvznqZ2Z1Fs7nC9/r+G0XbQIXu2JnHyvk0 8kMmg3UPvcZCcrP7bXGcyINDhGk4tig1Jfz+a//cf579gVstxnE+gyd3zZrB7XZ/ bUuch9mCwZu+T9kaXNVirtaWG7NUscCtM6TNS6sqOiNiZPmcNgiwAVajjVra6XVL u2jmZ9+e51K/d68o9aFJvGCwz6vxom0nHod7pvB6oD2kMl13kcYysgOL5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEHF2ZB1dM31BjqQ2kBR6i9pn2mmMB8GA1UdIwQY MBaAFJRzINAwkwF45vfO75HSq4eE09wWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC84MmU4NzYtYzk5Ny00NjA1LTg3YWEt OGFjNGEyMTkzOGI0LzEvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC84MmU4NzYtYzk5Ny00NjA1LTg3YWEtOGFjNGEyMTkzOGI0 LzEvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAERy99xiO w+tb+6Ob/Xk1UaDqExy47nQoJTrLEiGD94VAHhuNg96F9T51f0bFNemBoUcuzuWy 3vBDU6P3hrrmFWzcXxF8KXA9ae3bCcaHZ/XWxWDZkSNi1c6EqOVJRYgW+px2Ej24 Tt5MyG+9O49csFkaOJ0+51av/bj/MwkqcLFUpisJ0rXvvA/gsJH7Q6IBm08HsBd8 DyO9cZHbBW41wLzvT3J0F3XDoUFwJmhRAMABy3+3nCla780umHiDfOt8sI5dryYg KpZVhKZrGSf+9IA+j9EBqgOpGySHL8DEkQzRVC+Zm418ZBhLsuUSJgFazb58L/21 WX7bmEIRdba4OA== -----END CERTIFICATE-----Generated at Tue Jan 27 08:51:32 2026 by rpki-client