This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft File: dAThbzM9iWUMZhOsbJXTSNxLeVA.mft (raw, json) Hash identifier: LAIQ+xmYvIIH7omILg38BtQXUPujpx7K9l6dt1GLF+Q= Subject key identifier: 8A:28:7D:16:2D:D7:84:9C:D5:41:15:DA:5C:29:B0:23:37:20:90:8B Authority key identifier: 74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50 Certificate issuer: /CN=7404e16f333d89650c6613ac6c95d348dc4b7950 Certificate serial: 019BDE7FBC4353799B5E074241B61A6DE285 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft Manifest number: 0366 Signing time: Wed 21 Jan 2026 03:01:11 +0000 Manifest this update: Wed 21 Jan 2026 03:01:11 +0000 Manifest next update: Thu 22 Jan 2026 03:01:11 +0000 Files and hashes: 1: aON68VTwskogSIwfK0by-nZp_Rg.roa (hash: dkh8/Wbv+HTgUBFM4ZbuS+fZuVAjLH6qIB6RVSRMT9M=) 2: dAThbzM9iWUMZhOsbJXTSNxLeVA.crl (hash: qhU+bMijD57ojFw1dSkiv3N6bYoFxIYN6vPsdOUSp1c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 03:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:de:7f:bc:43:53:79:9b:5e:07:42:41:b6:1a:6d:e2:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7404e16f333d89650c6613ac6c95d348dc4b7950 Validity Not Before: Jan 21 03:01:11 2026 GMT Not After : Jan 22 03:01:11 2026 GMT Subject: CN=8a287d162dd7849cd54115da5c29b0233720908b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:7b:cb:fb:38:a5:1a:aa:45:86:b1:7e:e5:de: fb:e9:54:af:c6:29:d3:de:92:2f:9a:ac:03:c5:12: a7:7e:4b:2a:c3:1d:02:d9:a5:da:af:98:44:a6:6a: 21:06:1c:62:5a:87:84:86:ef:61:29:5b:16:55:b7: 13:77:42:f8:7e:51:f8:d3:c3:a1:7a:54:41:4d:db: d9:ac:83:38:80:b3:c4:73:18:9a:98:3d:4b:56:d4: 1d:2d:2f:08:8e:8f:42:dd:cf:48:09:f1:79:21:41: 4f:cf:be:4e:8e:9a:c3:c5:0e:76:dc:00:bc:ac:86: b8:48:25:5f:69:45:d5:8e:5e:ef:70:83:2f:73:a3: 9b:6c:ec:0c:cb:11:74:cc:34:81:62:0e:8a:86:18: 26:ff:6c:31:0d:78:b2:8e:82:c7:f8:a7:e3:65:9c: 92:de:00:1a:d6:ce:43:83:fb:91:c9:05:5f:ed:a0: 92:b2:7e:90:29:89:2b:29:7c:d3:86:af:b2:12:cc: d7:4c:d6:9e:e0:89:51:10:5f:37:a3:bc:db:20:80: 05:93:df:51:73:c7:32:e7:e4:9d:8e:94:0e:f8:d4: 2e:5f:39:37:e5:00:2c:17:79:a1:26:52:ce:77:bc: a4:b2:c8:74:f4:41:7f:4d:db:9f:3b:60:cd:1a:32: 00:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:28:7D:16:2D:D7:84:9C:D5:41:15:DA:5C:29:B0:23:37:20:90:8B X509v3 Authority Key Identifier: keyid:74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:7b:bd:fc:3d:6f:2a:7a:23:c3:22:bd:62:04:d2:13:0c:8f: 83:06:11:70:19:12:cb:42:0f:dd:92:2b:da:27:e2:6a:ba:c9: a1:44:d7:55:ef:26:01:e4:2c:89:8e:48:6d:eb:dd:51:a3:65: fa:1a:9b:1c:ee:ca:6f:af:06:f1:dd:9c:66:60:4a:75:c9:5f: ef:75:97:00:80:b9:e7:5d:72:05:25:1c:de:7d:81:1c:59:f8: 85:bc:16:50:3a:86:ed:34:fc:33:82:92:8e:28:ea:a4:b8:c6: 96:59:71:f2:1d:34:55:56:66:6a:a8:2d:05:76:a9:7a:ee:09: 7d:1a:e7:f7:93:d4:eb:2b:24:f9:c9:6b:fb:b4:11:9e:28:cc: 21:1e:84:01:db:56:5c:6d:33:74:21:dd:83:35:5e:c5:8e:09: aa:27:12:29:e7:eb:29:48:50:4c:e7:f2:42:d5:53:43:82:dc: 1c:d9:78:5c:0d:42:a3:bd:de:ad:9e:53:7a:ef:f7:46:da:48: 61:f6:d5:4c:fd:13:27:f4:3a:80:83:f4:b2:ca:eb:ff:dd:d0: 8d:6e:ea:63:d5:db:7a:e1:a3:d1:23:11:3f:e0:d6:b1:51:3d: 26:63:1b:d0:56:42:1e:46:25:03:c6:fd:a7:fa:d2:14:4f:c5: 8b:b7:e7:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvef7xDU3mbXgdCQbYabeKFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0MDRlMTZmMzMzZDg5NjUwYzY2MTNhYzZjOTVkMzQ4ZGM0 Yjc5NTAwHhcNMjYwMTIxMDMwMTExWhcNMjYwMTIyMDMwMTExWjAzMTEwLwYDVQQD Eyg4YTI4N2QxNjJkZDc4NDljZDU0MTE1ZGE1YzI5YjAyMzM3MjA5MDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi3vL+zilGqpFhrF+5d776VSvxinT 3pIvmqwDxRKnfksqwx0C2aXar5hEpmohBhxiWoeEhu9hKVsWVbcTd0L4flH408Oh elRBTdvZrIM4gLPEcxiamD1LVtQdLS8Ijo9C3c9ICfF5IUFPz75OjprDxQ523AC8 rIa4SCVfaUXVjl7vcIMvc6ObbOwMyxF0zDSBYg6Khhgm/2wxDXiyjoLH+KfjZZyS 3gAa1s5Dg/uRyQVf7aCSsn6QKYkrKXzThq+yEszXTNae4IlREF83o7zbIIAFk99R c8cy5+SdjpQO+NQuXzk35QAsF3mhJlLOd7ykssh09EF/TdufO2DNGjIA3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIoofRYt14Sc1UEV2lwpsCM3IJCLMB8GA1UdIwQY MBaAFHQE4W8zPYllDGYTrGyV00jcS3lQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEFUaGJ6TTlpV1VNWmhPc2JKWFRTTnhMZVZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8xNTMyYzYtYTJmNS00OGU2LWIwMzct MThjNWViZWYyN2E4LzEvZEFUaGJ6TTlpV1VNWmhPc2JKWFRTTnhMZVZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8xNTMyYzYtYTJmNS00OGU2LWIwMzctMThjNWViZWYyN2E4 LzEvZEFUaGJ6TTlpV1VNWmhPc2JKWFRTTnhMZVZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhnu9/D1v KnojwyK9YgTSEwyPgwYRcBkSy0IP3ZIr2ifiarrJoUTXVe8mAeQsiY5IbevdUaNl +hqbHO7Kb68G8d2cZmBKdclf73WXAIC5511yBSUc3n2BHFn4hbwWUDqG7TT8M4KS jijqpLjGlllx8h00VVZmaqgtBXapeu4JfRrn95PU6ysk+clr+7QRnijMIR6EAdtW XG0zdCHdgzVexY4JqicSKefrKUhQTOfyQtVTQ4LcHNl4XA1Co73erZ5Teu/3RtpI YfbVTP0TJ/Q6gIP0ssrr/93QjW7qY9XbeuGj0SMRP+DWsVE9JmMb0FZCHkYlA8b9 p/rSFE/Fi7fnww== -----END CERTIFICATE-----Generated at Wed Jan 21 12:34:26 2026 by rpki-client