This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft File: tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft (raw, json) Hash identifier: OnWBuOaeBAIfZdpuOfKCG86eSK+EURyGbM/Jqjx8owU= Subject key identifier: 8D:D6:7C:1B:B8:73:F4:30:52:86:C1:BC:55:94:DA:7A:70:5E:43:A4 Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a Certificate serial: 019BFD2E88A11315A3A9404FB22045029DB2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft Manifest number: 17F1 Signing time: Tue 27 Jan 2026 02:00:43 +0000 Manifest this update: Tue 27 Jan 2026 02:00:43 +0000 Manifest next update: Wed 28 Jan 2026 02:00:43 +0000 Files and hashes: 1: RNoONMgjC7AI9bUiPXHJnoNxdw4.roa (hash: EyX2BbVopJ5hjqPnGfS3gH2lJBH+hCeBYJzhz4A8ggc=) 2: nUF12WZsvpoiPI9C00eeFdJfaVo.roa (hash: 9SbxvhyRlkdpKS3ff2WOCyOa7It2KK0x1wSPI6mJgOw=) 3: tNl2UUnZ4217WSLfqRDSI0O_BWU.roa (hash: TJsFtOL6bWviF8Z8b9ypqKLo31djdrQdvLmCXkT7uLQ=) 4: tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl (hash: GJUebFJuzMm/7zwavpSXj+hmmJfpgJU0rOsLHeTWi0c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:2e:88:a1:13:15:a3:a9:40:4f:b2:20:45:02:9d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a Validity Not Before: Jan 27 02:00:43 2026 GMT Not After : Jan 28 02:00:43 2026 GMT Subject: CN=8dd67c1bb873f4305286c1bc5594da7a705e43a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8c:f3:fc:c8:2e:4e:b4:3e:ba:e2:04:8e:f4: 43:13:ee:b0:35:d6:0a:39:c3:6c:82:6c:dd:10:d7: 1f:52:d6:64:53:cf:e8:1e:09:99:6c:e9:86:8e:e9: f5:20:99:dc:a5:38:33:6e:b1:ac:25:f4:c3:ff:32: dc:af:5c:e0:90:02:80:f3:a1:a5:7d:32:e8:7e:3c: d4:8c:bc:07:ff:18:06:01:de:ef:72:6b:07:23:a9: 9c:a5:90:a8:2f:db:78:59:15:ce:ee:bf:13:60:3e: 16:8a:4c:e7:61:61:f5:e7:61:84:68:1b:d7:05:94: 1a:d1:ff:d8:13:97:42:a3:f2:73:a2:7c:ff:a3:e3: 58:bb:94:32:62:e4:80:c8:f3:0f:e1:e2:b6:51:1e: d2:1a:da:06:6c:eb:0a:c5:60:76:1a:fb:fa:d5:20: 45:ee:f7:0e:4e:2a:71:92:32:c0:28:65:53:0c:29: 8e:3d:ec:cb:3d:ac:a4:03:13:57:7c:96:f4:a4:6f: 41:0e:0d:e4:53:80:3c:48:e3:de:74:12:24:c0:fa: 9e:7c:46:1e:11:28:ba:7a:1a:fc:85:73:b1:64:2c: 92:ff:d5:1e:1d:c6:9e:65:1f:a7:0d:84:50:07:09: 45:3c:9a:15:33:bb:8b:c1:7f:3a:fa:4c:7d:3b:59: 92:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D6:7C:1B:B8:73:F4:30:52:86:C1:BC:55:94:DA:7A:70:5E:43:A4 X509v3 Authority Key Identifier: keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:f4:93:c0:64:c7:f8:b7:e3:d2:24:d0:be:87:e8:a1:8f:03: da:44:0e:04:90:17:2c:6a:11:2a:fd:07:c9:fe:bc:74:1e:13: bb:9e:b5:5a:4b:ac:16:51:32:59:b1:81:9b:8f:6b:82:e2:89: 55:a2:12:53:72:c8:15:65:78:81:21:bd:6b:6d:bf:0b:59:b5: 60:dc:c8:d1:a0:f0:26:5d:9b:20:23:31:3d:8b:4b:47:8f:cc: 30:bb:e3:b5:39:94:f4:e3:0e:40:4f:f8:95:95:af:ef:36:09: dc:ca:e7:c9:16:ce:40:f5:57:79:19:10:89:f5:b6:35:21:6f: c2:27:9c:c3:52:98:76:c6:64:03:7d:b8:f7:46:fc:3a:bd:46: aa:d5:ee:64:b6:92:52:dd:c8:57:68:70:e9:ab:a1:ad:5d:53: be:a6:f4:80:f5:22:ab:78:54:44:84:17:f5:78:9c:8d:97:de: fc:53:12:6d:24:db:1f:b5:0d:d4:f1:a2:08:01:c0:7f:42:70: fe:9f:40:2e:36:ef:8e:f0:00:f1:27:3a:e3:58:76:3e:da:4f: f1:c8:fb:79:1d:c0:0f:27:e7:df:9e:dd:8b:7a:cc:22:68:fa: f7:18:4d:8c:bb:c3:03:fa:11:ab:24:c4:e2:e6:61:14:98:f9: 34:7a:c2:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9LoihExWjqUBPsiBFAp2yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NDI3ZWE0OWY5NzJkMTljNTYzOTNhNjg5ZTdjYmViOTkw ZDVkN2EwHhcNMjYwMTI3MDIwMDQzWhcNMjYwMTI4MDIwMDQzWjAzMTEwLwYDVQQD Eyg4ZGQ2N2MxYmI4NzNmNDMwNTI4NmMxYmM1NTk0ZGE3YTcwNWU0M2E0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYzz/MguTrQ+uuIEjvRDE+6wNdYK OcNsgmzdENcfUtZkU8/oHgmZbOmGjun1IJncpTgzbrGsJfTD/zLcr1zgkAKA86Gl fTLofjzUjLwH/xgGAd7vcmsHI6mcpZCoL9t4WRXO7r8TYD4WikznYWH152GEaBvX BZQa0f/YE5dCo/Jzonz/o+NYu5QyYuSAyPMP4eK2UR7SGtoGbOsKxWB2Gvv61SBF 7vcOTipxkjLAKGVTDCmOPezLPaykAxNXfJb0pG9BDg3kU4A8SOPedBIkwPqefEYe ESi6ehr8hXOxZCyS/9UeHcaeZR+nDYRQBwlFPJoVM7uLwX86+kx9O1mSDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI3WfBu4c/QwUobBvFWU2npwXkOkMB8GA1UdIwQY MBaAFLVCfqSfly0ZxWOTponny+uZDV16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1Mjgt MGM0OTU0NzdjYTEwLzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1MjgtMGM0OTU0NzdjYTEw LzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWPSTwGTH +Lfj0iTQvofooY8D2kQOBJAXLGoRKv0Hyf68dB4Tu561WkusFlEyWbGBm49rguKJ VaISU3LIFWV4gSG9a22/C1m1YNzI0aDwJl2bICMxPYtLR4/MMLvjtTmU9OMOQE/4 lZWv7zYJ3MrnyRbOQPVXeRkQifW2NSFvwiecw1KYdsZkA32490b8Or1GqtXuZLaS Ut3IV2hw6auhrV1Tvqb0gPUiq3hURIQX9XicjZfe/FMSbSTbH7UN1PGiCAHAf0Jw /p9ALjbvjvAA8Sc641h2PtpP8cj7eR3ADyfn357di3rMImj69xhNjLvDA/oRqyTE 4uZhFJj5NHrCMw== -----END CERTIFICATE-----Generated at Tue Jan 27 05:37:27 2026 by rpki-client