This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft File: KUoc22jxVM-VQYowjILY2lB3UQk.mft (raw, json) Hash identifier: EyON3WQnsrkN+W8qpC8zTjJYzx4VjccDph4ctmcYiZY= Subject key identifier: 8E:D1:A4:6E:F5:54:29:F6:7C:C8:D3:6A:96:E4:2D:B0:15:74:F3:97 Authority key identifier: 29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09 Certificate issuer: /CN=294a1cdb68f154cf95418a308c82d8da50775109 Certificate serial: 019BFC5309C0C435582F0693AE8423123E6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft Manifest number: 1481 Signing time: Mon 26 Jan 2026 22:00:58 +0000 Manifest this update: Mon 26 Jan 2026 22:00:58 +0000 Manifest next update: Tue 27 Jan 2026 22:00:58 +0000 Files and hashes: 1: B6o8w4JwncV5UpdSgcO7ItJ2vOY.roa (hash: fNh1jUU0AZ9h8EIANivzzlh97Xsidf9NN1/ISCBJySU=) 2: KUoc22jxVM-VQYowjILY2lB3UQk.crl (hash: gU2g6x4DKqW8RTBf+0rDo7IqngruPORz6V5f23wZo/o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:53:09:c0:c4:35:58:2f:06:93:ae:84:23:12:3e:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=294a1cdb68f154cf95418a308c82d8da50775109 Validity Not Before: Jan 26 22:00:58 2026 GMT Not After : Jan 27 22:00:58 2026 GMT Subject: CN=8ed1a46ef55429f67cc8d36a96e42db01574f397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:01:8a:53:3d:e3:16:29:74:c1:64:18:14: 7c:7f:84:6a:e1:b1:86:32:08:4c:79:d9:93:ab:5e: c0:e3:6a:06:2f:d7:fb:90:bc:7b:e3:40:b6:e6:61: 0f:d9:27:b1:22:d4:71:0c:11:23:42:c3:f1:ae:8b: 46:f3:2d:69:b0:3c:9c:12:c9:da:40:f3:de:3f:bc: 68:e4:b6:e0:65:06:d6:ef:20:7a:27:66:0c:60:92: 43:89:9f:22:b4:2f:4d:85:22:1b:5a:d1:02:41:e3: 0f:53:4b:46:e8:59:24:c6:8c:f1:d3:1e:b6:b8:9b: 41:a7:01:b5:0f:a0:d1:99:76:a5:0f:8a:9e:f6:b0: 08:59:09:d5:ef:62:a6:9e:55:ae:ae:32:fd:ea:85: 33:5a:13:45:6a:41:91:3b:01:eb:3f:aa:a2:ac:df: b2:d8:f7:8d:34:91:f0:4f:43:cf:e1:7b:b9:b1:21: 3b:bd:32:ff:e9:ce:6a:7d:cd:0f:92:96:e9:c0:8d: c7:bf:e8:9b:eb:da:66:73:49:b1:09:6d:f7:dc:7f: 12:d1:52:9e:b7:5c:bf:db:4f:31:7f:91:c9:f8:df: fb:c3:17:22:5a:7d:a8:55:8b:e7:a7:4b:ea:34:83: 09:36:e2:71:32:f8:ba:19:14:a1:a7:de:55:e6:93: 34:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D1:A4:6E:F5:54:29:F6:7C:C8:D3:6A:96:E4:2D:B0:15:74:F3:97 X509v3 Authority Key Identifier: keyid:29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:8e:24:00:4f:54:0b:3f:30:73:60:b8:64:46:a8:93:de:78: 7e:d3:af:2f:90:6f:3b:cb:b5:e9:29:7e:85:43:1a:78:b6:86: 95:dc:88:25:79:9d:6d:7c:78:01:d3:94:59:45:46:a6:67:b4: 6d:91:11:51:d2:7e:fe:e9:8c:e9:e4:0c:67:e7:dc:ab:6b:05: 01:1c:c7:26:f6:50:49:93:72:73:5e:7f:89:03:76:67:29:d9: ce:b0:55:10:63:8e:62:52:ae:cf:8c:91:4e:d2:87:81:62:00: 09:6f:23:59:1b:4f:11:e9:c6:f5:dd:89:a0:fc:88:72:06:17: 3b:28:cc:ee:de:97:84:8f:cc:2c:4a:38:96:ff:63:1e:10:c7: a5:14:07:fd:bf:08:90:74:f5:e8:f8:ad:68:6f:37:f9:81:b0: 4d:6c:8c:76:49:ff:c1:37:d4:84:e8:63:b7:4d:3b:98:f1:0b: 2d:f0:0f:ab:7a:06:6a:4b:b2:e7:dc:d0:c4:7a:92:cf:e0:8d: c1:da:ac:bb:3f:82:26:1f:ae:1e:46:50:f3:51:38:4f:fc:e0: d8:56:63:40:4f:10:13:ba:dd:25:37:78:68:d2:6a:96:67:13: d2:a6:f7:19:c3:8f:f4:a0:f7:62:b6:ec:ce:6e:a4:29:3c:5d: 70:0b:c5:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8UwnAxDVYLwaTroQjEj5sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NGExY2RiNjhmMTU0Y2Y5NTQxOGEzMDhjODJkOGRhNTA3 NzUxMDkwHhcNMjYwMTI2MjIwMDU4WhcNMjYwMTI3MjIwMDU4WjAzMTEwLwYDVQQD Eyg4ZWQxYTQ2ZWY1NTQyOWY2N2NjOGQzNmE5NmU0MmRiMDE1NzRmMzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuIBilM94xYpdMFkGBR8f4Rq4bGG MghMedmTq17A42oGL9f7kLx740C25mEP2SexItRxDBEjQsPxrotG8y1psDycEsna QPPeP7xo5LbgZQbW7yB6J2YMYJJDiZ8itC9NhSIbWtECQeMPU0tG6Fkkxozx0x62 uJtBpwG1D6DRmXalD4qe9rAIWQnV72KmnlWurjL96oUzWhNFakGROwHrP6qirN+y 2PeNNJHwT0PP4Xu5sSE7vTL/6c5qfc0PkpbpwI3Hv+ib69pmc0mxCW333H8S0VKe t1y/208xf5HJ+N/7wxciWn2oVYvnp0vqNIMJNuJxMvi6GRShp95V5pM0QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI7RpG71VCn2fMjTapbkLbAVdPOXMB8GA1UdIwQY MBaAFClKHNto8VTPlUGKMIyC2NpQd1EJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1VvYzIyanhWTS1WUVlvd2pJTFkybEIzVVFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8wNGY0NzQtZTNiNS00NTk1LWEwNDQt NjU3ZTQxYzYzY2E5LzEvS1VvYzIyanhWTS1WUVlvd2pJTFkybEIzVVFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8wNGY0NzQtZTNiNS00NTk1LWEwNDQtNjU3ZTQxYzYzY2E5 LzEvS1VvYzIyanhWTS1WUVlvd2pJTFkybEIzVVFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkI4kAE9U Cz8wc2C4ZEaok954ftOvL5BvO8u16Sl+hUMaeLaGldyIJXmdbXx4AdOUWUVGpme0 bZERUdJ+/umM6eQMZ+fcq2sFARzHJvZQSZNyc15/iQN2ZynZzrBVEGOOYlKuz4yR TtKHgWIACW8jWRtPEenG9d2JoPyIcgYXOyjM7t6XhI/MLEo4lv9jHhDHpRQH/b8I kHT16PitaG83+YGwTWyMdkn/wTfUhOhjt007mPELLfAPq3oGakuy59zQxHqSz+CN wdqsuz+CJh+uHkZQ81E4T/zg2FZjQE8QE7rdJTd4aNJqlmcT0qb3GcOP9KD3Yrbs zm6kKTxdcAvFhQ== -----END CERTIFICATE-----Generated at Tue Jan 27 03:55:21 2026 by rpki-client