This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft File: Dj8xyerObwpezNuN8rAcc1FWhoY.mft (raw, json) Hash identifier: OmDXfNSZLrpB058i1fnB59pBqbewvHNb1vmN1BYmhA0= Subject key identifier: BA:D3:CB:20:F6:0B:AF:EA:DA:CD:5B:94:76:98:62:82:71:04:06:10 Authority key identifier: 0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86 Certificate issuer: /CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686 Certificate serial: 019BD8B48F2F4E4BC3D283C46C591DEF5C20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft Manifest number: 1795 Signing time: Tue 20 Jan 2026 00:01:10 +0000 Manifest this update: Tue 20 Jan 2026 00:01:10 +0000 Manifest next update: Wed 21 Jan 2026 00:01:10 +0000 Files and hashes: 1: Dj8xyerObwpezNuN8rAcc1FWhoY.crl (hash: kVVMvD0E5S3T9jyibYPRCdNevFD/SfROFQCPd0DSJfQ=) 2: KG2bwdMHpiZ-qNVrmFbejxgZnXw.roa (hash: /SATlKhWfLl21S+M8PJymfOJAuNbA6mH3Elkc2JeqqY=) 3: P36bForyKz3A1xYxUt5uRvnbjGo.roa (hash: CVAU2pcmHNPpR0Ea2g62GxYoWi/yJ4n8I1Gjfyzzm7o=) 4: uZHn0r02l2agjVRMRfZ3xICbMLw.roa (hash: YR/6cl0OhmlwCiQwg5TQ7bSWNguLPLl/GP2GOc23T+k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 00:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d8:b4:8f:2f:4e:4b:c3:d2:83:c4:6c:59:1d:ef:5c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686 Validity Not Before: Jan 20 00:01:10 2026 GMT Not After : Jan 21 00:01:10 2026 GMT Subject: CN=bad3cb20f60bafeadacd5b947698628271040610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:52:2e:4e:d7:9d:80:b3:ac:4b:aa:c9:8b:fd: 33:92:8c:2f:18:c5:86:39:e2:ac:ba:e3:56:67:ac: d5:da:cf:13:b0:ef:35:18:67:a9:6e:d1:60:64:0c: 57:9c:4a:a6:2b:f8:32:cc:88:e4:5d:45:55:c6:06: 0d:1d:f6:7e:cf:80:c4:6b:4b:45:de:7d:fc:2b:19: a4:c7:15:3a:6b:f8:67:32:a0:80:9a:69:62:9c:f5: 5e:3d:3f:e8:e2:e5:3a:f2:5e:93:8a:0a:bc:d5:5c: f0:c5:52:77:1e:be:5a:ce:6c:b6:3a:1d:89:ec:b1: fd:6f:03:8b:35:8e:02:c9:90:73:54:7d:16:41:89: 43:32:37:bc:00:5c:e8:47:2a:b6:14:e8:b1:ce:88: 44:8c:93:47:20:5f:d4:0c:72:7b:ad:1b:25:46:4f: d8:f9:86:5d:18:08:92:e4:b3:f0:ed:06:78:df:07: c0:35:b0:73:d8:b1:38:08:f1:bb:ea:ce:6e:d5:c5: 0c:54:41:0b:db:aa:7e:71:ce:8e:ea:72:11:a6:21: 52:d3:53:22:61:73:21:9e:0c:77:ba:ee:7d:f0:15: 92:98:41:96:7f:0b:8b:66:ec:4d:47:b4:42:d7:1c: 43:cf:44:3d:47:8f:75:d3:7e:98:9d:9d:32:15:d5: f2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D3:CB:20:F6:0B:AF:EA:DA:CD:5B:94:76:98:62:82:71:04:06:10 X509v3 Authority Key Identifier: keyid:0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:8c:ee:5a:34:35:1d:bf:ce:a6:68:f7:15:91:b8:ee:bc:88: 19:1b:63:94:c4:4e:5d:ea:4d:e4:b4:68:36:dc:fc:0b:97:60: af:48:fa:78:96:45:27:1c:b9:9b:90:52:bf:87:78:69:0c:01: f8:fc:6d:06:a4:15:ba:f1:42:ff:ca:e4:ae:fb:a9:41:fd:78: 5e:37:38:e3:45:dd:80:88:dd:6d:58:48:cf:ee:82:c7:a7:ed: 48:ad:27:a7:ce:24:01:a0:a2:78:3c:db:fd:ef:4e:43:f3:6b: d9:eb:b5:31:7e:67:27:6e:52:d2:b6:da:1b:72:dc:e2:de:94: 62:e7:e5:72:a3:80:c4:d7:f4:8b:d2:71:b6:a7:26:8f:78:59: 85:16:84:fa:35:a1:05:e9:02:b2:a1:a5:d4:63:69:7c:5f:92: a3:d8:1d:8f:ad:af:83:6c:f3:22:5b:f7:09:2a:6c:c3:3e:37: 8c:9c:f2:3c:00:d3:f1:cf:5e:e5:f4:a7:08:99:10:06:20:35: b6:b3:ba:0e:79:9e:ae:4b:a6:ab:37:7b:93:84:ea:ef:04:62: 04:ad:fe:3e:99:4f:51:7e:21:54:42:e1:86:d4:3e:a2:0d:f9: cf:ab:04:9f:8d:a0:e9:5d:a3:58:73:b8:8e:25:5c:19:2b:eb: 4c:fa:b8:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvYtI8vTkvD0oPEbFkd71wgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlM2YzMWM5ZWFjZTZmMGE1ZWNjZGI4ZGYyYjAxYzczNTE1 Njg2ODYwHhcNMjYwMTIwMDAwMTEwWhcNMjYwMTIxMDAwMTEwWjAzMTEwLwYDVQQD EyhiYWQzY2IyMGY2MGJhZmVhZGFjZDViOTQ3Njk4NjI4MjcxMDQwNjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFIuTtedgLOsS6rJi/0zkowvGMWG OeKsuuNWZ6zV2s8TsO81GGepbtFgZAxXnEqmK/gyzIjkXUVVxgYNHfZ+z4DEa0tF 3n38KxmkxxU6a/hnMqCAmmlinPVePT/o4uU68l6Tigq81VzwxVJ3Hr5azmy2Oh2J 7LH9bwOLNY4CyZBzVH0WQYlDMje8AFzoRyq2FOixzohEjJNHIF/UDHJ7rRslRk/Y +YZdGAiS5LPw7QZ43wfANbBz2LE4CPG76s5u1cUMVEEL26p+cc6O6nIRpiFS01Mi YXMhngx3uu598BWSmEGWfwuLZuxNR7RC1xxDz0Q9R491036YnZ0yFdXydwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLrTyyD2C6/q2s1blHaYYoJxBAYQMB8GA1UdIwQY MBaAFA4/Mcnqzm8KXszbjfKwHHNRVoaGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGo4eHllck9id3Blek51TjhyQWNjMUZXaG9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9hNmRkYTEtMWI4Ny00ZWMzLTkzOGYt ZGQ1ZGRkMDVkYjBiLzEvRGo4eHllck9id3Blek51TjhyQWNjMUZXaG9ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9hNmRkYTEtMWI4Ny00ZWMzLTkzOGYtZGQ1ZGRkMDVkYjBi LzEvRGo4eHllck9id3Blek51TjhyQWNjMUZXaG9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsIzuWjQ1 Hb/Opmj3FZG47ryIGRtjlMROXepN5LRoNtz8C5dgr0j6eJZFJxy5m5BSv4d4aQwB +PxtBqQVuvFC/8rkrvupQf14Xjc440XdgIjdbVhIz+6Cx6ftSK0np84kAaCieDzb /e9OQ/Nr2eu1MX5nJ25S0rbaG3Lc4t6UYuflcqOAxNf0i9Jxtqcmj3hZhRaE+jWh BekCsqGl1GNpfF+So9gdj62vg2zzIlv3CSpswz43jJzyPADT8c9e5fSnCJkQBiA1 trO6Dnmerkumqzd7k4Tq7wRiBK3+PplPUX4hVELhhtQ+og35z6sEn42g6V2jWHO4 jiVcGSvrTPq4vw== -----END CERTIFICATE-----Generated at Tue Jan 20 07:36:18 2026 by rpki-client