This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft File: bf7PoOZpJZXPvqUmYHbo5T79lGE.mft (raw, json) Hash identifier: ncwZ+YjOD+RgKNa3tUfP1q5+l6/pt6kShGIqO3XMwfI= Subject key identifier: A1:08:80:29:19:8E:BE:15:76:8E:D8:9B:56:FC:54:85:CA:AB:EA:0D Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61 Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461 Certificate serial: 019C069FEA312A35B50B6AC50E3F5662EA6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft Manifest number: 108E Signing time: Wed 28 Jan 2026 22:01:09 +0000 Manifest this update: Wed 28 Jan 2026 22:01:09 +0000 Manifest next update: Thu 29 Jan 2026 22:01:09 +0000 Files and hashes: 1: 01O1H3vr-Xg2_Kt_tRxOoSePvYw.roa (hash: DTK4FxlalSIuFNse2BYUOpmcSGMhnqSmE/87aEUEtrg=) 2: 1-EqD6vgoA3IVAsjiLQYVEyyKW0U.roa (hash: Of+IRZAD6r3ftFWFR7yxzKwNLfYZjre35Dmg5UJV5ds=) 3: 3oqgYKPHjP4c1L0WVBDxXqGTNKs.roa (hash: PdT5GAbt00ZEVCyICmg6bHJkYgLa1nkpbJxhAhA4vnk=) 4: HB0FIxc95bfbXI-7nw5kY1VNoMs.roa (hash: 236zwT5kbl7DOv0ChJB+B8PFAcfi388Ks1QJGiJxQlM=) 5: RSEZnKImClpjfvRbvyGXO7YCT30.roa (hash: nbl9nzX5UblCyKX8B1eZxPxYHLEkClkhmOAKVpl4rkY=) 6: TCGXmp-ZcJuoO-eDyOqbUVRKJXI.roa (hash: zb8J86h3WDmjGOxtQQnoZ3rsuxycMmwLx3S1o5snyrE=) 7: XR-EYzoeTJi_gNpw5v85R8iIDCI.roa (hash: hr4Ank/yR0Q5kl1E1WgAYLVhDPaCeCKIZMYB9E/hjDs=) 8: bf7PoOZpJZXPvqUmYHbo5T79lGE.crl (hash: WgJjRpivW7MABdbqWLvfGHrYtbAEB6ej+6Llg3+kco8=) 9: fv8hSy-qTmyzkAkKRiqf7Cbw4Q8.roa (hash: JVsfqbqPGUHeKikh7Yf/w82XL596L03oNIzuxFbcXEQ=) 10: ngXBDJqFRHqY02oCl22jHBT8QTU.roa (hash: J4yIx0/GQQvuBdXMZZvAxL9Vevspg59Zpn25unHuRA8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 22:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:06:9f:ea:31:2a:35:b5:0b:6a:c5:0e:3f:56:62:ea:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461 Validity Not Before: Jan 28 22:01:09 2026 GMT Not After : Jan 29 22:01:09 2026 GMT Subject: CN=a1088029198ebe15768ed89b56fc5485caabea0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:27:31:92:6b:f2:0d:78:79:7d:b3:10:03:49: 7c:76:0f:5a:17:0c:fb:2c:9a:65:6e:1c:a4:90:47: 6e:cb:ba:98:0f:d0:9b:ce:0f:f2:5b:ad:ff:2e:2c: 85:d8:74:60:99:78:b6:cb:98:1e:ae:ba:fa:ca:40: c7:0e:e2:87:27:a8:3a:51:98:fd:fd:c0:20:c0:06: 92:ac:a6:a8:59:52:e4:ca:b3:c9:ff:ce:16:ba:cb: da:af:31:e6:44:09:5c:22:9a:7c:84:e9:37:f4:97: b8:72:23:79:80:a1:ea:99:52:40:e5:8d:b2:6f:f5: 03:f5:40:3b:95:a8:05:14:76:e5:30:a9:73:31:b4: f3:08:8b:5b:09:0f:2a:3a:a2:5a:4f:cc:d1:16:cf: 58:d5:f0:78:70:79:ef:fb:64:b8:59:07:95:b4:7c: 1a:19:36:1f:53:53:a1:8b:77:8e:e1:f1:85:e5:ef: c3:62:31:de:30:c7:40:fc:c5:42:ae:78:f4:1e:1e: 88:33:e3:1f:b2:e6:84:ac:ee:fa:cc:39:67:ef:af: 5b:8b:50:7b:42:32:db:48:7e:25:1a:d4:00:32:69: f4:d6:4c:f9:1c:ba:df:88:c2:2f:b6:53:5c:ab:ab: 02:92:c0:f9:6c:0e:4c:09:75:24:6a:6c:48:6c:be: ba:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:08:80:29:19:8E:BE:15:76:8E:D8:9B:56:FC:54:85:CA:AB:EA:0D X509v3 Authority Key Identifier: keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:61:71:c2:6f:8a:9a:15:98:de:2a:59:be:10:b1:bf:97:de: 3f:42:cf:f5:44:60:26:8e:2b:8d:4b:2c:4a:92:98:81:87:c5: 4c:bc:15:41:89:ff:ad:82:64:74:f3:f2:72:1d:9d:60:66:fe: 28:86:60:7c:38:3b:fc:be:fd:18:eb:20:15:80:37:ca:78:3a: 5e:d8:fd:27:78:72:17:c7:d9:ca:dc:cf:44:2a:ff:9e:67:98: ab:01:62:ba:7c:e6:76:be:fd:34:52:01:ab:04:e7:51:64:65: 18:c9:39:09:b5:2f:9f:79:57:77:7e:c8:0a:1a:6d:2a:c0:50: 2f:a1:1e:fa:ef:6d:17:86:bb:cf:1a:25:94:2d:fc:70:e6:c9: db:9a:8d:f6:10:df:9f:2c:da:d1:0f:b3:72:a6:39:72:b6:45: 26:86:55:ba:99:15:46:e0:22:6b:c0:3c:9b:6b:dd:1f:01:ad: 84:e2:b5:84:f5:02:41:5f:6b:df:5d:12:7b:b9:da:25:5e:22: 19:92:a8:c7:98:63:5d:fb:86:03:45:7a:2a:18:c9:dc:05:1d: 28:dc:c5:21:ab:13:2a:ab:a0:8f:11:a4:e1:c5:1e:37:0f:9a: 08:0f:40:69:58:05:5e:01:db:c3:40:6d:40:02:88:e5:51:e0: 19:c8:31:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwGn+oxKjW1C2rFDj9WYupqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZmVjZmEwZTY2OTI1OTVjZmJlYTUyNjYwNzZlOGU1M2Vm ZDk0NjEwHhcNMjYwMTI4MjIwMTA5WhcNMjYwMTI5MjIwMTA5WjAzMTEwLwYDVQQD EyhhMTA4ODAyOTE5OGViZTE1NzY4ZWQ4OWI1NmZjNTQ4NWNhYWJlYTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqicxkmvyDXh5fbMQA0l8dg9aFwz7 LJplbhykkEduy7qYD9Cbzg/yW63/LiyF2HRgmXi2y5gerrr6ykDHDuKHJ6g6UZj9 /cAgwAaSrKaoWVLkyrPJ/84WusvarzHmRAlcIpp8hOk39Je4ciN5gKHqmVJA5Y2y b/UD9UA7lagFFHblMKlzMbTzCItbCQ8qOqJaT8zRFs9Y1fB4cHnv+2S4WQeVtHwa GTYfU1Ohi3eO4fGF5e/DYjHeMMdA/MVCrnj0Hh6IM+MfsuaErO76zDln769bi1B7 QjLbSH4lGtQAMmn01kz5HLrfiMIvtlNcq6sCksD5bA5MCXUkamxIbL66xQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKEIgCkZjr4Vdo7Ym1b8VIXKq+oNMB8GA1UdIwQY MBaAFG3+z6DmaSWVz76lJmB26OU+/ZRhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMt Zjk4OGQ0OGU1MWU4LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMtZjk4OGQ0OGU1MWU4 LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANWFxwm+K mhWY3ipZvhCxv5feP0LP9URgJo4rjUssSpKYgYfFTLwVQYn/rYJkdPPych2dYGb+ KIZgfDg7/L79GOsgFYA3yng6Xtj9J3hyF8fZytzPRCr/nmeYqwFiunzmdr79NFIB qwTnUWRlGMk5CbUvn3lXd37IChptKsBQL6Ee+u9tF4a7zxollC38cObJ25qN9hDf nyza0Q+zcqY5crZFJoZVupkVRuAia8A8m2vdHwGthOK1hPUCQV9r310Se7naJV4i GZKox5hjXfuGA0V6KhjJ3AUdKNzFIasTKqugjxGk4cUeNw+aCA9AaVgFXgHbw0Bt QAKI5VHgGcgxng== -----END CERTIFICATE-----Generated at Thu Jan 29 05:45:42 2026 by rpki-client