This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft File: CBG8UM_tnQLlgZaiyByYjjC6EmA.mft (raw, json) Hash identifier: W6UcIpnfe1ITzcmr7GvnbLwVtKoWhPz82DaPA/lKeS4= Subject key identifier: CC:80:34:25:DA:52:5E:62:22:C7:E4:36:AF:18:3B:F6:71:45:CE:3E Authority key identifier: 08:11:BC:50:CF:ED:9D:02:E5:81:96:A2:C8:1C:98:8E:30:BA:12:60 Certificate issuer: /CN=0811bc50cfed9d02e58196a2c81c988e30ba1260 Certificate serial: 019BAE0175049D3E9BCEF273CE948466BCD0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft Manifest number: 17C4 Signing time: Sun 11 Jan 2026 17:01:29 +0000 Manifest this update: Sun 11 Jan 2026 17:01:29 +0000 Manifest next update: Mon 12 Jan 2026 17:01:29 +0000 Files and hashes: 1: CBG8UM_tnQLlgZaiyByYjjC6EmA.crl (hash: 42i0yRxm9huqcYSr2AK42ObTSWNZZ7fLccE4hmZoBis=) 2: WRBFVNx32sOpjsof22cBqYU1U-g.roa (hash: QZBfNPHudXCYECubPVOe4dY+6NgVx9kT9RkWowLyHkE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.crl rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 17:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ae:01:75:04:9d:3e:9b:ce:f2:73:ce:94:84:66:bc:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0811bc50cfed9d02e58196a2c81c988e30ba1260 Validity Not Before: Jan 11 17:01:29 2026 GMT Not After : Jan 12 17:01:29 2026 GMT Subject: CN=cc803425da525e6222c7e436af183bf67145ce3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6d:45:45:ce:a1:b2:80:54:b8:b7:52:62:ed: 11:19:df:63:ac:bb:93:61:20:cb:02:3b:aa:5c:d6: 27:8f:21:6e:b8:c4:2f:eb:7c:c2:49:ac:9f:9c:1a: 5d:bb:6d:5c:1d:c0:24:8f:4a:6b:8c:4d:fb:ce:5b: 43:58:94:d7:38:86:a2:19:4b:0e:0c:2a:2f:6e:7c: e8:20:f9:d5:9e:dc:ec:f7:a7:4c:58:94:6e:90:fd: bf:a0:99:8d:1a:84:f0:2b:bf:b1:9d:82:24:d3:34: 5a:28:aa:0f:30:26:b4:ff:53:aa:55:07:ea:f2:e5: 5a:73:d0:e2:4a:d4:df:61:25:9b:2d:2b:fd:be:e9: b6:da:fb:b1:ef:3f:5b:b1:a4:f5:0d:35:42:b2:ce: 49:28:ad:db:05:fc:5f:48:33:99:18:91:7a:cc:b4: c7:62:9d:35:38:f7:e2:22:7c:4b:61:fc:8d:20:29: 0f:e7:73:7e:9c:0f:b3:ec:a5:80:5d:89:40:67:98: 4a:57:b6:66:5f:f7:87:b0:c0:fa:49:18:ea:92:55: 65:e0:d5:cd:7f:6b:93:e6:7e:13:71:0a:4e:16:67: a2:64:ba:e2:f6:9a:15:6a:26:7e:be:78:7e:26:ce: bc:d5:19:91:6a:f9:e2:ed:29:3c:3d:b8:f7:f5:fd: 4d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:80:34:25:DA:52:5E:62:22:C7:E4:36:AF:18:3B:F6:71:45:CE:3E X509v3 Authority Key Identifier: keyid:08:11:BC:50:CF:ED:9D:02:E5:81:96:A2:C8:1C:98:8E:30:BA:12:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBG8UM_tnQLlgZaiyByYjjC6EmA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0c8194-76d1-465e-a746-ee5a6743be56/1/CBG8UM_tnQLlgZaiyByYjjC6EmA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:48:1d:83:56:66:4f:55:52:2b:2f:41:d7:23:dc:6c:d6:6c: 01:84:d0:bc:63:5d:4a:1a:86:23:81:15:fc:5e:7d:fc:95:ac: a9:43:f9:21:1e:3f:e4:bd:96:7e:61:f9:58:3f:cb:f0:0f:9e: 41:9e:66:a9:df:dd:5e:b7:8e:f2:d3:c7:52:83:94:ce:ae:6b: ee:6d:a7:1a:29:54:88:57:bf:21:a1:94:b8:a3:86:b8:e5:45: 02:9f:a9:91:18:b8:8b:dc:19:04:86:2f:8f:10:04:d3:d2:99: 7f:70:02:14:56:ac:bc:93:82:bf:8f:dd:c0:dc:fd:50:24:07: 58:3f:bc:c5:6a:c8:e4:63:85:ca:2d:2d:a9:37:49:b0:46:6d: 3c:77:67:00:9f:61:c4:c1:71:fb:7b:4a:55:16:fe:2f:ef:13: 0d:12:59:07:a6:b4:f3:99:4b:d9:b7:2f:30:81:63:37:5d:2f: a7:75:8b:1f:d2:76:4d:fa:0b:31:a6:1f:bb:65:e4:d8:f1:20: e4:27:8d:c9:2f:c7:2c:f8:67:fb:a7:a1:c4:ea:c9:63:06:17: 2b:df:95:80:87:4a:4c:ee:f5:68:56:84:52:fd:11:6e:a3:0f: df:26:79:8d:93:c9:5e:b2:43:24:99:dc:f7:8e:7c:fa:1b:b7: 76:4a:87:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuuAXUEnT6bzvJzzpSEZrzQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MTFiYzUwY2ZlZDlkMDJlNTgxOTZhMmM4MWM5ODhlMzBi YTEyNjAwHhcNMjYwMTExMTcwMTI5WhcNMjYwMTEyMTcwMTI5WjAzMTEwLwYDVQQD EyhjYzgwMzQyNWRhNTI1ZTYyMjJjN2U0MzZhZjE4M2JmNjcxNDVjZTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmm1FRc6hsoBUuLdSYu0RGd9jrLuT YSDLAjuqXNYnjyFuuMQv63zCSayfnBpdu21cHcAkj0prjE37zltDWJTXOIaiGUsO DCovbnzoIPnVntzs96dMWJRukP2/oJmNGoTwK7+xnYIk0zRaKKoPMCa0/1OqVQfq 8uVac9DiStTfYSWbLSv9vum22vux7z9bsaT1DTVCss5JKK3bBfxfSDOZGJF6zLTH Yp01OPfiInxLYfyNICkP53N+nA+z7KWAXYlAZ5hKV7ZmX/eHsMD6SRjqklVl4NXN f2uT5n4TcQpOFmeiZLri9poVaiZ+vnh+Js681RmRavni7Sk8Pbj39f1NoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMyANCXaUl5iIsfkNq8YO/ZxRc4+MB8GA1UdIwQY MBaAFAgRvFDP7Z0C5YGWosgcmI4wuhJgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0JHOFVNX3RuUUxsZ1phaXlCeVlqakM2RW1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8wYzgxOTQtNzZkMS00NjVlLWE3NDYt ZWU1YTY3NDNiZTU2LzEvQ0JHOFVNX3RuUUxsZ1phaXlCeVlqakM2RW1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8wYzgxOTQtNzZkMS00NjVlLWE3NDYtZWU1YTY3NDNiZTU2 LzEvQ0JHOFVNX3RuUUxsZ1phaXlCeVlqakM2RW1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXkgdg1Zm T1VSKy9B1yPcbNZsAYTQvGNdShqGI4EV/F59/JWsqUP5IR4/5L2WfmH5WD/L8A+e QZ5mqd/dXreO8tPHUoOUzq5r7m2nGilUiFe/IaGUuKOGuOVFAp+pkRi4i9wZBIYv jxAE09KZf3ACFFasvJOCv4/dwNz9UCQHWD+8xWrI5GOFyi0tqTdJsEZtPHdnAJ9h xMFx+3tKVRb+L+8TDRJZB6a085lL2bcvMIFjN10vp3WLH9J2TfoLMaYfu2Xk2PEg 5CeNyS/HLPhn+6ehxOrJYwYXK9+VgIdKTO71aFaEUv0RbqMP3yZ5jZPJXrJDJJnc 9458+hu3dkqHdQ== -----END CERTIFICATE-----Generated at Mon Jan 12 02:33:40 2026 by rpki-client