This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft File: MKNPnR29IKqH-w9ivStsXjDGFKI.mft (raw, json) Hash identifier: YD+vAxSCPJ91AJrKx9VYYDQcI97xRq+rF7KMBLTQyzI= Subject key identifier: CF:E6:68:CA:FD:F1:7B:A1:27:A4:A5:9E:5E:58:59:FB:F2:94:8C:5D Authority key identifier: 30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2 Certificate issuer: /CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2 Certificate serial: 019BF8AD4C4B4343CF1E009F54C6DF7D1414 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft Manifest number: 08A8 Signing time: Mon 26 Jan 2026 05:01:05 +0000 Manifest this update: Mon 26 Jan 2026 05:01:05 +0000 Manifest next update: Tue 27 Jan 2026 05:01:05 +0000 Files and hashes: 1: Cj5p4m8nBSHqFI7cIXQ0jxVaZqs.roa (hash: L+v38GzXEltb5Lhi/QksoQvn5l/DyY6ZKL5vW/SAZU0=) 2: ME0H6FJMomj5qNZa55hYa_mg8BI.roa (hash: 9JjtlUlu4wsnh6OKmL8KpV7lEe7W07be+5Wu0KAr73g=) 3: MKNPnR29IKqH-w9ivStsXjDGFKI.crl (hash: w3RvaoXgaKbaqQNgOfRx7NHkbV9eh6zrdgqdgA2cmAA=) 4: mxim8hiMW6KSmM1j_q23upqnj0k.roa (hash: hg33XIuLOCBoWLYKxDMan6DF9gxch5zAkStGQyi0GIM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:ad:4c:4b:43:43:cf:1e:00:9f:54:c6:df:7d:14:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2 Validity Not Before: Jan 26 05:01:05 2026 GMT Not After : Jan 27 05:01:05 2026 GMT Subject: CN=cfe668cafdf17ba127a4a59e5e5859fbf2948c5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c2:00:d3:31:c4:d5:3d:57:c6:8a:23:4b:fa: 32:d1:4c:61:71:78:f7:8b:63:35:53:7d:e5:60:af: 70:c2:8b:f0:a1:67:51:20:aa:0b:84:38:33:31:56: 87:f7:71:96:6d:04:9e:00:98:22:7e:5f:66:6f:a6: f8:99:19:43:20:44:28:27:89:78:02:56:71:e3:53: 5d:c4:81:c0:e5:04:18:ae:e0:d9:e3:7c:ef:b3:50: 94:71:0b:fa:31:84:cb:ff:7e:fc:61:a0:01:f8:3b: 90:9c:ee:38:86:ba:ea:7e:03:fa:1a:ac:ed:e1:c8: 4d:06:da:2d:92:72:81:75:c6:22:cc:b2:19:3d:62: 3c:16:c9:cb:18:35:ec:95:26:dd:1c:20:88:50:b3: e5:93:04:ed:eb:91:4b:f4:8f:23:ee:17:b4:c9:7f: c4:00:b9:b7:7d:70:f4:c9:ca:18:18:5d:35:64:c3: 71:4c:46:7d:bc:4f:f1:a8:ea:df:d5:a1:2e:ef:7f: 91:1e:20:0e:aa:2d:3f:5f:ee:5e:a8:71:72:54:65: 4e:5d:be:49:e1:c3:0b:1a:3d:17:c2:66:17:24:9b: 3c:b0:fd:b4:7d:c7:f2:d9:0e:b6:a1:86:e2:77:75: 9a:3c:e6:e8:ed:42:f3:f6:84:ad:de:da:55:a8:1d: a3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E6:68:CA:FD:F1:7B:A1:27:A4:A5:9E:5E:58:59:FB:F2:94:8C:5D X509v3 Authority Key Identifier: keyid:30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:1c:aa:2a:4a:79:e2:96:37:b9:15:bb:9d:61:71:77:bf:fc: e0:44:e2:c6:a6:d0:20:02:8e:ea:a2:2e:ba:d4:76:cc:ef:e4: be:2a:07:a4:a5:c5:95:36:59:72:2e:20:92:e9:6e:ec:52:09: 73:b9:30:0d:40:ec:fe:ac:f0:a4:80:01:18:69:4f:42:5c:07: 89:04:bf:6a:2b:7e:92:a3:c7:85:75:b6:e5:72:fe:cf:53:7b: 20:74:70:50:5e:50:10:48:36:fd:ec:e2:77:8b:47:97:b7:15: 10:79:8e:73:26:43:bb:09:d5:07:69:b0:c3:a9:93:ba:18:72: 82:09:5c:89:7a:06:16:58:63:7c:69:ee:4b:38:d9:5c:06:17: 47:8a:aa:34:9b:5e:e4:c9:35:48:d3:9a:2c:f2:44:db:84:06: c5:72:6d:70:31:c4:ee:99:a9:16:fd:47:5f:9d:93:02:71:4b: 76:81:ea:56:17:db:0e:c5:f8:65:c9:a1:2f:e0:4a:31:37:71: a4:b9:98:30:b6:4a:19:ac:f6:88:94:d4:47:e7:3c:bd:65:6d: 5a:2d:c1:04:da:74:e2:15:13:bd:85:12:9b:a1:30:aa:34:38: d0:c7:c4:05:23:dd:d4:d6:c7:df:99:39:15:54:f6:e8:e8:85: 00:e1:3a:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4rUxLQ0PPHgCfVMbffRQUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYTM0ZjlkMWRiZDIwYWE4N2ZiMGY2MmJkMmI2YzVlMzBj NjE0YTIwHhcNMjYwMTI2MDUwMTA1WhcNMjYwMTI3MDUwMTA1WjAzMTEwLwYDVQQD EyhjZmU2NjhjYWZkZjE3YmExMjdhNGE1OWU1ZTU4NTlmYmYyOTQ4YzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8IA0zHE1T1XxoojS/oy0UxhcXj3 i2M1U33lYK9wwovwoWdRIKoLhDgzMVaH93GWbQSeAJgifl9mb6b4mRlDIEQoJ4l4 AlZx41NdxIHA5QQYruDZ43zvs1CUcQv6MYTL/378YaAB+DuQnO44hrrqfgP6Gqzt 4chNBtotknKBdcYizLIZPWI8FsnLGDXslSbdHCCIULPlkwTt65FL9I8j7he0yX/E ALm3fXD0ycoYGF01ZMNxTEZ9vE/xqOrf1aEu73+RHiAOqi0/X+5eqHFyVGVOXb5J 4cMLGj0XwmYXJJs8sP20fcfy2Q62oYbid3WaPObo7ULz9oSt3tpVqB2jvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM/maMr98XuhJ6Slnl5YWfvylIxdMB8GA1UdIwQY MBaAFDCjT50dvSCqh/sPYr0rbF4wxhSiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUtOUG5SMjlJS3FILXc5aXZTdHNYakRHRktJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9lZTQ3MzItYzNiYS00MDg4LWE1ZmEt ZWI2NTNkMzYyMmJiLzEvTUtOUG5SMjlJS3FILXc5aXZTdHNYakRHRktJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9lZTQ3MzItYzNiYS00MDg4LWE1ZmEtZWI2NTNkMzYyMmJi LzEvTUtOUG5SMjlJS3FILXc5aXZTdHNYakRHRktJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiByqKkp5 4pY3uRW7nWFxd7/84ETixqbQIAKO6qIuutR2zO/kvioHpKXFlTZZci4gkulu7FIJ c7kwDUDs/qzwpIABGGlPQlwHiQS/ait+kqPHhXW25XL+z1N7IHRwUF5QEEg2/ezi d4tHl7cVEHmOcyZDuwnVB2mww6mTuhhygglciXoGFlhjfGnuSzjZXAYXR4qqNJte 5Mk1SNOaLPJE24QGxXJtcDHE7pmpFv1HX52TAnFLdoHqVhfbDsX4ZcmhL+BKMTdx pLmYMLZKGaz2iJTUR+c8vWVtWi3BBNp04hUTvYUSm6EwqjQ40MfEBSPd1NbH35k5 FVT26OiFAOE6Sw== -----END CERTIFICATE-----Generated at Mon Jan 26 15:52:52 2026 by rpki-client