This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.mft File: S8zQ21Lw7U9zpoHj02q2wjAnfTw.mft (raw, json) Hash identifier: ZIJH8x1bVvKkQbu3Az1xhaQYqBflywJN6R2av+VjLPU= Subject key identifier: B0:DA:7F:51:94:D4:D9:7B:67:6A:1A:13:1F:7E:0F:92:31:EF:A4:0A Authority key identifier: 4B:CC:D0:DB:52:F0:ED:4F:73:A6:81:E3:D3:6A:B6:C2:30:27:7D:3C Certificate issuer: /CN=4bccd0db52f0ed4f73a681e3d36ab6c230277d3c Certificate serial: 019BADCA7EA68D4CED48BA836D5FD891B076 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8zQ21Lw7U9zpoHj02q2wjAnfTw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.mft Manifest number: 09D5 Signing time: Sun 11 Jan 2026 16:01:27 +0000 Manifest this update: Sun 11 Jan 2026 16:01:27 +0000 Manifest next update: Mon 12 Jan 2026 16:01:27 +0000 Files and hashes: 1: S8zQ21Lw7U9zpoHj02q2wjAnfTw.crl (hash: LYRg8ufDTKXe6xvgiGmmb93YMcBkN0uNwsIcRw5PPDQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.mft rsync://rpki.ripe.net/repository/DEFAULT/S8zQ21Lw7U9zpoHj02q2wjAnfTw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 16:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ad:ca:7e:a6:8d:4c:ed:48:ba:83:6d:5f:d8:91:b0:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4bccd0db52f0ed4f73a681e3d36ab6c230277d3c Validity Not Before: Jan 11 16:01:27 2026 GMT Not After : Jan 12 16:01:27 2026 GMT Subject: CN=b0da7f5194d4d97b676a1a131f7e0f9231efa40a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:d9:b6:6b:c1:58:27:b3:c8:ce:51:f7:b4:36: 7b:b4:4f:3d:2c:9e:c3:5e:73:4e:d8:a4:cb:03:bf: bc:55:30:e5:0b:1b:57:fd:77:b2:7b:02:f4:2c:2d: d3:7c:0f:7c:13:c8:c7:dd:20:82:85:5a:72:ec:4b: a9:fd:09:c8:38:36:fd:fe:c4:90:7f:b1:59:86:cc: 7b:5e:c5:48:6a:b9:35:44:b3:e8:cb:2e:f4:a5:7f: 72:c1:d5:28:65:1a:c3:aa:77:7b:cd:c5:cd:b0:76: 87:38:07:42:0b:4f:b7:2b:35:b8:90:5f:29:6c:e8: ac:8c:4c:62:6d:c3:b7:97:07:c7:a5:b9:50:5f:fb: 50:41:b5:32:82:23:be:3e:43:b4:72:03:2e:1b:83: 01:30:35:60:ff:0a:fd:2c:b9:e7:f3:f9:7d:05:c9: 37:88:a3:1a:5e:ae:4b:5e:46:01:15:a8:b7:72:14: bc:5d:73:ae:2d:b0:88:73:c2:45:95:c9:ea:91:39: 7b:15:eb:d4:f2:1e:55:fa:01:07:43:46:76:c1:31: 5d:f9:07:11:0a:fe:d8:0d:f7:0e:e5:fe:7a:fe:56: 49:9a:27:40:d9:b7:d9:9b:99:7a:c3:8f:53:da:b9: 57:27:d1:09:43:4f:cb:c2:01:59:2e:6f:6f:35:fc: ce:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DA:7F:51:94:D4:D9:7B:67:6A:1A:13:1F:7E:0F:92:31:EF:A4:0A X509v3 Authority Key Identifier: keyid:4B:CC:D0:DB:52:F0:ED:4F:73:A6:81:E3:D3:6A:B6:C2:30:27:7D:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8zQ21Lw7U9zpoHj02q2wjAnfTw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ea:e9:db:09:59:f1:62:ab:b2:9d:e9:a8:82:9f:be:f2:05: 1e:c3:68:ee:58:cb:f9:22:7c:13:da:ed:aa:4e:51:ea:4c:cf: 28:58:ab:e7:2a:c4:8a:a8:c0:82:bc:fb:51:0f:45:b1:4f:f1: c0:38:40:e9:bd:0f:65:48:c8:3d:fd:32:68:16:73:27:9d:f1: 00:9d:66:64:a2:f7:52:6d:9b:44:80:bc:e3:9b:bb:ff:c6:01: 87:b4:7e:a2:7f:c0:16:86:0f:37:2f:56:48:ed:4d:60:21:ef: 6a:71:db:3a:ca:5c:da:b7:f4:73:80:9e:03:d2:45:ba:ce:c1: 56:9c:c4:a9:d4:cd:db:dc:87:ca:28:49:8e:c5:f1:ab:12:a9: dc:1d:48:36:61:9b:b0:46:9f:2f:2d:fa:b7:6b:c1:6e:9c:78: 80:6f:b4:a0:01:b4:23:48:c7:84:a5:9d:f9:63:8f:11:a2:57: 9e:00:7f:ea:db:bd:76:31:e2:fc:47:e1:f2:a7:d2:3e:e9:55: 82:4e:4a:18:e6:be:d9:8a:d1:1e:93:ab:b0:b4:be:65:58:01: 9b:22:4b:4c:5d:1b:89:db:9b:c4:a7:38:08:9c:21:c0:3e:09: 85:66:7a:07:7b:96:a1:ff:9a:02:4d:06:67:d4:82:7a:03:76: 98:94:8b:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZutyn6mjUztSLqDbV/YkbB2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiY2NkMGRiNTJmMGVkNGY3M2E2ODFlM2QzNmFiNmMyMzAy NzdkM2MwHhcNMjYwMTExMTYwMTI3WhcNMjYwMTEyMTYwMTI3WjAzMTEwLwYDVQQD EyhiMGRhN2Y1MTk0ZDRkOTdiNjc2YTFhMTMxZjdlMGY5MjMxZWZhNDBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhtm2a8FYJ7PIzlH3tDZ7tE89LJ7D XnNO2KTLA7+8VTDlCxtX/XeyewL0LC3TfA98E8jH3SCChVpy7Eup/QnIODb9/sSQ f7FZhsx7XsVIark1RLPoyy70pX9ywdUoZRrDqnd7zcXNsHaHOAdCC0+3KzW4kF8p bOisjExibcO3lwfHpblQX/tQQbUygiO+PkO0cgMuG4MBMDVg/wr9LLnn8/l9Bck3 iKMaXq5LXkYBFai3chS8XXOuLbCIc8JFlcnqkTl7FevU8h5V+gEHQ0Z2wTFd+QcR Cv7YDfcO5f56/lZJmidA2bfZm5l6w49T2rlXJ9EJQ0/LwgFZLm9vNfzOMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLDaf1GU1Nl7Z2oaEx9+D5Ix76QKMB8GA1UdIwQY MBaAFEvM0NtS8O1Pc6aB49NqtsIwJ308MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzh6UTIxTHc3VTl6cG9IajAycTJ3akFuZlR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80MWNjNTctMDZhNC00NzMyLThiZmMt ZjNmMTViMTI2NWJiLzEvUzh6UTIxTHc3VTl6cG9IajAycTJ3akFuZlR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80MWNjNTctMDZhNC00NzMyLThiZmMtZjNmMTViMTI2NWJi LzEvUzh6UTIxTHc3VTl6cG9IajAycTJ3akFuZlR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD+rp2wlZ 8WKrsp3pqIKfvvIFHsNo7ljL+SJ8E9rtqk5R6kzPKFir5yrEiqjAgrz7UQ9FsU/x wDhA6b0PZUjIPf0yaBZzJ53xAJ1mZKL3Um2bRIC845u7/8YBh7R+on/AFoYPNy9W SO1NYCHvanHbOspc2rf0c4CeA9JFus7BVpzEqdTN29yHyihJjsXxqxKp3B1INmGb sEafLy36t2vBbpx4gG+0oAG0I0jHhKWd+WOPEaJXngB/6tu9djHi/Efh8qfSPulV gk5KGOa+2YrRHpOrsLS+ZVgBmyJLTF0bidubxKc4CJwhwD4JhWZ6B3uWof+aAk0G Z9SCegN2mJSLAQ== -----END CERTIFICATE-----Generated at Sun Jan 11 20:08:30 2026 by rpki-client