This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft File: dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft (raw, json) Hash identifier: t7fOR9oW1OopoUW/GOOGSjtopgyO86Bvq6KZq48LjCs= Subject key identifier: 12:EE:36:62:D9:AD:44:B7:B8:FA:8A:10:76:0F:BF:C3:07:A0:D5:7A Authority key identifier: 74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9 Certificate issuer: /CN=74d7da63929999603395877448ce50ac6e0213a9 Certificate serial: 019BE0004DC3FD0FE8D1601ADC591BD5295C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft Manifest number: 1044 Signing time: Wed 21 Jan 2026 10:01:14 +0000 Manifest this update: Wed 21 Jan 2026 10:01:14 +0000 Manifest next update: Thu 22 Jan 2026 10:01:14 +0000 Files and hashes: 1: SwOC6LWRUnc-Ogb7u3vxF_0mea4.roa (hash: /q8N1XNG3IXyW6BA6haLHv1Ug3hcBfXRJEVoULv8zlE=) 2: dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl (hash: jY7lH+9nd/W0gWBupBgiGVYogIZCJvOvPJUFAXmJcZc=) 3: iGjEi-RetR317ng4nZLQERiyp5Y.roa (hash: VlJirjJKzaqO+FqHC1L2a0e5Ten97AODI8Xgtdno6FA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:00:4d:c3:fd:0f:e8:d1:60:1a:dc:59:1b:d5:29:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74d7da63929999603395877448ce50ac6e0213a9 Validity Not Before: Jan 21 10:01:14 2026 GMT Not After : Jan 22 10:01:14 2026 GMT Subject: CN=12ee3662d9ad44b7b8fa8a10760fbfc307a0d57a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:80:ab:64:87:96:d9:54:6f:87:40:a6:9a:5d: 06:d0:e3:6c:3b:23:e8:34:92:79:cc:e0:b7:1e:c5: e9:fd:26:2c:05:0e:fc:10:88:18:6b:48:eb:12:75: 84:71:e1:78:4f:6c:97:51:79:27:22:5b:b6:29:82: 7a:26:56:0b:a5:de:06:12:19:4a:c3:ec:07:de:3e: 18:dc:1e:5a:d6:3d:84:ea:b6:7e:64:7e:41:d4:8f: ee:9b:82:a6:70:0a:92:c2:42:95:25:0b:8d:5e:40: c8:ec:e7:c3:f8:19:9b:43:67:aa:79:6a:31:f6:e1: 89:06:df:96:c1:40:eb:77:e2:f0:a2:f0:21:1c:06: af:d1:5e:5c:26:e1:22:12:b4:9c:27:d5:76:f7:e3: 31:82:8d:12:b4:e1:60:81:ca:8b:ad:08:1b:62:14: 44:7e:c4:8a:f5:a3:26:86:4b:ba:ed:20:65:2d:23: c8:aa:59:0d:3e:b8:02:ec:5d:51:4c:1c:5f:8d:be: 11:05:69:71:51:d0:05:1d:6b:02:10:ca:08:7b:f0: b9:a0:da:20:5f:15:7c:19:f7:f9:e4:40:99:07:52: 4f:31:2f:b0:98:d0:67:3f:09:46:9c:82:d4:b4:bb: 02:bd:ad:0a:73:83:11:76:4d:ba:fd:58:40:b0:28: 46:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:EE:36:62:D9:AD:44:B7:B8:FA:8A:10:76:0F:BF:C3:07:A0:D5:7A X509v3 Authority Key Identifier: keyid:74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:56:b4:d6:e8:52:ad:70:0d:da:e7:d2:1a:ef:e5:4c:4d:b1: b0:91:6b:a6:a8:8b:a1:77:d0:78:1b:71:c8:46:16:22:8f:ed: 1a:65:a3:18:11:4a:c3:f2:47:0f:00:0f:b0:9d:92:b7:01:d9: c5:ae:40:55:dc:a3:c2:ce:9d:de:dc:91:77:37:10:ed:b9:a5: 9b:1e:a9:c3:59:bf:35:65:6a:97:86:41:57:f5:2d:40:84:6f: 74:25:2b:02:e8:37:f2:f2:82:3d:74:6a:b8:95:d7:98:83:e9: 34:e9:be:2f:16:c5:88:ff:21:66:71:49:53:a6:74:a4:36:8f: 9a:c1:84:53:84:47:7e:b7:29:1b:8d:23:cf:a8:da:09:22:e2: 9a:f6:4e:ca:da:fd:d5:e8:b2:ff:cf:6f:99:e9:23:c8:41:2f: 1b:e9:8f:dd:36:2a:79:81:d7:a5:f3:14:50:35:2d:1b:92:bd: a8:26:07:b1:6f:be:a7:50:f5:69:fc:0c:42:ee:78:1d:1a:8a: c2:d0:91:71:ff:e7:c8:fa:e8:73:9a:47:5b:71:74:36:ae:d4: 30:90:ee:e2:99:f1:f7:12:87:03:d4:05:10:db:17:d2:a3:88: 88:19:e0:2b:ae:10:55:f4:71:4d:52:9a:be:26:02:e8:f7:0e: b9:95:bd:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvgAE3D/Q/o0WAa3Fkb1SlcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZDdkYTYzOTI5OTk5NjAzMzk1ODc3NDQ4Y2U1MGFjNmUw MjEzYTkwHhcNMjYwMTIxMTAwMTE0WhcNMjYwMTIyMTAwMTE0WjAzMTEwLwYDVQQD EygxMmVlMzY2MmQ5YWQ0NGI3YjhmYThhMTA3NjBmYmZjMzA3YTBkNTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYCrZIeW2VRvh0Cmml0G0ONsOyPo NJJ5zOC3HsXp/SYsBQ78EIgYa0jrEnWEceF4T2yXUXknIlu2KYJ6JlYLpd4GEhlK w+wH3j4Y3B5a1j2E6rZ+ZH5B1I/um4KmcAqSwkKVJQuNXkDI7OfD+BmbQ2eqeWox 9uGJBt+WwUDrd+LwovAhHAav0V5cJuEiErScJ9V29+Mxgo0StOFggcqLrQgbYhRE fsSK9aMmhku67SBlLSPIqlkNPrgC7F1RTBxfjb4RBWlxUdAFHWsCEMoIe/C5oNog XxV8Gff55ECZB1JPMS+wmNBnPwlGnILUtLsCva0Kc4MRdk26/VhAsChGsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBLuNmLZrUS3uPqKEHYPv8MHoNV6MB8GA1UdIwQY MBaAFHTX2mOSmZlgM5WHdEjOUKxuAhOpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE5mYVk1S1ptV0F6bFlkMFNNNVFyRzRDRTZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8wZWI4NTItYWYzNC00Y2I5LTg3MmUt NGI1ZDVkNWY4Njk5LzEvZE5mYVk1S1ptV0F6bFlkMFNNNVFyRzRDRTZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC8wZWI4NTItYWYzNC00Y2I5LTg3MmUtNGI1ZDVkNWY4Njk5 LzEvZE5mYVk1S1ptV0F6bFlkMFNNNVFyRzRDRTZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPla01uhS rXAN2ufSGu/lTE2xsJFrpqiLoXfQeBtxyEYWIo/tGmWjGBFKw/JHDwAPsJ2StwHZ xa5AVdyjws6d3tyRdzcQ7bmlmx6pw1m/NWVql4ZBV/UtQIRvdCUrAug38vKCPXRq uJXXmIPpNOm+LxbFiP8hZnFJU6Z0pDaPmsGEU4RHfrcpG40jz6jaCSLimvZOytr9 1eiy/89vmekjyEEvG+mP3TYqeYHXpfMUUDUtG5K9qCYHsW++p1D1afwMQu54HRqK wtCRcf/nyProc5pHW3F0Nq7UMJDu4pnx9xKHA9QFENsX0qOIiBngK64QVfRxTVKa viYC6PcOuZW9Xw== -----END CERTIFICATE-----Generated at Wed Jan 21 13:36:33 2026 by rpki-client