This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json) Hash identifier: bJN6CYW0jt8+xXLuj25hjlHRWXrHY8KsphhckNnDfHw= Subject key identifier: D9:2E:74:0D:B9:92:8C:47:BD:CF:5F:CA:EA:56:CA:91:9C:F8:1A:C8 Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5 Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5 Certificate serial: 019BB395BBFF1D857BBDAB4A3A9DE1D742FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft Manifest number: 15E8 Signing time: Mon 12 Jan 2026 19:01:33 +0000 Manifest this update: Mon 12 Jan 2026 19:01:33 +0000 Manifest next update: Tue 13 Jan 2026 19:01:33 +0000 Files and hashes: 1: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: 22hczLB5v53Oj8Gn9st+tqE6zuECIoecNx81CSu6HtI=) 2: huM-GkqhBk0Re8XPHSnKFpnI1VQ.roa (hash: yMEbieQN4mmr0B4PHYgIfIopNkBH4Ovpl20WF2oTeLc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 16:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b3:95:bb:ff:1d:85:7b:bd:ab:4a:3a:9d:e1:d7:42:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5 Validity Not Before: Jan 12 19:01:33 2026 GMT Not After : Jan 13 19:01:33 2026 GMT Subject: CN=d92e740db9928c47bdcf5fcaea56ca919cf81ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:84:d2:18:b2:a1:47:b5:6f:68:72:fe:7f:19: e9:5e:10:2c:b6:f3:5d:94:cb:17:c7:e4:07:e8:fa: ee:7d:8a:33:54:ea:5a:c6:52:e2:36:71:f5:27:a8: 98:5f:a9:07:ba:21:0a:49:89:75:69:d1:07:d8:12: f8:f7:a6:4c:29:83:22:bd:f5:70:a9:e2:2b:6e:f2: 19:9f:7a:68:ed:f8:e5:54:e9:95:b7:4f:79:24:fb: 8a:b9:1d:2c:f1:b8:6a:e8:9e:da:6f:8f:76:ba:b7: 88:42:08:8c:ed:d3:6e:f3:22:5d:0c:0d:f2:1a:83: af:ab:e6:60:be:9c:64:14:43:b7:5e:fa:b0:35:fe: 6d:40:84:9b:2c:73:be:ef:9b:4b:ea:73:21:1b:6a: e9:2d:0c:af:39:30:8e:d0:bc:cb:3c:6d:e7:38:8b: 4e:f8:e0:ba:48:92:08:9b:85:ac:4d:01:de:dc:94: 70:b1:8f:05:98:c2:93:e9:b1:08:b4:60:5a:6d:c4: 7a:c5:30:d7:fd:51:49:f0:dc:7b:a7:9b:ac:17:74: be:41:92:9d:ae:b5:56:ac:0b:ce:c3:de:7c:42:79: 19:ae:a0:3e:74:05:e1:79:e1:0b:6c:90:8f:5f:df: 97:96:d2:fc:6d:5d:1d:ec:8f:09:74:30:0c:0b:c4: 73:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:2E:74:0D:B9:92:8C:47:BD:CF:5F:CA:EA:56:CA:91:9C:F8:1A:C8 X509v3 Authority Key Identifier: keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:df:42:4d:28:16:f0:45:c7:34:f1:b9:5f:a5:21:1a:04:e5: f8:62:36:bd:fd:5b:d4:9f:b3:d5:b6:37:e4:7b:79:91:16:b3: 8b:76:5f:c0:88:79:bc:51:32:00:6e:4a:bb:60:9b:f3:27:70: ff:1d:5c:09:ed:b9:9e:a8:d3:c1:e8:11:7e:d3:c6:1b:cb:94: e7:87:37:08:9b:b7:ed:1a:17:68:2d:d0:81:67:c0:ef:2d:fc: ac:2f:84:0c:ab:bc:a2:62:d4:a4:d4:6a:f5:61:d7:b5:49:b9: d9:30:66:a3:88:05:12:8e:9e:79:27:9b:00:5d:34:d1:6c:b7: 80:c7:87:fc:71:42:51:3e:27:7c:bc:1f:5b:8c:a4:6a:97:48: 00:5c:a5:b9:65:fc:1d:52:a4:5d:ef:3e:9a:1f:e4:34:d4:6a: f8:f0:22:e4:c2:cd:2e:bb:38:6b:db:cf:93:26:de:e4:a0:d1: a8:77:5f:30:81:ac:3e:7f:44:eb:6f:c9:a1:4a:33:83:10:67: 3a:af:bf:db:05:db:a4:7f:96:bc:7d:e6:e2:c5:00:6f:66:8e: 96:3f:70:af:d0:22:e4:7c:a2:c9:97:92:37:f8:b2:8d:89:c7: f3:85:81:23:7a:b7:64:69:ab:bc:c1:c1:cd:57:9d:98:22:cd: 13:43:df:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuzlbv/HYV7vatKOp3h10L+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2Y2U2MzdkNDdiNzgwMDRkMGNjZmFlMzcxZTY4MTg3Njhh YzNmYTUwHhcNMjYwMTEyMTkwMTMzWhcNMjYwMTEzMTkwMTMzWjAzMTEwLwYDVQQD EyhkOTJlNzQwZGI5OTI4YzQ3YmRjZjVmY2FlYTU2Y2E5MTljZjgxYWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvITSGLKhR7VvaHL+fxnpXhAstvNd lMsXx+QH6PrufYozVOpaxlLiNnH1J6iYX6kHuiEKSYl1adEH2BL496ZMKYMivfVw qeIrbvIZn3po7fjlVOmVt095JPuKuR0s8bhq6J7ab492ureIQgiM7dNu8yJdDA3y GoOvq+ZgvpxkFEO3XvqwNf5tQISbLHO+75tL6nMhG2rpLQyvOTCO0LzLPG3nOItO +OC6SJIIm4WsTQHe3JRwsY8FmMKT6bEItGBabcR6xTDX/VFJ8Nx7p5usF3S+QZKd rrVWrAvOw958QnkZrqA+dAXheeELbJCPX9+XltL8bV0d7I8JdDAMC8RzNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkudA25koxHvc9fyupWypGc+BrIMB8GA1UdIwQY MBaAFHbOY31Ht4AE0Mz643HmgYdorD+lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS83MzA5YTktNDZjOC00MjQwLWFmZWYt ODQwODgxYTRkMzBkLzEvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS83MzA5YTktNDZjOC00MjQwLWFmZWYtODQwODgxYTRkMzBk LzEvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWd9CTSgW 8EXHNPG5X6UhGgTl+GI2vf1b1J+z1bY35Ht5kRazi3ZfwIh5vFEyAG5Ku2Cb8ydw /x1cCe25nqjTwegRftPGG8uU54c3CJu37RoXaC3QgWfA7y38rC+EDKu8omLUpNRq 9WHXtUm52TBmo4gFEo6eeSebAF000Wy3gMeH/HFCUT4nfLwfW4ykapdIAFyluWX8 HVKkXe8+mh/kNNRq+PAi5MLNLrs4a9vPkybe5KDRqHdfMIGsPn9E62/JoUozgxBn Oq+/2wXbpH+WvH3m4sUAb2aOlj9wr9Ai5HyiyZeSN/iyjYnH84WBI3q3ZGmrvMHB zVedmCLNE0PfSw== -----END CERTIFICATE-----Generated at Tue Jan 13 01:19:54 2026 by rpki-client