This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json) Hash identifier: oOtzr7JWk8+gpOMLELNTsRL1thFyFXP7r1sZ7dh/XR0= Subject key identifier: 91:22:CC:21:FF:E5:A8:CE:EE:4D:3E:53:83:8A:E3:52:51:83:D1:5B Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67 Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67 Certificate serial: 019BFD2EC59F9CB4F9AE0618118D9F1C4D8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft Manifest number: 0DD1 Signing time: Tue 27 Jan 2026 02:00:59 +0000 Manifest this update: Tue 27 Jan 2026 02:00:59 +0000 Manifest next update: Wed 28 Jan 2026 02:00:59 +0000 Files and hashes: 1: GEk2YBzVV2gm-LB4E-0QcSjlOaw.roa (hash: 6ltbKXfP63Sbrv2a4WDFBu+kJMReN4SiNF3HfveZocU=) 2: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: QBuiRTslgxP8bOWVxYIabkknQRzPLBwmu6f89s62s74=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:2e:c5:9f:9c:b4:f9:ae:06:18:11:8d:9f:1c:4d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67 Validity Not Before: Jan 27 02:00:59 2026 GMT Not After : Jan 28 02:00:59 2026 GMT Subject: CN=9122cc21ffe5a8ceee4d3e53838ae3525183d15b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ac:e4:12:de:63:18:9d:1d:36:53:8f:0b:c4: 55:26:1e:02:b4:3b:a4:aa:81:58:27:8b:32:4a:cd: 26:33:e8:5a:4f:45:57:f1:2b:7b:3b:1c:97:3c:7f: 3f:d6:b1:ea:21:db:e1:e9:5e:00:50:b1:c4:e4:0a: de:57:fd:d5:60:d7:1f:ae:54:c6:cb:a6:ad:0b:a9: 06:e0:83:5d:d6:23:e2:d2:2f:d0:d0:4e:5f:02:1d: 2a:c7:2b:e3:c2:6b:ea:a4:2d:a7:18:e6:20:e9:dd: d7:de:55:4c:af:62:6e:67:bd:9b:35:d9:a2:eb:be: 4f:ce:b7:4c:5d:61:00:aa:db:65:07:44:5a:65:79: 91:6a:bc:a4:46:b2:4e:a6:7b:7b:bf:98:bf:5b:2d: 23:85:5e:10:9d:41:c6:3e:57:55:bd:72:a3:5a:46: ca:2c:bc:dd:a1:60:e8:5d:84:63:c5:c1:29:01:d0: dc:05:61:30:f5:8b:15:a7:07:ce:6d:12:36:3b:b3: fe:3a:38:d7:17:d9:17:f2:e7:90:cb:57:dc:64:8a: ca:2d:7f:74:20:91:25:25:d1:aa:da:c2:1f:07:eb: ba:75:89:83:53:a0:96:62:5f:63:3d:91:53:dc:a0: bd:0e:50:81:21:cf:87:9f:a1:55:23:6f:95:8f:05: e3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:22:CC:21:FF:E5:A8:CE:EE:4D:3E:53:83:8A:E3:52:51:83:D1:5B X509v3 Authority Key Identifier: keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:c3:4f:ac:23:c7:ca:b7:c2:b7:e6:35:4a:78:76:72:92:8e: 84:66:17:5f:a4:81:f2:bc:f8:d8:d3:f8:f9:d4:3f:09:68:51: 70:b7:65:db:6a:44:3b:e1:79:f5:7e:72:bd:a8:68:2a:70:80: 4e:69:91:76:09:77:86:c4:42:29:3c:73:90:d7:d7:ee:ba:fd: 20:d3:8d:cf:d2:84:f8:e9:6f:a7:ee:87:97:3c:a7:53:b8:8c: 92:6b:5d:5e:3c:a4:35:3a:34:93:8c:76:4d:ce:d8:a8:2a:54: da:e1:cf:25:bb:96:a6:0d:9f:a9:58:55:a6:18:68:bd:87:6f: 48:f8:44:fb:30:a5:7e:73:6a:5e:6d:52:4b:aa:26:6b:f4:f3: 44:04:a5:2d:a3:01:96:0f:ae:0b:ae:a5:51:3d:5d:58:3e:d0: 09:54:16:d0:d6:bf:83:f0:59:db:dc:d3:52:c6:e5:1a:74:68: 0b:14:10:9a:18:a0:7b:05:85:80:38:86:27:e2:56:3f:c4:14: 84:37:02:57:61:25:13:59:8f:73:46:b2:77:2a:74:e7:8a:9a: 31:30:78:2d:fe:2e:2a:37:c0:f2:d1:f7:26:92:df:8c:58:8a: f4:9d:e2:10:21:02:be:d1:50:58:89:06:c7:58:c3:a6:6c:81: ff:ea:3d:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9LsWfnLT5rgYYEY2fHE2KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2MjZiOWU0NDQ2NWYwYmQ3MTNjMGExZTA1MDEwM2QzOTEx ZGNkNjcwHhcNMjYwMTI3MDIwMDU5WhcNMjYwMTI4MDIwMDU5WjAzMTEwLwYDVQQD Eyg5MTIyY2MyMWZmZTVhOGNlZWU0ZDNlNTM4MzhhZTM1MjUxODNkMTViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsazkEt5jGJ0dNlOPC8RVJh4CtDuk qoFYJ4sySs0mM+haT0VX8St7OxyXPH8/1rHqIdvh6V4AULHE5AreV/3VYNcfrlTG y6atC6kG4INd1iPi0i/Q0E5fAh0qxyvjwmvqpC2nGOYg6d3X3lVMr2JuZ72bNdmi 675PzrdMXWEAqttlB0RaZXmRarykRrJOpnt7v5i/Wy0jhV4QnUHGPldVvXKjWkbK LLzdoWDoXYRjxcEpAdDcBWEw9YsVpwfObRI2O7P+OjjXF9kX8ueQy1fcZIrKLX90 IJElJdGq2sIfB+u6dYmDU6CWYl9jPZFT3KC9DlCBIc+Hn6FVI2+VjwXjxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJEizCH/5ajO7k0+U4OK41JRg9FbMB8GA1UdIwQY MBaAFDYmueREZfC9cTwKHgUBA9ORHc1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8wMjJhZjUtODYyYy00MjhlLWJlZTgt MjhhNDY4MWMzN2Q2LzEvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8wMjJhZjUtODYyYy00MjhlLWJlZTgtMjhhNDY4MWMzN2Q2 LzEvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqsNPrCPH yrfCt+Y1Snh2cpKOhGYXX6SB8rz42NP4+dQ/CWhRcLdl22pEO+F59X5yvahoKnCA TmmRdgl3hsRCKTxzkNfX7rr9INONz9KE+Olvp+6HlzynU7iMkmtdXjykNTo0k4x2 Tc7YqCpU2uHPJbuWpg2fqVhVphhovYdvSPhE+zClfnNqXm1SS6oma/TzRASlLaMB lg+uC66lUT1dWD7QCVQW0Na/g/BZ29zTUsblGnRoCxQQmhigewWFgDiGJ+JWP8QU hDcCV2ElE1mPc0aydyp054qaMTB4Lf4uKjfA8tH3JpLfjFiK9J3iECECvtFQWIkG x1jDpmyB/+o9bA== -----END CERTIFICATE-----Generated at Tue Jan 27 09:59:43 2026 by rpki-client