This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft File: Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft (raw, json) Hash identifier: UUxbRHSAIIGXdQm+sydka6UqngEEUBL45RXhJ3SurHo= Subject key identifier: 99:DB:99:D9:9F:D1:FD:5B:D2:F2:A0:EE:B3:0B:66:39:31:41:D4:D5 Authority key identifier: 0E:2E:4F:D2:19:F5:B7:7C:E8:0C:DF:AF:9E:3A:64:41:DE:C5:00:42 Certificate issuer: /CN=0e2e4fd219f5b77ce80cdfaf9e3a6441dec50042 Certificate serial: 019BAF81C012927084B9FA14972BA2786A9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft Manifest number: 17CB Signing time: Mon 12 Jan 2026 00:01:14 +0000 Manifest this update: Mon 12 Jan 2026 00:01:14 +0000 Manifest next update: Tue 13 Jan 2026 00:01:14 +0000 Files and hashes: 1: Bzo_d6zW3tj-cs4yT8d3sKOXlfg.roa (hash: sB4IjXQ2q1JliT65t5pMashaLGv9OdpiFjT65GllIOg=) 2: Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl (hash: T3GWY+gUuPOWLbJaayoQ7XpWKvk5ZmK6L8M6+iCu2ec=) 3: E3W4jp5zsoikKWLmA1V7bWlcpV4.roa (hash: YJ9yEvPcrd1MOHEooUf+VZebkz+BFG/oUSCxEMHiKbk=) 4: aUScLYE7hWlZLrttrbL09JUvQA0.roa (hash: x+eRx80jxSLOtFgW7pQIqcwn52mE8qpARjfDhLVRoV4=) 5: i72bIypIf2CpFKoEg8C1pt-mNRo.roa (hash: IFGCEB1czLr3SQqiMmwkpKpmacuW/s1RIwvjueqrec8=) 6: syHsa3UwI7A4E1vFkZMbu6fpkLc.roa (hash: KLgolmeV6tSpGZyB1XkLi7+L/oDApU24VOgy7S5H3dg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:af:81:c0:12:92:70:84:b9:fa:14:97:2b:a2:78:6a:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e2e4fd219f5b77ce80cdfaf9e3a6441dec50042 Validity Not Before: Jan 12 00:01:14 2026 GMT Not After : Jan 13 00:01:14 2026 GMT Subject: CN=99db99d99fd1fd5bd2f2a0eeb30b66393141d4d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:93:fb:0a:db:05:53:b5:7e:3b:b1:0b:f6:19: 44:66:02:b1:b9:a7:bc:b5:23:5f:49:fc:29:4c:c1: 4b:68:72:77:25:9b:78:17:3c:6d:d4:6d:e7:b9:c2: 77:05:d2:db:4b:42:3f:ae:46:c9:6a:35:d3:b0:ea: 2d:66:aa:0f:b7:e5:26:8a:05:5f:84:7d:0f:20:15: ed:2e:b6:b4:74:c1:97:3d:c7:c9:e9:49:09:57:33: 9f:94:fc:36:4d:da:25:35:5e:32:44:6c:21:c4:02: af:76:d2:2c:8c:67:53:98:09:ef:48:a1:c0:cb:93: 3a:ce:da:74:92:f9:39:05:ee:af:d9:53:6d:ec:db: 33:d5:6a:f4:96:9d:ea:b6:5c:dd:e1:19:ed:d1:d1: 01:04:b0:f1:f0:8c:4e:f4:77:4e:11:39:35:45:c2: 27:ee:84:08:9a:2a:a6:41:39:82:a6:7b:2c:23:9a: 97:82:14:a0:28:48:ff:3d:32:28:61:16:07:29:e9: 64:b2:75:a3:97:ec:95:73:d2:00:ef:79:c6:a1:0f: 7f:d4:bc:f9:df:3f:c1:4a:12:11:71:bd:10:b2:55: b2:36:14:79:91:4d:bb:10:78:ef:e0:a0:5d:e4:6e: 0f:f6:4a:3c:71:04:93:b1:c3:74:ba:5b:80:71:04: db:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:DB:99:D9:9F:D1:FD:5B:D2:F2:A0:EE:B3:0B:66:39:31:41:D4:D5 X509v3 Authority Key Identifier: keyid:0E:2E:4F:D2:19:F5:B7:7C:E8:0C:DF:AF:9E:3A:64:41:DE:C5:00:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Di5P0hn1t3zoDN-vnjpkQd7FAEI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/e11224-61c7-4786-86e9-238fee692430/1/Di5P0hn1t3zoDN-vnjpkQd7FAEI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:16:12:4e:f4:37:1d:1a:8c:cc:7f:95:2c:f1:d2:7c:87:fa: fa:94:29:ce:48:3e:7d:b6:c6:e9:a8:c1:74:54:12:c5:6b:4c: d0:ac:6f:a0:5c:2b:2a:0d:d0:76:a0:f1:3e:10:f5:d9:2f:3f: 4b:bd:46:1b:d1:be:e9:23:8b:fa:71:5f:64:16:9e:80:57:b3: 40:f3:4e:5b:56:5c:30:84:fb:46:31:ec:0c:97:46:7e:0c:49: ad:f4:75:aa:79:1e:d8:94:19:3f:3d:5a:eb:28:b9:cf:d9:2e: a0:2e:5c:7d:bc:45:9d:71:29:55:67:d2:b0:f2:6a:4b:de:01: 56:74:a7:82:cf:40:0d:b9:51:f2:bc:ca:05:a7:df:75:66:9c: bd:f4:e4:6d:d9:bb:62:b9:c3:8e:c4:c7:2e:45:f3:6c:c4:69: e5:92:81:e1:74:f0:f2:77:4f:78:8c:53:d2:a8:ed:3c:eb:ca: 89:01:61:19:87:36:c0:53:05:1e:60:39:f7:e0:e5:7b:e4:d7: ba:b9:e0:a2:8e:8e:c8:da:41:d8:dd:6c:71:2c:3b:6f:ff:3b: fc:79:48:fc:8f:b3:03:dc:05:4c:24:bf:45:ac:67:6a:36:b8: 6d:64:d7:2b:f1:71:0f:3c:10:59:1b:08:cc:d8:4e:65:d9:51: 7c:eb:98:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuvgcASknCEufoUlyuieGqdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMmU0ZmQyMTlmNWI3N2NlODBjZGZhZjllM2E2NDQxZGVj NTAwNDIwHhcNMjYwMTEyMDAwMTE0WhcNMjYwMTEzMDAwMTE0WjAzMTEwLwYDVQQD Eyg5OWRiOTlkOTlmZDFmZDViZDJmMmEwZWViMzBiNjYzOTMxNDFkNGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpP7CtsFU7V+O7EL9hlEZgKxuae8 tSNfSfwpTMFLaHJ3JZt4Fzxt1G3nucJ3BdLbS0I/rkbJajXTsOotZqoPt+UmigVf hH0PIBXtLra0dMGXPcfJ6UkJVzOflPw2TdolNV4yRGwhxAKvdtIsjGdTmAnvSKHA y5M6ztp0kvk5Be6v2VNt7Nsz1Wr0lp3qtlzd4Rnt0dEBBLDx8IxO9HdOETk1RcIn 7oQImiqmQTmCpnssI5qXghSgKEj/PTIoYRYHKelksnWjl+yVc9IA73nGoQ9/1Lz5 3z/BShIRcb0QslWyNhR5kU27EHjv4KBd5G4P9ko8cQSTscN0uluAcQTbVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJnbmdmf0f1b0vKg7rMLZjkxQdTVMB8GA1UdIwQY MBaAFA4uT9IZ9bd86Azfr546ZEHexQBCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9lMTEyMjQtNjFjNy00Nzg2LTg2ZTkt MjM4ZmVlNjkyNDMwLzEvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS9lMTEyMjQtNjFjNy00Nzg2LTg2ZTktMjM4ZmVlNjkyNDMw LzEvRGk1UDBobjF0M3pvRE4tdm5qcGtRZDdGQUVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnRYSTvQ3 HRqMzH+VLPHSfIf6+pQpzkg+fbbG6ajBdFQSxWtM0KxvoFwrKg3QdqDxPhD12S8/ S71GG9G+6SOL+nFfZBaegFezQPNOW1ZcMIT7RjHsDJdGfgxJrfR1qnke2JQZPz1a 6yi5z9kuoC5cfbxFnXEpVWfSsPJqS94BVnSngs9ADblR8rzKBaffdWacvfTkbdm7 YrnDjsTHLkXzbMRp5ZKB4XTw8ndPeIxT0qjtPOvKiQFhGYc2wFMFHmA59+Dle+TX urngoo6OyNpB2N1scSw7b/87/HlI/I+zA9wFTCS/Raxnaja4bWTXK/FxDzwQWRsI zNhOZdlRfOuYwQ== -----END CERTIFICATE-----Generated at Mon Jan 12 02:23:54 2026 by rpki-client