This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft File: kmyYtRBh80DM5OC0zjYc40q8L84.mft (raw, json) Hash identifier: Z62zt5ZAoSWiwmlz8F5pKfQKoDjOL3O+LkE+bot/omc= Subject key identifier: 77:39:63:9C:1E:BB:35:32:66:90:9C:82:FA:35:30:EE:F1:18:EA:45 Authority key identifier: 92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE Certificate issuer: /CN=926c98b51061f340cce4e0b4ce361ce34abc2fce Certificate serial: 019BFA2E039FAEB23A710C45C0860D66693B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft Manifest number: 0837 Signing time: Mon 26 Jan 2026 12:01:18 +0000 Manifest this update: Mon 26 Jan 2026 12:01:18 +0000 Manifest next update: Tue 27 Jan 2026 12:01:18 +0000 Files and hashes: 1: MXA3c8QX3g7YwiQOnrLTeGWh5fs.roa (hash: E7jF1me4KBNOx1U7XGJgq5UdFci6SFszrBrpba8pjPc=) 2: kmyYtRBh80DM5OC0zjYc40q8L84.crl (hash: MPq2ob0DIJqLZ+iIDBAJzXFeDQ2LOD32oH04yD0mexA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2e:03:9f:ae:b2:3a:71:0c:45:c0:86:0d:66:69:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=926c98b51061f340cce4e0b4ce361ce34abc2fce Validity Not Before: Jan 26 12:01:18 2026 GMT Not After : Jan 27 12:01:18 2026 GMT Subject: CN=7739639c1ebb353266909c82fa3530eef118ea45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bb:ed:cd:10:a5:7b:a3:83:e3:71:4b:e3:17: 74:3b:12:62:1c:a3:b7:e2:fd:0c:2b:1f:33:b7:b2: a8:1b:3a:ee:77:a6:5e:e9:7c:68:de:6a:20:fa:41: d6:92:fd:5b:d6:5f:78:1e:bb:85:97:45:60:76:b9: 94:e7:d7:22:b1:86:85:cc:da:7c:33:56:0b:e2:bb: 4f:43:4c:d0:ea:c3:3a:53:18:dc:f1:87:b5:7b:a4: fb:19:e9:57:bd:fd:01:91:0d:73:93:31:41:b2:e2: ce:02:d1:92:6f:5b:fd:3c:b9:d4:50:35:8f:13:e2: 9b:bb:78:21:11:5d:8c:18:b7:14:2e:92:2e:0b:1f: 1b:7a:9f:02:42:87:3c:89:ac:3b:d0:ab:a5:20:78: 6f:a9:c2:9b:4e:5f:27:b0:c3:de:8f:2e:a6:3e:53: 7e:16:98:80:b7:86:19:54:44:40:b6:a1:ff:83:91: 74:d9:d1:c2:82:77:b1:6f:f7:69:e4:9d:4d:c4:c3: 78:45:83:33:a8:6c:91:61:33:90:2e:53:e3:4d:b0: 86:cd:b1:c3:22:b2:67:40:95:94:34:09:83:a1:e5: 33:11:68:d4:37:3e:17:ca:da:d5:e4:c8:81:25:73: 33:e2:0c:e0:32:bf:44:4d:5d:db:3b:58:b4:9d:8d: 7c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:39:63:9C:1E:BB:35:32:66:90:9C:82:FA:35:30:EE:F1:18:EA:45 X509v3 Authority Key Identifier: keyid:92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:0a:7a:56:fc:1a:49:e1:50:1c:d0:62:b5:fe:64:9d:e7:5c: cf:88:af:81:5c:86:92:86:2d:cf:db:88:ce:27:9c:c1:5b:fe: 17:1d:9e:2a:8a:79:3f:2e:09:e6:81:d5:0b:c1:d3:50:ca:e2: 6f:8b:66:37:4f:1d:ea:f3:55:07:a9:e1:47:cb:b4:f7:6d:88: 1f:d7:c8:63:09:b5:7a:0f:20:00:ee:f2:35:db:d8:89:d7:5b: d4:f1:22:77:85:3a:74:92:43:ea:1b:6a:29:6d:ba:09:ee:79: df:ea:c1:1f:72:76:98:61:e4:40:c9:2a:b4:57:b5:31:98:8d: 17:c9:a0:a3:58:11:07:fb:b8:08:49:df:6a:4a:3d:0d:80:19: 16:13:3e:e8:ed:63:2e:ad:04:b7:c6:f7:22:fe:ca:f0:90:f4: 5c:20:d0:8d:ba:d6:6b:a4:26:f4:f8:4c:2d:d4:96:e6:07:d3: c8:68:a2:5b:ea:e9:e1:1c:4b:8e:c9:ad:5b:7e:a3:3e:29:4a: de:15:77:cd:6c:fa:47:74:4e:6c:93:e6:25:61:19:72:d7:83: b2:85:6e:04:4e:82:af:fb:c0:40:5f:31:8d:c5:d9:21:31:53: 33:58:22:9e:de:8f:ba:c6:0e:5a:90:48:2d:64:7e:09:a9:cd: 94:eb:77:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6LgOfrrI6cQxFwIYNZmk7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNmM5OGI1MTA2MWYzNDBjY2U0ZTBiNGNlMzYxY2UzNGFi YzJmY2UwHhcNMjYwMTI2MTIwMTE4WhcNMjYwMTI3MTIwMTE4WjAzMTEwLwYDVQQD Eyg3NzM5NjM5YzFlYmIzNTMyNjY5MDljODJmYTM1MzBlZWYxMThlYTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurvtzRCle6OD43FL4xd0OxJiHKO3 4v0MKx8zt7KoGzrud6Ze6Xxo3mog+kHWkv1b1l94HruFl0VgdrmU59cisYaFzNp8 M1YL4rtPQ0zQ6sM6Uxjc8Ye1e6T7GelXvf0BkQ1zkzFBsuLOAtGSb1v9PLnUUDWP E+Kbu3ghEV2MGLcULpIuCx8bep8CQoc8iaw70KulIHhvqcKbTl8nsMPejy6mPlN+ FpiAt4YZVERAtqH/g5F02dHCgnexb/dp5J1NxMN4RYMzqGyRYTOQLlPjTbCGzbHD IrJnQJWUNAmDoeUzEWjUNz4XytrV5MiBJXMz4gzgMr9ETV3bO1i0nY187wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHc5Y5weuzUyZpCcgvo1MO7xGOpFMB8GA1UdIwQY MBaAFJJsmLUQYfNAzOTgtM42HONKvC/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wNTE1OWEtNDUyOS00OGZhLTk1ZTkt ZGM3NmZlY2E5NGJmLzEva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8wNTE1OWEtNDUyOS00OGZhLTk1ZTktZGM3NmZlY2E5NGJm LzEva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOAp6Vvwa SeFQHNBitf5knedcz4ivgVyGkoYtz9uIziecwVv+Fx2eKop5Py4J5oHVC8HTUMri b4tmN08d6vNVB6nhR8u0922IH9fIYwm1eg8gAO7yNdvYiddb1PEid4U6dJJD6htq KW26Ce553+rBH3J2mGHkQMkqtFe1MZiNF8mgo1gRB/u4CEnfako9DYAZFhM+6O1j Lq0Et8b3Iv7K8JD0XCDQjbrWa6Qm9PhMLdSW5gfTyGiiW+rp4RxLjsmtW36jPilK 3hV3zWz6R3RObJPmJWEZcteDsoVuBE6Cr/vAQF8xjcXZITFTM1gint6PusYOWpBI LWR+CanNlOt3rg== -----END CERTIFICATE-----Generated at Mon Jan 26 21:53:04 2026 by rpki-client