This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json) Hash identifier: UOd9/Hhl5f+9qtMlcexHOE/ilijBqynLTV3DPhB+0A4= Subject key identifier: 8F:A9:03:C8:BE:5C:DF:D9:67:62:F2:A7:B5:18:FD:D9:C0:1F:08:79 Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d Certificate serial: 019BFCF8706E166E7FE77E577204847104C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft Manifest number: 0ED2 Signing time: Tue 27 Jan 2026 01:01:38 +0000 Manifest this update: Tue 27 Jan 2026 01:01:38 +0000 Manifest next update: Wed 28 Jan 2026 01:01:38 +0000 Files and hashes: 1: 4FbUQPbInKsJV6tUxAOCJ09zMtA.roa (hash: XDmbXmDYXHXEEVlnrPjHgOg48u89KTGeW87AL4CNgDM=) 2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: 4kihXVomwPOm3608nrD+H9fGYV4cB5hWyzv8XKiXQA4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:f8:70:6e:16:6e:7f:e7:7e:57:72:04:84:71:04:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d Validity Not Before: Jan 27 01:01:38 2026 GMT Not After : Jan 28 01:01:38 2026 GMT Subject: CN=8fa903c8be5cdfd96762f2a7b518fdd9c01f0879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:87:6f:e0:6c:dc:4f:6d:6d:25:94:ae:18:ed: c2:2b:f6:57:96:9f:9e:19:76:4d:0f:37:64:e7:ba: 2f:d7:f6:28:4f:50:78:46:19:58:d3:41:bd:d1:43: 2f:01:1c:5b:b1:4b:ca:e2:81:d8:f3:4d:03:65:9c: 0f:af:7e:a6:cc:5f:de:74:e1:bd:98:c8:da:1e:bb: 7d:5f:4b:6c:6b:b1:44:43:3a:18:a1:65:a9:29:db: 3e:b2:a4:89:cc:32:54:75:c2:3a:02:4c:30:9f:e6: 62:b6:ca:c8:71:54:8a:3c:47:28:4c:59:10:d3:71: 4e:30:6d:7a:da:1c:9f:08:c5:8f:3e:bd:78:55:fb: 13:eb:a1:13:76:f9:4d:33:21:3f:16:5f:7a:c2:d5: 41:d5:11:52:2a:0f:02:d8:37:b2:3d:32:b5:f9:b8: ec:02:12:6f:da:22:e5:90:4a:45:d7:bb:8a:a2:d4: 8a:0b:ef:ac:45:45:4f:70:00:06:66:d5:6c:ab:16: ea:1b:c7:f4:48:8b:b8:be:2b:18:dc:3d:71:b2:c5: e5:22:10:37:0e:aa:bb:97:f3:74:3c:3e:da:f9:8c: 0c:bd:45:7d:f8:4c:39:48:d2:83:b9:c3:e5:81:84: 9c:7e:fd:a3:49:a7:6c:e4:59:d4:62:2a:09:c4:db: e3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A9:03:C8:BE:5C:DF:D9:67:62:F2:A7:B5:18:FD:D9:C0:1F:08:79 X509v3 Authority Key Identifier: keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:c6:25:2a:39:40:6a:f6:5f:35:9a:b2:48:c2:0c:72:05:cf: b4:45:72:77:45:94:fa:55:68:97:94:22:42:93:9e:b1:eb:a1: da:19:58:c9:5c:b2:51:b1:f0:06:b6:9f:cb:4a:ab:29:85:9c: e3:cb:56:ab:61:6d:c2:28:ed:f3:e2:86:e7:03:6b:2e:cc:82: 60:3e:09:73:0e:98:ec:51:30:e7:23:10:17:4f:4c:95:b5:a2: 23:e2:8e:fd:52:83:15:6c:31:d4:c9:ce:d5:cf:c5:32:2e:36: f4:97:a3:69:12:4c:05:0f:39:91:bb:a9:6c:b3:65:fd:9b:30: 73:fe:84:ce:b5:e7:6f:78:8e:c9:35:3c:ed:c3:89:5f:bc:14: 3c:b0:55:de:79:aa:0a:00:59:b6:c5:c9:d4:5d:a2:7c:ba:49: 87:c6:db:06:66:37:bd:49:bb:86:72:2c:02:f2:e6:15:5c:ba: e6:3b:27:7b:98:7a:fa:fc:bb:64:b7:b2:91:e7:9b:f4:10:2a: e8:b6:0d:13:88:89:f3:20:4a:96:c2:f6:f8:69:7b:f2:da:9e: 32:46:c0:37:0e:ca:af:01:c8:30:fe:c1:28:6f:89:e8:a9:ab: d8:78:76:94:1a:39:2b:f7:57:33:1f:f9:e8:db:db:c5:d9:30: 0b:0e:17:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8+HBuFm5/535XcgSEcQTCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNmYxODQxNmQ3ZDQ3MGFhMDRhZDAwYmNhNTc2ODNjNzg5 ZDg1NGQwHhcNMjYwMTI3MDEwMTM4WhcNMjYwMTI4MDEwMTM4WjAzMTEwLwYDVQQD Eyg4ZmE5MDNjOGJlNWNkZmQ5Njc2MmYyYTdiNTE4ZmRkOWMwMWYwODc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsodv4GzcT21tJZSuGO3CK/ZXlp+e GXZNDzdk57ov1/YoT1B4RhlY00G90UMvARxbsUvK4oHY800DZZwPr36mzF/edOG9 mMjaHrt9X0tsa7FEQzoYoWWpKds+sqSJzDJUdcI6Akwwn+ZitsrIcVSKPEcoTFkQ 03FOMG162hyfCMWPPr14VfsT66ETdvlNMyE/Fl96wtVB1RFSKg8C2DeyPTK1+bjs AhJv2iLlkEpF17uKotSKC++sRUVPcAAGZtVsqxbqG8f0SIu4visY3D1xssXlIhA3 Dqq7l/N0PD7a+YwMvUV9+Ew5SNKDucPlgYScfv2jSads5FnUYioJxNvjqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI+pA8i+XN/ZZ2Lyp7UY/dnAHwh5MB8GA1UdIwQY MBaAFK5vGEFtfUcKoErQC8pXaDx4nYVNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYt MDZlNTRkZDkyMTcxLzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYtMDZlNTRkZDkyMTcx LzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIMYlKjlA avZfNZqySMIMcgXPtEVyd0WU+lVol5QiQpOeseuh2hlYyVyyUbHwBrafy0qrKYWc 48tWq2Ftwijt8+KG5wNrLsyCYD4Jcw6Y7FEw5yMQF09MlbWiI+KO/VKDFWwx1MnO 1c/FMi429JejaRJMBQ85kbupbLNl/Zswc/6EzrXnb3iOyTU87cOJX7wUPLBV3nmq CgBZtsXJ1F2ifLpJh8bbBmY3vUm7hnIsAvLmFVy65jsne5h6+vy7ZLeykeeb9BAq 6LYNE4iJ8yBKlsL2+Gl78tqeMkbANw7KrwHIMP7BKG+J6Kmr2Hh2lBo5K/dXMx/5 6NvbxdkwCw4XDA== -----END CERTIFICATE-----Generated at Tue Jan 27 03:55:57 2026 by rpki-client