This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json) Hash identifier: k9iPoB+gIVEvf/ZqgdaIDaKZHrcD4GQXtjGx/2L5O5M= Subject key identifier: 9E:00:D7:8F:7E:41:72:4F:63:B5:FF:4E:CE:57:A6:6D:1D:97:2C:53 Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d Certificate serial: 019BFB0910D4959B5CF4DEA1A936EBDBD8EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft Manifest number: 0ED1 Signing time: Mon 26 Jan 2026 16:00:33 +0000 Manifest this update: Mon 26 Jan 2026 16:00:33 +0000 Manifest next update: Tue 27 Jan 2026 16:00:33 +0000 Files and hashes: 1: 4FbUQPbInKsJV6tUxAOCJ09zMtA.roa (hash: XDmbXmDYXHXEEVlnrPjHgOg48u89KTGeW87AL4CNgDM=) 2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: Hyp5Qag4utpoWVulowfQE7hIuQZG+TVc6wP2Jz+T84o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 16:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:09:10:d4:95:9b:5c:f4:de:a1:a9:36:eb:db:d8:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d Validity Not Before: Jan 26 16:00:33 2026 GMT Not After : Jan 27 16:00:33 2026 GMT Subject: CN=9e00d78f7e41724f63b5ff4ece57a66d1d972c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:25:42:02:64:c2:05:e9:2f:05:52:3f:ee:77: 6a:ca:7d:3e:ad:84:9b:b9:a9:b3:0d:ae:d0:a8:2a: 20:b0:31:5b:f8:6d:f0:db:b0:6e:01:c2:18:c3:ad: c1:cb:28:5c:44:e2:9a:4c:4a:06:70:30:f9:60:3a: ef:24:dd:f2:4e:47:dc:23:dc:13:5b:7b:64:b5:62: 61:40:b8:90:82:1f:8c:d1:44:ec:18:fb:90:f5:8a: 53:38:92:e4:01:e3:95:73:a3:96:95:76:20:36:bc: 33:ea:39:43:10:04:4a:1d:d7:b5:3c:47:52:97:e7: 07:14:07:94:c5:47:5f:ef:a3:67:46:39:18:3d:91: ac:d9:05:f8:a8:cb:5a:d0:29:01:c4:73:b3:14:c8: 5d:40:9f:7a:92:05:da:f3:9c:7a:e9:1d:b8:28:80: ce:dc:1d:3a:98:89:b4:44:c2:6e:7c:2d:9c:e9:91: a1:06:6e:95:48:73:49:cc:30:db:b5:83:e9:a2:8d: 57:b0:6b:79:4d:1f:cc:7f:0f:31:95:50:61:16:fb: c9:b0:fd:26:6f:7a:5d:10:54:1b:d1:9f:42:87:83: 30:0f:b0:9e:ce:b3:e2:16:fe:19:df:fa:a6:4a:20: ac:65:d3:a8:75:d8:ce:10:a1:84:1e:8a:3d:d8:41: ea:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:00:D7:8F:7E:41:72:4F:63:B5:FF:4E:CE:57:A6:6D:1D:97:2C:53 X509v3 Authority Key Identifier: keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:58:8b:60:25:9c:16:03:4b:7d:18:4b:bb:95:b4:68:a5:99: 10:e8:b8:59:eb:2f:7b:b0:c9:99:60:21:4d:f8:8b:9b:0f:c0: d4:57:2f:eb:e2:f2:ec:20:02:dc:49:3e:71:67:94:35:f0:97: c9:39:9f:76:45:aa:e9:cc:4b:e6:41:5e:b3:ea:e8:a1:0f:70: 7c:20:2c:fd:72:8c:b5:35:d0:b0:a2:bb:7d:99:41:c4:db:d7: 94:ee:89:e8:09:f7:a2:48:cb:54:57:bd:54:e1:b4:6a:45:50: 3f:45:4d:7e:f1:2e:61:4d:89:86:55:88:1b:2a:10:80:82:9b: cf:49:61:f8:22:2f:3f:a1:6d:9f:a0:ed:3d:ab:3a:18:4a:45: f7:a2:d5:d0:60:2d:40:76:b3:95:8b:8a:28:ec:e8:0e:16:b7: 03:ab:6d:e8:9a:a8:ef:22:5d:cd:32:27:5d:77:20:98:bd:c7: ba:15:b5:0c:50:e6:ee:bf:2e:98:71:ee:eb:76:d9:ff:cb:e8: ce:3c:2d:33:78:be:2b:6b:01:94:13:0d:29:0a:73:45:55:b9: 6c:7c:62:b0:23:6c:c3:34:ff:19:c4:4c:e2:5f:16:f8:e3:8f: 01:57:31:b3:db:d4:b4:2f:50:ba:83:51:21:77:de:80:64:7b: 86:5e:66:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7CRDUlZtc9N6hqTbr29jrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNmYxODQxNmQ3ZDQ3MGFhMDRhZDAwYmNhNTc2ODNjNzg5 ZDg1NGQwHhcNMjYwMTI2MTYwMDMzWhcNMjYwMTI3MTYwMDMzWjAzMTEwLwYDVQQD Eyg5ZTAwZDc4ZjdlNDE3MjRmNjNiNWZmNGVjZTU3YTY2ZDFkOTcyYzUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoiVCAmTCBekvBVI/7ndqyn0+rYSb uamzDa7QqCogsDFb+G3w27BuAcIYw63ByyhcROKaTEoGcDD5YDrvJN3yTkfcI9wT W3tktWJhQLiQgh+M0UTsGPuQ9YpTOJLkAeOVc6OWlXYgNrwz6jlDEARKHde1PEdS l+cHFAeUxUdf76NnRjkYPZGs2QX4qMta0CkBxHOzFMhdQJ96kgXa85x66R24KIDO 3B06mIm0RMJufC2c6ZGhBm6VSHNJzDDbtYPpoo1XsGt5TR/Mfw8xlVBhFvvJsP0m b3pdEFQb0Z9Ch4MwD7CezrPiFv4Z3/qmSiCsZdOoddjOEKGEHoo92EHqYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ4A149+QXJPY7X/Ts5Xpm0dlyxTMB8GA1UdIwQY MBaAFK5vGEFtfUcKoErQC8pXaDx4nYVNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYt MDZlNTRkZDkyMTcxLzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYtMDZlNTRkZDkyMTcx LzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApliLYCWc FgNLfRhLu5W0aKWZEOi4Wesve7DJmWAhTfiLmw/A1Fcv6+Ly7CAC3Ek+cWeUNfCX yTmfdkWq6cxL5kFes+rooQ9wfCAs/XKMtTXQsKK7fZlBxNvXlO6J6An3okjLVFe9 VOG0akVQP0VNfvEuYU2JhlWIGyoQgIKbz0lh+CIvP6Ftn6DtPas6GEpF96LV0GAt QHazlYuKKOzoDha3A6tt6Jqo7yJdzTInXXcgmL3HuhW1DFDm7r8umHHu63bZ/8vo zjwtM3i+K2sBlBMNKQpzRVW5bHxisCNswzT/GcRM4l8W+OOPAVcxs9vUtC9QuoNR IXfegGR7hl5mtA== -----END CERTIFICATE-----Generated at Tue Jan 27 02:12:44 2026 by rpki-client