This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft File: doFcfQ6GPCF4D4v0uezDqcZFkpg.mft (raw, json) Hash identifier: 5rSUBb5ajpO9r7P8Pm833OZTptvb2N/QINNk/QVQs18= Subject key identifier: 4D:B5:3E:7B:1C:53:3D:E0:33:B6:D8:63:9D:D2:82:66:BC:A3:F4:2D Authority key identifier: 76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98 Certificate issuer: /CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298 Certificate serial: 019BFA64E8F5ACCE7B33ED9A293ACA2DD220 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft Manifest number: 04E1 Signing time: Mon 26 Jan 2026 13:01:15 +0000 Manifest this update: Mon 26 Jan 2026 13:01:15 +0000 Manifest next update: Tue 27 Jan 2026 13:01:15 +0000 Files and hashes: 1: NwXP9XjEV_tAQNFwDQBmSN78alU.roa (hash: I0Ts9gFxat3bJUV/IHoujUultkWM8WN3TtuoR0WHIVg=) 2: doFcfQ6GPCF4D4v0uezDqcZFkpg.crl (hash: 5EjGB/mbiWMqEUdCfL32Le+0+i4zhIl7+zNEkI0ATYE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:64:e8:f5:ac:ce:7b:33:ed:9a:29:3a:ca:2d:d2:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298 Validity Not Before: Jan 26 13:01:15 2026 GMT Not After : Jan 27 13:01:15 2026 GMT Subject: CN=4db53e7b1c533de033b6d8639dd28266bca3f42d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d8:4d:3a:96:ab:bb:5f:95:02:27:d6:ab:5e: 9b:ff:dc:a9:d0:74:e7:b8:28:5f:f8:e4:a5:6c:e7: b4:10:57:b5:e1:94:0e:11:d2:13:62:d2:c0:18:59: 58:60:d3:6a:9f:da:1d:b4:35:7a:d2:41:ba:06:30: 8e:d9:87:25:75:2f:00:6f:a6:a5:04:aa:47:68:f9: 3f:62:cc:5b:03:8b:4c:29:34:76:df:ae:42:28:71: 31:d1:43:35:19:f5:1e:84:45:73:55:66:be:38:0d: f5:ce:d4:9e:ed:f5:95:11:1d:7e:4d:7b:c2:fa:76: f2:0a:84:ff:14:83:e8:52:95:da:b6:69:01:38:a6: c3:0b:79:9f:f2:fe:42:5b:1e:ad:8e:5c:bc:cb:e8: c4:7d:8d:f5:e2:91:07:8d:68:0d:52:c3:20:4e:fb: 18:74:83:2a:1b:2c:74:d7:82:2b:a1:dd:73:e7:18: 3f:bb:c5:cf:fc:a5:3c:79:f0:b4:17:6e:2a:26:f9: e8:a7:98:85:63:16:a3:2e:04:9b:34:56:3f:df:88: 22:92:39:4a:a6:d4:3d:63:35:8d:a3:17:56:29:25: 59:a3:0f:b1:be:0b:aa:a0:db:86:ea:63:74:fc:fe: f3:4d:27:d8:18:61:c5:a8:7c:45:2a:32:05:6d:1a: 79:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B5:3E:7B:1C:53:3D:E0:33:B6:D8:63:9D:D2:82:66:BC:A3:F4:2D X509v3 Authority Key Identifier: keyid:76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:d3:88:40:da:6c:06:a0:04:6d:3e:d4:d5:e4:f6:11:f8:fe: 05:dc:fc:ff:8c:9a:f1:be:ce:48:ef:dc:6c:0e:bd:81:7b:56: ff:83:0a:05:a4:e1:dd:32:43:ee:1e:b3:63:d2:a9:b2:1a:1e: ce:9c:85:bf:9c:6a:e5:b0:f2:ef:b4:42:59:8b:4d:3a:8a:ea: d6:ef:69:09:d7:18:99:81:3f:c4:d2:d6:c8:41:87:2f:92:16: ab:b3:4d:e0:32:f9:7e:b0:03:0c:e6:6c:44:33:fd:dd:20:36: 99:32:9b:70:7c:51:e6:11:32:01:9e:28:04:b2:ed:f7:f9:1a: e8:c6:b2:68:34:4a:1d:37:35:50:c4:66:0c:8e:30:ff:8e:c5: a1:60:3c:66:5e:51:f9:45:dd:be:66:2d:24:28:0b:89:20:bb: 8e:07:17:57:73:2a:82:83:fd:10:63:81:b5:57:fe:43:3f:6c: 08:27:85:72:68:53:e0:cf:1c:7e:69:37:c7:40:b4:26:98:54: d9:af:42:18:e4:74:d1:24:b3:a0:0d:b7:55:69:ca:63:46:9d: b7:af:f5:cf:34:af:1b:98:0c:7b:19:eb:b6:c1:ec:ee:f3:ab: 95:c9:7a:b0:8d:97:20:0f:0b:61:bf:88:f7:78:36:2d:1d:c3: 7b:71:ff:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6ZOj1rM57M+2aKTrKLdIgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2ODE1YzdkMGU4NjNjMjE3ODBmOGJmNGI5ZWNjM2E5YzY0 NTkyOTgwHhcNMjYwMTI2MTMwMTE1WhcNMjYwMTI3MTMwMTE1WjAzMTEwLwYDVQQD Eyg0ZGI1M2U3YjFjNTMzZGUwMzNiNmQ4NjM5ZGQyODI2NmJjYTNmNDJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNhNOparu1+VAifWq16b/9yp0HTn uChf+OSlbOe0EFe14ZQOEdITYtLAGFlYYNNqn9odtDV60kG6BjCO2YcldS8Ab6al BKpHaPk/YsxbA4tMKTR2365CKHEx0UM1GfUehEVzVWa+OA31ztSe7fWVER1+TXvC +nbyCoT/FIPoUpXatmkBOKbDC3mf8v5CWx6tjly8y+jEfY314pEHjWgNUsMgTvsY dIMqGyx014Irod1z5xg/u8XP/KU8efC0F24qJvnop5iFYxajLgSbNFY/34gikjlK ptQ9YzWNoxdWKSVZow+xvguqoNuG6mN0/P7zTSfYGGHFqHxFKjIFbRp55QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE21PnscUz3gM7bYY53Sgma8o/QtMB8GA1UdIwQY MBaAFHaBXH0OhjwheA+L9Lnsw6nGRZKYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG9GY2ZRNkdQQ0Y0RDR2MHVlekRxY1pGa3BnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8yYWFhNDktMjgyMy00ZWUyLWI1ZDEt ZTU0NzM5NWQ2YjQ3LzEvZG9GY2ZRNkdQQ0Y0RDR2MHVlekRxY1pGa3BnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS8yYWFhNDktMjgyMy00ZWUyLWI1ZDEtZTU0NzM5NWQ2YjQ3 LzEvZG9GY2ZRNkdQQ0Y0RDR2MHVlekRxY1pGa3BnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj9OIQNps BqAEbT7U1eT2Efj+Bdz8/4ya8b7OSO/cbA69gXtW/4MKBaTh3TJD7h6zY9Kpshoe zpyFv5xq5bDy77RCWYtNOorq1u9pCdcYmYE/xNLWyEGHL5IWq7NN4DL5frADDOZs RDP93SA2mTKbcHxR5hEyAZ4oBLLt9/ka6MayaDRKHTc1UMRmDI4w/47FoWA8Zl5R +UXdvmYtJCgLiSC7jgcXV3MqgoP9EGOBtVf+Qz9sCCeFcmhT4M8cfmk3x0C0JphU 2a9CGOR00SSzoA23VWnKY0adt6/1zzSvG5gMexnrtsHs7vOrlcl6sI2XIA8LYb+I 93g2LR3De3H/RQ== -----END CERTIFICATE-----Generated at Mon Jan 26 22:10:38 2026 by rpki-client