This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft File: kPwsEuoXAhuorOBiGJfwhW2sJVk.mft (raw, json) Hash identifier: 1ZsVPP4/SWWnLswJoeVGq9XWsJiUp3zI/9W+egVX9p0= Subject key identifier: 32:99:CE:10:C0:D3:19:DA:E1:2E:8E:DA:13:AC:43:5C:33:98:5B:7B Authority key identifier: 90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59 Certificate issuer: /CN=90fc2c12ea17021ba8ace0621897f0856dac2559 Certificate serial: 019BFB4065866E6F4420F0EF3D5DBFDD8093 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft Manifest number: 0765 Signing time: Mon 26 Jan 2026 17:01:00 +0000 Manifest this update: Mon 26 Jan 2026 17:01:00 +0000 Manifest next update: Tue 27 Jan 2026 17:01:00 +0000 Files and hashes: 1: 41FDoFH6M2is1lsICkgfh5ITDqc.roa (hash: EewgyLxSVnO+QoRL7ntY20ccJSFgs1pW1bzWTclj1yE=) 2: BRDlyqeJrmrBAcGjXwsME96B8FA.roa (hash: jjDNz/Y1cZhGq2xfdDGq/oEMuXVbmPo8+lz5IqqCETc=) 3: kPwsEuoXAhuorOBiGJfwhW2sJVk.crl (hash: uHqA1+5nJWGW1nQ4HMgInNi9O92A5n+yjbNx+u4LiS8=) 4: nXsgPSU5eo-g-H5HVGkbUxzs-M0.roa (hash: bHUY+9ATlshHA4NGy9V8O1pXq9p6uilZoEQtRA9DmuU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 17:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:40:65:86:6e:6f:44:20:f0:ef:3d:5d:bf:dd:80:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90fc2c12ea17021ba8ace0621897f0856dac2559 Validity Not Before: Jan 26 17:01:00 2026 GMT Not After : Jan 27 17:01:00 2026 GMT Subject: CN=3299ce10c0d319dae12e8eda13ac435c33985b7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3b:d3:86:0c:10:66:f4:73:cb:cd:62:e3:58: 9b:47:13:36:68:de:63:9d:45:52:dc:22:aa:ba:bd: 24:95:96:bb:b2:04:bd:72:d3:b4:3a:cd:c4:50:7a: 78:70:34:21:ba:6a:8f:d4:03:34:fb:cc:c7:b9:92: 68:8c:52:50:ac:2b:5e:98:fb:34:ac:85:b0:e5:fe: 72:d6:7c:78:c7:7e:79:c1:9e:b8:80:5e:7b:e2:17: 91:92:d6:c3:d3:bd:31:08:c9:df:18:97:78:b1:7d: 59:ff:25:4e:16:3e:96:49:bf:f6:41:80:1e:be:3d: bd:25:ff:25:9c:3a:5b:5f:b3:8d:f4:53:5c:a7:56: 60:b3:2e:3f:bc:0a:8f:76:e4:2f:20:89:41:81:05: 6d:ec:68:53:b1:80:bf:70:10:cf:11:64:f6:2c:b7: 10:b6:f7:29:db:9c:33:93:a8:cd:49:a6:7c:06:d7: 87:be:ec:c2:7c:38:10:b8:d5:6f:f2:b9:30:88:0f: 52:23:d5:32:5b:4b:62:9d:cb:bd:c1:c7:fc:16:23: 10:eb:8e:4b:b7:58:56:dd:c5:90:e3:d2:95:70:d9: 61:9a:b3:1d:c8:b9:41:53:d7:f5:5a:34:43:ff:5d: c0:e8:09:09:e0:28:41:07:e0:29:7e:a9:30:4e:fb: 47:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:99:CE:10:C0:D3:19:DA:E1:2E:8E:DA:13:AC:43:5C:33:98:5B:7B X509v3 Authority Key Identifier: keyid:90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:d1:1f:6d:8b:51:6d:d5:9e:cd:45:bd:1b:7c:87:41:83:b1: a9:77:58:04:b6:54:f0:da:fb:42:7f:80:2a:69:01:f9:85:cc: b2:b6:2a:a2:09:cb:d1:4e:65:07:80:94:5c:78:2b:d2:26:14: bd:18:26:00:33:53:65:aa:4c:ec:e3:34:09:a8:c7:35:4c:db: 46:0f:63:8a:35:19:30:51:72:a9:70:9c:3a:b4:33:2a:56:a3: c6:9e:3b:45:c6:2f:35:85:c3:62:71:c4:73:61:f4:7c:df:e6: a9:f7:4d:38:7c:ed:ad:1b:7a:d4:a4:6f:dc:de:8b:c8:f5:a5: 32:a7:10:26:18:70:9b:6f:7d:05:46:d2:66:2f:d0:9b:60:7c: 51:df:38:5b:0e:5c:05:2a:35:32:cc:7d:9c:52:d6:dc:ac:94: b4:5e:2a:fa:64:bd:8c:53:53:c5:db:f8:f1:e2:c7:ca:c6:de: 4a:70:52:00:f2:04:7c:73:df:f8:5d:57:bd:fa:65:fb:8e:92: ae:49:4b:b3:42:3a:7f:9a:63:f1:36:78:93:d9:b4:2d:c8:ae: 17:bd:52:d6:31:0c:ef:61:b0:ea:41:18:fd:ca:58:54:14:f6: 63:1c:1c:da:47:34:f8:83:63:71:ea:61:dc:55:c6:5b:bc:5b: 93:1e:2b:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7QGWGbm9EIPDvPV2/3YCTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwZmMyYzEyZWExNzAyMWJhOGFjZTA2MjE4OTdmMDg1NmRh YzI1NTkwHhcNMjYwMTI2MTcwMTAwWhcNMjYwMTI3MTcwMTAwWjAzMTEwLwYDVQQD EygzMjk5Y2UxMGMwZDMxOWRhZTEyZThlZGExM2FjNDM1YzMzOTg1YjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzvThgwQZvRzy81i41ibRxM2aN5j nUVS3CKqur0klZa7sgS9ctO0Os3EUHp4cDQhumqP1AM0+8zHuZJojFJQrCtemPs0 rIWw5f5y1nx4x355wZ64gF574heRktbD070xCMnfGJd4sX1Z/yVOFj6WSb/2QYAe vj29Jf8lnDpbX7ON9FNcp1Zgsy4/vAqPduQvIIlBgQVt7GhTsYC/cBDPEWT2LLcQ tvcp25wzk6jNSaZ8BteHvuzCfDgQuNVv8rkwiA9SI9UyW0tincu9wcf8FiMQ645L t1hW3cWQ49KVcNlhmrMdyLlBU9f1WjRD/13A6AkJ4ChBB+ApfqkwTvtH7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDKZzhDA0xna4S6O2hOsQ1wzmFt7MB8GA1UdIwQY MBaAFJD8LBLqFwIbqKzgYhiX8IVtrCVZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1B3c0V1b1hBaHVvck9CaUdKZndoVzJzSlZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85NTFiY2UtMjg1MC00OTQzLThmMDAt ZGIyYzU3ZjRlZjE2LzEva1B3c0V1b1hBaHVvck9CaUdKZndoVzJzSlZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi85NTFiY2UtMjg1MC00OTQzLThmMDAtZGIyYzU3ZjRlZjE2 LzEva1B3c0V1b1hBaHVvck9CaUdKZndoVzJzSlZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMtEfbYtR bdWezUW9G3yHQYOxqXdYBLZU8Nr7Qn+AKmkB+YXMsrYqognL0U5lB4CUXHgr0iYU vRgmADNTZapM7OM0CajHNUzbRg9jijUZMFFyqXCcOrQzKlajxp47RcYvNYXDYnHE c2H0fN/mqfdNOHztrRt61KRv3N6LyPWlMqcQJhhwm299BUbSZi/Qm2B8Ud84Ww5c BSo1Msx9nFLW3KyUtF4q+mS9jFNTxdv48eLHysbeSnBSAPIEfHPf+F1Xvfpl+46S rklLs0I6f5pj8TZ4k9m0LciuF71S1jEM72Gw6kEY/cpYVBT2Yxwc2kc0+INjceph 3FXGW7xbkx4rnw== -----END CERTIFICATE-----Generated at Tue Jan 27 03:55:53 2026 by rpki-client