This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft File: CgIUob8dOv0t1msjqZcxBrXTFso.mft (raw, json) Hash identifier: auZh43JfmgOj5ajCvLxGH/sFtlhzbNsz6eob2l2xSKg= Subject key identifier: 3D:6F:7B:5F:1F:93:3F:8E:37:4D:0B:34:E2:1E:B5:2E:57:BE:70:92 Authority key identifier: 0A:02:14:A1:BF:1D:3A:FD:2D:D6:6B:23:A9:97:31:06:B5:D3:16:CA Certificate issuer: /CN=0a0214a1bf1d3afd2dd66b23a9973106b5d316ca Certificate serial: 019BD5467BC527F7F9562B7C2CCD37E670DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft Manifest number: 12B9 Signing time: Mon 19 Jan 2026 08:02:04 +0000 Manifest this update: Mon 19 Jan 2026 08:02:04 +0000 Manifest next update: Tue 20 Jan 2026 08:02:04 +0000 Files and hashes: 1: CgIUob8dOv0t1msjqZcxBrXTFso.crl (hash: ML6FPhh3Iztm+O4d9S/8prc/ApSK5wO5lonvW0BXYPg=) 2: Kr82PzCvD4Fk7jNwoZ0-iCZtxTE.roa (hash: XM1J6jO/D+cqiYMXDlDXyv/SlFsPZ20nk+XVsCUihVk=) 3: cENwAzhw60-ikgeBP0Wk-X-TPRQ.roa (hash: WKFy5CgMQiAy0y2WtEt+U7yH6EI/ABaKojXrx+8izJQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d5:46:7b:c5:27:f7:f9:56:2b:7c:2c:cd:37:e6:70:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a0214a1bf1d3afd2dd66b23a9973106b5d316ca Validity Not Before: Jan 19 08:02:04 2026 GMT Not After : Jan 20 08:02:04 2026 GMT Subject: CN=3d6f7b5f1f933f8e374d0b34e21eb52e57be7092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c1:77:75:3c:64:04:71:30:c5:5a:a8:6a:7d: c5:70:42:78:b8:b0:62:a2:d2:1f:8a:74:5c:8a:1d: 71:e2:82:f9:fa:ee:28:e1:e9:35:ce:8b:1d:9c:e3: 44:8a:41:8c:a1:0b:1f:e2:42:49:c8:e1:30:9d:ea: 3f:5d:39:5d:c9:59:2c:35:c0:26:5d:8a:0d:5b:59: 75:5a:6d:cd:e5:8f:de:12:a4:de:1e:fd:c1:8d:6d: dc:a6:86:a9:b6:93:9a:36:d5:a8:fe:93:d0:5a:90: 21:8c:77:ee:de:0d:14:a8:62:f6:d8:69:65:b1:49: 4e:38:57:4e:5e:28:1d:e3:77:f1:bc:73:ba:4b:02: a4:f3:93:cd:33:ab:14:6d:a5:d6:4f:f5:ea:d6:79: 04:e2:ba:19:2a:37:bb:0d:f4:3e:b9:da:a2:7e:67: 98:77:8a:e6:58:cd:d6:ed:09:37:0d:a9:f4:9e:26: fc:0f:f8:f2:16:e9:02:84:47:a4:c8:16:92:b3:8b: 28:39:9a:fd:64:31:8b:ca:b4:a8:d8:da:79:7f:47: 22:73:30:bc:8e:5b:af:27:6b:81:f5:e1:0c:9f:1a: a1:c0:82:6f:4b:46:d9:77:fa:8e:a3:2a:10:73:1e: 92:94:39:12:99:d8:f2:e7:9a:27:77:12:09:33:b1: 73:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:6F:7B:5F:1F:93:3F:8E:37:4D:0B:34:E2:1E:B5:2E:57:BE:70:92 X509v3 Authority Key Identifier: keyid:0A:02:14:A1:BF:1D:3A:FD:2D:D6:6B:23:A9:97:31:06:B5:D3:16:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CgIUob8dOv0t1msjqZcxBrXTFso.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/04ecc0-663c-460e-920d-332ee5425c7a/1/CgIUob8dOv0t1msjqZcxBrXTFso.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:09:d7:f4:69:0e:18:ef:40:0e:b5:a6:29:42:c8:22:2a:35: 66:9f:eb:25:08:01:39:86:f1:f7:a5:ff:57:59:8c:63:81:0c: 8c:d0:93:cb:e4:c8:a4:df:22:48:92:df:f5:01:dc:28:5e:20: 98:9b:e0:6b:05:ba:a2:5e:df:69:86:d0:58:e5:f9:e7:d1:a6: be:bf:21:d3:82:6f:a8:6b:33:57:a9:54:9c:36:d1:19:93:b6: 87:42:18:0e:0a:38:f1:42:1c:aa:7d:b1:c0:c2:78:8b:78:a8: 41:48:67:73:da:d5:f6:8b:37:65:dd:20:65:da:13:e9:c9:1b: 12:00:8b:22:3a:95:57:1b:04:1b:3f:a4:4e:63:4d:eb:7c:c8: af:5c:b7:7a:21:da:97:fa:47:54:53:6e:0b:d3:20:55:0d:c2: b0:f8:a2:99:bb:2c:4c:c2:e3:29:2f:78:7d:6b:9c:1b:d1:07: 05:ff:1b:52:51:17:71:05:cd:41:df:91:8b:d8:0c:db:15:44: 95:14:af:c3:50:7a:f1:b4:6d:d4:5e:92:bc:39:6c:1b:18:f7: b2:79:80:6a:69:db:cd:6d:b9:52:e2:01:e2:ba:0f:75:37:51: 47:07:b3:05:11:53:6c:1d:bd:b3:cf:05:6c:93:c0:82:34:07: 5c:d1:12:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvVRnvFJ/f5Vit8LM035nDcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhMDIxNGExYmYxZDNhZmQyZGQ2NmIyM2E5OTczMTA2YjVk MzE2Y2EwHhcNMjYwMTE5MDgwMjA0WhcNMjYwMTIwMDgwMjA0WjAzMTEwLwYDVQQD EygzZDZmN2I1ZjFmOTMzZjhlMzc0ZDBiMzRlMjFlYjUyZTU3YmU3MDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8F3dTxkBHEwxVqoan3FcEJ4uLBi otIfinRcih1x4oL5+u4o4ek1zosdnONEikGMoQsf4kJJyOEwneo/XTldyVksNcAm XYoNW1l1Wm3N5Y/eEqTeHv3BjW3cpoaptpOaNtWo/pPQWpAhjHfu3g0UqGL22Gll sUlOOFdOXigd43fxvHO6SwKk85PNM6sUbaXWT/Xq1nkE4roZKje7DfQ+udqifmeY d4rmWM3W7Qk3Dan0nib8D/jyFukChEekyBaSs4soOZr9ZDGLyrSo2Np5f0ciczC8 jluvJ2uB9eEMnxqhwIJvS0bZd/qOoyoQcx6SlDkSmdjy55ondxIJM7FzBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD1ve18fkz+ON00LNOIetS5XvnCSMB8GA1UdIwQY MBaAFAoCFKG/HTr9LdZrI6mXMQa10xbKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2dJVW9iOGRPdjB0MW1zanFaY3hCclhURnNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS8wNGVjYzAtNjYzYy00NjBlLTkyMGQt MzMyZWU1NDI1YzdhLzEvQ2dJVW9iOGRPdjB0MW1zanFaY3hCclhURnNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS8wNGVjYzAtNjYzYy00NjBlLTkyMGQtMzMyZWU1NDI1Yzdh LzEvQ2dJVW9iOGRPdjB0MW1zanFaY3hCclhURnNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABwnX9GkO GO9ADrWmKULIIio1Zp/rJQgBOYbx96X/V1mMY4EMjNCTy+TIpN8iSJLf9QHcKF4g mJvgawW6ol7faYbQWOX559Gmvr8h04JvqGszV6lUnDbRGZO2h0IYDgo48UIcqn2x wMJ4i3ioQUhnc9rV9os3Zd0gZdoT6ckbEgCLIjqVVxsEGz+kTmNN63zIr1y3eiHa l/pHVFNuC9MgVQ3CsPiimbssTMLjKS94fWucG9EHBf8bUlEXcQXNQd+Ri9gM2xVE lRSvw1B68bRt1F6SvDlsGxj3snmAamnbzW25UuIB4roPdTdRRwezBRFTbB29s88F bJPAgjQHXNES+Q== -----END CERTIFICATE-----Generated at Mon Jan 19 19:02:21 2026 by rpki-client