This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft File: ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft (raw, json) Hash identifier: cEDrBzTCOZHE/tmSYrNHqCBNqfmwSB9tKLQ39xvAHKM= Subject key identifier: B1:3E:9C:B2:AC:21:81:54:BD:08:9C:95:2B:99:E9:09:D7:71:1E:DA Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b Certificate serial: 019BFC1C640DAE6CBD2169DB75255C228838 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft Manifest number: 09BB Signing time: Mon 26 Jan 2026 21:01:17 +0000 Manifest this update: Mon 26 Jan 2026 21:01:17 +0000 Manifest next update: Tue 27 Jan 2026 21:01:17 +0000 Files and hashes: 1: 0UnyCR-s9iVj-44nCnj3n-e4xtA.roa (hash: qIADwbji8igygxrgQjLDhHXbAfWGtCs+G3X3x04AbP0=) 2: MY0oyyxJxhBaxV6e35Jj6RwVRN4.roa (hash: b5AkjRiP8AjbeAnZmdI+p2iRLfqlwKytew/Xvvx0yg0=) 3: UIXymbU01AcELRK4XQgaDZSENDk.roa (hash: XHkCVd4jVL4ur9JpM+WZI6Fqyp3dAyt/v/b4jYj6KaE=) 4: eG6Nd0AEheFJzh2ZzgIc-HGYq9Y.roa (hash: tN9thuUXDSgdN1PacHIHF6V4krE+2Pkx1P2dF2wQPtI=) 5: lhhkdnjbTFcMf_WSQ6Vdc7cUgLg.roa (hash: vPcYoUUrECmWg0bzxsg1BXvUiLIZvalyKunX15L0XGc=) 6: q_YJm9uusZ1gdH6rfgf8d1zvcNE.roa (hash: 7dAiJ/6GQJnXgS5Q7uLwSzG/j868J9jWgDmOCQtKyWM=) 7: ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl (hash: jPmB+H9EfE0dNox8QPqfBrVpR3YV0N7m5fvdrmTFUgg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1c:64:0d:ae:6c:bd:21:69:db:75:25:5c:22:88:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b Validity Not Before: Jan 26 21:01:17 2026 GMT Not After : Jan 27 21:01:17 2026 GMT Subject: CN=b13e9cb2ac218154bd089c952b99e909d7711eda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:de:29:55:16:b2:5c:94:12:2c:28:51:db:75: ea:0f:2c:3c:7f:64:e4:6a:6e:14:67:12:b1:43:f7: 1f:b2:f9:38:ee:35:a3:71:96:86:26:24:49:c8:ea: b0:b6:82:bc:5e:67:25:b2:7d:c4:ac:84:2c:fa:0b: 46:77:7e:0c:c7:e6:71:85:ac:a6:51:cd:0b:d7:5c: 8c:b7:f1:c3:b9:48:3c:3f:a2:dc:77:38:fc:72:5a: d1:3d:01:ef:de:33:06:0c:dc:c7:c4:da:9b:46:a0: 59:46:e2:71:61:69:bd:a5:40:aa:3a:cf:93:84:0c: d9:5b:fa:12:81:21:0b:55:c0:c2:5a:7b:03:ee:50: 3a:72:3a:d1:bf:c8:2e:41:d7:19:b7:d8:b8:db:ae: 3f:d3:c3:66:a6:11:30:62:fb:d8:73:e5:66:af:e2: 19:0a:7a:76:c8:f4:64:2d:9e:3d:15:1d:01:60:00: dd:8b:08:31:fb:21:79:92:1c:ca:6e:33:b8:64:4e: 7f:dc:4e:f5:40:63:18:f4:f2:41:c3:5e:6a:18:d9: f4:4d:dd:c0:ae:a6:d1:b4:9d:01:ab:90:dc:38:90: 69:66:b5:b6:a8:b3:28:0d:b6:c3:ca:1d:89:c3:fc: 6e:ac:b6:87:c7:cc:3b:f6:bd:16:e7:98:96:00:09: 54:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:3E:9C:B2:AC:21:81:54:BD:08:9C:95:2B:99:E9:09:D7:71:1E:DA X509v3 Authority Key Identifier: keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:c9:10:6a:3c:30:4f:5e:4b:42:f2:12:73:40:e0:c2:45:ba: 9a:8f:72:93:d1:9d:c6:16:74:65:cd:7b:88:08:84:71:ae:21: 44:e0:16:93:35:0e:1e:8b:c8:9c:8f:b3:23:7b:38:ce:91:cd: 87:dc:c4:38:27:7a:26:e4:8c:47:b5:22:05:7f:9d:02:ee:25: 7d:ee:48:ea:ba:6b:37:20:e3:51:e4:22:06:67:cd:b4:a8:79: c5:0d:11:b1:4c:af:9b:41:fd:42:60:3b:fa:ed:2c:96:47:8c: 52:18:b6:b4:56:58:f3:b7:e1:91:5d:9c:e0:9e:b1:3a:a1:bc: 7f:13:c0:dc:10:3e:f7:9c:eb:bf:1d:22:fb:1c:2e:61:d1:43: 41:bc:22:b7:84:ba:69:54:90:f6:1d:0d:45:8c:98:da:c3:f9: 97:10:e7:4d:6b:11:b7:d4:1a:24:d2:8e:5b:e2:37:bd:58:e4: 89:12:89:0a:4b:3e:78:a4:b9:38:66:54:94:c8:2c:f6:e2:25: 13:ce:c9:db:62:10:71:2b:aa:8a:14:67:5f:bf:7c:72:ee:86: 80:47:36:08:47:85:ef:a6:66:03:c9:67:4e:84:a3:6a:6b:ab: da:8c:25:13:eb:20:77:31:30:a8:a1:c8:b4:d6:bb:2d:b6:9e: 39:ba:20:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8HGQNrmy9IWnbdSVcIog4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YjBkMzM0MzJlY2E3N2MwNTRlOGZhODcwNzI0OGRhNGU0 N2RiMGIwHhcNMjYwMTI2MjEwMTE3WhcNMjYwMTI3MjEwMTE3WjAzMTEwLwYDVQQD EyhiMTNlOWNiMmFjMjE4MTU0YmQwODljOTUyYjk5ZTkwOWQ3NzExZWRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr94pVRayXJQSLChR23XqDyw8f2Tk am4UZxKxQ/cfsvk47jWjcZaGJiRJyOqwtoK8Xmclsn3ErIQs+gtGd34Mx+Zxhaym Uc0L11yMt/HDuUg8P6Lcdzj8clrRPQHv3jMGDNzHxNqbRqBZRuJxYWm9pUCqOs+T hAzZW/oSgSELVcDCWnsD7lA6cjrRv8guQdcZt9i4264/08NmphEwYvvYc+Vmr+IZ Cnp2yPRkLZ49FR0BYADdiwgx+yF5khzKbjO4ZE5/3E71QGMY9PJBw15qGNn0Td3A rqbRtJ0Bq5DcOJBpZrW2qLMoDbbDyh2Jw/xurLaHx8w79r0W55iWAAlUvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLE+nLKsIYFUvQiclSuZ6QnXcR7aMB8GA1UdIwQY MBaAFLmw0zQy7Kd8BU6PqHBySNpOR9sLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWJEVE5ETHNwM3dGVG8tb2NISkkyazVIMndzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9iNDMxY2EtNTI3NS00MmI1LThkNTQt ZDE5NmY5MjkxNzMyLzEvdWJEVE5ETHNwM3dGVG8tb2NISkkyazVIMndzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC9iNDMxY2EtNTI3NS00MmI1LThkNTQtZDE5NmY5MjkxNzMy LzEvdWJEVE5ETHNwM3dGVG8tb2NISkkyazVIMndzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATckQajww T15LQvISc0DgwkW6mo9yk9GdxhZ0Zc17iAiEca4hROAWkzUOHovInI+zI3s4zpHN h9zEOCd6JuSMR7UiBX+dAu4lfe5I6rprNyDjUeQiBmfNtKh5xQ0RsUyvm0H9QmA7 +u0slkeMUhi2tFZY87fhkV2c4J6xOqG8fxPA3BA+95zrvx0i+xwuYdFDQbwit4S6 aVSQ9h0NRYyY2sP5lxDnTWsRt9QaJNKOW+I3vVjkiRKJCks+eKS5OGZUlMgs9uIl E87J22IQcSuqihRnX798cu6GgEc2CEeF76ZmA8lnToSjamur2owlE+sgdzEwqKHI tNa7LbaeObogQw== -----END CERTIFICATE-----Generated at Tue Jan 27 02:12:16 2026 by rpki-client