This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft File: evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json) Hash identifier: D35ZLQwcTjDoMJgQXneT2P4rvMzG7g45tvVWcPxL6/k= Subject key identifier: F2:46:F6:8E:BD:4D:AC:1B:77:D6:8E:F8:9E:A1:F2:3F:EE:2C:FF:E8 Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78 Certificate issuer: /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578 Certificate serial: 019BFAD2CFB975F0CE5D62171ABD3383AA7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft Manifest number: 0526 Signing time: Mon 26 Jan 2026 15:01:18 +0000 Manifest this update: Mon 26 Jan 2026 15:01:18 +0000 Manifest next update: Tue 27 Jan 2026 15:01:18 +0000 Files and hashes: 1: LFUS6tQiGpmjI6ItUVw2MpTAETI.roa (hash: FEu4LPnIRepU4N89SAmjCCbg/lOypjW1gLoZTKRnXmE=) 2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: v3vXhpR/TK/aZbffpR9T1MZvYNP4P3TfE+PRFBqu02s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:d2:cf:b9:75:f0:ce:5d:62:17:1a:bd:33:83:aa:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578 Validity Not Before: Jan 26 15:01:18 2026 GMT Not After : Jan 27 15:01:18 2026 GMT Subject: CN=f246f68ebd4dac1b77d68ef89ea1f23fee2cffe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f4:7e:9b:0a:ce:8b:ac:4e:ff:10:73:2f:6f: 2e:3f:f4:ba:8e:f4:99:b7:8b:db:1e:83:93:c4:92: 12:b6:00:ba:b6:91:1f:42:d5:62:7e:c5:7e:fc:aa: a4:4d:57:4f:48:ff:26:12:1a:48:5e:3f:f5:62:5e: 33:b3:d6:f3:57:5d:12:90:77:4e:9b:18:eb:31:3f: 2a:c4:0a:8a:b5:fb:f9:8e:08:d9:14:a2:45:58:97: b2:bd:48:0b:eb:ef:64:e1:40:05:1a:70:fa:6e:79: f4:01:58:b1:eb:58:e4:96:1c:7b:a4:3e:9b:9a:7e: 6d:c4:6e:05:95:b9:2c:b8:45:41:cc:15:08:1f:8f: 71:99:ee:e3:37:ba:23:c3:e3:03:c5:b5:c9:1c:a9: 0b:3a:e1:17:f1:d0:46:2c:29:f0:6c:d5:49:43:d0: d4:8c:44:e8:2a:a5:8b:51:f2:a4:be:01:af:78:f4: dd:78:01:36:42:0b:41:95:d0:37:11:f2:93:37:eb: 80:2f:c2:d0:6b:e0:7a:3b:8a:84:45:7c:fa:7a:c7: e1:c3:94:11:e1:dc:10:49:b5:55:2d:b0:2f:2e:93: a1:b7:ac:ca:fb:9f:05:dd:e2:48:7e:d6:c7:e6:6a: de:4e:3d:76:98:dd:ea:0a:f4:5d:a9:ec:e8:51:15: 5c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:46:F6:8E:BD:4D:AC:1B:77:D6:8E:F8:9E:A1:F2:3F:EE:2C:FF:E8 X509v3 Authority Key Identifier: keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:eb:9e:69:82:29:55:a5:85:8c:11:18:3d:df:be:8e:91:d0: d1:d2:46:ed:34:49:ae:80:52:a7:04:f0:f6:b0:4d:1f:11:72: 9b:5e:33:0f:8a:37:02:74:a2:da:7f:af:fd:f1:4d:4e:93:ca: 33:48:fa:09:26:87:a5:44:56:1c:fb:62:a0:52:79:e1:4e:cc: 51:e5:db:31:c4:fc:1a:bd:47:68:79:d9:f1:3e:6a:47:7c:b4: 90:76:f8:91:35:fe:5d:9f:e9:60:f9:5d:d7:4d:c2:83:c6:5d: 2f:17:12:4b:c1:dc:41:e6:1b:2b:db:bd:ba:50:5e:33:d5:33: 8b:6d:ac:5f:ee:31:c6:b1:99:f9:6e:d2:a1:19:54:86:2d:f6: b7:f8:0d:37:f0:7e:41:71:95:3d:a3:64:2a:ac:3f:bf:ed:1a: fe:0f:b7:d2:36:cf:03:22:34:75:c9:8f:94:17:53:52:30:89: ad:52:3a:ae:8c:78:1a:c0:f3:8c:72:09:24:c0:03:95:f5:5a: 4e:95:63:bc:b1:7b:0d:f6:20:34:87:5a:32:4b:26:49:c7:ff: 62:cc:2b:d1:e4:32:56:bb:6b:4a:48:02:3a:40:61:c8:3a:40: 2f:c4:98:aa:c5:9e:b0:6c:90:48:0d:ae:c2:7c:18:a7:5e:6a: 7b:9b:aa:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv60s+5dfDOXWIXGr0zg6p7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhZjFhN2JmNzQyODVkYjJlODIwOTFmYmY0NjNhMmVlZjZl M2E1NzgwHhcNMjYwMTI2MTUwMTE4WhcNMjYwMTI3MTUwMTE4WjAzMTEwLwYDVQQD EyhmMjQ2ZjY4ZWJkNGRhYzFiNzdkNjhlZjg5ZWExZjIzZmVlMmNmZmU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfR+mwrOi6xO/xBzL28uP/S6jvSZ t4vbHoOTxJIStgC6tpEfQtVifsV+/KqkTVdPSP8mEhpIXj/1Yl4zs9bzV10SkHdO mxjrMT8qxAqKtfv5jgjZFKJFWJeyvUgL6+9k4UAFGnD6bnn0AVix61jklhx7pD6b mn5txG4FlbksuEVBzBUIH49xme7jN7ojw+MDxbXJHKkLOuEX8dBGLCnwbNVJQ9DU jEToKqWLUfKkvgGvePTdeAE2QgtBldA3EfKTN+uAL8LQa+B6O4qERXz6esfhw5QR 4dwQSbVVLbAvLpOht6zK+58F3eJIftbH5mreTj12mN3qCvRdqezoURVckQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPJG9o69Tawbd9aO+J6h8j/uLP/oMB8GA1UdIwQY MBaAFHrxp790KF2y6CCR+/Rjou7246V4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZXZHbnYzUW9YYkxvSUpINzlHT2k3dmJqcFhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8wNTg0MzUtYTFjNi00NDM2LTk1YTIt YjcxMTRiNjlmODRjLzEvZXZHbnYzUW9YYkxvSUpINzlHT2k3dmJqcFhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8wNTg0MzUtYTFjNi00NDM2LTk1YTItYjcxMTRiNjlmODRj LzEvZXZHbnYzUW9YYkxvSUpINzlHT2k3dmJqcFhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABuueaYIp VaWFjBEYPd++jpHQ0dJG7TRJroBSpwTw9rBNHxFym14zD4o3AnSi2n+v/fFNTpPK M0j6CSaHpURWHPtioFJ54U7MUeXbMcT8Gr1HaHnZ8T5qR3y0kHb4kTX+XZ/pYPld 103Cg8ZdLxcSS8HcQeYbK9u9ulBeM9Uzi22sX+4xxrGZ+W7SoRlUhi32t/gNN/B+ QXGVPaNkKqw/v+0a/g+30jbPAyI0dcmPlBdTUjCJrVI6rox4GsDzjHIJJMADlfVa TpVjvLF7DfYgNIdaMksmScf/Yswr0eQyVrtrSkgCOkBhyDpAL8SYqsWesGyQSA2u wnwYp15qe5uqNQ== -----END CERTIFICATE-----Generated at Mon Jan 26 19:10:56 2026 by rpki-client