This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
File: kPwsEuoXAhuorOBiGJfwhW2sJVk.mft (raw, json)
Hash identifier: 1ZsVPP4/SWWnLswJoeVGq9XWsJiUp3zI/9W+egVX9p0=
Subject key identifier: 32:99:CE:10:C0:D3:19:DA:E1:2E:8E:DA:13:AC:43:5C:33:98:5B:7B
Authority key identifier: 90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59
Certificate issuer: /CN=90fc2c12ea17021ba8ace0621897f0856dac2559
Certificate serial: 019BFB4065866E6F4420F0EF3D5DBFDD8093
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
Manifest number: 0765
Signing time: Mon 26 Jan 2026 17:01:00 +0000
Manifest this update: Mon 26 Jan 2026 17:01:00 +0000
Manifest next update: Tue 27 Jan 2026 17:01:00 +0000
Files and hashes: 1: 41FDoFH6M2is1lsICkgfh5ITDqc.roa (hash: EewgyLxSVnO+QoRL7ntY20ccJSFgs1pW1bzWTclj1yE=)
2: BRDlyqeJrmrBAcGjXwsME96B8FA.roa (hash: jjDNz/Y1cZhGq2xfdDGq/oEMuXVbmPo8+lz5IqqCETc=)
3: kPwsEuoXAhuorOBiGJfwhW2sJVk.crl (hash: uHqA1+5nJWGW1nQ4HMgInNi9O92A5n+yjbNx+u4LiS8=)
4: nXsgPSU5eo-g-H5HVGkbUxzs-M0.roa (hash: bHUY+9ATlshHA4NGy9V8O1pXq9p6uilZoEQtRA9DmuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 27 Jan 2026 17:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:fb:40:65:86:6e:6f:44:20:f0:ef:3d:5d:bf:dd:80:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90fc2c12ea17021ba8ace0621897f0856dac2559
Validity
Not Before: Jan 26 17:01:00 2026 GMT
Not After : Jan 27 17:01:00 2026 GMT
Subject: CN=3299ce10c0d319dae12e8eda13ac435c33985b7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3b:d3:86:0c:10:66:f4:73:cb:cd:62:e3:58:
9b:47:13:36:68:de:63:9d:45:52:dc:22:aa:ba:bd:
24:95:96:bb:b2:04:bd:72:d3:b4:3a:cd:c4:50:7a:
78:70:34:21:ba:6a:8f:d4:03:34:fb:cc:c7:b9:92:
68:8c:52:50:ac:2b:5e:98:fb:34:ac:85:b0:e5:fe:
72:d6:7c:78:c7:7e:79:c1:9e:b8:80:5e:7b:e2:17:
91:92:d6:c3:d3:bd:31:08:c9:df:18:97:78:b1:7d:
59:ff:25:4e:16:3e:96:49:bf:f6:41:80:1e:be:3d:
bd:25:ff:25:9c:3a:5b:5f:b3:8d:f4:53:5c:a7:56:
60:b3:2e:3f:bc:0a:8f:76:e4:2f:20:89:41:81:05:
6d:ec:68:53:b1:80:bf:70:10:cf:11:64:f6:2c:b7:
10:b6:f7:29:db:9c:33:93:a8:cd:49:a6:7c:06:d7:
87:be:ec:c2:7c:38:10:b8:d5:6f:f2:b9:30:88:0f:
52:23:d5:32:5b:4b:62:9d:cb:bd:c1:c7:fc:16:23:
10:eb:8e:4b:b7:58:56:dd:c5:90:e3:d2:95:70:d9:
61:9a:b3:1d:c8:b9:41:53:d7:f5:5a:34:43:ff:5d:
c0:e8:09:09:e0:28:41:07:e0:29:7e:a9:30:4e:fb:
47:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:99:CE:10:C0:D3:19:DA:E1:2E:8E:DA:13:AC:43:5C:33:98:5B:7B
X509v3 Authority Key Identifier:
keyid:90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:d1:1f:6d:8b:51:6d:d5:9e:cd:45:bd:1b:7c:87:41:83:b1:
a9:77:58:04:b6:54:f0:da:fb:42:7f:80:2a:69:01:f9:85:cc:
b2:b6:2a:a2:09:cb:d1:4e:65:07:80:94:5c:78:2b:d2:26:14:
bd:18:26:00:33:53:65:aa:4c:ec:e3:34:09:a8:c7:35:4c:db:
46:0f:63:8a:35:19:30:51:72:a9:70:9c:3a:b4:33:2a:56:a3:
c6:9e:3b:45:c6:2f:35:85:c3:62:71:c4:73:61:f4:7c:df:e6:
a9:f7:4d:38:7c:ed:ad:1b:7a:d4:a4:6f:dc:de:8b:c8:f5:a5:
32:a7:10:26:18:70:9b:6f:7d:05:46:d2:66:2f:d0:9b:60:7c:
51:df:38:5b:0e:5c:05:2a:35:32:cc:7d:9c:52:d6:dc:ac:94:
b4:5e:2a:fa:64:bd:8c:53:53:c5:db:f8:f1:e2:c7:ca:c6:de:
4a:70:52:00:f2:04:7c:73:df:f8:5d:57:bd:fa:65:fb:8e:92:
ae:49:4b:b3:42:3a:7f:9a:63:f1:36:78:93:d9:b4:2d:c8:ae:
17:bd:52:d6:31:0c:ef:61:b0:ea:41:18:fd:ca:58:54:14:f6:
63:1c:1c:da:47:34:f8:83:63:71:ea:61:dc:55:c6:5b:bc:5b:
93:1e:2b:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 27 03:55:53 2026 by rpki-client