This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft File: nTHCM8vSZtsCYgud65DQjkFpLmc.mft (raw, json) Hash identifier: 9JGtCxdmSpUBkVME6lUqCGf1juB0ryR5jx8trFw7RAg= Subject key identifier: 97:0C:7D:AC:88:10:D0:4E:8C:E9:C4:D5:D1:D3:74:33:4D:2D:08:D7 Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67 Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67 Certificate serial: 019BFB0A1F407302D8858BD9220C04CF2C97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft Manifest number: 0ECB Signing time: Mon 26 Jan 2026 16:01:43 +0000 Manifest this update: Mon 26 Jan 2026 16:01:43 +0000 Manifest next update: Tue 27 Jan 2026 16:01:43 +0000 Files and hashes: 1: 3kSbU0e5h99O_Tm79lGnT_Tp5Hc.roa (hash: RwQ/Qy1kKylc45gWPZOazTOGnIJ82QduJgu3sQQqwXY=) 2: nTHCM8vSZtsCYgud65DQjkFpLmc.crl (hash: tdUhpck4SSwD4V3rQLfZWCmdiKsPJsl6H+N1hoFzMD4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 16:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:0a:1f:40:73:02:d8:85:8b:d9:22:0c:04:cf:2c:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67 Validity Not Before: Jan 26 16:01:43 2026 GMT Not After : Jan 27 16:01:43 2026 GMT Subject: CN=970c7dac8810d04e8ce9c4d5d1d374334d2d08d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:38:10:7b:d6:ef:32:6d:ab:0f:0a:f0:a1:2c: 29:b6:f2:7c:a7:3d:35:06:a9:83:7c:9a:48:76:30: d1:7f:e6:50:00:d8:60:2b:5b:5f:0c:c5:17:48:3d: ce:0a:0f:6a:5f:d3:e7:94:0d:74:c4:69:84:07:57: 2c:5d:2f:cc:b8:33:68:e6:18:43:d1:fe:56:4f:fc: c7:a9:ad:00:89:4f:a2:a8:43:2c:ca:d8:a2:51:64: 7e:41:1d:13:4b:44:6d:9b:68:cc:aa:f0:9c:59:c1: e8:db:60:8a:6b:4c:4b:e1:4a:da:6e:46:d1:67:73: 54:1a:cb:22:c2:cb:6d:c2:39:8c:73:a9:40:3b:6b: 62:33:96:31:f2:0c:fd:ce:ed:86:fb:5d:9c:bc:aa: 5f:00:14:7c:3b:92:0d:fc:06:31:4b:0e:08:54:9c: ff:b3:cc:08:5a:52:df:24:4f:5f:cf:93:eb:93:fe: cc:f1:92:dd:d9:19:aa:89:ae:d1:fc:bb:a4:e5:80: 1a:09:e0:6c:d4:41:79:61:a6:06:2c:21:18:c0:e4: 67:fd:36:40:49:72:fe:87:ff:a3:8b:4c:c1:a0:19: 94:fd:4e:d7:c2:e9:08:3e:d0:37:96:c4:04:6b:ee: 5b:5e:fe:b6:91:ab:10:18:b6:25:f4:5a:79:e4:52: c5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:0C:7D:AC:88:10:D0:4E:8C:E9:C4:D5:D1:D3:74:33:4D:2D:08:D7 X509v3 Authority Key Identifier: keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:ee:9a:e1:31:4f:fe:1c:45:88:c3:d4:32:7d:c5:7f:d3:08: c4:54:2f:76:1e:2b:80:b7:44:20:1b:66:c8:d1:5f:d0:f9:22: c5:d2:f8:c7:8c:57:29:e3:f8:87:37:7b:11:92:f5:1d:93:7d: 60:bd:0c:4a:bb:da:4a:00:c1:1d:f2:14:2b:dc:c0:3d:8b:c2: 33:8c:35:a4:01:8e:ae:f2:f5:64:c9:9e:0a:25:7d:11:8d:da: b3:b3:4a:a4:91:35:40:c0:84:b5:74:40:fc:e9:6a:55:12:8d: 38:86:18:2d:e8:67:21:49:58:ed:d5:15:31:10:8d:70:28:9f: 3e:1e:c8:6f:d6:34:88:b1:94:7c:09:6f:d9:2f:ad:e3:77:ca: 5d:94:39:1a:5c:dd:2b:29:d4:f5:98:29:b5:cd:d7:17:81:13: 05:b8:c4:94:83:69:84:4e:b3:aa:b7:b8:fa:21:88:14:50:83: e1:f4:cc:8d:68:ec:e1:bc:fc:70:00:03:02:79:31:f3:5f:03: a2:ab:68:f0:d3:ba:00:8d:48:7f:95:8c:25:17:ae:bf:74:67: 7f:70:e6:e2:c8:86:9f:f2:4f:97:49:32:9f:b5:f0:05:53:68: 2c:a3:55:19:4c:17:f3:0c:9a:5f:76:43:83:43:2b:c2:24:30: 93:f1:b5:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7Ch9AcwLYhYvZIgwEzyyXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMzFjMjMzY2JkMjY2ZGIwMjYyMGI5ZGViOTBkMDhlNDE2 OTJlNjcwHhcNMjYwMTI2MTYwMTQzWhcNMjYwMTI3MTYwMTQzWjAzMTEwLwYDVQQD Eyg5NzBjN2RhYzg4MTBkMDRlOGNlOWM0ZDVkMWQzNzQzMzRkMmQwOGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDgQe9bvMm2rDwrwoSwptvJ8pz01 BqmDfJpIdjDRf+ZQANhgK1tfDMUXSD3OCg9qX9PnlA10xGmEB1csXS/MuDNo5hhD 0f5WT/zHqa0AiU+iqEMsytiiUWR+QR0TS0Rtm2jMqvCcWcHo22CKa0xL4UrabkbR Z3NUGssiwsttwjmMc6lAO2tiM5Yx8gz9zu2G+12cvKpfABR8O5IN/AYxSw4IVJz/ s8wIWlLfJE9fz5Prk/7M8ZLd2Rmqia7R/Luk5YAaCeBs1EF5YaYGLCEYwORn/TZA SXL+h/+ji0zBoBmU/U7XwukIPtA3lsQEa+5bXv62kasQGLYl9Fp55FLFDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJcMfayIENBOjOnE1dHTdDNNLQjXMB8GA1UdIwQY MBaAFJ0xwjPL0mbbAmILneuQ0I5BaS5nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblRIQ004dlNadHNDWWd1ZDY1RFFqa0ZwTG1jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8zNDIyM2EtZTc3ZS00NTQ0LWEyMDct ZmExNzI1MDM0NDkxLzEvblRIQ004dlNadHNDWWd1ZDY1RFFqa0ZwTG1jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy8zNDIyM2EtZTc3ZS00NTQ0LWEyMDctZmExNzI1MDM0NDkx LzEvblRIQ004dlNadHNDWWd1ZDY1RFFqa0ZwTG1jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIe6a4TFP /hxFiMPUMn3Ff9MIxFQvdh4rgLdEIBtmyNFf0PkixdL4x4xXKeP4hzd7EZL1HZN9 YL0MSrvaSgDBHfIUK9zAPYvCM4w1pAGOrvL1ZMmeCiV9EY3as7NKpJE1QMCEtXRA /OlqVRKNOIYYLehnIUlY7dUVMRCNcCifPh7Ib9Y0iLGUfAlv2S+t43fKXZQ5Glzd KynU9Zgptc3XF4ETBbjElINphE6zqre4+iGIFFCD4fTMjWjs4bz8cAADAnkx818D oqto8NO6AI1If5WMJReuv3Rnf3Dm4siGn/JPl0kyn7XwBVNoLKNVGUwX8wyaX3ZD g0MrwiQwk/G1Mw== -----END CERTIFICATE-----Generated at Tue Jan 27 02:12:18 2026 by rpki-client