This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft File: tPSWmNCOjCg8DfKoLxaZfmJZurY.mft (raw, json) Hash identifier: mEXmhWYTxdksOCOPoFPTYMnYVW4+VIkUUy7rzvXU49E= Subject key identifier: 1B:73:78:B6:75:40:04:43:E4:F7:6A:F1:0C:08:2B:74:C2:CD:8B:25 Authority key identifier: B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6 Certificate issuer: /CN=b4f49698d08e8c283c0df2a82f16997e6259bab6 Certificate serial: 019BFDD41D93EE713BCE056E5758E8F6A363 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft Manifest number: 09B9 Signing time: Tue 27 Jan 2026 05:01:35 +0000 Manifest this update: Tue 27 Jan 2026 05:01:35 +0000 Manifest next update: Wed 28 Jan 2026 05:01:35 +0000 Files and hashes: 1: HhEHXcVrA4jYly_4JLZyYZncnvg.roa (hash: 6iTpuhytQNXUI4g8368tGo5DhJ/PIFrnzj+J0UysgLI=) 2: tPSWmNCOjCg8DfKoLxaZfmJZurY.crl (hash: UMeZCqXJDvY2oQCbmtfpJW3iw296HMOP7j2CEBmH76E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:d4:1d:93:ee:71:3b:ce:05:6e:57:58:e8:f6:a3:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4f49698d08e8c283c0df2a82f16997e6259bab6 Validity Not Before: Jan 27 05:01:35 2026 GMT Not After : Jan 28 05:01:35 2026 GMT Subject: CN=1b7378b675400443e4f76af10c082b74c2cd8b25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:86:50:a8:f2:0c:ca:b7:8a:8d:14:76:2e:f0: 96:cb:b9:01:71:68:e8:20:e3:4b:00:84:f5:e1:43: e4:a6:8c:1d:e9:16:15:70:91:90:05:e8:f3:cf:f6: c3:4e:41:4f:59:51:c8:99:41:6f:6e:ae:83:76:88: c3:9d:72:24:21:dc:15:8c:89:ef:ad:66:0f:f3:ba: 4e:9a:21:7e:64:1a:f0:e3:e4:52:70:39:eb:3a:b3: 15:db:26:97:d9:9e:a0:49:8c:a6:3e:b6:e8:5c:e3: 94:3c:54:24:61:98:1e:b0:86:16:64:98:c4:62:77: 13:1d:4b:91:8b:2a:cb:f2:bb:71:27:74:f7:96:a0: 21:fb:8d:5e:2e:1e:9b:8a:5d:ab:a7:89:44:f2:d5: fd:57:ec:0c:81:6c:1f:a7:0a:69:80:17:ac:8f:70: f5:51:8f:23:24:ee:55:7d:72:9d:90:e0:2e:c3:4e: ca:96:c8:3a:f2:8a:6e:cc:2c:b7:a4:64:e2:c9:0a: ee:da:0d:af:09:4d:c4:a6:1c:57:fc:3f:76:e6:e8: 9a:9d:41:68:24:f8:ca:55:34:a0:a8:81:af:78:c4: 08:64:1f:9f:4d:3d:3d:31:cb:d3:82:81:c1:20:74: d0:3e:b6:63:35:75:09:c4:e7:89:8e:e1:a7:f6:1a: 23:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:73:78:B6:75:40:04:43:E4:F7:6A:F1:0C:08:2B:74:C2:CD:8B:25 X509v3 Authority Key Identifier: keyid:B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:13:42:e9:a2:99:19:61:b8:e0:e7:5c:7b:9c:2f:ba:ce:5d: c4:da:9c:f2:a8:bd:42:d5:b4:67:68:de:8e:05:5b:5c:ea:d3: dd:7c:8a:33:44:3a:6a:dc:70:40:df:2a:85:7e:3b:72:29:14: f6:82:12:0e:10:1d:98:27:00:ed:de:d1:6f:fd:6a:0b:53:19: 2f:1c:53:49:90:34:03:7e:4b:84:2c:28:69:4d:71:63:b0:d9: 9c:47:72:c7:cd:d7:83:4a:88:18:1d:f9:63:aa:c3:24:97:2c: c5:89:43:9c:2d:58:19:ce:44:ae:82:52:07:a4:8c:28:60:b8: b4:09:45:5f:a4:65:29:15:0b:89:e6:cc:a9:0f:b6:ec:2d:f7: bd:e6:98:69:15:75:0b:8f:e4:13:d2:ab:01:71:46:3a:dd:ca: b2:3c:1a:1f:2b:4a:88:ac:67:2c:b4:8a:52:5f:41:26:7f:b1: f3:25:1d:1e:61:a7:20:c2:b2:84:55:5c:ae:79:ca:e8:99:b5: ee:1d:37:ed:55:c3:90:10:a9:5e:5e:d1:b9:b1:1c:5f:fd:6c: 06:69:e7:b8:2c:4a:f4:4d:8b:ea:82:00:ff:87:ac:b8:b4:01: 77:db:37:6a:1c:7d:e3:e2:a2:c2:fd:1a:05:cf:a7:54:41:5f: 1c:36:b5:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv91B2T7nE7zgVuV1jo9qNjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0ZjQ5Njk4ZDA4ZThjMjgzYzBkZjJhODJmMTY5OTdlNjI1 OWJhYjYwHhcNMjYwMTI3MDUwMTM1WhcNMjYwMTI4MDUwMTM1WjAzMTEwLwYDVQQD EygxYjczNzhiNjc1NDAwNDQzZTRmNzZhZjEwYzA4MmI3NGMyY2Q4YjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4ZQqPIMyreKjRR2LvCWy7kBcWjo IONLAIT14UPkpowd6RYVcJGQBejzz/bDTkFPWVHImUFvbq6DdojDnXIkIdwVjInv rWYP87pOmiF+ZBrw4+RScDnrOrMV2yaX2Z6gSYymPrboXOOUPFQkYZgesIYWZJjE YncTHUuRiyrL8rtxJ3T3lqAh+41eLh6bil2rp4lE8tX9V+wMgWwfpwppgBesj3D1 UY8jJO5VfXKdkOAuw07Klsg68opuzCy3pGTiyQru2g2vCU3EphxX/D925uianUFo JPjKVTSgqIGveMQIZB+fTT09McvTgoHBIHTQPrZjNXUJxOeJjuGn9hojAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBtzeLZ1QARD5Pdq8QwIK3TCzYslMB8GA1UdIwQY MBaAFLT0lpjQjowoPA3yqC8WmX5iWbq2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9mNjNkNzYtMmZiNi00M2EyLWJmZWMt OWY3YWEwOTQzMDNiLzEvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9mNjNkNzYtMmZiNi00M2EyLWJmZWMtOWY3YWEwOTQzMDNi LzEvdFBTV21OQ09qQ2c4RGZLb0x4YVpmbUpadXJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjxNC6aKZ GWG44Odce5wvus5dxNqc8qi9QtW0Z2jejgVbXOrT3XyKM0Q6atxwQN8qhX47cikU 9oISDhAdmCcA7d7Rb/1qC1MZLxxTSZA0A35LhCwoaU1xY7DZnEdyx83Xg0qIGB35 Y6rDJJcsxYlDnC1YGc5EroJSB6SMKGC4tAlFX6RlKRULiebMqQ+27C33veaYaRV1 C4/kE9KrAXFGOt3KsjwaHytKiKxnLLSKUl9BJn+x8yUdHmGnIMKyhFVcrnnK6Jm1 7h037VXDkBCpXl7RubEcX/1sBmnnuCxK9E2L6oIA/4esuLQBd9s3ahx94+Kiwv0a Bc+nVEFfHDa1HQ== -----END CERTIFICATE-----Generated at Tue Jan 27 09:59:22 2026 by rpki-client