This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft File: 1-hskeN_g8zonixP0LdMZYB1jeKg.mft (raw, json) Hash identifier: lW4h/fOTjYGiviXHHn6LpTNtm1zcbstMyrLDGjxkpWU= Subject key identifier: 8F:EC:F0:07:5D:FA:DB:28:94:BE:64:DC:6E:B4:8D:A5:DF:4A:6C:55 Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8 Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8 Certificate serial: 019BFD65A45182227BB11EEE6CCD223190A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft Manifest number: 0916 Signing time: Tue 27 Jan 2026 03:00:55 +0000 Manifest this update: Tue 27 Jan 2026 03:00:55 +0000 Manifest next update: Wed 28 Jan 2026 03:00:55 +0000 Files and hashes: 1: 1-hskeN_g8zonixP0LdMZYB1jeKg.crl (hash: jcn9uq46qwOcU8kG+H/d6ZGmaI1QwRTuUSB3ogVaq7M=) 2: 67OHgQ9oY03pFObGOEWvUB45FRY.roa (hash: Bw9KDuBO2RcXnPqBfJKA7s6j1vu8KiRAlWxURETULCk=) 3: JlERsOGpN9Jutvxh9cBCd5WIDhQ.roa (hash: 0TAzyXpM7LaR9Wg7trsFQxzAH4r7+W5/vZ5ekplhpko=) 4: o0B3A-uOWMJ0Q3rI62ZiZW1aPL4.roa (hash: 7bwGC4W14PVYfYqbu9cx4x9X5c24UYWk/Q4pZluMhT0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:65:a4:51:82:22:7b:b1:1e:ee:6c:cd:22:31:90:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8 Validity Not Before: Jan 27 03:00:55 2026 GMT Not After : Jan 28 03:00:55 2026 GMT Subject: CN=8fecf0075dfadb2894be64dc6eb48da5df4a6c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:60:b0:0f:40:6b:e6:ab:c1:50:b4:14:e6: 38:3e:d4:88:d7:9d:38:c6:33:16:5e:01:f4:33:10: 6d:20:62:31:60:22:18:b5:f9:03:ba:43:25:1e:1a: ec:48:19:71:3e:ba:4c:5c:ac:d6:a7:01:b8:70:65: d1:7b:05:cd:e2:a9:bc:e1:c0:24:c5:27:cd:f6:20: 94:c7:9c:f6:21:7a:49:d3:cb:39:5d:ae:66:10:d9: ed:ee:c9:51:64:ef:00:9a:e3:8b:e4:97:6c:eb:8b: 96:9d:28:ae:cf:fe:32:49:00:fa:7c:fd:47:32:17: 1d:ab:08:3a:f7:85:be:79:e1:b5:b6:11:12:2f:f9: 34:b0:6d:84:8e:86:e9:a1:0c:e2:49:63:a0:0b:0f: 71:4f:75:0a:a7:26:b0:9b:52:a9:fc:ec:78:7f:69: 76:69:b9:a6:cf:97:dd:24:1e:17:9b:ec:37:7b:98: 3c:49:61:80:76:44:87:c6:46:59:7f:07:b6:e8:77: f1:a9:e7:b8:ba:b6:8a:1a:b5:9b:b4:34:b4:fb:24: 6f:20:86:c2:6a:4e:1c:ae:43:b5:19:d2:9b:69:d5: c3:93:fa:05:33:db:f6:a8:22:ae:a7:ce:84:f1:42: 6a:e3:ac:e9:57:77:f7:29:c4:04:d4:19:06:31:0c: 65:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EC:F0:07:5D:FA:DB:28:94:BE:64:DC:6E:B4:8D:A5:DF:4A:6C:55 X509v3 Authority Key Identifier: keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:09:a3:f9:a2:5f:c9:23:19:9b:78:5b:74:86:84:fe:1d:ed: 3c:e9:01:b4:17:32:c8:2a:86:27:d0:dd:fd:f0:e7:f3:0c:b3: 00:db:9c:db:f9:2c:a8:d5:fb:a1:95:fc:46:b8:10:0c:cc:35: 38:a1:62:60:20:9e:aa:a0:d2:d7:e8:cb:83:87:bc:c1:9d:0e: a0:3c:55:49:e6:c0:d0:f6:75:63:15:23:a1:e7:35:26:6a:f5: 39:31:2e:1c:0e:c4:17:71:f9:ac:8e:77:5a:f9:49:7a:36:a3: d3:bc:52:5e:6d:df:31:5c:0b:46:3f:43:18:3a:1f:ea:c0:45: b8:da:65:95:68:be:22:97:10:fd:37:a4:ad:53:c7:db:a9:ce: 03:47:37:35:28:ae:35:26:2f:fb:1b:74:11:8e:42:61:e3:de: 7b:44:e6:aa:59:1d:76:49:61:b4:f2:28:d1:85:07:77:3d:ef: 1f:dd:50:bc:ea:c6:f7:35:c2:e4:69:b7:9f:e3:aa:58:a1:23: 09:f6:ca:59:d0:04:f9:6b:e9:6e:2f:11:80:cb:a8:c1:e3:38: 1a:ef:f6:f3:1e:13:6d:d5:22:e4:ba:1f:91:23:c7:a1:63:5b: 33:d3:1c:15:20:90:cd:ff:3a:dc:d0:bb:e0:6b:aa:77:c1:f5: 29:91:17:14 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZv9ZaRRgiJ7sR7ubM0iMZCpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhMWIyNDc4ZGZlMGYzM2EyNzhiMTNmNDJkZDMxOTYwMWQ2 Mzc4YTgwHhcNMjYwMTI3MDMwMDU1WhcNMjYwMTI4MDMwMDU1WjAzMTEwLwYDVQQD Eyg4ZmVjZjAwNzVkZmFkYjI4OTRiZTY0ZGM2ZWI0OGRhNWRmNGE2YzU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLdgsA9Aa+arwVC0FOY4PtSI1504 xjMWXgH0MxBtIGIxYCIYtfkDukMlHhrsSBlxPrpMXKzWpwG4cGXRewXN4qm84cAk xSfN9iCUx5z2IXpJ08s5Xa5mENnt7slRZO8AmuOL5Jds64uWnSiuz/4ySQD6fP1H Mhcdqwg694W+eeG1thESL/k0sG2EjobpoQziSWOgCw9xT3UKpyawm1Kp/Ox4f2l2 abmmz5fdJB4Xm+w3e5g8SWGAdkSHxkZZfwe26Hfxqee4uraKGrWbtDS0+yRvIIbC ak4crkO1GdKbadXDk/oFM9v2qCKup86E8UJq46zpV3f3KcQE1BkGMQxliQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFI/s8Add+tsolL5k3G60jaXfSmxVMB8GA1UdIwQY MBaAFPobJHjf4PM6J4sT9C3TGWAdY3ioMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1oc2tlTl9nOHpvbml4UDBMZE1aWUIxamVLZy5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgy LTJhMWNjZTdkMmM2NS8xLzEtaHNrZU5fZzh6b25peFAwTGRNWllCMWplS2cubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxUL2FmLzA4YTljOC00YmUzLTQ2ODItYWY4Mi0yYTFjY2U3ZDJj NjUvMS8xLWhza2VOX2c4em9uaXhQMExkTVpZQjFqZUtnLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfQmj +aJfySMZm3hbdIaE/h3tPOkBtBcyyCqGJ9Dd/fDn8wyzANuc2/ksqNX7oZX8RrgQ DMw1OKFiYCCeqqDS1+jLg4e8wZ0OoDxVSebA0PZ1YxUjoec1Jmr1OTEuHA7EF3H5 rI53WvlJejaj07xSXm3fMVwLRj9DGDof6sBFuNpllWi+IpcQ/TekrVPH26nOA0c3 NSiuNSYv+xt0EY5CYePee0TmqlkddklhtPIo0YUHdz3vH91QvOrG9zXC5Gm3n+Oq WKEjCfbKWdAE+Wvpbi8RgMuoweM4Gu/28x4TbdUi5LofkSPHoWNbM9McFSCQzf86 3NC74Guqd8H1KZEXFA== -----END CERTIFICATE-----Generated at Tue Jan 27 07:39:58 2026 by rpki-client