This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json) Hash identifier: ti9tODo6U08Q/JqZAknNBfgs/g0ArzbxhUm4+x38mpw= Subject key identifier: 87:5A:E7:E2:58:C9:99:23:7E:E8:DA:21:82:2A:26:D9:D8:79:BA:5C Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Certificate serial: 019BCF0C3889600CB594554904FC2A5C2DDA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft Manifest number: 0BDC Signing time: Sun 18 Jan 2026 03:00:43 +0000 Manifest this update: Sun 18 Jan 2026 03:00:43 +0000 Manifest next update: Mon 19 Jan 2026 03:00:43 +0000 Files and hashes: 1: Ewp2Al5ax1LZmRmmNwpqPtsvCR8.roa (hash: PsSncA5sbwhm+qYpwUvXOsucHxELXyU7nMC4Byz/38I=) 2: NiXEkFa2OyOUnxfMEcQON6yPoNg.roa (hash: dVvuF0RyYBJRRTECbqhrE8YUyCue+Lh92GIKr6FebqU=) 3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: rzjp6ORP7QJlhLT8fj0HaOEit4yvCey/85CMl30bcRY=) 4: gQD3MU7TBpEiOjF9SqTJkR2Y3Hk.roa (hash: yBwTOvwiLlTbqshsC+5AZzg1Ya/CKAPiEghYIW9dRIk=) 5: q_r4ijQpjXZ8n9KPTw-0C5wgwwQ.roa (hash: zq7FtPgWzADBU+GCudKPhOXhQRXlPBFiAI7EZtoOa+g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 03:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:cf:0c:38:89:60:0c:b5:94:55:49:04:fc:2a:5c:2d:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Validity Not Before: Jan 18 03:00:43 2026 GMT Not After : Jan 19 03:00:43 2026 GMT Subject: CN=875ae7e258c999237ee8da21822a26d9d879ba5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:61:12:e5:ad:a1:ee:db:05:7b:fa:1b:28:1d: 3a:ef:c1:ad:62:65:48:eb:3f:8d:42:a9:e0:c0:cb: f9:4c:15:a8:96:27:50:29:57:50:0c:bf:c3:3b:0e: 01:9c:b1:3a:16:d2:1e:25:85:2f:9a:81:0e:07:e4: d1:28:e8:a6:02:ef:b8:82:f3:f6:d8:0d:47:0a:36: 65:a4:83:cb:67:73:b6:52:ab:e8:2e:80:72:e0:95: da:32:39:4d:30:f6:59:62:a9:7e:af:2c:cc:c6:0c: 2c:57:88:ab:7e:dd:fb:3a:b8:18:68:bc:a1:4c:2e: 05:a4:89:d1:a3:9e:76:5d:76:9f:03:9a:90:f4:73: d6:89:2e:04:22:13:01:ce:c2:48:24:35:3f:a5:70: 11:15:c6:50:fe:05:80:17:fb:9f:11:fa:fe:c4:f1: 06:e2:47:44:72:b2:02:de:f1:45:08:b3:83:73:01: 61:80:b5:0c:25:a6:d5:3d:59:13:8d:09:ef:c3:d9: d2:98:1d:47:6c:73:0e:47:4e:40:f2:35:e3:d4:01: 77:f5:bf:b3:9e:9f:cf:1a:42:07:45:51:d2:e3:33: 45:07:7b:73:89:e5:9a:63:25:01:6b:1f:86:f1:14: e4:02:5d:13:73:18:d2:bf:3c:46:c3:8e:27:5d:2f: b2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5A:E7:E2:58:C9:99:23:7E:E8:DA:21:82:2A:26:D9:D8:79:BA:5C X509v3 Authority Key Identifier: keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:6d:fc:af:83:e0:1c:bf:72:d2:6d:26:d3:8a:eb:f4:95:cc: d1:eb:c3:85:f2:1c:e1:01:6a:0b:87:f8:1a:e8:e2:af:70:32: 59:ba:9b:e8:e4:a5:b5:8c:8b:3d:21:78:40:01:01:ac:92:30: a8:cf:cb:6f:23:f9:53:46:97:ee:f3:ca:53:ea:6f:bc:0b:4c: 65:5e:3a:10:b3:e3:0f:de:0f:c7:02:ad:ea:50:f5:58:3b:8f: 97:a6:1c:6d:64:e5:31:cd:ae:9e:e4:73:8c:b1:09:3a:d4:ea: 64:fc:fd:77:ac:7a:25:ec:1e:63:fa:e3:0d:f3:5b:e7:c4:34: 8d:b8:89:86:e5:e1:cd:65:5a:ee:1f:03:04:eb:63:1f:66:a8: 7a:8c:1f:4a:f0:84:fe:e3:c1:33:b1:92:3c:a0:3a:8d:7c:7a: a3:03:9c:d5:ff:4c:7b:05:c2:ca:5c:f7:1b:3f:f4:4e:14:54: c9:f2:7e:e4:30:a3:f8:49:99:11:b2:9d:eb:a8:0f:60:87:76: bf:71:f2:93:86:40:50:3a:50:01:37:2c:d1:91:53:e3:95:7e: 63:43:a6:7b:85:20:44:58:be:0d:f7:fc:d3:eb:28:8c:14:18: bd:66:34:e1:32:68:4f:6a:99:89:23:9a:27:fb:49:93:41:e7: bf:8a:49:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvPDDiJYAy1lFVJBPwqXC3aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkZjhhNDBjNmEyYzY5OTNjOWZiZTgxZGYzZWE3ZGQzNzJm OTZkZWMwHhcNMjYwMTE4MDMwMDQzWhcNMjYwMTE5MDMwMDQzWjAzMTEwLwYDVQQD Eyg4NzVhZTdlMjU4Yzk5OTIzN2VlOGRhMjE4MjJhMjZkOWQ4NzliYTVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWES5a2h7tsFe/obKB0678GtYmVI 6z+NQqngwMv5TBWolidQKVdQDL/DOw4BnLE6FtIeJYUvmoEOB+TRKOimAu+4gvP2 2A1HCjZlpIPLZ3O2UqvoLoBy4JXaMjlNMPZZYql+ryzMxgwsV4irft37OrgYaLyh TC4FpInRo552XXafA5qQ9HPWiS4EIhMBzsJIJDU/pXARFcZQ/gWAF/ufEfr+xPEG 4kdEcrIC3vFFCLODcwFhgLUMJabVPVkTjQnvw9nSmB1HbHMOR05A8jXj1AF39b+z np/PGkIHRVHS4zNFB3tzieWaYyUBax+G8RTkAl0TcxjSvzxGw44nXS+yawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIda5+JYyZkjfujaIYIqJtnYebpcMB8GA1UdIwQY MBaAFD34pAxqLGmTyfvoHfPqfdNy+W3sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2Yt ODk1YTVhMzkyNDM4LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2YtODk1YTVhMzkyNDM4 LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg238r4Pg HL9y0m0m04rr9JXM0evDhfIc4QFqC4f4Gujir3AyWbqb6OSltYyLPSF4QAEBrJIw qM/LbyP5U0aX7vPKU+pvvAtMZV46ELPjD94PxwKt6lD1WDuPl6YcbWTlMc2unuRz jLEJOtTqZPz9d6x6JeweY/rjDfNb58Q0jbiJhuXhzWVa7h8DBOtjH2aoeowfSvCE /uPBM7GSPKA6jXx6owOc1f9MewXCylz3Gz/0ThRUyfJ+5DCj+EmZEbKd66gPYId2 v3Hyk4ZAUDpQATcs0ZFT45V+Y0Ome4UgRFi+Dff80+sojBQYvWY04TJoT2qZiSOa J/tJk0Hnv4pJQQ== -----END CERTIFICATE-----Generated at Sun Jan 18 10:09:12 2026 by rpki-client