This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft File: 9LdilQ63kWZou_qNG4cFYLHKdzk.mft (raw, json) Hash identifier: HsekVIhsKjaBbtYLtcHAj/6pU4iOj4mu2+8piJ8nHq8= Subject key identifier: 8B:5D:4E:D7:ED:5F:08:B2:77:A0:AC:FA:89:B7:5D:D3:4B:4A:D9:53 Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39 Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739 Certificate serial: 019BF79A5196C394A55B308542C7987FC726 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft Manifest number: 168C Signing time: Mon 26 Jan 2026 00:00:44 +0000 Manifest this update: Mon 26 Jan 2026 00:00:44 +0000 Manifest next update: Tue 27 Jan 2026 00:00:44 +0000 Files and hashes: 1: 1-3IPJhNn2z6uBNLHxMmCKfvzzKc.roa (hash: NdBkfOzbM5bOy0bYu/5qjiwop0xpNPBqxYjexeBjzV4=) 2: 2Mw_RsL7Tu1raZO7N_NmWBt_4Lw.roa (hash: JucO5ifrsP8q+Lpu01KX5CahDpNNuMFp8igwggz5f+4=) 3: 7Iz6U-UbML_bHt2iBpNhyMsUex4.roa (hash: kuOf+8ykZKiwJgvJAoLirBjFoMp1t2BI/tsXr1phgfs=) 4: 9LdilQ63kWZou_qNG4cFYLHKdzk.crl (hash: M4wmmUzNb0YK20zR1A3QCei/cEfz5JIrSVGbdMvJZnc=) 5: KTnr28UXB2AOhLUGojIXh3TKOoo.roa (hash: 8eiF90G8f4f8jQjBHQ0ai2Os8eR7L9120f3BRFVgphs=) 6: XWplAHLb4h-dRGf7GRqU5aYBne4.roa (hash: vcUnwVhvidom6bWizccTCS7wF3vMreiwdFHr11qyWHQ=) 7: XgKbk-VfS5Fk-dDKQjpQqRf0_lY.roa (hash: iWT0RhDme3TLlIGDD9yrT4WHfNUoRqswY0iSVi2J+04=) 8: bu5zIhc9syS0fhKBovFQXcGQRxQ.roa (hash: /Bq2k4bmIQ5EUPK41v03YcsLqkRVvDHXfxrIn2yzw5A=) 9: epRr3ot_tO1I-RC0EsosxizeUW8.roa (hash: 2A4W4DbPWY16lTKuPfcljbBbTU9AeJIZxwLQ/cXz2wo=) 10: hIAZzuP6Gsu6ylCAGgkd82Ycc_M.roa (hash: SQISDbvDjBaLkSadlmENoao3YxR8/bK49Sgx969cf+M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:51:96:c3:94:a5:5b:30:85:42:c7:98:7f:c7:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739 Validity Not Before: Jan 26 00:00:44 2026 GMT Not After : Jan 27 00:00:44 2026 GMT Subject: CN=8b5d4ed7ed5f08b277a0acfa89b75dd34b4ad953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:a5:8c:89:c9:b9:b6:04:84:33:7c:5c:c4: 76:21:4a:68:a4:10:ab:3b:b4:53:48:37:9e:11:ab: 9c:8b:ce:4f:bb:de:e7:01:51:f3:a0:79:67:21:84: c1:64:0c:fb:f9:42:4a:d3:37:e6:bd:46:db:c0:28: bf:9f:56:94:e2:d0:28:2b:26:34:24:06:47:93:05: 39:c2:c5:59:c2:da:40:fe:eb:ce:ab:be:55:cf:1a: 0e:74:e7:5b:f6:94:09:59:56:59:17:2a:77:14:e7: f5:de:6d:94:b6:ed:69:4e:81:06:65:b1:91:b4:3d: 50:31:da:ff:38:81:bf:a5:de:13:4c:23:08:aa:16: 26:4e:7a:ce:06:1f:2e:1d:cc:ca:78:4c:0f:a9:b0: 4f:a7:02:ec:8b:f3:22:85:50:56:39:f6:d7:d3:d1: 0d:89:32:3e:cb:1d:ca:30:f0:3f:b3:02:42:1c:c3: 37:62:b8:ec:2e:19:e9:2b:4a:84:d5:b9:95:c5:94: 59:4d:00:37:1b:09:9f:df:8a:8e:67:4b:18:df:3b: 23:ed:5c:48:f4:1e:36:fc:49:74:1d:6e:7f:b9:b6: 23:d1:43:de:7a:90:18:5f:99:0d:bb:35:ef:ab:e0: 2d:9b:ff:5d:18:02:bb:09:98:55:f0:ea:e5:7b:3c: 9a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:5D:4E:D7:ED:5F:08:B2:77:A0:AC:FA:89:B7:5D:D3:4B:4A:D9:53 X509v3 Authority Key Identifier: keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:9c:6d:0b:6e:e5:b7:db:7b:3a:44:1f:21:bf:38:f6:4f:83: f1:4d:23:b8:76:56:dc:66:d9:77:32:d0:e6:bc:82:a9:6a:ad: a4:f7:ed:fe:70:39:b9:37:7f:37:b7:69:62:01:1b:a3:b2:53: 11:bb:7e:55:ce:4e:3b:f3:18:e9:3e:c5:ad:29:36:89:a2:e3: da:c9:f1:1b:e3:91:35:6c:58:0d:a5:ce:68:84:ec:99:5e:e1: 40:2a:96:a9:d4:a3:84:c5:8a:26:4f:e4:1b:44:7f:31:17:d3: 9a:8a:3e:44:d0:fe:76:32:53:07:43:e8:b4:38:10:58:5c:d5: 8a:b9:3e:35:ca:63:fa:77:e9:cf:6c:e1:54:a7:64:17:72:ff: 24:bd:70:d0:15:45:be:4a:61:f1:4b:06:fa:1a:30:22:69:01: 5a:a4:06:1b:80:8f:6f:71:59:9f:90:90:2e:4a:7b:81:51:37: 8e:6f:7e:32:89:0d:4f:4a:5a:f1:8a:d4:64:e1:f8:2c:87:82: 24:80:06:5e:17:80:02:1c:cf:00:38:6e:42:79:96:10:65:aa: 35:63:f9:b4:3b:94:d1:f7:6c:3b:c4:75:eb:f9:66:b5:de:b4: d5:58:26:47:65:43:69:5b:f9:3c:75:d1:f0:39:7f:16:d7:f2: 6f:3a:02:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mlGWw5SlWzCFQseYf8cmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0Yjc2Mjk1MGViNzkxNjY2OGJiZmE4ZDFiODcwNTYwYjFj YTc3MzkwHhcNMjYwMTI2MDAwMDQ0WhcNMjYwMTI3MDAwMDQ0WjAzMTEwLwYDVQQD Eyg4YjVkNGVkN2VkNWYwOGIyNzdhMGFjZmE4OWI3NWRkMzRiNGFkOTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuR6ljInJubYEhDN8XMR2IUpopBCr O7RTSDeeEauci85Pu97nAVHzoHlnIYTBZAz7+UJK0zfmvUbbwCi/n1aU4tAoKyY0 JAZHkwU5wsVZwtpA/uvOq75VzxoOdOdb9pQJWVZZFyp3FOf13m2Utu1pToEGZbGR tD1QMdr/OIG/pd4TTCMIqhYmTnrOBh8uHczKeEwPqbBPpwLsi/MihVBWOfbX09EN iTI+yx3KMPA/swJCHMM3YrjsLhnpK0qE1bmVxZRZTQA3Gwmf34qOZ0sY3zsj7VxI 9B42/El0HW5/ubYj0UPeepAYX5kNuzXvq+Atm/9dGAK7CZhV8OrlezyakQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFItdTtftXwiyd6Cs+om3XdNLStlTMB8GA1UdIwQY MBaAFPS3YpUOt5FmaLv6jRuHBWCxync5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8wYjIzYzUtMjFiNS00YWIzLTk3YTAt MmY4ZGYxODdmOThiLzEvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi8wYjIzYzUtMjFiNS00YWIzLTk3YTAtMmY4ZGYxODdmOThi LzEvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgpxtC27l t9t7OkQfIb849k+D8U0juHZW3GbZdzLQ5ryCqWqtpPft/nA5uTd/N7dpYgEbo7JT Ebt+Vc5OO/MY6T7FrSk2iaLj2snxG+ORNWxYDaXOaITsmV7hQCqWqdSjhMWKJk/k G0R/MRfTmoo+RND+djJTB0PotDgQWFzVirk+Ncpj+nfpz2zhVKdkF3L/JL1w0BVF vkph8UsG+howImkBWqQGG4CPb3FZn5CQLkp7gVE3jm9+MokNT0pa8YrUZOH4LIeC JIAGXheAAhzPADhuQnmWEGWqNWP5tDuU0fdsO8R16/lmtd601VgmR2VDaVv5PHXR 8Dl/FtfybzoC5A== -----END CERTIFICATE-----Generated at Mon Jan 26 07:11:16 2026 by rpki-client