This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft File: dBmPcCK5VgUB20SK9gMB-ihekjY.mft (raw, json) Hash identifier: 0JrB+eKzNwgzLe6lxy2cQepG3saOLYMxL5u5nvQxxL0= Subject key identifier: 0F:02:43:E9:0B:60:59:70:71:72:1C:4B:5D:98:83:0B:0B:8B:D4:FB Authority key identifier: 74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36 Certificate issuer: /CN=74198f7022b9560501db448af60301fa285e9236 Certificate serial: 019BFE0AD00DD9FDB2FE15920F5980B460A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft Manifest number: 17F1 Signing time: Tue 27 Jan 2026 06:01:19 +0000 Manifest this update: Tue 27 Jan 2026 06:01:19 +0000 Manifest next update: Wed 28 Jan 2026 06:01:19 +0000 Files and hashes: 1: dBmPcCK5VgUB20SK9gMB-ihekjY.crl (hash: /Gn2ld5xRXmNoO5f7xnsJJwuRZu7T0zFX3BUMPivX2o=) 2: x-8swSoHWXn2gEZTtgRDy-vs_DM.roa (hash: ylAYgviMfyC3A9eoEgIb+VgNLg1iORRgtmKdI3QPLJg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fe:0a:d0:0d:d9:fd:b2:fe:15:92:0f:59:80:b4:60:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74198f7022b9560501db448af60301fa285e9236 Validity Not Before: Jan 27 06:01:19 2026 GMT Not After : Jan 28 06:01:19 2026 GMT Subject: CN=0f0243e90b60597071721c4b5d98830b0b8bd4fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ca:88:57:d4:0b:b3:96:33:88:6e:0e:54:23: de:c1:4c:e9:7d:dd:de:26:b4:75:06:5b:bd:7c:b0: 94:f5:a3:dd:a0:0b:6d:c6:f1:1d:b4:42:58:91:4e: af:09:ad:43:60:56:5b:4a:ad:e7:5f:cc:d7:ba:ed: c1:cb:a0:90:82:88:1a:15:25:7b:3f:ec:b0:43:4e: 1e:b9:9d:42:74:84:52:b7:70:fc:d2:4a:ca:df:af: 18:91:0b:d8:02:d4:27:9a:cc:b6:29:f2:3d:fc:ad: c4:f9:0e:81:c6:50:45:c5:6e:4e:6f:e4:70:e1:72: ec:48:54:8b:80:f2:79:4d:07:a6:8c:88:b6:e9:47: af:7d:ca:28:d0:9d:0a:06:48:cf:d3:21:50:be:e9: 3b:1e:6b:f2:b8:b0:46:2c:05:14:73:39:42:2b:dd: 46:0b:09:af:69:33:01:7b:2e:b4:1e:27:97:75:df: 2f:e4:c1:40:bd:46:8d:65:5d:c0:36:d8:df:4a:f7: dc:89:fc:ab:98:f2:b0:cb:2f:76:22:fc:2d:61:f3: 7d:16:28:78:cd:fe:b9:47:7c:c1:45:46:12:2d:c1: 71:7b:98:df:e4:cf:64:47:6d:5d:bb:af:58:6f:0f: 5e:e6:6c:dd:28:3a:7e:a6:40:17:0d:df:5d:38:16: 82:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:02:43:E9:0B:60:59:70:71:72:1C:4B:5D:98:83:0B:0B:8B:D4:FB X509v3 Authority Key Identifier: keyid:74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:55:18:15:d1:05:98:6b:a4:c9:74:0a:22:93:4d:0b:0e:61: 7e:93:bc:01:f7:98:aa:87:4e:c0:23:b4:0d:20:b1:48:b9:50: 57:01:8d:37:83:fc:82:e7:51:03:af:60:9c:83:37:32:1a:4a: 62:c8:bf:36:ec:b7:83:40:57:5d:80:5e:cb:b2:3c:ef:f3:95: a9:b8:21:6f:63:59:d9:6a:0d:37:ae:a6:0e:f2:78:dd:d3:a0: 3d:a8:ec:ce:95:a9:ef:5f:c9:e9:72:4e:98:f0:84:c2:63:71: 13:1a:1d:7f:00:a0:dc:5d:02:aa:d6:c8:c4:f5:d4:cd:11:7c: af:80:19:fe:9b:c7:c1:28:3a:e3:52:0a:a5:fd:fb:3c:56:dc: 31:3e:11:c7:60:f7:60:f6:3b:20:96:f2:53:51:af:fb:3b:d0: 6a:af:1c:72:1e:8b:21:53:fd:84:10:69:88:e2:d3:0f:00:f5: fc:91:c2:42:47:60:d1:27:92:f8:a6:b1:a2:41:b4:af:2f:16: 81:49:c1:6c:3d:90:33:b4:0c:62:48:40:d3:d8:6f:6c:56:79: 8d:d8:6c:7f:83:ee:3d:fb:f9:11:3b:49:c9:35:1e:30:91:49: c2:d8:1d:77:7a:ee:57:a7:e4:90:2f:72:46:48:04:e5:33:2e: e2:26:d4:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv+CtAN2f2y/hWSD1mAtGCoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0MTk4ZjcwMjJiOTU2MDUwMWRiNDQ4YWY2MDMwMWZhMjg1 ZTkyMzYwHhcNMjYwMTI3MDYwMTE5WhcNMjYwMTI4MDYwMTE5WjAzMTEwLwYDVQQD EygwZjAyNDNlOTBiNjA1OTcwNzE3MjFjNGI1ZDk4ODMwYjBiOGJkNGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmcqIV9QLs5YziG4OVCPewUzpfd3e JrR1Blu9fLCU9aPdoAttxvEdtEJYkU6vCa1DYFZbSq3nX8zXuu3By6CQgogaFSV7 P+ywQ04euZ1CdIRSt3D80krK368YkQvYAtQnmsy2KfI9/K3E+Q6BxlBFxW5Ob+Rw 4XLsSFSLgPJ5TQemjIi26Uevfcoo0J0KBkjP0yFQvuk7HmvyuLBGLAUUczlCK91G CwmvaTMBey60HieXdd8v5MFAvUaNZV3ANtjfSvfcifyrmPKwyy92IvwtYfN9Fih4 zf65R3zBRUYSLcFxe5jf5M9kR21du69Ybw9e5mzdKDp+pkAXDd9dOBaCQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA8CQ+kLYFlwcXIcS12YgwsLi9T7MB8GA1UdIwQY MBaAFHQZj3AiuVYFAdtEivYDAfooXpI2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEJtUGNDSzVWZ1VCMjBTSzlnTUItaWhla2pZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My8xYmU1ZTEtNTZiNC00YzY2LWJlYWIt NmYxNjM5NjZhZjhiLzEvZEJtUGNDSzVWZ1VCMjBTSzlnTUItaWhla2pZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My8xYmU1ZTEtNTZiNC00YzY2LWJlYWItNmYxNjM5NjZhZjhi LzEvZEJtUGNDSzVWZ1VCMjBTSzlnTUItaWhla2pZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhlUYFdEF mGukyXQKIpNNCw5hfpO8AfeYqodOwCO0DSCxSLlQVwGNN4P8gudRA69gnIM3MhpK Ysi/Nuy3g0BXXYBey7I87/OVqbghb2NZ2WoNN66mDvJ43dOgPajszpWp71/J6XJO mPCEwmNxExodfwCg3F0CqtbIxPXUzRF8r4AZ/pvHwSg641IKpf37PFbcMT4Rx2D3 YPY7IJbyU1Gv+zvQaq8cch6LIVP9hBBpiOLTDwD1/JHCQkdg0SeS+KaxokG0ry8W gUnBbD2QM7QMYkhA09hvbFZ5jdhsf4PuPfv5ETtJyTUeMJFJwtgdd3ruV6fkkC9y RkgE5TMu4ibUbw== -----END CERTIFICATE-----Generated at Tue Jan 27 08:51:37 2026 by rpki-client