This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft File: h4R32LYtCfmui_29gSpT-X7UxXY.mft (raw, json) Hash identifier: cdrIUJxvOy6FA3lGnabBA6X46OB79DP+TgQMZNEZjJ8= Subject key identifier: 68:B6:95:2B:FD:60:F3:FB:BF:8D:95:6C:D4:22:45:05:42:0C:D9:8E Authority key identifier: 87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76 Certificate issuer: /CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576 Certificate serial: 019B9666AF51E34D17C4C8380E3AB376BBEA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft Manifest number: 05DF Signing time: Wed 07 Jan 2026 03:01:10 +0000 Manifest this update: Wed 07 Jan 2026 03:01:10 +0000 Manifest next update: Thu 08 Jan 2026 03:01:10 +0000 Files and hashes: 1: VK_z4Ar4ArJujXib0iTDaTWfTUo.roa (hash: 7jC4P8FePKMkGfygUtuv427FEEIelby1i3hhTi94LOw=) 2: h4R32LYtCfmui_29gSpT-X7UxXY.crl (hash: DZ4zXMum+f7/MSS3wpftyreCbJmhCgAe7i3DM+UZo/k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 23:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:96:66:af:51:e3:4d:17:c4:c8:38:0e:3a:b3:76:bb:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576 Validity Not Before: Jan 7 03:01:10 2026 GMT Not After : Jan 8 03:01:10 2026 GMT Subject: CN=68b6952bfd60f3fbbf8d956cd4224505420cd98e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:04:09:17:f4:3c:07:97:da:7f:f4:67:13:15: 17:d2:8b:43:c8:24:62:68:20:13:ec:f5:92:4b:bf: e8:7f:cd:78:6c:6b:81:47:88:9f:1a:f3:d3:44:ad: 15:ef:66:22:37:3d:ed:12:5e:74:58:68:cf:1f:3e: d7:54:75:0c:3a:74:e6:c9:37:41:fe:e9:a5:53:78: 15:bd:75:bb:d6:a3:26:a0:8a:32:b2:cf:d2:6d:a4: 8a:af:1f:4d:57:57:4b:5a:ae:c6:2e:82:3f:05:77: cd:3e:e2:79:7f:e7:1b:03:d6:b1:f5:69:e1:ab:09: fb:7d:89:59:97:96:43:8a:fb:49:af:42:9d:2d:04: 71:0e:2f:6e:d3:82:be:d8:8e:ec:ad:36:b7:15:6c: db:e9:57:44:ce:be:4f:56:4a:96:d2:88:41:7f:11: 4c:5e:39:93:48:54:71:6d:c1:99:9b:9f:fd:89:d4: fb:b3:e6:93:72:76:be:d7:af:cb:95:a5:27:13:7b: cb:3d:a0:bc:d5:22:df:ef:e1:f1:60:e4:b8:0f:71: d6:14:2d:65:c2:d6:59:66:f7:cb:8d:4f:12:08:06: 0a:1b:1e:a7:b0:43:f2:7c:36:a3:2d:37:bb:a2:19: 6a:90:6f:93:b2:fb:80:1d:10:0b:42:4f:65:e1:52: d5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B6:95:2B:FD:60:F3:FB:BF:8D:95:6C:D4:22:45:05:42:0C:D9:8E X509v3 Authority Key Identifier: keyid:87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:04:63:bc:3f:0f:89:17:4f:84:a6:49:c3:5a:f1:dc:01:b2: 19:7e:07:2d:81:1f:a1:8b:06:4a:43:38:2e:ee:49:fd:a6:7d: 30:5b:5a:cb:a6:dd:22:53:77:2b:49:c9:14:26:c7:d5:a6:f4: 03:38:b8:0d:31:1c:d6:3d:bb:9a:81:c5:23:25:e9:6c:73:45: 5e:7a:c7:5d:18:f5:d9:26:2b:92:ea:f7:47:10:a2:cb:92:91: 80:59:ab:96:59:21:13:fb:84:0a:03:95:7b:2d:01:c8:99:06: 70:6e:49:3b:b4:4c:6c:5d:24:01:7a:84:38:a7:c2:40:f6:dd: 50:6d:2d:ab:fa:0d:5b:3d:31:b3:b0:94:c8:5e:40:9d:91:d4: 28:b9:c2:6c:45:ee:38:24:78:54:45:71:31:e6:07:f4:ba:49: f4:41:01:5c:d1:89:96:99:d1:dd:13:99:83:4e:9e:8b:30:47: 50:13:2f:d7:15:1b:36:26:de:95:70:73:ae:34:64:01:a4:85: f4:f6:1f:63:55:87:8c:1f:30:e3:e6:f2:84:65:55:93:f4:bb: 3d:76:08:50:9d:ad:5b:e8:88:a6:d5:99:b1:f6:3e:fd:84:c0: 9a:6c:38:9c:41:4b:ec:07:e1:80:36:2e:a7:25:99:c5:4b:f3: f9:9c:3d:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuWZq9R400XxMg4DjqzdrvqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ODQ3N2Q4YjYyZDA5ZjlhZThiZmRiZDgxMmE1M2Y5N2Vk NGM1NzYwHhcNMjYwMTA3MDMwMTEwWhcNMjYwMTA4MDMwMTEwWjAzMTEwLwYDVQQD Eyg2OGI2OTUyYmZkNjBmM2ZiYmY4ZDk1NmNkNDIyNDUwNTQyMGNkOThlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5gQJF/Q8B5faf/RnExUX0otDyCRi aCAT7PWSS7/of814bGuBR4ifGvPTRK0V72YiNz3tEl50WGjPHz7XVHUMOnTmyTdB /umlU3gVvXW71qMmoIoyss/SbaSKrx9NV1dLWq7GLoI/BXfNPuJ5f+cbA9ax9Wnh qwn7fYlZl5ZDivtJr0KdLQRxDi9u04K+2I7srTa3FWzb6VdEzr5PVkqW0ohBfxFM XjmTSFRxbcGZm5/9idT7s+aTcna+16/LlaUnE3vLPaC81SLf7+HxYOS4D3HWFC1l wtZZZvfLjU8SCAYKGx6nsEPyfDajLTe7ohlqkG+TsvuAHRALQk9l4VLV/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGi2lSv9YPP7v42VbNQiRQVCDNmOMB8GA1UdIwQY MBaAFIeEd9i2LQn5rov9vYEqU/l+1MV2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9lODNhYzUtNDQ4Yi00ZTQ5LThlYmYt ODg0MmU1ZWRjZTAyLzEvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9lODNhYzUtNDQ4Yi00ZTQ5LThlYmYtODg0MmU1ZWRjZTAy LzEvaDRSMzJMWXRDZm11aV8yOWdTcFQtWDdVeFhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALARjvD8P iRdPhKZJw1rx3AGyGX4HLYEfoYsGSkM4Lu5J/aZ9MFtay6bdIlN3K0nJFCbH1ab0 Azi4DTEc1j27moHFIyXpbHNFXnrHXRj12SYrkur3RxCiy5KRgFmrllkhE/uECgOV ey0ByJkGcG5JO7RMbF0kAXqEOKfCQPbdUG0tq/oNWz0xs7CUyF5AnZHUKLnCbEXu OCR4VEVxMeYH9LpJ9EEBXNGJlpnR3ROZg06eizBHUBMv1xUbNibelXBzrjRkAaSF 9PYfY1WHjB8w4+byhGVVk/S7PXYIUJ2tW+iIptWZsfY+/YTAmmw4nEFL7AfhgDYu pyWZxUvz+Zw9Vg== -----END CERTIFICATE-----Generated at Wed Jan 7 06:58:29 2026 by rpki-client