This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft File: DkGjlotidBs200i-DSyRxdSxM6I.mft (raw, json) Hash identifier: x7/LuK2VQf7g+sp3wy3t/4AXED2TvbX5NXKnVxgaM8w= Subject key identifier: 18:A2:90:46:28:E6:62:96:AE:AF:B1:DF:A3:29:5C:72:98:15:92:2D Authority key identifier: 0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2 Certificate issuer: /CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2 Certificate serial: 019BAD932D21347FBF3017E49371C827764B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft Manifest number: 17C4 Signing time: Sun 11 Jan 2026 15:01:02 +0000 Manifest this update: Sun 11 Jan 2026 15:01:02 +0000 Manifest next update: Mon 12 Jan 2026 15:01:02 +0000 Files and hashes: 1: 8zauiXBaFMH5VLxzsSvMEUumaxQ.roa (hash: sJvy2vx8n7/hTOLyUNRFHLLiMRYWbPfkI+7/KsQidiw=) 2: DkGjlotidBs200i-DSyRxdSxM6I.crl (hash: kI++ndVHKVZcQmSuPqdorYY5/fAd7vLARZVNJMZrB8o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 15:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ad:93:2d:21:34:7f:bf:30:17:e4:93:71:c8:27:76:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2 Validity Not Before: Jan 11 15:01:02 2026 GMT Not After : Jan 12 15:01:02 2026 GMT Subject: CN=18a2904628e66296aeafb1dfa3295c729815922d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:17:f7:fc:e6:22:0e:e0:93:d1:a0:06:75:ca: 62:fc:aa:81:17:86:fc:9d:10:63:c5:36:c3:05:c6: 88:1a:01:d1:68:02:70:7c:eb:a8:19:d7:a2:88:74: 3f:15:a6:e5:29:52:1d:49:b1:a0:69:29:8c:3e:8e: f5:1d:b2:b9:4d:9e:58:0a:e8:1e:65:55:6a:69:af: ad:09:2e:25:da:e0:a4:85:9f:b5:73:fe:bb:14:e0: f4:ae:9f:b2:57:de:1c:3d:42:5c:5d:c3:cd:f6:5c: c8:31:87:2c:cd:7b:5d:da:04:52:8d:25:8e:09:3c: 63:16:ea:7f:0c:48:38:dc:da:bf:c0:c7:df:da:ff: 27:1e:2d:1d:04:a9:cf:68:c3:4c:7d:d7:bc:60:db: dc:44:79:03:2d:95:ae:94:53:db:66:6d:37:90:73: c7:4e:56:63:f7:11:b3:54:0a:81:92:02:5b:b4:a4: 49:c0:1a:06:dd:fc:c0:c5:d4:21:59:08:6e:f1:7f: 9c:97:77:c9:b3:3c:33:4d:ac:b5:48:98:6e:2f:fc: 0f:cf:87:aa:f7:a8:95:e1:a0:46:e3:cd:2b:1f:ef: f8:c4:70:7d:8a:85:d3:d7:5e:38:f8:a4:4e:c6:ed: 02:c5:a7:12:b1:b6:f9:ec:c9:c0:97:c9:e5:c6:31: c4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A2:90:46:28:E6:62:96:AE:AF:B1:DF:A3:29:5C:72:98:15:92:2D X509v3 Authority Key Identifier: keyid:0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:e9:a4:0d:e6:16:ec:3a:41:bc:2e:8b:c5:45:e7:98:86:68: 6d:b2:91:aa:db:f0:4f:1f:4f:64:24:8c:f1:cb:ec:b8:53:e1: 94:d1:68:44:e5:a9:2b:33:4b:5d:aa:f2:50:5d:e5:c9:9f:99: cf:a1:e5:3a:b2:cd:46:9c:2f:5b:89:a0:22:d3:6b:db:2b:a5: 52:ba:db:f2:34:8c:26:eb:77:61:fe:03:e6:ae:7a:8b:d3:f2: 28:c2:8b:e8:fd:1d:15:f7:79:8e:40:1b:aa:47:41:aa:74:ee: 49:ef:73:fa:e3:00:15:4a:c5:90:d6:de:bf:1b:c1:92:17:3a: 0f:50:11:bb:15:bf:b7:ee:f0:bf:87:47:44:e4:f7:72:0e:c7: 41:20:7c:9b:c5:2e:42:a6:0b:9c:c8:0e:41:81:0c:31:20:3b: b8:f4:4e:50:54:7b:d8:4c:fb:27:a7:8c:50:2b:fd:fb:40:e3: 18:4d:f5:f7:7b:ec:55:6f:d3:d6:0d:30:84:8d:89:ae:f5:ef: 9a:7e:5a:65:9c:5c:ea:99:5c:7a:b2:38:40:ed:59:a0:a8:8b: 46:12:3f:57:13:23:f4:b2:de:93:d0:ee:ee:b1:d8:d1:99:46: 1c:51:33:41:73:ec:f5:9a:90:38:67:3e:3d:96:4c:9b:97:d2: 95:76:57:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZutky0hNH+/MBfkk3HIJ3ZLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlNDFhMzk2OGI2Mjc0MWIzNmQzNDhiZTBkMmM5MWM1ZDRi MTMzYTIwHhcNMjYwMTExMTUwMTAyWhcNMjYwMTEyMTUwMTAyWjAzMTEwLwYDVQQD EygxOGEyOTA0NjI4ZTY2Mjk2YWVhZmIxZGZhMzI5NWM3Mjk4MTU5MjJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRf3/OYiDuCT0aAGdcpi/KqBF4b8 nRBjxTbDBcaIGgHRaAJwfOuoGdeiiHQ/FablKVIdSbGgaSmMPo71HbK5TZ5YCuge ZVVqaa+tCS4l2uCkhZ+1c/67FOD0rp+yV94cPUJcXcPN9lzIMYcszXtd2gRSjSWO CTxjFup/DEg43Nq/wMff2v8nHi0dBKnPaMNMfde8YNvcRHkDLZWulFPbZm03kHPH TlZj9xGzVAqBkgJbtKRJwBoG3fzAxdQhWQhu8X+cl3fJszwzTay1SJhuL/wPz4eq 96iV4aBG480rH+/4xHB9ioXT1144+KROxu0CxacSsbb57MnAl8nlxjHEZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBiikEYo5mKWrq+x36MpXHKYFZItMB8GA1UdIwQY MBaAFA5Bo5aLYnQbNtNIvg0skcXUsTOiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8wNWIxZjgtNGIzNS00MGJiLWEwMzQt NzQ3NTIzMTkyMzYzLzEvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8wNWIxZjgtNGIzNS00MGJiLWEwMzQtNzQ3NTIzMTkyMzYz LzEvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQemkDeYW 7DpBvC6LxUXnmIZobbKRqtvwTx9PZCSM8cvsuFPhlNFoROWpKzNLXaryUF3lyZ+Z z6HlOrLNRpwvW4mgItNr2yulUrrb8jSMJut3Yf4D5q56i9PyKMKL6P0dFfd5jkAb qkdBqnTuSe9z+uMAFUrFkNbevxvBkhc6D1ARuxW/t+7wv4dHROT3cg7HQSB8m8Uu QqYLnMgOQYEMMSA7uPROUFR72Ez7J6eMUCv9+0DjGE3193vsVW/T1g0whI2JrvXv mn5aZZxc6plcerI4QO1ZoKiLRhI/VxMj9LLek9Du7rHY0ZlGHFEzQXPs9ZqQOGc+ PZZMm5fSlXZXjw== -----END CERTIFICATE-----Generated at Sun Jan 11 22:37:23 2026 by rpki-client