This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft File: 9O9duhAKkrJETz5RLQGlksAZUcI.mft (raw, json) Hash identifier: s4vP0CcW0+7XuuUYdLPViWzr0d6gQpo0iKgFxGdUBlY= Subject key identifier: 39:90:05:87:A7:31:D8:A6:B2:31:C2:D1:74:8D:77:E7:C4:16:05:BF Authority key identifier: F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2 Certificate issuer: /CN=f4ef5dba100a92b2444f3e512d01a592c01951c2 Certificate serial: 019BB2BA7BCC41A7B92C27DEF583EF103CA2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft Manifest number: 0A32 Signing time: Mon 12 Jan 2026 15:02:04 +0000 Manifest this update: Mon 12 Jan 2026 15:02:04 +0000 Manifest next update: Tue 13 Jan 2026 15:02:04 +0000 Files and hashes: 1: 3FkzAPl5dDeXfEEMRSwLpvP5dBw.roa (hash: qThiWbhOm4MVwzcc4QS1C0KW/Cr2nD4QzMpn3VG/nII=) 2: 9O9duhAKkrJETz5RLQGlksAZUcI.crl (hash: V3tX724hXUSwzSgLGUY2g7r45KAXVjUupWHINYs/JyA=) 3: GvMwO11Qb_MZ3FmpbZFa_YHcQEw.roa (hash: HHH3HBau0CenEM488oLj5N8VnZu9hoi/hHRUfx5gvaA=) 4: vAGwaiC2Bp1wYYYgaEDGo4Uiqpc.roa (hash: kDL6yMpm7SXuYLlIMpKeyi5R+9DyzeTyoxzQraFeyqU=) 5: yXsRkQTNVDsj9z8xG-aM4CEyin8.roa (hash: ts64cc9kwijL/HlxdE2LWSMe9OcM5b1Rlyuz3fR2RTQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 15:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b2:ba:7b:cc:41:a7:b9:2c:27:de:f5:83:ef:10:3c:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4ef5dba100a92b2444f3e512d01a592c01951c2 Validity Not Before: Jan 12 15:02:04 2026 GMT Not After : Jan 13 15:02:04 2026 GMT Subject: CN=39900587a731d8a6b231c2d1748d77e7c41605bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d4:ea:39:d7:c4:16:60:f2:30:1d:89:e9:93: c3:42:f5:e9:78:20:0f:e6:cf:b8:bd:67:f8:6e:6c: 96:6c:36:cf:10:0d:dd:3a:ec:d1:b5:48:13:80:a7: f7:d3:3e:76:bb:27:8f:1a:35:d8:ac:f6:e7:c0:c4: 2e:2f:64:ac:c2:a3:6c:b7:f6:ed:b1:ab:77:b6:5f: a5:31:3a:0f:8b:ee:16:f5:bb:5b:d3:46:66:c4:b5: 9a:f1:ab:b3:4e:24:ef:04:47:70:8d:62:3f:b0:4f: b2:6d:d9:f5:d2:18:3d:b5:05:f3:1e:ea:82:4d:58: d3:63:42:0f:45:d7:20:7b:a9:67:a1:8b:01:7b:e6: 36:24:ed:5b:e3:b1:b6:5d:fc:03:4a:20:d2:ba:99: 37:1e:e9:98:5d:a8:5b:dd:cf:3b:82:59:73:fa:9f: 80:2b:cb:07:1d:61:f0:50:0c:6f:67:a1:2f:45:97: 25:a1:2b:d9:5b:d1:e9:9d:9d:f0:9a:ba:4e:3a:4c: ef:eb:45:d4:fe:31:51:1a:fa:4e:9c:3c:5f:84:c3: ba:ec:0f:f9:60:fd:51:62:d2:cf:29:9d:81:1e:58: 36:79:9f:ab:b2:5b:d7:64:ed:2b:81:5d:9d:f7:11: 7b:ad:d3:15:17:ce:8a:03:ca:ad:d4:01:fd:02:ba: 51:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:90:05:87:A7:31:D8:A6:B2:31:C2:D1:74:8D:77:E7:C4:16:05:BF X509v3 Authority Key Identifier: keyid:F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:77:80:3f:d1:bc:0f:91:cc:7f:e0:75:32:cd:ea:26:ce:cd: 3b:12:98:2b:6b:5d:68:e3:1f:2a:b1:a9:a3:6d:c5:e6:51:e4: b1:78:29:19:00:b9:be:dc:a7:9b:fa:30:87:a0:19:72:23:f8: 6d:75:23:07:96:0d:f0:e7:10:c2:f8:28:9d:44:0a:d8:13:f8: da:9a:c0:59:d1:8d:75:3f:49:a9:f7:a2:49:70:16:8b:6d:f3: a3:8d:73:e3:b9:ca:80:21:86:40:f0:86:dd:6f:03:94:fc:e4: ee:d9:9f:75:ed:39:87:14:7f:b6:48:36:b6:96:72:b7:29:d8: ef:27:d4:3b:6a:52:c8:06:33:60:9e:a7:3c:e1:75:39:aa:07: 68:59:47:84:c9:ec:56:f9:05:52:d5:ee:e7:63:a6:cf:1f:53: 29:53:f2:cc:88:dc:78:c0:45:d8:87:03:fe:be:a7:26:bf:7c: 40:79:60:91:99:48:eb:b1:cc:b0:78:db:ef:89:b4:34:2b:68: fa:db:82:32:7a:9b:dd:49:78:b2:ee:ae:b9:c6:9f:ed:ce:47: 5f:e9:cb:a8:dc:8f:89:23:af:5a:9c:6f:6a:46:54:0c:d7:d5: 23:0c:71:85:65:b5:18:6e:f9:6b:e9:fa:4e:96:55:18:7d:05: 22:a3:f8:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuyunvMQae5LCfe9YPvEDyiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0ZWY1ZGJhMTAwYTkyYjI0NDRmM2U1MTJkMDFhNTkyYzAx OTUxYzIwHhcNMjYwMTEyMTUwMjA0WhcNMjYwMTEzMTUwMjA0WjAzMTEwLwYDVQQD EygzOTkwMDU4N2E3MzFkOGE2YjIzMWMyZDE3NDhkNzdlN2M0MTYwNWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNTqOdfEFmDyMB2J6ZPDQvXpeCAP 5s+4vWf4bmyWbDbPEA3dOuzRtUgTgKf30z52uyePGjXYrPbnwMQuL2SswqNst/bt sat3tl+lMToPi+4W9btb00ZmxLWa8auzTiTvBEdwjWI/sE+ybdn10hg9tQXzHuqC TVjTY0IPRdcge6lnoYsBe+Y2JO1b47G2XfwDSiDSupk3HumYXahb3c87gllz+p+A K8sHHWHwUAxvZ6EvRZcloSvZW9HpnZ3wmrpOOkzv60XU/jFRGvpOnDxfhMO67A/5 YP1RYtLPKZ2BHlg2eZ+rslvXZO0rgV2d9xF7rdMVF86KA8qt1AH9ArpRfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDmQBYenMdimsjHC0XSNd+fEFgW/MB8GA1UdIwQY MBaAFPTvXboQCpKyRE8+US0BpZLAGVHCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iMzViZTEtNjY3My00ODExLWE3MDct YWQwMjdlOTVjNWM3LzEvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9iMzViZTEtNjY3My00ODExLWE3MDctYWQwMjdlOTVjNWM3 LzEvOU85ZHVoQUtrckpFVHo1UkxRR2xrc0FaVWNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnneAP9G8 D5HMf+B1Ms3qJs7NOxKYK2tdaOMfKrGpo23F5lHksXgpGQC5vtynm/owh6AZciP4 bXUjB5YN8OcQwvgonUQK2BP42prAWdGNdT9JqfeiSXAWi23zo41z47nKgCGGQPCG 3W8DlPzk7tmfde05hxR/tkg2tpZytynY7yfUO2pSyAYzYJ6nPOF1OaoHaFlHhMns VvkFUtXu52Omzx9TKVPyzIjceMBF2IcD/r6nJr98QHlgkZlI67HMsHjb74m0NCto +tuCMnqb3Ul4su6uucaf7c5HX+nLqNyPiSOvWpxvakZUDNfVIwxxhWW1GG75a+n6 TpZVGH0FIqP4Og== -----END CERTIFICATE-----Generated at Mon Jan 12 17:24:28 2026 by rpki-client