This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft File: KT0QRM1I1hcW11ngIN29qoFNXNU.mft (raw, json) Hash identifier: Taf8fLyex3jfDlrwXkZRtLCSYHZBdOK4wTp+OqPvxKc= Subject key identifier: 43:89:11:0A:EA:86:6E:3E:1B:4D:AA:EB:B0:1D:A4:29:D8:8A:0C:58 Authority key identifier: 29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5 Certificate issuer: /CN=293d1044cd48d61716d759e020ddbdaa814d5cd5 Certificate serial: 019BFD2E656BAD4344069AF548283E3730BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft Manifest number: 0FF3 Signing time: Tue 27 Jan 2026 02:00:34 +0000 Manifest this update: Tue 27 Jan 2026 02:00:34 +0000 Manifest next update: Wed 28 Jan 2026 02:00:34 +0000 Files and hashes: 1: G8Xjmm3bP-hXRGstLE8Fpo1sPVM.roa (hash: fWJBQMog1YWkp2bEy9v1fjvr2kKDsca319UpenUU6lI=) 2: KT0QRM1I1hcW11ngIN29qoFNXNU.crl (hash: DhLS8TLVIz/LHYSkun2IFjuOL+Fcvymb+hM19r3NVWw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:2e:65:6b:ad:43:44:06:9a:f5:48:28:3e:37:30:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=293d1044cd48d61716d759e020ddbdaa814d5cd5 Validity Not Before: Jan 27 02:00:34 2026 GMT Not After : Jan 28 02:00:34 2026 GMT Subject: CN=4389110aea866e3e1b4daaebb01da429d88a0c58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:48:40:1d:31:cc:e9:31:5c:81:18:84:7e:cf: b4:4a:33:67:a5:20:64:24:50:ed:38:2e:06:0f:a2: 7b:e6:38:af:b0:6f:c8:cc:da:ea:ca:5b:d4:41:0c: 58:1f:f4:ec:ec:d0:13:c6:ac:37:98:a4:4b:39:0f: e3:24:09:61:3b:60:13:eb:f2:e2:9a:bd:85:28:df: 2e:20:f7:4f:fa:08:5a:55:fe:9a:d3:10:bb:e0:e7: 38:91:15:48:ef:6c:40:19:5a:28:96:96:07:24:95: b0:d9:aa:cb:22:8b:fc:27:7b:e1:64:83:c0:45:c6: 19:ab:9e:7b:e8:5a:05:40:ab:c2:57:8a:62:aa:2b: dc:90:c8:30:81:ed:7e:69:ca:a9:fb:29:36:71:5c: 68:1a:fa:07:10:a5:96:31:a3:49:c3:13:8c:ba:4d: b3:e6:bc:28:87:7b:27:90:f8:75:90:87:a5:31:b3: 62:33:d7:09:4b:17:aa:e2:c3:fd:32:30:d9:b2:d8: 14:34:0a:3a:2f:f8:53:c7:32:1d:1b:94:e3:96:88: fe:05:29:5c:29:9a:c0:0e:92:4e:86:2f:24:d6:69: 70:fa:ff:03:6d:50:35:49:8b:e3:dc:7b:84:fb:71: 78:ed:b2:2e:3d:db:2b:6d:0b:e5:9e:52:72:57:17: 3f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:89:11:0A:EA:86:6E:3E:1B:4D:AA:EB:B0:1D:A4:29:D8:8A:0C:58 X509v3 Authority Key Identifier: keyid:29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ea:a9:8a:eb:bc:70:ad:8c:3f:57:ec:da:06:d9:03:65:bf: 03:b6:9a:9d:25:f8:91:31:6f:57:ba:99:d0:f5:a2:91:1e:bb: 1a:ec:70:28:80:64:a9:34:e9:cd:c6:4d:56:16:1d:a9:6f:c0: f9:2f:81:1e:fc:82:72:9e:d7:59:08:f2:38:d8:34:cb:cb:b7: 82:0b:55:29:b5:f8:9c:29:22:18:dd:86:d6:23:3a:07:5f:14: a7:0e:6c:5b:d7:b9:2a:6d:4f:76:33:9d:1b:a8:32:4c:f0:ba: 78:43:5b:0f:07:dd:3f:33:06:9f:b8:66:71:46:74:0a:a0:c6: 90:cf:e0:86:f8:d5:74:d4:43:20:28:f5:c1:0d:3e:48:78:c8: 9c:17:16:c6:b6:ca:f0:8d:2e:f4:fd:8d:01:6f:26:9e:93:cb: fb:36:07:89:8f:1c:68:b1:3e:7d:19:b7:b9:db:1e:7f:1f:71: 38:86:a4:c3:3b:61:be:2c:7f:6f:77:f8:9c:0f:da:aa:21:ec: 61:a8:60:2f:87:1a:3f:69:4d:1f:63:fd:e3:96:91:b5:8c:22: ae:a8:36:4f:1a:ad:84:ec:20:33:b6:b1:d5:73:67:99:24:9f: 8b:26:1a:a0:87:a7:07:1c:fd:27:3f:11:af:4b:fa:cf:6f:f9: 45:1b:cc:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9LmVrrUNEBpr1SCg+NzC7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5M2QxMDQ0Y2Q0OGQ2MTcxNmQ3NTllMDIwZGRiZGFhODE0 ZDVjZDUwHhcNMjYwMTI3MDIwMDM0WhcNMjYwMTI4MDIwMDM0WjAzMTEwLwYDVQQD Eyg0Mzg5MTEwYWVhODY2ZTNlMWI0ZGFhZWJiMDFkYTQyOWQ4OGEwYzU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3EhAHTHM6TFcgRiEfs+0SjNnpSBk JFDtOC4GD6J75jivsG/IzNrqylvUQQxYH/Ts7NATxqw3mKRLOQ/jJAlhO2AT6/Li mr2FKN8uIPdP+ghaVf6a0xC74Oc4kRVI72xAGVoolpYHJJWw2arLIov8J3vhZIPA RcYZq5576FoFQKvCV4piqivckMgwge1+acqp+yk2cVxoGvoHEKWWMaNJwxOMuk2z 5rwoh3snkPh1kIelMbNiM9cJSxeq4sP9MjDZstgUNAo6L/hTxzIdG5Tjloj+BSlc KZrADpJOhi8k1mlw+v8DbVA1SYvj3HuE+3F47bIuPdsrbQvlnlJyVxc/AQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEOJEQrqhm4+G02q67AdpCnYigxYMB8GA1UdIwQY MBaAFCk9EETNSNYXFtdZ4CDdvaqBTVzVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1QwUVJNMUkxaGNXMTFuZ0lOMjlxb0ZOWE5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9kZWYwOTUtMDU2Yi00ZGQzLWJmMWUt ZTcxYmVkYTFmMjk5LzEvS1QwUVJNMUkxaGNXMTFuZ0lOMjlxb0ZOWE5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9kZWYwOTUtMDU2Yi00ZGQzLWJmMWUtZTcxYmVkYTFmMjk5 LzEvS1QwUVJNMUkxaGNXMTFuZ0lOMjlxb0ZOWE5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmuqpiuu8 cK2MP1fs2gbZA2W/A7aanSX4kTFvV7qZ0PWikR67GuxwKIBkqTTpzcZNVhYdqW/A +S+BHvyCcp7XWQjyONg0y8u3ggtVKbX4nCkiGN2G1iM6B18Upw5sW9e5Km1PdjOd G6gyTPC6eENbDwfdPzMGn7hmcUZ0CqDGkM/ghvjVdNRDICj1wQ0+SHjInBcWxrbK 8I0u9P2NAW8mnpPL+zYHiY8caLE+fRm3udsefx9xOIakwzthvix/b3f4nA/aqiHs YahgL4caP2lNH2P945aRtYwirqg2TxqthOwgM7ax1XNnmSSfiyYaoIenBxz9Jz8R r0v6z2/5RRvM+A== -----END CERTIFICATE-----Generated at Tue Jan 27 10:23:00 2026 by rpki-client