This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json) Hash identifier: IK/iWGQw/XrIBKefy5YEmBIV0D96Uih3n6eX8po98Bc= Subject key identifier: BD:C5:6B:8B:8A:C8:07:78:75:94:B8:9F:26:00:19:54:73:47:A1:EC Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4 Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4 Certificate serial: 019BAE38A01399AE870EE7C615C99AB0F7BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft Manifest number: 059F Signing time: Sun 11 Jan 2026 18:01:44 +0000 Manifest this update: Sun 11 Jan 2026 18:01:44 +0000 Manifest next update: Mon 12 Jan 2026 18:01:44 +0000 Files and hashes: 1: AXdXSPys8K4gKCZL761_CRlXkQg.roa (hash: Eq65FPzgWfwxVUVR4WpFvfNbVj2sB466X23GUTRrgvw=) 2: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: 5xBGeKVdI+Uib3TUsU7M5TwD57xGJWz0GxvJHcLPpHs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ae:38:a0:13:99:ae:87:0e:e7:c6:15:c9:9a:b0:f7:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4 Validity Not Before: Jan 11 18:01:44 2026 GMT Not After : Jan 12 18:01:44 2026 GMT Subject: CN=bdc56b8b8ac807787594b89f260019547347a1ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:be:8f:ad:9c:79:67:a1:09:5a:cc:ca:f9: 69:59:7c:47:eb:e4:08:8c:90:98:4c:6d:f3:5e:35: 9d:e7:02:22:92:bf:19:09:d5:b9:ff:62:3b:90:91: 47:eb:c3:f8:4a:72:15:ae:94:ef:f7:15:28:75:b8: b2:b7:21:54:18:3f:f7:48:25:a9:a9:10:01:63:bb: 0f:69:b3:49:7e:a1:8a:b6:bf:2b:6b:a2:92:80:a6: df:ca:b3:99:83:e1:1a:36:da:56:6a:ee:76:d0:31: e3:b1:c5:57:a8:53:29:e0:82:e9:30:d3:11:5b:9c: b4:77:b5:d0:a4:6f:8b:af:0b:6f:14:15:81:14:dd: 0c:46:3b:20:ab:30:29:82:d9:86:9b:b0:03:65:40: 8a:75:39:d5:c3:e4:1e:30:06:6d:2a:03:ef:16:f9: d4:09:92:f6:08:15:e9:27:95:ad:28:45:ac:f6:eb: a7:93:9b:5e:71:19:64:e8:0c:0c:c3:3b:49:51:86: 37:26:58:6d:50:b1:aa:a1:0f:fd:49:e8:25:04:03: d6:79:a1:ea:dd:d8:69:e2:e4:18:0d:f1:a3:3e:27: 9e:74:e6:12:33:ad:77:95:f3:50:95:50:4d:44:a6: b9:10:7a:ce:60:88:2a:af:2b:96:04:16:5d:70:7f: 04:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:C5:6B:8B:8A:C8:07:78:75:94:B8:9F:26:00:19:54:73:47:A1:EC X509v3 Authority Key Identifier: keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:82:04:73:9c:9d:91:f1:86:ee:90:be:52:8c:3f:04:14:0d: e9:8d:fe:9a:b9:ec:f5:6d:d9:dd:77:ee:6e:ab:19:ca:80:fe: ff:3a:99:2e:ab:f1:76:10:80:c2:6a:4d:44:30:0f:2e:3e:61: 98:5a:7d:11:18:a7:0e:8e:1c:15:c9:25:6e:b5:a4:2e:88:48: 94:f4:cd:a6:e4:a1:ff:8a:cf:c0:5e:43:a2:a9:e1:f1:ea:14: 05:b7:cf:62:05:43:ed:69:d5:e1:8c:12:5c:b8:14:cd:fb:93: 01:b6:36:e9:c1:e6:9d:3f:f9:04:b1:2f:b6:dc:cc:82:0d:fe: 7a:61:8f:31:5d:90:2f:1e:be:e7:e4:55:4a:00:01:b0:1e:d5: 56:67:f6:a4:76:e8:2d:8e:4e:13:71:8a:44:1e:a7:f1:41:ee: 6e:d9:e7:62:de:59:6b:72:e6:72:b7:5d:a3:97:49:a6:52:29: b4:ad:ec:77:de:3a:f8:a5:cd:10:b4:ad:5f:7a:56:a3:c4:9f: 76:6f:51:31:32:df:6b:fa:69:86:6c:72:f6:ef:b1:d3:6d:aa: d3:60:69:ec:13:4a:0f:a1:74:d7:51:48:50:bb:09:36:d3:0e: 42:ab:d5:1f:90:4b:15:cc:cd:5d:52:3e:ba:99:c7:a0:cd:59: ed:74:c8:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuuOKATma6HDufGFcmasPe/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4OTU0ZTI4ZjZlMDFjYTVjNzM1M2JjMzcyZjM2OWE1ZjUx ZDliYjQwHhcNMjYwMTExMTgwMTQ0WhcNMjYwMTEyMTgwMTQ0WjAzMTEwLwYDVQQD EyhiZGM1NmI4YjhhYzgwNzc4NzU5NGI4OWYyNjAwMTk1NDczNDdhMWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0u+j62ceWehCVrMyvlpWXxH6+QI jJCYTG3zXjWd5wIikr8ZCdW5/2I7kJFH68P4SnIVrpTv9xUodbiytyFUGD/3SCWp qRABY7sPabNJfqGKtr8ra6KSgKbfyrOZg+EaNtpWau520DHjscVXqFMp4ILpMNMR W5y0d7XQpG+LrwtvFBWBFN0MRjsgqzApgtmGm7ADZUCKdTnVw+QeMAZtKgPvFvnU CZL2CBXpJ5WtKEWs9uunk5tecRlk6AwMwztJUYY3JlhtULGqoQ/9SeglBAPWeaHq 3dhp4uQYDfGjPieedOYSM613lfNQlVBNRKa5EHrOYIgqryuWBBZdcH8E0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL3Fa4uKyAd4dZS4nyYAGVRzR6HsMB8GA1UdIwQY MBaAFCiVTij24BylxzU7w3LzaaX1HZu0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9mMzcwMjctYWZjNC00NDRmLTgwMDgt OTVjZTJjNzU1ZDQ3LzEvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9mMzcwMjctYWZjNC00NDRmLTgwMDgtOTVjZTJjNzU1ZDQ3 LzEvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWoIEc5yd kfGG7pC+Uow/BBQN6Y3+mrns9W3Z3XfubqsZyoD+/zqZLqvxdhCAwmpNRDAPLj5h mFp9ERinDo4cFcklbrWkLohIlPTNpuSh/4rPwF5Doqnh8eoUBbfPYgVD7WnV4YwS XLgUzfuTAbY26cHmnT/5BLEvttzMgg3+emGPMV2QLx6+5+RVSgABsB7VVmf2pHbo LY5OE3GKRB6n8UHubtnnYt5Za3Lmcrddo5dJplIptK3sd946+KXNELStX3pWo8Sf dm9RMTLfa/pphmxy9u+x022q02Bp7BNKD6F011FIULsJNtMOQqvVH5BLFczNXVI+ upnHoM1Z7XTIow== -----END CERTIFICATE-----Generated at Sun Jan 11 23:42:24 2026 by rpki-client