This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft File: GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft (raw, json) Hash identifier: l98VOdrBi7CA/V6OXBMVQx7bdlSq1Im2C28eXLkGFww= Subject key identifier: 95:9A:D4:ED:21:77:EF:02:0F:45:01:0C:56:AD:22:CB:72:D6:C0:15 Authority key identifier: 18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9 Certificate issuer: /CN=18886007da1730b0770d8604db73d12fd264f3f9 Certificate serial: 019BB05DEC078A10ECFF85F63F4C278FC30F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft Manifest number: 089F Signing time: Mon 12 Jan 2026 04:01:43 +0000 Manifest this update: Mon 12 Jan 2026 04:01:43 +0000 Manifest next update: Tue 13 Jan 2026 04:01:43 +0000 Files and hashes: 1: 4P44xY1khmyEZiMfEP9IIqI31cw.roa (hash: HoHEIC8qQ5DdoCy6PGfE4N47m5oNmY1p21zVZ0NZdNM=) 2: GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl (hash: eMeKvdUn57LnQ7ofrrLI277eVXtomXHyzfcikyAARb8=) 3: StgAPdXsLWXdyjwd0NgXnOpHgDM.roa (hash: CqI61wUJN0vtPYYBH79k6FeQKUdhcEdxzCN0wPzCxIY=) 4: XtW69XYWfcYs9FhfW77svXCHmQk.roa (hash: +2PiuVV/xd9FID0vQ4PS/1nWqfCBv4fOx6GV++A7pIo=) 5: xTvnABmzNdQ7rQ9kUoYbhsXZGao.roa (hash: epVzxBSblNKuTBQkW5kiwP+e9xI7OzToQE+spC6i0y8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b0:5d:ec:07:8a:10:ec:ff:85:f6:3f:4c:27:8f:c3:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18886007da1730b0770d8604db73d12fd264f3f9 Validity Not Before: Jan 12 04:01:43 2026 GMT Not After : Jan 13 04:01:43 2026 GMT Subject: CN=959ad4ed2177ef020f45010c56ad22cb72d6c015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:eb:f7:bd:a8:7c:11:af:71:ff:53:21:18:5a: 89:1f:70:b7:67:91:c3:f7:9e:35:82:4c:c2:00:db: c9:0d:52:49:7c:a4:75:4b:d7:8a:f7:be:56:07:e1: 42:a8:4e:93:8c:bc:77:7f:f9:e8:6c:2f:58:80:83: 28:8a:36:a9:89:f6:53:d5:28:3b:32:46:a6:98:a6: 6e:70:0e:82:3b:28:e2:cf:0f:c1:b7:a9:8d:03:09: 65:be:13:ba:ac:33:15:48:8f:2a:7a:a7:20:10:1d: 07:49:96:34:3e:11:a4:17:2b:d0:ba:cd:34:3b:54: 8b:a5:47:95:f4:3f:47:f8:4b:bf:86:c5:07:1c:3e: d5:b8:d6:ae:5f:fb:97:9c:e5:4e:5b:87:f1:a1:1e: 02:74:ba:6a:a0:2f:a7:ed:96:e5:a9:5e:fc:e8:e0: b0:a8:71:5b:fd:b1:78:74:ea:0b:f6:06:b5:a7:41: d6:d8:6e:3a:60:8e:db:74:0c:41:a7:db:f0:d7:a3: d9:db:05:bf:02:6b:d0:d3:d3:8d:79:62:11:e8:98: e6:48:1b:be:64:c0:45:7c:99:72:be:df:1e:ca:00: 9c:69:01:41:c3:4e:bf:30:05:ee:0d:a7:dd:25:6b: 64:6f:81:8b:31:f0:92:8a:ec:d3:ab:e1:3a:b1:52: 24:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:9A:D4:ED:21:77:EF:02:0F:45:01:0C:56:AD:22:CB:72:D6:C0:15 X509v3 Authority Key Identifier: keyid:18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c3:4a:28:7e:d4:7b:32:ef:9b:b6:a7:ef:c1:e2:ea:ed:24: 91:22:d0:cd:6a:e8:8b:84:ca:65:4e:74:2e:61:3b:ec:d8:6f: 68:a9:79:73:d9:43:85:33:fb:9d:22:07:93:12:11:6c:f5:1c: db:7a:22:69:7c:ab:3d:a2:26:91:e5:79:62:f3:77:a1:2f:00: 8b:c1:76:8b:50:7c:46:e9:20:bf:04:8a:f4:17:4f:b5:8b:9c: 0a:02:ff:e3:31:02:c5:25:14:c4:3d:24:45:ca:0b:33:da:5a: d2:c0:51:72:b5:14:72:0b:88:dd:9c:8b:8d:ac:51:56:fc:c8: 90:d0:21:e7:a2:ab:f1:a8:9b:21:ec:d1:b7:a3:9e:26:64:fb: 13:30:15:9c:aa:61:dc:d9:97:0f:87:98:df:6e:a7:fc:7f:30: 0e:70:e5:62:eb:86:d7:72:b1:bf:94:27:9f:64:ba:f1:c2:a0: ac:a4:21:44:85:d9:35:ce:5c:59:d0:52:3e:fb:0d:fe:19:42: 7c:c3:08:82:87:0a:02:c0:45:4d:40:47:1e:4a:65:ae:15:84: 43:ea:68:ce:98:db:df:d5:8b:c4:86:f3:18:72:9b:c7:61:da: c2:e8:1d:c0:d0:c6:01:1b:92:62:c6:a2:5a:84:b4:d4:fd:36: 6f:18:74:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuwXewHihDs/4X2P0wnj8MPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4ODg2MDA3ZGExNzMwYjA3NzBkODYwNGRiNzNkMTJmZDI2 NGYzZjkwHhcNMjYwMTEyMDQwMTQzWhcNMjYwMTEzMDQwMTQzWjAzMTEwLwYDVQQD Eyg5NTlhZDRlZDIxNzdlZjAyMGY0NTAxMGM1NmFkMjJjYjcyZDZjMDE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuv3vah8Ea9x/1MhGFqJH3C3Z5HD 9541gkzCANvJDVJJfKR1S9eK975WB+FCqE6TjLx3f/nobC9YgIMoijapifZT1Sg7 MkammKZucA6COyjizw/Bt6mNAwllvhO6rDMVSI8qeqcgEB0HSZY0PhGkFyvQus00 O1SLpUeV9D9H+Eu/hsUHHD7VuNauX/uXnOVOW4fxoR4CdLpqoC+n7ZblqV786OCw qHFb/bF4dOoL9ga1p0HW2G46YI7bdAxBp9vw16PZ2wW/AmvQ09ONeWIR6JjmSBu+ ZMBFfJlyvt8eygCcaQFBw06/MAXuDafdJWtkb4GLMfCSiuzTq+E6sVIkwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJWa1O0hd+8CD0UBDFatIsty1sAVMB8GA1UdIwQY MBaAFBiIYAfaFzCwdw2GBNtz0S/SZPP5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0loZ0I5b1hNTEIzRFlZRTIzUFJMOUprOF9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS8yOTMzMjgtOTI0NS00MDNiLThhNGEt MTY5YzgzNmJkNmIwLzEvR0loZ0I5b1hNTEIzRFlZRTIzUFJMOUprOF9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS8yOTMzMjgtOTI0NS00MDNiLThhNGEtMTY5YzgzNmJkNmIw LzEvR0loZ0I5b1hNTEIzRFlZRTIzUFJMOUprOF9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe8NKKH7U ezLvm7an78Hi6u0kkSLQzWroi4TKZU50LmE77NhvaKl5c9lDhTP7nSIHkxIRbPUc 23oiaXyrPaImkeV5YvN3oS8Ai8F2i1B8RukgvwSK9BdPtYucCgL/4zECxSUUxD0k RcoLM9pa0sBRcrUUcguI3ZyLjaxRVvzIkNAh56Kr8aibIezRt6OeJmT7EzAVnKph 3NmXD4eY326n/H8wDnDlYuuG13Kxv5Qnn2S68cKgrKQhRIXZNc5cWdBSPvsN/hlC fMMIgocKAsBFTUBHHkplrhWEQ+pozpjb39WLxIbzGHKbx2HawugdwNDGARuSYsai WoS01P02bxh0nQ== -----END CERTIFICATE-----Generated at Mon Jan 12 12:31:27 2026 by rpki-client