This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json) Hash identifier: rwOUKGrB1TAaMsKM24g5cuup3tt0X4+YN20lGyD0rJk= Subject key identifier: A5:14:5D:59:72:23:39:F1:A2:1A:B9:6A:E6:40:C4:6B:5D:CF:31:34 Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d Certificate serial: 019BFD2EEFF81796D5843BF6AE772FA29B3B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft Manifest number: 0399 Signing time: Tue 27 Jan 2026 02:01:10 +0000 Manifest this update: Tue 27 Jan 2026 02:01:10 +0000 Manifest next update: Wed 28 Jan 2026 02:01:10 +0000 Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: KfWCMkL2V+uR88D/eux6VJVfeCTlM7jG5u1xZrnI65k=) 2: rk1bcafZ-NbbUdZCLT9lMRUYm-I.roa (hash: 5haE3uSWqoSmkVp2C59/CSPiEElkrF1oivdNjZDrJeE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:2e:ef:f8:17:96:d5:84:3b:f6:ae:77:2f:a2:9b:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d Validity Not Before: Jan 27 02:01:10 2026 GMT Not After : Jan 28 02:01:10 2026 GMT Subject: CN=a5145d59722339f1a21ab96ae640c46b5dcf3134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:1e:50:8e:c8:87:21:dd:16:16:ae:9f:a6:2e: 39:2b:ae:f8:04:4b:8a:32:08:ab:85:e5:61:ee:d1: ac:70:6d:b6:28:02:5c:cc:9d:f2:bf:33:cf:fc:ca: 47:ab:6a:63:33:de:5e:b2:1d:62:e5:3d:21:e6:c9: aa:27:dd:b4:9c:b6:98:4a:79:83:fe:24:c8:dd:06: 0e:f0:74:e6:61:ec:ea:79:f1:66:b7:7f:e8:f0:27: 39:f9:33:60:47:e0:10:07:ee:28:d5:13:61:d8:96: f2:1f:c1:9b:82:b8:cc:1d:8e:99:fd:be:80:aa:cb: 4c:49:99:88:53:91:b0:39:24:f3:b3:e8:32:8b:5f: a1:36:db:a4:07:fa:7b:3f:e1:65:bb:02:49:1f:6d: d5:b3:bd:c6:f2:e8:52:04:39:34:fc:41:ab:a5:2a: d2:d6:bd:59:bc:e9:56:15:62:d9:b9:59:33:9e:97: d8:b6:77:d7:b3:8f:82:68:1e:69:2f:e0:0d:fa:66: 76:e8:de:17:dc:f8:0c:62:99:fe:72:49:f2:23:cc: 74:7e:e9:52:2e:9e:4a:03:05:06:47:f6:78:e5:e7: d2:3f:5f:51:9d:54:f4:25:c6:f4:29:a9:8e:23:22: 8f:87:29:dd:ef:76:8f:92:54:ce:07:5f:05:0d:6d: 26:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:14:5D:59:72:23:39:F1:A2:1A:B9:6A:E6:40:C4:6B:5D:CF:31:34 X509v3 Authority Key Identifier: keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:62:63:fa:25:ec:77:80:44:74:e4:94:bc:a5:80:e4:3a:73: 1b:b5:40:6b:57:c2:52:ac:7c:5c:e1:eb:a7:62:fc:2e:e1:1c: 07:18:5d:47:1b:ce:7e:64:53:08:3e:4b:ab:fc:a0:02:d1:69: 90:4e:8f:7d:b4:cc:01:9e:96:ae:15:6c:9f:d0:33:6c:af:87: b0:98:75:07:b8:4e:f6:14:a0:0b:d1:46:7e:c3:0e:15:d8:40: f6:7b:12:74:a5:64:74:73:db:bb:f3:97:a3:ef:74:a6:e7:d5: 0a:40:f5:d4:ff:d8:ef:9f:a4:1c:cb:b4:cf:e5:b9:ac:e1:71: e6:bc:c9:a4:ce:f0:d4:bb:5d:3b:04:1f:c6:a3:98:ec:7d:e5: 6b:72:e9:bb:6c:59:0b:8e:71:3b:12:99:be:d4:a5:8c:8f:3c: 8b:a5:d6:47:19:95:40:0c:07:a1:b5:c7:de:d5:88:b8:c7:0c: 3a:7b:ee:06:4b:73:2b:7e:42:2d:a9:74:f9:cf:c6:9e:53:32: e7:ea:82:d8:e0:f6:9e:92:bc:87:8a:1d:89:cf:56:ef:27:28: 6e:12:c9:10:1d:25:89:63:69:bf:ec:50:70:7a:69:e6:63:a3: 9f:08:f3:aa:51:b0:36:32:0a:54:8e:18:6d:2b:bd:ee:be:28: d3:df:5b:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9Lu/4F5bVhDv2rncvops7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NjljYjIxNTYzZTI2ZWRiNmFmYjIwZDFkOTJlODkzYThk ZGI4MWQwHhcNMjYwMTI3MDIwMTEwWhcNMjYwMTI4MDIwMTEwWjAzMTEwLwYDVQQD EyhhNTE0NWQ1OTcyMjMzOWYxYTIxYWI5NmFlNjQwYzQ2YjVkY2YzMTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7R5QjsiHId0WFq6fpi45K674BEuK MgirheVh7tGscG22KAJczJ3yvzPP/MpHq2pjM95esh1i5T0h5smqJ920nLaYSnmD /iTI3QYO8HTmYezqefFmt3/o8Cc5+TNgR+AQB+4o1RNh2JbyH8GbgrjMHY6Z/b6A qstMSZmIU5GwOSTzs+gyi1+hNtukB/p7P+FluwJJH23Vs73G8uhSBDk0/EGrpSrS 1r1ZvOlWFWLZuVkznpfYtnfXs4+CaB5pL+AN+mZ26N4X3PgMYpn+cknyI8x0fulS Lp5KAwUGR/Z45efSP19RnVT0Jcb0KamOIyKPhynd73aPklTOB18FDW0mmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKUUXVlyIznxohq5auZAxGtdzzE0MB8GA1UdIwQY MBaAFAlpyyFWPibttq+yDR2S6JOo3bgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQt MzYwMGQwMmE2ZjBlLzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQtMzYwMGQwMmE2ZjBl LzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFmJj+iXs d4BEdOSUvKWA5DpzG7VAa1fCUqx8XOHrp2L8LuEcBxhdRxvOfmRTCD5Lq/ygAtFp kE6PfbTMAZ6WrhVsn9AzbK+HsJh1B7hO9hSgC9FGfsMOFdhA9nsSdKVkdHPbu/OX o+90pufVCkD11P/Y75+kHMu0z+W5rOFx5rzJpM7w1LtdOwQfxqOY7H3la3Lpu2xZ C45xOxKZvtSljI88i6XWRxmVQAwHobXH3tWIuMcMOnvuBktzK35CLal0+c/GnlMy 5+qC2OD2npK8h4odic9W7ycobhLJEB0liWNpv+xQcHpp5mOjnwjzqlGwNjIKVI4Y bSu97r4o099bFw== -----END CERTIFICATE-----Generated at Tue Jan 27 10:00:39 2026 by rpki-client