This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json) Hash identifier: QRQ0cITCwzbdmpzagBx2Bk3Zm4VM91H6JLPZ1tT5+6I= Subject key identifier: 4E:7F:FA:9E:C4:AF:F7:E7:F9:E8:97:BE:0B:F6:B6:D5:41:C0:0E:6A Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5 Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5 Certificate serial: 019BFD2E83B2FFC64CD58F1281C26FC24BCB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft Manifest number: 0C9E Signing time: Tue 27 Jan 2026 02:00:42 +0000 Manifest this update: Tue 27 Jan 2026 02:00:42 +0000 Manifest next update: Wed 28 Jan 2026 02:00:42 +0000 Files and hashes: 1: SDv1pmvtKKy8j5zdxmiuQfAHvKA.roa (hash: la1FbIJeldqJDtutGbiRvWT587OJLuf+NXuNKZUoghY=) 2: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: w6QUTYXo2S9ACAZ6FDcaP5Sx7n5P82siM7gq0QNxgIM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:2e:83:b2:ff:c6:4c:d5:8f:12:81:c2:6f:c2:4b:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5 Validity Not Before: Jan 27 02:00:42 2026 GMT Not After : Jan 28 02:00:42 2026 GMT Subject: CN=4e7ffa9ec4aff7e7f9e897be0bf6b6d541c00e6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:29:d3:fb:6d:22:a7:45:fb:f3:07:d7:6b:1c: 39:bc:2a:b0:5b:8b:23:b8:ba:fb:93:27:a4:19:d2: 60:5f:e0:6a:27:14:3e:58:94:02:00:f4:81:79:c1: 8b:5d:ac:d8:65:c0:17:2d:b0:ab:7c:4c:06:f9:f8: da:71:cc:86:32:fa:94:0d:66:59:91:cf:f8:bf:d7: 20:fa:47:da:f8:f6:59:39:55:b9:e7:72:97:a3:cd: 06:21:d7:46:9d:7e:7b:ca:84:d9:a0:1d:a1:d5:a1: 6f:71:61:a2:fe:df:b2:93:cf:20:a6:4d:71:69:32: e4:62:50:63:67:fa:d8:67:4c:7e:9d:45:38:13:d9: 46:ad:79:e8:86:10:2c:f8:2b:01:fb:15:bc:48:f2: 4e:83:16:05:8a:e5:90:1a:d2:a6:5c:ba:5d:67:f0: 7b:ba:ab:ff:88:51:ee:96:b3:b3:12:08:2c:13:a6: 97:f7:7f:7e:9c:2d:f4:ff:0b:52:ae:59:e6:5a:93: b4:aa:83:e6:26:dc:1d:0f:dc:1f:e4:fd:a8:ad:86: 97:5d:a4:61:db:c3:1e:ae:30:7f:5a:c1:89:d7:87: 22:32:21:40:8c:af:90:63:a1:3c:06:f3:17:6e:38: c4:8e:8c:97:45:3d:88:8f:79:0e:c2:81:52:04:9e: 93:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:7F:FA:9E:C4:AF:F7:E7:F9:E8:97:BE:0B:F6:B6:D5:41:C0:0E:6A X509v3 Authority Key Identifier: keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:fd:0a:86:30:bc:ee:cb:dc:5a:5b:a6:05:aa:d0:c3:42:7d: 2b:93:6f:5a:92:7d:05:b0:11:dc:a9:40:82:4d:99:ee:86:dc: 02:e1:63:e1:65:5b:28:48:43:04:f1:d7:6b:4a:7a:46:02:ca: fe:e0:47:80:19:f0:12:93:7f:d1:f8:24:80:8a:7d:00:19:a9: bc:1e:08:ad:8f:4c:ac:7b:33:75:21:d6:22:5a:c1:2f:74:58: 7b:3c:93:89:68:13:15:71:43:4d:0c:33:f3:77:72:33:25:86: e4:4b:3f:b8:22:69:e1:62:0e:d1:e6:59:58:82:47:f6:e7:d4: 05:d4:72:25:df:c0:a1:9a:86:fe:8f:22:01:52:7f:87:46:d4: ec:c8:f1:8e:fa:38:ca:31:f3:c3:fc:39:06:95:89:cd:1d:93: 15:42:e5:62:10:96:df:3a:58:2a:79:e2:8e:fb:1d:65:3a:b8: 19:1e:3c:0c:22:43:b4:60:43:dc:1e:65:07:ef:20:14:94:9a: ce:38:df:0f:3c:e7:8e:44:d7:7c:f9:97:c8:a9:85:03:d0:1d: c0:8a:6c:b8:db:98:f6:f3:5b:a0:20:37:c1:31:ec:94:cc:a6: 3a:23:b8:f9:35:9c:b4:0b:a1:c1:24:0a:8d:bb:85:53:0b:0b: e1:22:02:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9LoOy/8ZM1Y8SgcJvwkvLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ODJmMDUxMzJhOTk4OTUwN2ViZjZlZTk4OTUxODc1M2Jh MmNkYjUwHhcNMjYwMTI3MDIwMDQyWhcNMjYwMTI4MDIwMDQyWjAzMTEwLwYDVQQD Eyg0ZTdmZmE5ZWM0YWZmN2U3ZjllODk3YmUwYmY2YjZkNTQxYzAwZTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5inT+20ip0X78wfXaxw5vCqwW4sj uLr7kyekGdJgX+BqJxQ+WJQCAPSBecGLXazYZcAXLbCrfEwG+fjaccyGMvqUDWZZ kc/4v9cg+kfa+PZZOVW553KXo80GIddGnX57yoTZoB2h1aFvcWGi/t+yk88gpk1x aTLkYlBjZ/rYZ0x+nUU4E9lGrXnohhAs+CsB+xW8SPJOgxYFiuWQGtKmXLpdZ/B7 uqv/iFHulrOzEggsE6aX939+nC30/wtSrlnmWpO0qoPmJtwdD9wf5P2orYaXXaRh 28MerjB/WsGJ14ciMiFAjK+QY6E8BvMXbjjEjoyXRT2Ij3kOwoFSBJ6T+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE5/+p7Er/fn+eiXvgv2ttVBwA5qMB8GA1UdIwQY MBaAFGmC8FEyqZiVB+v27piVGHU7os21MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi82OTA0MDktMDE5ZC00ODEyLTkzMGMt ZjkyNmZhYmY3YWZhLzEvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi82OTA0MDktMDE5ZC00ODEyLTkzMGMtZjkyNmZhYmY3YWZh LzEvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALP0KhjC8 7svcWlumBarQw0J9K5NvWpJ9BbAR3KlAgk2Z7obcAuFj4WVbKEhDBPHXa0p6RgLK /uBHgBnwEpN/0fgkgIp9ABmpvB4IrY9MrHszdSHWIlrBL3RYezyTiWgTFXFDTQwz 83dyMyWG5Es/uCJp4WIO0eZZWIJH9ufUBdRyJd/AoZqG/o8iAVJ/h0bU7Mjxjvo4 yjHzw/w5BpWJzR2TFULlYhCW3zpYKnnijvsdZTq4GR48DCJDtGBD3B5lB+8gFJSa zjjfDzznjkTXfPmXyKmFA9AdwIpsuNuY9vNboCA3wTHslMymOiO4+TWctAuhwSQK jbuFUwsL4SICnQ== -----END CERTIFICATE-----Generated at Tue Jan 27 05:37:35 2026 by rpki-client