This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft File: g4heOKx3ysBEgptTyzslq-Yen2Q.mft (raw, json) Hash identifier: tgWTOECUFm72KHtQip1bRRCJE/6MN7Z5DJKKGpbRerk= Subject key identifier: 75:26:27:D5:45:2C:5F:42:1D:2D:0B:6E:C9:A9:E0:1E:CD:9B:C9:6B Authority key identifier: 83:88:5E:38:AC:77:CA:C0:44:82:9B:53:CB:3B:25:AB:E6:1E:9F:64 Certificate issuer: /CN=83885e38ac77cac044829b53cb3b25abe61e9f64 Certificate serial: 019BAE01613FDB8E0386FCE74B3DD5815FF5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft Manifest number: 07D4 Signing time: Sun 11 Jan 2026 17:01:24 +0000 Manifest this update: Sun 11 Jan 2026 17:01:24 +0000 Manifest next update: Mon 12 Jan 2026 17:01:24 +0000 Files and hashes: 1: U5LwFLNFwIzSSkxpdpnTKouxi20.roa (hash: ovCIG9r02PFi/FWVt8o3at5aILc9+LJLTQmUSraYt70=) 2: g4heOKx3ysBEgptTyzslq-Yen2Q.crl (hash: DiZ4hoKnkb6Bc4OICedg1AP5tZfQn3pfsW6S/gpx/AY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 17:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ae:01:61:3f:db:8e:03:86:fc:e7:4b:3d:d5:81:5f:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83885e38ac77cac044829b53cb3b25abe61e9f64 Validity Not Before: Jan 11 17:01:24 2026 GMT Not After : Jan 12 17:01:24 2026 GMT Subject: CN=752627d5452c5f421d2d0b6ec9a9e01ecd9bc96b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7b:28:e1:d5:0c:ae:ba:8d:cb:31:66:7f:87: b8:1a:30:b3:61:bc:33:f5:32:d0:69:c7:18:89:2f: 9a:d0:06:ac:22:a9:c6:5f:e8:1f:a1:52:7a:65:69: 0b:3e:77:f5:73:3e:e3:9d:d5:76:75:4e:d9:3f:78: bc:14:10:17:b0:05:b7:90:76:92:2f:3f:7d:cb:ca: 7e:c3:8f:e3:1f:9c:87:83:e3:65:7c:b9:bc:52:d4: b3:7a:e8:4c:3c:a7:a3:35:94:34:17:7a:1e:58:63: e1:f5:f9:a3:11:dc:d6:27:55:72:e9:d7:1e:ab:89: 0a:1e:9b:cc:52:6c:3b:c5:44:e2:f9:4d:94:84:21: fb:69:cf:91:04:72:81:5f:02:5e:8e:7f:7d:29:2c: 49:d8:e2:31:1d:75:00:00:88:62:64:32:a4:a7:bf: b8:03:e0:22:07:55:7b:6b:53:0d:2e:f8:83:43:18: 7b:68:f1:19:33:85:57:af:c7:5c:12:e9:32:e0:c7: 0e:cd:24:21:ec:13:40:00:f2:23:36:58:45:32:a9: 6b:c7:14:0a:05:e0:25:4f:08:32:88:3d:97:7a:c0: 53:08:1e:87:37:36:1a:10:cd:19:ec:91:35:96:21: ea:1f:91:5b:c4:61:bc:8a:cf:3c:85:cd:6d:77:7f: 5c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:26:27:D5:45:2C:5F:42:1D:2D:0B:6E:C9:A9:E0:1E:CD:9B:C9:6B X509v3 Authority Key Identifier: keyid:83:88:5E:38:AC:77:CA:C0:44:82:9B:53:CB:3B:25:AB:E6:1E:9F:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:f6:8a:98:d7:da:38:70:e9:14:62:ad:ec:b7:24:08:62:e8: 26:a3:31:28:21:4b:d0:bd:cd:99:d3:84:6d:8a:d5:a3:1c:51: f8:3d:f5:d1:d7:58:27:2f:1b:2d:71:36:4d:64:e3:0a:0b:3e: 86:29:03:a5:0f:05:1e:09:0d:90:41:d3:8e:0a:92:d8:e7:74: 81:af:69:8c:3c:56:c3:ab:19:54:ba:32:b6:af:00:4e:69:1d: 20:c9:f2:65:0a:6e:18:a1:b3:39:df:f0:23:e0:8c:40:a2:88: ae:d9:1d:97:b6:10:21:43:61:4c:07:ff:82:ee:59:fa:8e:ba: cc:2a:9d:b5:bd:26:a2:58:8c:49:b5:1e:33:72:b6:6b:f9:d6: 6c:9b:c6:96:57:92:51:be:e6:31:72:1b:a3:21:c3:a8:82:08: 19:a5:62:dc:fe:0d:90:79:84:65:48:2f:70:82:aa:6d:65:e5: f0:6b:05:9b:3e:cc:e7:27:74:05:6b:e9:2b:7d:88:0b:e8:c8: 3b:0a:25:1b:c3:dd:bf:a0:6e:38:86:f0:f8:13:03:48:9e:d6: ef:74:61:1c:8c:e7:ae:d6:a0:cd:af:36:9f:dd:da:8d:c0:ec: 8f:cc:2c:92:ed:08:c7:26:10:70:64:68:a4:dc:52:b3:4a:06: 86:42:c0:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuuAWE/244DhvznSz3VgV/1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzODg1ZTM4YWM3N2NhYzA0NDgyOWI1M2NiM2IyNWFiZTYx ZTlmNjQwHhcNMjYwMTExMTcwMTI0WhcNMjYwMTEyMTcwMTI0WjAzMTEwLwYDVQQD Eyg3NTI2MjdkNTQ1MmM1ZjQyMWQyZDBiNmVjOWE5ZTAxZWNkOWJjOTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXso4dUMrrqNyzFmf4e4GjCzYbwz 9TLQaccYiS+a0AasIqnGX+gfoVJ6ZWkLPnf1cz7jndV2dU7ZP3i8FBAXsAW3kHaS Lz99y8p+w4/jH5yHg+NlfLm8UtSzeuhMPKejNZQ0F3oeWGPh9fmjEdzWJ1Vy6dce q4kKHpvMUmw7xUTi+U2UhCH7ac+RBHKBXwJejn99KSxJ2OIxHXUAAIhiZDKkp7+4 A+AiB1V7a1MNLviDQxh7aPEZM4VXr8dcEuky4McOzSQh7BNAAPIjNlhFMqlrxxQK BeAlTwgyiD2XesBTCB6HNzYaEM0Z7JE1liHqH5FbxGG8is88hc1td39cKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHUmJ9VFLF9CHS0Lbsmp4B7Nm8lrMB8GA1UdIwQY MBaAFIOIXjisd8rARIKbU8s7JavmHp9kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzRoZU9LeDN5c0JFZ3B0VHl6c2xxLVllbjJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC80NjM2ODYtY2U0OC00ODdjLWJjM2Qt YTJmNTllYWU4NmQwLzEvZzRoZU9LeDN5c0JFZ3B0VHl6c2xxLVllbjJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC80NjM2ODYtY2U0OC00ODdjLWJjM2QtYTJmNTllYWU4NmQw LzEvZzRoZU9LeDN5c0JFZ3B0VHl6c2xxLVllbjJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuPaKmNfa OHDpFGKt7LckCGLoJqMxKCFL0L3NmdOEbYrVoxxR+D310ddYJy8bLXE2TWTjCgs+ hikDpQ8FHgkNkEHTjgqS2Od0ga9pjDxWw6sZVLoytq8ATmkdIMnyZQpuGKGzOd/w I+CMQKKIrtkdl7YQIUNhTAf/gu5Z+o66zCqdtb0moliMSbUeM3K2a/nWbJvGlleS Ub7mMXIboyHDqIIIGaVi3P4NkHmEZUgvcIKqbWXl8GsFmz7M5yd0BWvpK32IC+jI OwolG8Pdv6BuOIbw+BMDSJ7W73RhHIznrtagza82n93ajcDsj8wsku0IxyYQcGRo pNxSs0oGhkLAWA== -----END CERTIFICATE-----Generated at Sun Jan 11 23:06:25 2026 by rpki-client