This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft File: lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft (raw, json) Hash identifier: 0/VbtfqZ075HOomXaIEB8m1AGzdjqPrnZbOZKv6zPiY= Subject key identifier: C0:3E:28:6F:95:30:44:91:F0:9D:B2:15:39:FA:E2:B8:38:58:DF:2D Authority key identifier: 94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A Certificate issuer: /CN=943bc576732374e8d89d7013ab3630b6e0a9f19a Certificate serial: 019BFEE6612B5EDCE359A06CD83286AA48BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft Manifest number: 1214 Signing time: Tue 27 Jan 2026 10:01:09 +0000 Manifest this update: Tue 27 Jan 2026 10:01:09 +0000 Manifest next update: Wed 28 Jan 2026 10:01:09 +0000 Files and hashes: 1: XA0hanAouJl2ycFS_6jOkWOebDo.roa (hash: A3fTkPkEhBhccpT47iyF3/WYn8UVXxPajs9rFRIKGYs=) 2: lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl (hash: rHjbZgaBu0dUS8bQ3i3E1o+v0YqzfTWIanjXhD7nf6s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fe:e6:61:2b:5e:dc:e3:59:a0:6c:d8:32:86:aa:48:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=943bc576732374e8d89d7013ab3630b6e0a9f19a Validity Not Before: Jan 27 10:01:09 2026 GMT Not After : Jan 28 10:01:09 2026 GMT Subject: CN=c03e286f95304491f09db21539fae2b83858df2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9c:bf:b2:13:6b:52:f6:23:3f:a1:af:27:ff: e4:64:50:3b:d2:6b:a1:50:c4:02:1a:eb:cc:d0:bb: 34:35:2d:4f:9b:d3:14:e6:c9:bd:1e:11:17:8f:de: 14:ab:1c:e3:2b:f7:50:2b:a5:d7:58:74:ca:21:70: b5:91:9b:d7:62:cf:d2:32:a0:e2:d9:1d:d4:9d:67: ed:15:2a:8b:ec:45:6d:6f:9b:65:60:14:4b:87:d4: 17:54:22:13:02:89:77:e1:a9:0b:e2:20:79:18:3e: 01:c8:51:4e:f4:61:3e:8b:0f:bc:81:77:c4:91:ec: 82:4c:3a:ed:f6:9f:4a:73:46:6c:cd:75:8f:c4:22: aa:5d:e1:cc:05:25:8e:b0:01:c2:3b:5b:04:21:04: 7d:28:2a:fd:4b:81:99:87:7d:23:59:3e:17:ab:3b: 27:2f:1b:be:9c:1f:0b:22:58:0f:35:ad:75:a8:22: 13:18:b2:da:4a:87:6c:5f:c3:ec:d3:dc:2a:b5:f9: b3:dd:12:b0:d6:e6:7d:4d:e9:d8:ea:a3:a0:0d:b5: c5:41:67:f7:1d:fe:5d:54:8b:32:2c:f8:e2:92:67: 24:e6:de:16:a8:3c:6f:17:d8:2f:c8:af:15:c2:59: 19:1b:c2:91:f3:64:1e:1e:a1:6a:0a:b3:1f:72:a8: 1c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3E:28:6F:95:30:44:91:F0:9D:B2:15:39:FA:E2:B8:38:58:DF:2D X509v3 Authority Key Identifier: keyid:94:3B:C5:76:73:23:74:E8:D8:9D:70:13:AB:36:30:B6:E0:A9:F1:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDvFdnMjdOjYnXATqzYwtuCp8Zo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b8d065-ed81-409e-b1f1-76ab3fca1f32/1/lDvFdnMjdOjYnXATqzYwtuCp8Zo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:82:70:47:91:2a:30:29:a6:19:7c:ec:fa:0e:3d:db:83:cc: d9:14:4c:7c:da:4e:4b:de:7d:a2:b0:d0:7a:bf:cc:8d:29:6a: ee:20:05:08:c9:a6:31:05:4d:c1:73:4d:a5:e9:f7:97:6e:09: 03:95:7d:93:1d:7f:a4:67:c1:55:66:d8:44:96:80:ae:24:7f: 8d:e7:d0:b3:34:aa:91:8f:93:c6:b9:6f:15:a7:d7:d7:28:cf: 88:a5:93:f9:6b:cd:2a:40:fe:30:b6:c5:99:aa:1a:84:86:27: 80:51:ca:73:be:a2:83:43:ba:26:09:27:0b:48:5b:0b:85:a0: 35:26:aa:4a:ee:55:f1:01:dd:37:cd:e9:55:8a:be:c5:fe:db: a5:dc:6e:ee:bc:0d:83:28:ff:4f:bc:e1:78:88:f2:b3:0e:d3: 90:55:da:bf:0c:a2:62:63:36:9e:50:20:be:b3:f2:06:e1:77: ea:c9:78:03:89:12:32:67:93:6d:05:76:55:c4:19:13:f4:70: 2a:b2:91:04:85:b1:46:d8:84:22:b1:24:d8:af:ac:fa:22:b3: a8:34:4f:81:02:9c:90:9e:c0:c9:3e:33:40:62:55:2b:0f:d2: 32:09:d4:f2:f1:b1:98:b5:93:a1:a9:fe:86:8d:df:5d:1e:af: 7e:c1:1f:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv+5mErXtzjWaBs2DKGqki/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0M2JjNTc2NzMyMzc0ZThkODlkNzAxM2FiMzYzMGI2ZTBh OWYxOWEwHhcNMjYwMTI3MTAwMTA5WhcNMjYwMTI4MTAwMTA5WjAzMTEwLwYDVQQD EyhjMDNlMjg2Zjk1MzA0NDkxZjA5ZGIyMTUzOWZhZTJiODM4NThkZjJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpy/shNrUvYjP6GvJ//kZFA70muh UMQCGuvM0Ls0NS1Pm9MU5sm9HhEXj94UqxzjK/dQK6XXWHTKIXC1kZvXYs/SMqDi 2R3UnWftFSqL7EVtb5tlYBRLh9QXVCITAol34akL4iB5GD4ByFFO9GE+iw+8gXfE keyCTDrt9p9Kc0ZszXWPxCKqXeHMBSWOsAHCO1sEIQR9KCr9S4GZh30jWT4Xqzsn Lxu+nB8LIlgPNa11qCITGLLaSodsX8Ps09wqtfmz3RKw1uZ9TenY6qOgDbXFQWf3 Hf5dVIsyLPjikmck5t4WqDxvF9gvyK8VwlkZG8KR82QeHqFqCrMfcqgc6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMA+KG+VMESR8J2yFTn64rg4WN8tMB8GA1UdIwQY MBaAFJQ7xXZzI3To2J1wE6s2MLbgqfGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbER2RmRuTWpkT2pZblhBVHF6WXd0dUNwOFpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9iOGQwNjUtZWQ4MS00MDllLWIxZjEt NzZhYjNmY2ExZjMyLzEvbER2RmRuTWpkT2pZblhBVHF6WXd0dUNwOFpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS9iOGQwNjUtZWQ4MS00MDllLWIxZjEtNzZhYjNmY2ExZjMy LzEvbER2RmRuTWpkT2pZblhBVHF6WXd0dUNwOFpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT4JwR5Eq MCmmGXzs+g4924PM2RRMfNpOS959orDQer/MjSlq7iAFCMmmMQVNwXNNpen3l24J A5V9kx1/pGfBVWbYRJaAriR/jefQszSqkY+TxrlvFafX1yjPiKWT+WvNKkD+MLbF maoahIYngFHKc76ig0O6JgknC0hbC4WgNSaqSu5V8QHdN83pVYq+xf7bpdxu7rwN gyj/T7zheIjysw7TkFXavwyiYmM2nlAgvrPyBuF36sl4A4kSMmeTbQV2VcQZE/Rw KrKRBIWxRtiEIrEk2K+s+iKzqDRPgQKckJ7AyT4zQGJVKw/SMgnU8vGxmLWToan+ ho3fXR6vfsEf9Q== -----END CERTIFICATE-----Generated at Tue Jan 27 16:07:46 2026 by rpki-client