This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft File: U4Vcjs6b1vjjlAICISzgmwX1-KA.mft (raw, json) Hash identifier: cxzR9mlgZ9SGIkJF8F87t5oTQsMV9ghFvFnzEx5SSo0= Subject key identifier: CD:4D:27:56:43:05:53:82:77:C6:B4:53:A3:BC:67:D3:C6:82:83:99 Authority key identifier: 53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0 Certificate issuer: /CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0 Certificate serial: 019BDEB6830AC4CA8702B644B64CDBE1A351 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft Manifest number: 146F Signing time: Wed 21 Jan 2026 04:01:01 +0000 Manifest this update: Wed 21 Jan 2026 04:01:01 +0000 Manifest next update: Thu 22 Jan 2026 04:01:01 +0000 Files and hashes: 1: U4Vcjs6b1vjjlAICISzgmwX1-KA.crl (hash: iJLCq4IAW/Te+YwNiVYV4gGqEm1pR6nmCprwyY8Bgyo=) 2: wOCmhg5ukUDjqYrrNe8HL0c6WHY.roa (hash: py0DTzjoQh1bUaOEwoDGjjlil3qVagDVLMDa9WBCMVE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 04:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:de:b6:83:0a:c4:ca:87:02:b6:44:b6:4c:db:e1:a3:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0 Validity Not Before: Jan 21 04:01:01 2026 GMT Not After : Jan 22 04:01:01 2026 GMT Subject: CN=cd4d27564305538277c6b453a3bc67d3c6828399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:4c:4f:b8:f8:a0:ce:96:b9:01:10:1d:41:19: 11:e2:9d:5c:bc:52:87:eb:a2:6b:5e:b6:e3:d2:5d: 4f:82:8c:36:4b:6e:40:44:01:38:f9:09:bc:9c:d8: c7:34:64:ad:c5:b2:29:84:ad:c2:86:8e:04:7e:85: 3f:48:a6:d6:86:13:64:fd:35:0d:33:23:6f:b9:ad: 86:b6:ca:ca:7f:df:40:99:56:7c:a5:47:08:07:a2: 0c:aa:68:1c:cb:74:4b:47:0e:0b:d7:42:e4:fa:3c: fa:e1:95:42:fa:ce:34:f0:de:eb:8c:41:36:31:94: cd:9e:44:c4:23:45:7c:1e:46:ee:b9:f4:1f:b5:94: 02:79:7f:d5:cd:0c:7f:6e:54:3d:d5:a9:0b:da:2a: a6:5e:be:63:06:28:ab:c9:99:56:12:65:17:f3:8d: 55:17:5a:8e:2a:d3:73:9b:5e:a9:db:98:0f:9c:69: 98:a3:60:3c:4a:43:28:20:3b:c2:96:50:8a:88:41: 96:e6:59:c4:f7:3e:0c:bb:7d:08:b4:f3:98:4d:69: b2:84:e0:bb:24:5d:65:06:0b:14:86:a2:dc:d6:a8: 35:c3:97:10:02:58:38:13:c7:a3:9b:69:74:13:15: 85:92:93:0a:95:25:83:c9:52:be:33:aa:e8:5c:30: 04:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:4D:27:56:43:05:53:82:77:C6:B4:53:A3:BC:67:D3:C6:82:83:99 X509v3 Authority Key Identifier: keyid:53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:46:5c:d3:fd:dc:80:93:e9:15:cc:a0:2e:11:bc:29:b3:e5: af:19:4b:c6:92:82:a1:e2:b6:b7:22:d2:91:6d:9e:b6:40:c9: a1:de:ef:10:be:ed:c1:e0:d2:bb:35:a4:61:d5:32:1b:69:1e: 38:5c:c9:91:5d:62:f9:c2:fb:d0:47:81:49:73:7d:4b:22:8f: 2a:82:61:b5:1e:90:33:c3:6f:96:16:1c:ed:b5:d4:cc:78:8c: fd:ae:f2:43:5f:f0:5d:91:59:0a:21:90:fb:47:5d:dc:10:78: ee:d5:76:19:16:c3:c6:e8:39:c3:8f:be:24:30:91:0b:ae:11: 00:f5:1f:ea:46:dd:22:71:73:bf:99:c8:c2:62:ab:11:c0:4a: 37:67:5c:47:16:87:89:d8:84:af:3f:4b:5c:d1:05:e7:bc:d8: ee:97:f9:b6:f2:f9:31:8a:bf:d8:14:fe:66:ec:c7:7c:dc:74: 37:4b:a0:84:74:f1:79:02:d0:a8:3e:51:2f:9b:f4:e8:12:1b: 23:57:97:31:89:86:f0:36:22:52:62:a0:5f:53:36:3c:17:4d: 2e:d9:13:2f:4b:70:a9:b0:d2:2a:0a:80:8e:cc:d0:78:28:28: 1e:8a:47:8d:fa:c7:fc:6b:06:a7:ea:30:9c:53:fc:56:77:f8: ec:6d:b3:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvetoMKxMqHArZEtkzb4aNRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzODU1YzhlY2U5YmQ2ZjhlMzk0MDIwMjIxMmNlMDliMDVm NWY4YTAwHhcNMjYwMTIxMDQwMTAxWhcNMjYwMTIyMDQwMTAxWjAzMTEwLwYDVQQD EyhjZDRkMjc1NjQzMDU1MzgyNzdjNmI0NTNhM2JjNjdkM2M2ODI4Mzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+0xPuPigzpa5ARAdQRkR4p1cvFKH 66JrXrbj0l1Pgow2S25ARAE4+Qm8nNjHNGStxbIphK3Cho4EfoU/SKbWhhNk/TUN MyNvua2GtsrKf99AmVZ8pUcIB6IMqmgcy3RLRw4L10Lk+jz64ZVC+s408N7rjEE2 MZTNnkTEI0V8HkbuufQftZQCeX/VzQx/blQ91akL2iqmXr5jBiiryZlWEmUX841V F1qOKtNzm16p25gPnGmYo2A8SkMoIDvCllCKiEGW5lnE9z4Mu30ItPOYTWmyhOC7 JF1lBgsUhqLc1qg1w5cQAlg4E8ejm2l0ExWFkpMKlSWDyVK+M6roXDAEfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM1NJ1ZDBVOCd8a0U6O8Z9PGgoOZMB8GA1UdIwQY MBaAFFOFXI7Om9b445QCAiEs4JsF9figMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTRWY2pzNmIxdmpqbEFJQ0lTemdtd1gxLUtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi84MzM2YjAtY2JlNC00ZGEyLTg0MWIt MWNlZmQxZmExMGE2LzEvVTRWY2pzNmIxdmpqbEFJQ0lTemdtd1gxLUtBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi84MzM2YjAtY2JlNC00ZGEyLTg0MWItMWNlZmQxZmExMGE2 LzEvVTRWY2pzNmIxdmpqbEFJQ0lTemdtd1gxLUtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt0Zc0/3c gJPpFcygLhG8KbPlrxlLxpKCoeK2tyLSkW2etkDJod7vEL7tweDSuzWkYdUyG2ke OFzJkV1i+cL70EeBSXN9SyKPKoJhtR6QM8NvlhYc7bXUzHiM/a7yQ1/wXZFZCiGQ +0dd3BB47tV2GRbDxug5w4++JDCRC64RAPUf6kbdInFzv5nIwmKrEcBKN2dcRxaH idiErz9LXNEF57zY7pf5tvL5MYq/2BT+ZuzHfNx0N0ughHTxeQLQqD5RL5v06BIb I1eXMYmG8DYiUmKgX1M2PBdNLtkTL0twqbDSKgqAjszQeCgoHopHjfrH/GsGp+ow nFP8Vnf47G2zjw== -----END CERTIFICATE-----Generated at Wed Jan 21 13:35:56 2026 by rpki-client