This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json) Hash identifier: EschQW59rdTFQvV05VAlsyOMfOXNSTSSeEQw+lKPRcg= Subject key identifier: 44:26:A0:8D:1D:FA:0F:F9:20:6D:62:8F:41:13:88:3E:78:94:99:74 Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d Certificate serial: 019BADCAB46D6633AA81B4587143FD4D85A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft Manifest number: 17C4 Signing time: Sun 11 Jan 2026 16:01:41 +0000 Manifest this update: Sun 11 Jan 2026 16:01:41 +0000 Manifest next update: Mon 12 Jan 2026 16:01:41 +0000 Files and hashes: 1: 9pt3MDCay7srVLLtOW6VihLRgqg.roa (hash: t8waBrYlHxhkv2G7wxFbB2b8tWVcdcespy2BiSBs4U8=) 2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: LJph4T075pKqoveoUSkloxpb+sWYA0ZuXZTDRu4CEM8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 16:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ad:ca:b4:6d:66:33:aa:81:b4:58:71:43:fd:4d:85:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d Validity Not Before: Jan 11 16:01:41 2026 GMT Not After : Jan 12 16:01:41 2026 GMT Subject: CN=4426a08d1dfa0ff9206d628f4113883e78949974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ed:2a:20:70:95:e8:41:8b:b8:7c:3b:c6:e9: 62:c6:fe:dc:00:7f:7d:e1:be:fa:6c:58:e1:3f:b5: d4:38:07:b8:34:e5:5d:2a:6f:d0:eb:7c:44:e7:ed: 11:32:4a:8c:97:2a:3e:5d:5e:83:14:b2:cf:02:f6: f7:30:ed:7f:a1:48:92:f0:38:7a:91:36:97:41:83: 15:e1:7c:6c:9a:09:0a:91:6a:e1:8b:ad:48:f7:14: 55:02:9e:15:3a:95:97:45:16:4e:2c:a3:da:ca:72: 73:ad:cc:f6:a6:ad:0d:ff:00:17:c4:4c:1c:9f:cd: e3:ad:31:a3:21:ec:48:fb:00:21:b4:52:3f:d1:6d: 2a:05:ad:ce:e7:4a:fa:ca:cf:e8:b2:26:52:b4:78: c4:d0:15:11:f2:91:80:c2:38:1d:c1:76:85:32:d0: eb:04:28:3e:19:dd:06:e2:6a:01:88:93:38:50:68: 10:9c:c7:9c:18:59:1b:11:8d:f8:48:1a:02:f3:26: ee:71:0e:20:65:52:ad:ca:10:74:da:03:97:ee:e9: eb:76:a1:51:0a:18:91:94:ae:09:36:2c:6b:f8:a3: f2:0c:f1:ca:2a:ac:66:58:63:d0:50:14:c2:5e:33: 22:e3:de:a4:74:5b:4b:69:8a:20:01:cb:2c:fe:8a: 41:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:26:A0:8D:1D:FA:0F:F9:20:6D:62:8F:41:13:88:3E:78:94:99:74 X509v3 Authority Key Identifier: keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:2d:be:fe:be:03:0c:82:16:64:c8:21:3f:a2:ad:ba:81:84: a5:f3:c5:4a:78:a2:f2:a7:eb:2a:af:a5:ec:4b:eb:e1:49:98: 10:b6:ea:f4:0c:c5:34:07:67:fc:51:a6:b8:b0:e1:91:9a:c9: 4d:99:3b:73:ba:1c:9e:a7:f6:eb:0c:ab:3a:78:02:60:9a:72: 69:e8:6b:c0:eb:10:47:34:67:a6:56:89:c4:f5:e4:29:ae:ae: 84:5b:99:22:b7:b5:5d:a7:c2:44:be:2e:8c:3d:31:d4:d1:fa: 47:b8:4b:ed:38:7c:bd:7c:d9:32:cb:9b:43:92:26:92:a6:94: 67:19:ad:9a:8c:19:68:f4:9a:4b:51:30:c5:14:93:3f:e8:e8: 8d:98:c9:5d:9f:ed:52:18:ed:8f:04:82:49:48:10:61:80:4b: f9:f2:af:e7:cb:29:99:6d:23:ab:20:5a:da:99:fe:51:85:e9: a8:6b:49:30:a7:45:1e:bb:43:0c:8b:25:b4:7c:ee:74:7e:ba: 71:55:33:eb:a8:c2:4c:91:a3:c8:3a:d6:f5:f1:86:03:41:c7: c5:d3:9f:aa:5a:73:7e:45:6a:74:c7:95:95:c6:51:89:a7:5b: b3:3e:85:f7:b8:b7:90:e2:bd:77:07:69:2a:8a:d2:df:4f:1f: 28:cc:7b:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZutyrRtZjOqgbRYcUP9TYWpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2ZTJiYTVjYzE1MGIzNTNjYmQzNGI5ZjA0NWVhMDUwOTc0 MDg0NGQwHhcNMjYwMTExMTYwMTQxWhcNMjYwMTEyMTYwMTQxWjAzMTEwLwYDVQQD Eyg0NDI2YTA4ZDFkZmEwZmY5MjA2ZDYyOGY0MTEzODgzZTc4OTQ5OTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtu0qIHCV6EGLuHw7xulixv7cAH99 4b76bFjhP7XUOAe4NOVdKm/Q63xE5+0RMkqMlyo+XV6DFLLPAvb3MO1/oUiS8Dh6 kTaXQYMV4XxsmgkKkWrhi61I9xRVAp4VOpWXRRZOLKPaynJzrcz2pq0N/wAXxEwc n83jrTGjIexI+wAhtFI/0W0qBa3O50r6ys/osiZStHjE0BUR8pGAwjgdwXaFMtDr BCg+Gd0G4moBiJM4UGgQnMecGFkbEY34SBoC8ybucQ4gZVKtyhB02gOX7unrdqFR ChiRlK4JNixr+KPyDPHKKqxmWGPQUBTCXjMi496kdFtLaYogAcss/opBxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEQmoI0d+g/5IG1ij0ETiD54lJl0MB8GA1UdIwQY MBaAFHbiulzBULNTy9NLnwReoFCXQIRNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zMWQyZWQtOGUyZi00ZmE5LTgzY2Et NzA0MDVlMzUyOGFmLzEvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8zMWQyZWQtOGUyZi00ZmE5LTgzY2EtNzA0MDVlMzUyOGFm LzEvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmS2+/r4D DIIWZMghP6KtuoGEpfPFSnii8qfrKq+l7Evr4UmYELbq9AzFNAdn/FGmuLDhkZrJ TZk7c7ocnqf26wyrOngCYJpyaehrwOsQRzRnplaJxPXkKa6uhFuZIre1XafCRL4u jD0x1NH6R7hL7Th8vXzZMsubQ5ImkqaUZxmtmowZaPSaS1EwxRSTP+jojZjJXZ/t UhjtjwSCSUgQYYBL+fKv58spmW0jqyBa2pn+UYXpqGtJMKdFHrtDDIsltHzudH66 cVUz66jCTJGjyDrW9fGGA0HHxdOfqlpzfkVqdMeVlcZRiadbsz6F97i3kOK9dwdp KorS308fKMx7fw== -----END CERTIFICATE-----Generated at Mon Jan 12 00:52:10 2026 by rpki-client