This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft File: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft (raw, json) Hash identifier: vaJ6wbZ4bUSx+YAe/ZJk+slUxN3IhH/3WZj+wfg5ZPE= Subject key identifier: 3F:F5:77:A0:81:04:8A:91:B7:4A:06:1F:A9:B0:EE:C0:71:FD:F0:33 Authority key identifier: 7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16 Certificate issuer: /CN=7e13414bdc2312400dfa9f50650d51ee0443df16 Certificate serial: 019C006685B1FD0D01733667F9F05151CC63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft Manifest number: 17EF Signing time: Tue 27 Jan 2026 17:00:44 +0000 Manifest this update: Tue 27 Jan 2026 17:00:44 +0000 Manifest next update: Wed 28 Jan 2026 17:00:44 +0000 Files and hashes: 1: anOK_t3CyTqq8NlqFB7A075gooA.roa (hash: UdYKN437GE/t4do7Cb6fa4jEkY53zklvjYRy+PQ0Xrg=) 2: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl (hash: CjRP2SUl1CaIk1LmfPM1r/7fqyXt2q6iymkKi/IzpAU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 15:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:00:66:85:b1:fd:0d:01:73:36:67:f9:f0:51:51:cc:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e13414bdc2312400dfa9f50650d51ee0443df16 Validity Not Before: Jan 27 17:00:44 2026 GMT Not After : Jan 28 17:00:44 2026 GMT Subject: CN=3ff577a081048a91b74a061fa9b0eec071fdf033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bd:62:41:c2:8d:98:d7:f5:53:30:36:ad:ec: fa:c9:59:da:7f:cf:53:c5:25:02:75:79:30:16:88: 90:06:0a:67:aa:cd:24:82:d4:93:6d:ce:a0:ed:73: 0a:5e:72:7f:ec:10:99:cd:05:9c:16:8d:82:63:0b: 0a:0d:ef:2c:21:f5:dc:54:d4:e9:fd:bb:cb:3e:16: 42:27:c2:a3:35:05:75:63:f7:2e:30:54:1d:b2:af: 70:e9:f5:b5:e1:94:8c:97:40:9a:6a:f9:e0:47:81: 70:43:33:64:c3:d4:a8:3c:a2:ad:dc:8b:5f:88:fe: b2:90:6a:a8:b8:15:53:17:75:9e:02:c4:76:12:d6: d8:d4:5f:74:36:8d:79:47:49:8e:ba:46:9e:00:b7: f0:e9:f1:1c:26:50:9d:ce:0c:e4:3b:fd:7c:a7:72: 16:1f:64:d7:be:05:b1:1b:4e:a4:74:d5:79:a7:3e: 71:01:79:86:5c:4b:cd:7b:e0:8c:8e:f3:32:d6:4d: 23:77:88:44:1d:27:1c:a5:ee:36:cc:00:3a:fc:7c: 1b:ac:33:1d:15:f9:34:e5:62:b7:83:ab:00:35:1b: d9:a0:4e:d5:ab:32:32:d7:5d:ac:6f:ad:62:ad:1f: 6e:d8:ea:8e:cc:cc:68:79:86:7a:df:3e:4d:43:fd: 14:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F5:77:A0:81:04:8A:91:B7:4A:06:1F:A9:B0:EE:C0:71:FD:F0:33 X509v3 Authority Key Identifier: keyid:7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:70:5f:9f:6f:9e:e6:36:73:a3:57:37:14:00:46:7b:60:27: 79:ce:84:31:14:77:33:00:71:25:57:5b:c2:b1:68:32:5e:3c: 4f:75:75:a7:6b:74:8d:ba:0d:5d:3c:be:df:f6:84:54:59:87: 87:53:ac:3a:8a:33:84:74:3f:f6:5c:9e:78:99:9d:da:6b:fb: e1:25:df:93:da:cb:bc:9e:56:4c:28:10:01:d8:48:94:a9:1e: d7:24:26:3d:be:3e:09:b2:2f:76:1e:ab:e8:b0:4f:77:3e:7c: f0:64:35:89:f9:c4:b3:9f:4b:3e:07:c7:49:4d:f5:7d:13:91: a0:27:af:5c:47:56:c8:c1:4c:b0:e5:d5:52:67:fc:c8:05:6c: 90:ea:30:63:29:8e:c7:03:cf:73:d0:0d:74:82:09:0f:35:cf: bb:bf:56:86:70:4f:15:ff:21:88:24:b4:90:ff:6e:ad:d0:0b: 2a:38:e1:e0:4f:9b:6b:99:b4:f8:e7:de:ce:a8:bf:2c:1a:d5: ff:a1:35:05:45:6e:55:da:d2:77:bf:0b:ce:6f:d0:08:ce:d8: c7:d9:5b:9e:df:8c:4f:cb:66:3e:18:bb:21:d0:07:08:86:2c: 45:26:e8:aa:1d:e0:99:9b:de:3d:de:5d:03:ba:4d:4d:38:4e: 9e:72:48:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwAZoWx/Q0BczZn+fBRUcxjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlMTM0MTRiZGMyMzEyNDAwZGZhOWY1MDY1MGQ1MWVlMDQ0 M2RmMTYwHhcNMjYwMTI3MTcwMDQ0WhcNMjYwMTI4MTcwMDQ0WjAzMTEwLwYDVQQD EygzZmY1NzdhMDgxMDQ4YTkxYjc0YTA2MWZhOWIwZWVjMDcxZmRmMDMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtL1iQcKNmNf1UzA2rez6yVnaf89T xSUCdXkwFoiQBgpnqs0kgtSTbc6g7XMKXnJ/7BCZzQWcFo2CYwsKDe8sIfXcVNTp /bvLPhZCJ8KjNQV1Y/cuMFQdsq9w6fW14ZSMl0CaavngR4FwQzNkw9SoPKKt3Itf iP6ykGqouBVTF3WeAsR2EtbY1F90No15R0mOukaeALfw6fEcJlCdzgzkO/18p3IW H2TXvgWxG06kdNV5pz5xAXmGXEvNe+CMjvMy1k0jd4hEHSccpe42zAA6/HwbrDMd Ffk05WK3g6sANRvZoE7VqzIy112sb61irR9u2OqOzMxoeYZ63z5NQ/0UrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD/1d6CBBIqRt0oGH6mw7sBx/fAzMB8GA1UdIwQY MBaAFH4TQUvcIxJADfqfUGUNUe4EQ98WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmhOQlM5d2pFa0FOLXA5UVpRMVI3Z1JEM3hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi80NGMzNjUtNmNlZC00NWQ5LTg2NWQt MDRmY2VjYWQ3MGVjLzEvZmhOQlM5d2pFa0FOLXA5UVpRMVI3Z1JEM3hZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi80NGMzNjUtNmNlZC00NWQ5LTg2NWQtMDRmY2VjYWQ3MGVj LzEvZmhOQlM5d2pFa0FOLXA5UVpRMVI3Z1JEM3hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq3Bfn2+e 5jZzo1c3FABGe2Anec6EMRR3MwBxJVdbwrFoMl48T3V1p2t0jboNXTy+3/aEVFmH h1OsOoozhHQ/9lyeeJmd2mv74SXfk9rLvJ5WTCgQAdhIlKke1yQmPb4+CbIvdh6r 6LBPdz588GQ1ifnEs59LPgfHSU31fRORoCevXEdWyMFMsOXVUmf8yAVskOowYymO xwPPc9ANdIIJDzXPu79WhnBPFf8hiCS0kP9urdALKjjh4E+ba5m0+Ofezqi/LBrV /6E1BUVuVdrSd78Lzm/QCM7Yx9lbnt+MT8tmPhi7IdAHCIYsRSboqh3gmZvePd5d A7pNTThOnnJIyg== -----END CERTIFICATE-----Generated at Tue Jan 27 19:39:24 2026 by rpki-client