This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft File: 1onLcYkcbZS9nm8U8W5-N8LHKL8.mft (raw, json) Hash identifier: jK68WD1gu9DrnSP/7+az3BgDCbr8jTIjmZpLag7Zdjk= Subject key identifier: E3:5C:1E:37:B9:70:63:1E:95:2D:37:2D:A3:26:A3:66:C6:F5:28:DB Authority key identifier: D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF Certificate issuer: /CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf Certificate serial: 019BBE4F3EDED5BE3DACAECCB695EF392F4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft Manifest number: 0581 Signing time: Wed 14 Jan 2026 21:00:23 +0000 Manifest this update: Wed 14 Jan 2026 21:00:23 +0000 Manifest next update: Thu 15 Jan 2026 21:00:23 +0000 Files and hashes: 1: 1onLcYkcbZS9nm8U8W5-N8LHKL8.crl (hash: be+Zl1CehGWlZZP9in1itKotpYqI9q5mhEH4PRt3U/0=) 2: A1S7zaMW03197K0PFUGmkuS6qHc.roa (hash: P0RbhOWnYpuPcWIDbY8PS2tuKH+AkCqge3UmcT8QPYg=) 3: HcWgx2MiMP_xtGT9IucxolgQeIY.roa (hash: rcEUsMaoUm7Xd2I+QLC1mGGbjcwOScogc6eZLbEfymQ=) 4: iTT1Go78g5owZfyu9ktxbP5JHAk.roa (hash: Qjj93lcgSQbKTpiPRrMG7KIy0uRqncRntlD8V9IPje4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 15 Jan 2026 20:35:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:be:4f:3e:de:d5:be:3d:ac:ae:cc:b6:95:ef:39:2f:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf Validity Not Before: Jan 14 21:00:23 2026 GMT Not After : Jan 15 21:00:23 2026 GMT Subject: CN=e35c1e37b970631e952d372da326a366c6f528db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fe:f8:78:30:56:18:51:b4:bc:05:75:b9:d0: d7:eb:e5:d1:bd:d8:c7:88:f7:5f:a8:90:19:cd:d3: fb:99:85:62:1d:5c:82:11:05:5f:98:b2:c3:e0:2c: c8:e8:5b:b5:f8:65:37:ed:79:f9:13:1a:12:55:16: 91:0e:46:60:11:52:b7:f5:09:32:07:e3:c1:81:4b: 6f:c1:bc:3a:06:67:0d:4d:4e:3a:1e:b4:f7:b8:71: ab:c3:81:c8:b1:1b:a6:0c:09:b2:9a:df:c0:42:84: 10:c3:82:ab:92:67:e5:f9:fe:45:f6:b0:30:c0:fd: 3a:33:a7:68:29:b8:b5:f0:fa:cd:36:b7:a4:13:91: ed:c9:26:fa:69:06:08:27:55:4b:81:8a:d7:57:77: 48:fa:d2:8c:83:10:d4:a2:2e:45:a0:98:28:cc:8c: b1:a6:07:e7:d3:84:f8:5c:01:fc:59:4a:49:2b:2c: 16:72:4b:57:b5:d9:7f:1c:2a:a0:61:ac:aa:c1:4b: d8:06:ce:d6:96:46:15:cc:03:6f:dd:cc:2d:26:ec: 78:e3:b6:58:fe:5f:56:2e:1d:e4:a3:36:82:99:12: ed:e1:65:c8:05:a4:3a:53:60:61:4f:9e:a8:f7:d8: d1:c1:0d:13:95:e8:68:3a:f6:f6:fb:c7:b0:a1:76: d7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5C:1E:37:B9:70:63:1E:95:2D:37:2D:A3:26:A3:66:C6:F5:28:DB X509v3 Authority Key Identifier: keyid:D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:60:70:a0:33:d3:9b:f0:82:68:2a:f0:48:d7:bd:e7:83:44: a2:90:a1:b5:0c:68:91:14:2c:bf:2b:90:97:0b:0c:13:a3:60: 27:b9:69:30:dc:c7:ba:a7:11:d1:0f:cf:2e:1b:9e:7e:5e:91: e7:fa:24:36:d4:27:df:2e:55:8f:91:55:a6:f0:8c:6c:cd:7e: b8:43:34:4a:66:8e:4b:a7:ef:e4:20:08:d5:c9:2b:4f:5c:88: 5f:63:ba:9a:ab:db:17:13:6b:f6:3a:7e:ce:39:a4:40:41:80: 25:f0:08:09:4d:f7:22:54:5e:28:48:22:74:ed:9b:b0:f3:97: cc:4d:c0:61:92:14:f2:76:c2:c7:30:92:e9:e7:f6:aa:bf:43: c6:c5:9d:33:85:b1:65:11:e7:db:62:03:a2:ba:b6:80:a6:69: 2b:ae:f5:95:3f:60:fd:b6:4b:29:c5:a4:17:a0:21:bb:20:58: fc:52:f0:87:f7:ce:f3:d4:16:0f:fa:d8:23:16:7f:d2:d3:69: d9:a9:6f:4f:a2:75:36:20:36:59:f5:48:c5:c9:33:26:6f:6e: 35:ca:91:9c:08:7c:35:0f:e0:00:90:89:6d:09:b0:57:ec:fc: 47:6e:81:ac:89:15:04:ab:0e:a8:05:ca:89:37:95:28:ad:a0: 97:1f:d3:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZu+Tz7e1b49rK7MtpXvOS9MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2ODljYjcxODkxYzZkOTRiZDllNmYxNGYxNmU3ZTM3YzJj NzI4YmYwHhcNMjYwMTE0MjEwMDIzWhcNMjYwMTE1MjEwMDIzWjAzMTEwLwYDVQQD EyhlMzVjMWUzN2I5NzA2MzFlOTUyZDM3MmRhMzI2YTM2NmM2ZjUyOGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz/74eDBWGFG0vAV1udDX6+XRvdjH iPdfqJAZzdP7mYViHVyCEQVfmLLD4CzI6Fu1+GU37Xn5ExoSVRaRDkZgEVK39Qky B+PBgUtvwbw6BmcNTU46HrT3uHGrw4HIsRumDAmymt/AQoQQw4Krkmfl+f5F9rAw wP06M6doKbi18PrNNrekE5HtySb6aQYIJ1VLgYrXV3dI+tKMgxDUoi5FoJgozIyx pgfn04T4XAH8WUpJKywWcktXtdl/HCqgYayqwUvYBs7WlkYVzANv3cwtJux447ZY /l9WLh3kozaCmRLt4WXIBaQ6U2BhT56o99jRwQ0TlehoOvb2+8ewoXbXYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFONcHje5cGMelS03LaMmo2bG9SjbMB8GA1UdIwQY MBaAFNaJy3GJHG2UvZ5vFPFufjfCxyi/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMW9uTGNZa2NiWlM5bm04VThXNS1OOExIS0w4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8wZGYyOGQtOTI0ZC00YjRlLTk0Yjgt ODI0ZmZjNjk0MmY0LzEvMW9uTGNZa2NiWlM5bm04VThXNS1OOExIS0w4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8wZGYyOGQtOTI0ZC00YjRlLTk0YjgtODI0ZmZjNjk0MmY0 LzEvMW9uTGNZa2NiWlM5bm04VThXNS1OOExIS0w4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfWBwoDPT m/CCaCrwSNe954NEopChtQxokRQsvyuQlwsME6NgJ7lpMNzHuqcR0Q/PLhuefl6R 5/okNtQn3y5Vj5FVpvCMbM1+uEM0SmaOS6fv5CAI1ckrT1yIX2O6mqvbFxNr9jp+ zjmkQEGAJfAICU33IlReKEgidO2bsPOXzE3AYZIU8nbCxzCS6ef2qr9DxsWdM4Wx ZRHn22IDorq2gKZpK671lT9g/bZLKcWkF6AhuyBY/FLwh/fO89QWD/rYIxZ/0tNp 2alvT6J1NiA2WfVIxckzJm9uNcqRnAh8NQ/gAJCJbQmwV+z8R26BrIkVBKsOqAXK iTeVKK2glx/Tkw== -----END CERTIFICATE-----Generated at Thu Jan 15 05:18:12 2026 by rpki-client