This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft File: rSzoJufkLt3WnfrTpZqbmqTigYM.mft (raw, json) Hash identifier: T9XSkK1So4e1IJ5u/pqF9nvkrUgBuhvcX+pNVHTfU7I= Subject key identifier: D2:55:67:DC:69:7B:6A:4B:4C:D8:ED:B1:23:CA:71:1D:90:B4:4B:0E Authority key identifier: AD:2C:E8:26:E7:E4:2E:DD:D6:9D:FA:D3:A5:9A:9B:9A:A4:E2:81:83 Certificate issuer: /CN=ad2ce826e7e42eddd69dfad3a59a9b9aa4e28183 Certificate serial: 019B7F39EB8E02D71ABF9A94942CE4C83EC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSzoJufkLt3WnfrTpZqbmqTigYM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft Manifest number: 16A6 Signing time: Fri 02 Jan 2026 15:01:00 +0000 Manifest this update: Fri 02 Jan 2026 15:01:00 +0000 Manifest next update: Sat 03 Jan 2026 15:01:00 +0000 Files and hashes: 1: rSzoJufkLt3WnfrTpZqbmqTigYM.crl (hash: upkLuabfZYlGRMSEkf/U05VMk2s3wDGIpW8VU4WIz+0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft rsync://rpki.ripe.net/repository/DEFAULT/rSzoJufkLt3WnfrTpZqbmqTigYM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 15:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:39:eb:8e:02:d7:1a:bf:9a:94:94:2c:e4:c8:3e:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad2ce826e7e42eddd69dfad3a59a9b9aa4e28183 Validity Not Before: Jan 2 15:01:00 2026 GMT Not After : Jan 3 15:01:00 2026 GMT Subject: CN=d25567dc697b6a4b4cd8edb123ca711d90b44b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8e:0c:71:02:34:da:6c:aa:87:21:b1:b2:bc: b2:93:49:7d:28:93:30:df:5d:1a:48:86:83:5f:21: 60:fe:56:47:d3:f7:c2:3c:ce:61:97:4a:33:f7:f5: 73:b2:05:b4:25:40:7b:84:1e:21:89:42:96:4b:07: ed:25:62:ab:2e:12:1e:78:94:66:2f:23:e4:84:d6: 5a:50:2c:22:5d:7a:09:94:de:a0:7f:58:d2:b9:57: 72:27:36:3d:c3:e3:8a:df:e3:8f:0b:9b:e9:d6:23: ad:6d:c5:55:cf:f5:b3:50:14:21:45:b4:5a:a9:20: 65:2e:7a:fe:b1:12:99:e1:1d:c7:47:76:2f:3c:c1: b1:dd:b9:c5:19:ae:86:00:79:a9:29:02:8d:c5:3f: 9b:63:8f:f2:00:fa:42:c7:44:33:2d:10:27:20:9f: 18:e8:fb:af:55:89:c9:a7:e8:e7:d6:6f:3b:72:e2: 86:64:7e:ac:d7:f9:31:03:d1:9b:5f:f7:3e:63:79: 10:77:88:ab:9d:31:06:08:6c:01:30:a2:cd:01:72: 60:fe:af:76:f3:e6:85:d3:90:18:e8:10:d8:b7:ed: 6e:06:ff:52:6e:89:9f:43:4e:93:0e:e8:b0:8a:28: f9:2f:ef:fd:ef:78:53:88:a1:f7:e5:39:53:d5:b9: d8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:55:67:DC:69:7B:6A:4B:4C:D8:ED:B1:23:CA:71:1D:90:B4:4B:0E X509v3 Authority Key Identifier: keyid:AD:2C:E8:26:E7:E4:2E:DD:D6:9D:FA:D3:A5:9A:9B:9A:A4:E2:81:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSzoJufkLt3WnfrTpZqbmqTigYM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:d2:e2:e8:6c:3c:a4:24:aa:bf:d0:e9:94:ba:0e:f2:c4:b5: 9f:5a:73:58:6a:e3:e6:69:ec:74:2a:95:80:ed:b9:10:1f:05: 04:fc:a6:40:08:69:20:9a:b4:44:83:46:bb:38:58:f9:15:00: e2:52:69:2a:81:83:d9:d6:07:22:b1:ab:ab:49:7c:0b:f3:25: c5:2b:be:65:cd:13:77:8b:84:41:44:d1:f4:97:e2:51:4d:b5: b0:56:e1:9d:cc:1e:50:e3:67:b6:d0:61:23:69:8d:39:87:a8: 62:7b:d7:3a:8e:1e:cd:9f:cf:57:1f:8a:f7:d5:27:37:1b:a7: 4e:bc:22:5f:eb:27:b4:21:17:83:c4:58:ad:9a:7d:d8:36:c8: ab:5f:65:fb:63:63:0f:d3:63:4b:d9:af:23:23:3d:6a:db:77: 0b:36:59:8d:37:74:62:75:03:8b:c9:26:2d:18:f1:3b:0f:5e: 59:ae:4b:20:8a:26:06:83:6f:92:56:f8:75:13:19:dd:fc:6c: ba:90:de:dd:f1:2a:f6:99:da:31:bc:a5:13:bf:73:df:d4:45: e3:4c:ef:ec:ad:e1:02:59:59:8f:04:02:1b:f2:05:dd:d1:a9: b7:6f:b9:d5:95:ec:77:e5:dd:58:8b:83:85:3c:09:d1:42:19: a7:b9:7b:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt/OeuOAtcav5qUlCzkyD7DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMmNlODI2ZTdlNDJlZGRkNjlkZmFkM2E1OWE5YjlhYTRl MjgxODMwHhcNMjYwMTAyMTUwMTAwWhcNMjYwMTAzMTUwMTAwWjAzMTEwLwYDVQQD EyhkMjU1NjdkYzY5N2I2YTRiNGNkOGVkYjEyM2NhNzExZDkwYjQ0YjBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzY4McQI02myqhyGxsryyk0l9KJMw 310aSIaDXyFg/lZH0/fCPM5hl0oz9/VzsgW0JUB7hB4hiUKWSwftJWKrLhIeeJRm LyPkhNZaUCwiXXoJlN6gf1jSuVdyJzY9w+OK3+OPC5vp1iOtbcVVz/WzUBQhRbRa qSBlLnr+sRKZ4R3HR3YvPMGx3bnFGa6GAHmpKQKNxT+bY4/yAPpCx0QzLRAnIJ8Y 6PuvVYnJp+jn1m87cuKGZH6s1/kxA9GbX/c+Y3kQd4irnTEGCGwBMKLNAXJg/q92 8+aF05AY6BDYt+1uBv9SbomfQ06TDuiwiij5L+/973hTiKH35TlT1bnYuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNJVZ9xpe2pLTNjtsSPKcR2QtEsOMB8GA1UdIwQY MBaAFK0s6Cbn5C7d1p3606Wam5qk4oGDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclN6b0p1ZmtMdDNXbmZyVHBacWJtcVRpZ1lNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iZWM1NjMtNTgxZS00OWU0LTljYzct YTgzYThkNTMzMjc1LzEvclN6b0p1ZmtMdDNXbmZyVHBacWJtcVRpZ1lNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iZWM1NjMtNTgxZS00OWU0LTljYzctYTgzYThkNTMzMjc1 LzEvclN6b0p1ZmtMdDNXbmZyVHBacWJtcVRpZ1lNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgtLi6Gw8 pCSqv9DplLoO8sS1n1pzWGrj5mnsdCqVgO25EB8FBPymQAhpIJq0RINGuzhY+RUA 4lJpKoGD2dYHIrGrq0l8C/MlxSu+Zc0Td4uEQUTR9JfiUU21sFbhncweUONnttBh I2mNOYeoYnvXOo4ezZ/PVx+K99UnNxunTrwiX+sntCEXg8RYrZp92DbIq19l+2Nj D9NjS9mvIyM9att3CzZZjTd0YnUDi8kmLRjxOw9eWa5LIIomBoNvklb4dRMZ3fxs upDe3fEq9pnaMbylE79z39RF40zv7K3hAllZjwQCG/IF3dGpt2+51ZXsd+XdWIuD hTwJ0UIZp7l7fw== -----END CERTIFICATE-----Generated at Sat Jan 3 00:57:52 2026 by rpki-client