This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft File: aesALwAL1CbkpkDHHWwCAbUFDjQ.mft (raw, json) Hash identifier: kGXJAqq2BBunx0dgtSsVeGkrHvYU+eWS7wtOiOluF7E= Subject key identifier: 3D:9A:5A:DD:AF:0C:DF:C0:A7:FE:BF:39:80:F5:A3:FF:AB:13:B3:A2 Authority key identifier: 69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34 Certificate issuer: /CN=69eb002f000bd426e4a640c71d6c0201b5050e34 Certificate serial: 019BF499C08F648FAA105B5E2B00D61E2AC0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft Manifest number: 172D Signing time: Sun 25 Jan 2026 10:01:15 +0000 Manifest this update: Sun 25 Jan 2026 10:01:15 +0000 Manifest next update: Mon 26 Jan 2026 10:01:15 +0000 Files and hashes: 1: Y8aRMIYRH1jVjryKKP1v8mGsOdc.roa (hash: 3j6bnXLc/3ckyPdMqKUjErtfoWBW1SDwWHfzwh4ftiY=) 2: aesALwAL1CbkpkDHHWwCAbUFDjQ.crl (hash: iF4wUJA9nXsDF3heMfWBdhYajWseBXn6u9TF7q/kApY=) 3: uFe4cVHbxr_G6s1--UuURiKCbYs.roa (hash: Fv5WNCecba9l/1dLNg+gP0QmW1CKOnk01tR8y8gBZWE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:c0:8f:64:8f:aa:10:5b:5e:2b:00:d6:1e:2a:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69eb002f000bd426e4a640c71d6c0201b5050e34 Validity Not Before: Jan 25 10:01:15 2026 GMT Not After : Jan 26 10:01:15 2026 GMT Subject: CN=3d9a5addaf0cdfc0a7febf3980f5a3ffab13b3a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ae:b5:fd:cb:8b:71:5e:5d:a8:ca:8f:98:9d: 6d:ac:9c:df:bc:00:ac:bc:8a:39:84:d2:9f:d2:24: c3:ba:28:5b:3d:7b:07:fd:0c:4c:67:ca:4c:d7:c5: 80:84:be:81:ec:e0:27:7b:f5:56:e1:ff:bd:57:9b: 4a:96:90:90:ce:e1:ee:e1:89:3e:95:b7:f8:88:22: 7c:85:01:d9:fb:ce:76:70:aa:25:af:55:54:3c:f6: a9:d6:af:3d:cc:b2:be:19:d7:5b:06:a9:7d:63:2b: 2f:13:93:53:48:b0:30:7f:5b:0a:6f:bb:9e:52:85: d6:f4:88:75:01:7a:75:fb:9e:3a:65:8b:f2:35:d7: 1e:ce:61:a9:23:ac:52:e7:2b:58:df:77:a2:c6:71: 4d:32:89:91:97:24:30:6a:b8:a7:e2:4c:62:0d:71: 8b:4b:99:35:65:e9:39:88:75:e0:8a:e3:32:35:97: ec:56:ae:df:6f:6a:d7:03:dd:ab:45:d4:c9:d7:b2: 63:e3:ab:96:87:6c:36:ab:5c:a6:cf:06:8a:c1:48: 7c:2b:93:59:8e:73:ec:5d:bb:1f:ad:99:23:fd:1f: 38:5e:74:88:07:78:4b:bb:d9:07:e1:0e:35:a4:1a: 5e:87:ad:8e:f4:dd:f3:aa:9b:88:88:98:71:d0:32: 14:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:9A:5A:DD:AF:0C:DF:C0:A7:FE:BF:39:80:F5:A3:FF:AB:13:B3:A2 X509v3 Authority Key Identifier: keyid:69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:1a:2c:a0:66:16:ad:ac:3a:6f:62:ef:f1:88:8e:4a:0b:5a: a4:bf:c1:9a:d4:55:36:dc:84:66:1e:12:29:f9:34:60:95:32: 0f:09:d7:b7:5c:2f:2c:82:2d:56:c8:83:7c:51:40:12:6e:ab: ea:ff:52:6c:b1:95:f4:ad:90:8a:dd:f0:43:2d:58:21:91:f1: 2b:cb:27:6c:30:cd:23:3f:b3:24:fa:f2:6c:f1:4b:ec:fa:6d: 54:dd:cf:f1:cb:13:65:38:cb:5a:31:33:b1:28:35:ff:bf:48: 11:a5:4a:0f:eb:b9:00:ec:1f:55:65:5b:fb:87:fc:86:34:a7: 7c:f3:3c:8b:d5:0b:6f:5e:31:d2:c0:5e:e1:eb:f4:b0:0d:57: ef:d2:2c:8d:92:97:c5:70:32:5d:ec:6b:fa:3a:63:5e:18:12: 32:c5:87:f7:38:3b:dd:4b:d9:78:15:94:c5:6e:ca:d6:40:d4: 74:61:15:3f:65:df:3c:fb:00:05:39:8b:15:f7:36:7b:d3:a1: 00:c7:9a:5e:0d:d4:ae:c1:48:f7:17:d0:e2:e3:0b:9d:e5:c3: f5:59:18:85:53:fd:8f:07:18:ff:52:3d:65:84:00:ef:8f:53: bf:42:48:98:20:b5:7f:c3:3c:13:4d:42:7a:82:52:a6:5d:ff: 06:b8:07:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mcCPZI+qEFteKwDWHirAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZWIwMDJmMDAwYmQ0MjZlNGE2NDBjNzFkNmMwMjAxYjUw NTBlMzQwHhcNMjYwMTI1MTAwMTE1WhcNMjYwMTI2MTAwMTE1WjAzMTEwLwYDVQQD EygzZDlhNWFkZGFmMGNkZmMwYTdmZWJmMzk4MGY1YTNmZmFiMTNiM2EyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5661/cuLcV5dqMqPmJ1trJzfvACs vIo5hNKf0iTDuihbPXsH/QxMZ8pM18WAhL6B7OAne/VW4f+9V5tKlpCQzuHu4Yk+ lbf4iCJ8hQHZ+852cKolr1VUPPap1q89zLK+GddbBql9YysvE5NTSLAwf1sKb7ue UoXW9Ih1AXp1+546ZYvyNdcezmGpI6xS5ytY33eixnFNMomRlyQwarin4kxiDXGL S5k1Zek5iHXgiuMyNZfsVq7fb2rXA92rRdTJ17Jj46uWh2w2q1ymzwaKwUh8K5NZ jnPsXbsfrZkj/R84XnSIB3hLu9kH4Q41pBpeh62O9N3zqpuIiJhx0DIUswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD2aWt2vDN/Ap/6/OYD1o/+rE7OiMB8GA1UdIwQY MBaAFGnrAC8AC9Qm5KZAxx1sAgG1BQ40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kM2U2ODItMzM3MC00MjcxLTk0Mzct Nzg1NDc1YzIyYzliLzEvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9kM2U2ODItMzM3MC00MjcxLTk0MzctNzg1NDc1YzIyYzli LzEvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABBosoGYW raw6b2Lv8YiOSgtapL/BmtRVNtyEZh4SKfk0YJUyDwnXt1wvLIItVsiDfFFAEm6r 6v9SbLGV9K2Qit3wQy1YIZHxK8snbDDNIz+zJPrybPFL7PptVN3P8csTZTjLWjEz sSg1/79IEaVKD+u5AOwfVWVb+4f8hjSnfPM8i9ULb14x0sBe4ev0sA1X79IsjZKX xXAyXexr+jpjXhgSMsWH9zg73UvZeBWUxW7K1kDUdGEVP2XfPPsABTmLFfc2e9Oh AMeaXg3UrsFI9xfQ4uMLneXD9VkYhVP9jwcY/1I9ZYQA749Tv0JImCC1f8M8E01C eoJSpl3/BrgHDQ== -----END CERTIFICATE-----Generated at Sun Jan 25 20:33:18 2026 by rpki-client