This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft File: cHdwf2aXiCaodeuNLrMzvthWlmc.mft (raw, json) Hash identifier: K6eSdOsR83pbcp6JvM2tafjJWkU5r9M84b0xUzRVd9s= Subject key identifier: 88:23:F7:F6:B6:61:B8:71:61:A1:6C:ED:02:7F:73:5C:7A:E9:DB:CA Authority key identifier: 70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67 Certificate issuer: /CN=7077707f66978826a875eb8d2eb333bed8569667 Certificate serial: 019BFE78F4CA7C6037F77080BE1DCAEB4444 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft Manifest number: 09D3 Signing time: Tue 27 Jan 2026 08:01:38 +0000 Manifest this update: Tue 27 Jan 2026 08:01:38 +0000 Manifest next update: Wed 28 Jan 2026 08:01:38 +0000 Files and hashes: 1: cHdwf2aXiCaodeuNLrMzvthWlmc.crl (hash: fOlR7wMLwF9v2NFH5E6NPbs6g5mJPjGgDOQ/fDjEywE=) 2: uQBI9CCKkaQ15QLDKCoXQ9CMr50.roa (hash: 2DCBMNVSZ9VX6UXs8yIhflCej68SIec+3/kzpBsnYa4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fe:78:f4:ca:7c:60:37:f7:70:80:be:1d:ca:eb:44:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7077707f66978826a875eb8d2eb333bed8569667 Validity Not Before: Jan 27 08:01:38 2026 GMT Not After : Jan 28 08:01:38 2026 GMT Subject: CN=8823f7f6b661b87161a16ced027f735c7ae9dbca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e2:d5:6b:4e:c2:c4:b1:7d:b7:09:fa:93:ee: 73:3c:76:ee:c1:a5:f5:57:98:3e:39:98:18:3b:14: ec:a1:09:b6:ed:39:d9:12:d5:c7:20:a9:b5:7d:ba: f2:1e:7f:a3:2d:b3:b9:2f:7d:b4:6f:9f:de:b0:44: 0c:35:e2:25:4d:ba:57:ce:6e:32:ee:cf:10:49:f2: e9:99:ae:f8:8e:22:08:19:64:41:b8:2b:2d:e5:00: 63:4c:dc:b4:98:db:c9:6a:c0:ed:ef:71:96:71:b8: 28:2e:d7:a6:bf:df:f8:ce:f9:63:01:de:e9:a1:42: 2a:5e:72:b8:27:de:7f:d5:2c:39:0b:6e:a0:05:64: 9a:ef:d8:5f:77:4a:dd:9b:1d:97:f8:f7:d5:07:48: 8b:48:e9:d2:1f:51:01:d0:65:22:c9:41:65:f2:f6: 77:0a:e7:48:ef:27:ba:01:ca:a1:70:73:e2:06:ea: ec:35:0e:8b:08:e7:4f:31:f9:a4:fe:5d:13:31:40: 80:07:de:2f:bc:55:73:9d:83:32:79:7d:db:ff:29: d0:bb:5d:97:1d:be:b5:1d:88:6c:10:16:85:d2:9a: 8a:8b:98:fe:e8:09:c9:76:f4:af:ae:6d:b2:33:5d: 2b:4b:c3:20:05:9d:60:97:8e:f2:f5:5b:a0:28:53: 70:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:23:F7:F6:B6:61:B8:71:61:A1:6C:ED:02:7F:73:5C:7A:E9:DB:CA X509v3 Authority Key Identifier: keyid:70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:29:a2:43:fb:77:78:12:01:b6:ce:bb:61:f7:5f:6f:52:b3: c6:11:fa:2d:69:a7:2c:82:f9:c0:3d:4b:e0:4d:c2:d8:a0:0b: 5c:cb:f4:95:f5:5c:34:cb:19:ca:a7:7a:22:91:b1:52:a2:59: da:e1:e1:1d:2a:2c:60:1d:60:3c:df:58:6e:ef:e9:2d:aa:17: 44:30:3c:08:69:84:5b:19:62:24:76:33:20:d3:05:85:ca:c9: 3b:a0:09:5e:9c:54:3d:97:ac:69:6e:69:ec:69:db:48:ea:6b: f4:1f:9d:1c:3f:6b:92:f0:e8:d9:40:09:4f:b4:3c:3a:fe:b9: 2c:26:3f:9d:cd:fe:a0:8c:d8:92:e0:38:95:07:7a:42:2d:34: c4:d8:f9:a1:36:92:82:8b:96:6d:c5:41:73:82:81:41:6f:9c: f9:6f:4e:df:45:b2:d6:66:ff:cb:66:08:68:0c:41:0e:89:d5: 24:07:0d:ac:fb:8f:9b:d3:2d:75:33:ab:5b:94:47:4d:e5:6f: 99:aa:a0:20:4c:d5:cb:8c:99:18:01:56:d9:66:1f:cd:24:01: a4:f2:8b:0b:05:68:cc:06:ac:10:af:cd:1a:b7:a5:da:c0:b9: 43:46:51:16:6a:88:72:66:dd:e6:aa:05:cd:3f:2f:55:b7:7a: 63:0e:27:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv+ePTKfGA393CAvh3K60REMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwNzc3MDdmNjY5Nzg4MjZhODc1ZWI4ZDJlYjMzM2JlZDg1 Njk2NjcwHhcNMjYwMTI3MDgwMTM4WhcNMjYwMTI4MDgwMTM4WjAzMTEwLwYDVQQD Eyg4ODIzZjdmNmI2NjFiODcxNjFhMTZjZWQwMjdmNzM1YzdhZTlkYmNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuLVa07CxLF9twn6k+5zPHbuwaX1 V5g+OZgYOxTsoQm27TnZEtXHIKm1fbryHn+jLbO5L320b5/esEQMNeIlTbpXzm4y 7s8QSfLpma74jiIIGWRBuCst5QBjTNy0mNvJasDt73GWcbgoLtemv9/4zvljAd7p oUIqXnK4J95/1Sw5C26gBWSa79hfd0rdmx2X+PfVB0iLSOnSH1EB0GUiyUFl8vZ3 CudI7ye6AcqhcHPiBursNQ6LCOdPMfmk/l0TMUCAB94vvFVznYMyeX3b/ynQu12X Hb61HYhsEBaF0pqKi5j+6AnJdvSvrm2yM10rS8MgBZ1gl47y9VugKFNw4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIgj9/a2YbhxYaFs7QJ/c1x66dvKMB8GA1UdIwQY MBaAFHB3cH9ml4gmqHXrjS6zM77YVpZnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0hkd2YyYVhpQ2FvZGV1TkxyTXp2dGhXbG1jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9iOWExYTAtNmFkYS00ZGRlLTk2NWIt NDZmZjdjZTJjMTQwLzEvY0hkd2YyYVhpQ2FvZGV1TkxyTXp2dGhXbG1jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi9iOWExYTAtNmFkYS00ZGRlLTk2NWItNDZmZjdjZTJjMTQw LzEvY0hkd2YyYVhpQ2FvZGV1TkxyTXp2dGhXbG1jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnymiQ/t3 eBIBts67Yfdfb1KzxhH6LWmnLIL5wD1L4E3C2KALXMv0lfVcNMsZyqd6IpGxUqJZ 2uHhHSosYB1gPN9Ybu/pLaoXRDA8CGmEWxliJHYzINMFhcrJO6AJXpxUPZesaW5p 7GnbSOpr9B+dHD9rkvDo2UAJT7Q8Ov65LCY/nc3+oIzYkuA4lQd6Qi00xNj5oTaS gouWbcVBc4KBQW+c+W9O30Wy1mb/y2YIaAxBDonVJAcNrPuPm9MtdTOrW5RHTeVv maqgIEzVy4yZGAFW2WYfzSQBpPKLCwVozAasEK/NGrel2sC5Q0ZRFmqIcmbd5qoF zT8vVbd6Yw4nDA== -----END CERTIFICATE-----Generated at Tue Jan 27 10:16:49 2026 by rpki-client