This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json) Hash identifier: S6hhT/0wMRXClKKvMeGlGvqTFkEw1pdVYXP/VWiJEBc= Subject key identifier: EE:45:6D:5E:1F:C2:02:65:D2:60:5F:DF:CE:8F:AF:07:55:B0:B1:DF Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03 Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603 Certificate serial: 019BF8AD3C96590862F78C74356CBC3F94BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft Manifest number: 0B14 Signing time: Mon 26 Jan 2026 05:01:01 +0000 Manifest this update: Mon 26 Jan 2026 05:01:01 +0000 Manifest next update: Tue 27 Jan 2026 05:01:01 +0000 Files and hashes: 1: 5TQ-JqFgF-IFdipnnBO-T6tTIiI.roa (hash: jvG5fPveO3vEmUkVM2g5EIXNmfe8tIUO+ydnKHanIQ8=) 2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: IwKRC6RPgo07Bgcd5bLVi7OOerjv0ErqdApwIbw++/w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:ad:3c:96:59:08:62:f7:8c:74:35:6c:bc:3f:94:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603 Validity Not Before: Jan 26 05:01:01 2026 GMT Not After : Jan 27 05:01:01 2026 GMT Subject: CN=ee456d5e1fc20265d2605fdfce8faf0755b0b1df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:57:e6:28:83:9d:80:1c:83:72:54:85:16:d7: b8:aa:59:70:c3:53:dc:8f:d5:17:06:f7:92:6f:35: 14:51:b6:03:e3:14:be:5f:45:84:d3:f8:9d:90:b7: 20:df:f5:f6:43:bf:6d:a4:db:74:df:24:0a:09:67: 38:f7:23:da:5f:34:61:e9:1c:63:e8:07:42:9d:24: 6a:84:15:40:fb:fa:9b:0d:42:5c:4a:1f:85:69:e5: 89:90:75:48:ea:31:ae:63:e5:74:90:cb:79:62:b5: eb:76:c5:08:3b:55:0c:52:c3:f7:a0:d8:d4:09:10: 75:8c:3d:5e:84:b8:e3:d2:34:7d:28:98:7e:9b:35: 0c:16:8e:32:20:72:31:bf:79:12:ab:94:3d:94:33: 3b:38:87:35:b0:8a:5d:24:3d:5e:18:40:a3:68:da: 68:94:29:34:e8:6a:7c:de:f1:07:1a:6a:27:df:22: e8:a0:0d:24:e4:8a:2c:86:bc:46:f7:77:d5:2f:78: a0:88:5d:e3:26:69:d8:04:92:d4:c1:88:9d:47:93: 4e:6d:ea:b1:4c:91:50:64:ca:ae:fd:5d:a3:0e:f6: d8:7a:44:5b:7b:de:26:e1:8e:76:18:35:68:9d:58: 7d:55:1d:c0:55:12:f3:52:07:b8:97:c8:7d:70:1c: 28:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:45:6D:5E:1F:C2:02:65:D2:60:5F:DF:CE:8F:AF:07:55:B0:B1:DF X509v3 Authority Key Identifier: keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:88:df:55:93:81:92:2b:d1:06:a5:fa:d4:51:65:e8:a3:11: c7:ad:24:31:6a:04:fa:6e:48:9d:af:1c:e9:a2:8b:99:24:08: 10:1e:85:e5:19:01:cb:a4:fa:d3:cc:6c:7f:cd:e2:c7:2c:0e: 41:b4:1c:a8:de:63:19:c6:b4:1f:2b:a4:e9:ef:45:ba:e9:47: 30:9b:c2:87:da:a1:cc:cc:42:44:a6:46:e2:2e:86:4d:e2:a7: b9:37:95:19:2d:9f:70:c0:51:e3:7b:b7:b4:b2:0d:5a:eb:9a: 37:5e:20:18:03:75:1b:6e:29:72:5a:1a:a5:99:db:7e:fd:2b: 57:e9:f7:bb:3e:f5:50:2b:f9:b5:04:f0:37:19:d3:ff:7b:de: 71:53:b6:6f:55:47:11:d1:72:e9:10:81:58:72:35:e9:70:6c: fc:a8:c6:76:63:c5:df:ae:bc:61:95:95:96:ce:48:69:94:9d: 3a:66:10:9a:7b:64:66:92:d6:34:f5:b5:11:00:bd:42:a5:cc: 9f:b1:e8:be:41:b0:a9:5c:0e:da:6a:5b:97:fc:fa:9a:01:89: d4:2a:aa:56:5b:3c:07:da:3a:d3:d9:ab:f0:d9:1e:dd:3c:d8: 21:ba:40:0a:0f:85:90:b0:c2:50:d6:e2:ea:78:4a:64:ff:47: 44:e0:a1:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4rTyWWQhi94x0NWy8P5S6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkODUyNzJhNDA4MDkwNGY3NWUyMzVhNDdhZjBiNDEyNjZl MmE2MDMwHhcNMjYwMTI2MDUwMTAxWhcNMjYwMTI3MDUwMTAxWjAzMTEwLwYDVQQD EyhlZTQ1NmQ1ZTFmYzIwMjY1ZDI2MDVmZGZjZThmYWYwNzU1YjBiMWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFfmKIOdgByDclSFFte4qllww1Pc j9UXBveSbzUUUbYD4xS+X0WE0/idkLcg3/X2Q79tpNt03yQKCWc49yPaXzRh6Rxj 6AdCnSRqhBVA+/qbDUJcSh+FaeWJkHVI6jGuY+V0kMt5YrXrdsUIO1UMUsP3oNjU CRB1jD1ehLjj0jR9KJh+mzUMFo4yIHIxv3kSq5Q9lDM7OIc1sIpdJD1eGECjaNpo lCk06Gp83vEHGmon3yLooA0k5IoshrxG93fVL3igiF3jJmnYBJLUwYidR5NObeqx TJFQZMqu/V2jDvbYekRbe94m4Y52GDVonVh9VR3AVRLzUge4l8h9cBwo4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO5FbV4fwgJl0mBf386PrwdVsLHfMB8GA1UdIwQY MBaAFL2FJypAgJBPdeI1pHrwtBJm4qYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMt MjRmMjBmOTY3NWVjLzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMtMjRmMjBmOTY3NWVj LzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd4jfVZOB kivRBqX61FFl6KMRx60kMWoE+m5Ina8c6aKLmSQIEB6F5RkBy6T608xsf83ixywO QbQcqN5jGca0Hyuk6e9FuulHMJvCh9qhzMxCRKZG4i6GTeKnuTeVGS2fcMBR43u3 tLINWuuaN14gGAN1G24pcloapZnbfv0rV+n3uz71UCv5tQTwNxnT/3vecVO2b1VH EdFy6RCBWHI16XBs/KjGdmPF3668YZWVls5IaZSdOmYQmntkZpLWNPW1EQC9QqXM n7HovkGwqVwO2mpbl/z6mgGJ1CqqVls8B9o609mr8Nke3TzYIbpACg+FkLDCUNbi 6nhKZP9HROCh1g== -----END CERTIFICATE-----Generated at Mon Jan 26 13:35:30 2026 by rpki-client