This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft File: sK0iZDwtl71x-LY0-40dT58B9Kc.mft (raw, json) Hash identifier: 3sZ1xK1KQmBWRnCED/ifI8LLr7aAqL1v8TlmSBk146k= Subject key identifier: 4E:2E:80:4C:69:CD:97:C2:B1:6D:16:F5:33:76:C9:B4:5B:72:C1:FD Authority key identifier: B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7 Certificate issuer: /CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7 Certificate serial: 019BF8E4869C892B3CC57B1B4C0FCB9A52FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft Manifest number: 1248 Signing time: Mon 26 Jan 2026 06:01:24 +0000 Manifest this update: Mon 26 Jan 2026 06:01:24 +0000 Manifest next update: Tue 27 Jan 2026 06:01:24 +0000 Files and hashes: 1: h3sE5dxGeAbRDxvt7OESDDknJfw.roa (hash: o8FzyZkryMLyMcYf+Zp1JhuP+yJeZt+99zqw52fdpd8=) 2: sK0iZDwtl71x-LY0-40dT58B9Kc.crl (hash: lcbhK/To8uC7RzZc9684ay9ymXbpKP/ISShacmBvslc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 06:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:e4:86:9c:89:2b:3c:c5:7b:1b:4c:0f:cb:9a:52:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7 Validity Not Before: Jan 26 06:01:24 2026 GMT Not After : Jan 27 06:01:24 2026 GMT Subject: CN=4e2e804c69cd97c2b16d16f53376c9b45b72c1fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:f7:dd:2d:89:9c:8e:d7:70:90:33:01:98:37: 81:85:e8:36:7f:3f:1e:5d:8d:48:bc:66:3f:72:55: 94:28:19:22:78:7d:aa:c5:c1:3c:b5:50:50:9e:27: c8:69:38:6b:6c:49:a9:95:11:68:db:79:ae:d2:76: 22:b8:14:ce:7b:17:61:34:9e:65:4b:c9:e7:c2:06: cc:2c:6b:c5:09:60:52:8e:a7:e0:07:e1:f4:69:77: 76:bb:31:93:b5:3f:8f:76:6b:e1:70:20:36:ec:d1: 49:c6:cc:49:46:a8:99:88:4b:73:13:f7:17:4d:cd: 73:17:6d:96:78:45:8c:80:3a:38:78:49:0e:d5:6a: cb:f3:b0:e3:44:b0:50:89:05:59:c8:7a:c2:16:d9: 5a:ae:c4:d1:61:94:f4:7b:d3:8c:fc:cc:64:5c:0d: ab:61:1a:10:b5:cc:c8:ae:e9:65:a2:53:63:86:75: ca:67:b6:af:01:e9:a1:46:bc:81:d2:5c:a1:40:80: fe:50:d0:36:f7:4a:18:f4:07:4d:6f:14:10:fd:d8: 05:c9:76:b1:71:04:9a:da:71:92:24:6a:44:47:43: 14:2e:91:4c:96:4f:4e:bd:b0:0c:9a:27:e1:9c:b4: df:05:77:cf:d5:9b:0a:e8:ed:45:b7:25:56:0b:fb: 7e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2E:80:4C:69:CD:97:C2:B1:6D:16:F5:33:76:C9:B4:5B:72:C1:FD X509v3 Authority Key Identifier: keyid:B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:03:98:81:1c:46:3f:94:ae:1f:bc:84:82:43:af:43:ea:dc: 32:c8:f1:40:04:6d:3d:11:d7:37:ee:98:38:86:35:50:f9:e6: df:1a:99:fc:57:18:b2:f6:53:e5:fd:6e:30:6e:11:6d:a6:7e: ba:a1:58:0d:3f:67:1e:0d:c1:74:7d:b5:90:11:f3:3e:0e:81: 2e:e0:61:b6:6a:26:f7:52:77:d7:c5:56:72:ac:cf:b8:75:e4: ae:5f:9a:f0:13:8f:3f:1c:4e:59:32:09:ee:19:10:5e:82:6d: eb:6d:25:7d:b5:bd:cf:bf:48:85:27:a5:31:e9:09:57:6e:57: d2:56:90:62:b2:eb:6b:4f:29:90:b9:9a:8a:94:68:eb:02:52: fa:0d:d6:25:7c:04:9b:dd:4a:de:50:73:f9:fa:7c:d9:90:fd: e9:82:07:23:b3:4b:d3:62:f0:27:e3:18:9a:a5:e8:43:02:07: e0:08:90:95:b4:84:6e:37:26:59:c6:ed:e5:1a:97:cf:86:ce: b8:d3:7d:cd:de:67:0a:32:bb:54:56:d0:10:15:d0:53:4e:46: a9:f6:05:5d:e1:ba:76:c5:57:5d:07:21:9a:02:21:3f:74:59: 69:9a:d1:d6:75:39:f4:bf:03:d5:e1:2c:89:42:01:66:71:38: 61:c6:54:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv45IaciSs8xXsbTA/LmlL7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYWQyMjY0M2MyZDk3YmQ3MWY4YjYzNGZiOGQxZDRmOWYw MWY0YTcwHhcNMjYwMTI2MDYwMTI0WhcNMjYwMTI3MDYwMTI0WjAzMTEwLwYDVQQD Eyg0ZTJlODA0YzY5Y2Q5N2MyYjE2ZDE2ZjUzMzc2YzliNDViNzJjMWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiPfdLYmcjtdwkDMBmDeBheg2fz8e XY1IvGY/clWUKBkieH2qxcE8tVBQnifIaThrbEmplRFo23mu0nYiuBTOexdhNJ5l S8nnwgbMLGvFCWBSjqfgB+H0aXd2uzGTtT+PdmvhcCA27NFJxsxJRqiZiEtzE/cX Tc1zF22WeEWMgDo4eEkO1WrL87DjRLBQiQVZyHrCFtlarsTRYZT0e9OM/MxkXA2r YRoQtczIrullolNjhnXKZ7avAemhRryB0lyhQID+UNA290oY9AdNbxQQ/dgFyXax cQSa2nGSJGpER0MULpFMlk9OvbAMmifhnLTfBXfP1ZsK6O1FtyVWC/t+gQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE4ugExpzZfCsW0W9TN2ybRbcsH9MB8GA1UdIwQY MBaAFLCtImQ8LZe9cfi2NPuNHU+fAfSnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0swaVpEd3RsNzF4LUxZMC00MGRUNThCOUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8zMGIzZmYtNzAzNi00YTJlLThlYjUt MDc0ZmZiNDIzYzEzLzEvc0swaVpEd3RsNzF4LUxZMC00MGRUNThCOUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi8zMGIzZmYtNzAzNi00YTJlLThlYjUtMDc0ZmZiNDIzYzEz LzEvc0swaVpEd3RsNzF4LUxZMC00MGRUNThCOUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFAOYgRxG P5SuH7yEgkOvQ+rcMsjxQARtPRHXN+6YOIY1UPnm3xqZ/FcYsvZT5f1uMG4RbaZ+ uqFYDT9nHg3BdH21kBHzPg6BLuBhtmom91J318VWcqzPuHXkrl+a8BOPPxxOWTIJ 7hkQXoJt620lfbW9z79IhSelMekJV25X0laQYrLra08pkLmaipRo6wJS+g3WJXwE m91K3lBz+fp82ZD96YIHI7NL02LwJ+MYmqXoQwIH4AiQlbSEbjcmWcbt5RqXz4bO uNN9zd5nCjK7VFbQEBXQU05GqfYFXeG6dsVXXQchmgIhP3RZaZrR1nU59L8D1eEs iUIBZnE4YcZUWg== -----END CERTIFICATE-----Generated at Mon Jan 26 15:05:05 2026 by rpki-client