This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft File: aPQ7W7zEligG6pMi7Ckum2bdzMU.mft (raw, json) Hash identifier: D0W4LAEipW6lZ3RW+8ZSNFJ6wSmakGmrqMoaGJzNf9w= Subject key identifier: 5E:38:EC:4F:9A:5D:0E:5A:3E:36:6D:CF:F5:DD:CB:81:37:2B:0B:05 Authority key identifier: 68:F4:3B:5B:BC:C4:96:28:06:EA:93:22:EC:29:2E:9B:66:DD:CC:C5 Certificate issuer: /CN=68f43b5bbcc4962806ea9322ec292e9b66ddccc5 Certificate serial: 019BF23D2A9E5DE7CC585245EA619BB49A98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft Manifest number: 0219 Signing time: Sat 24 Jan 2026 23:00:53 +0000 Manifest this update: Sat 24 Jan 2026 23:00:53 +0000 Manifest next update: Sun 25 Jan 2026 23:00:53 +0000 Files and hashes: 1: A5tB2m_AKkFH2MRYLSZP1qj6r7Y.roa (hash: JU4CZpqlBacShwjyBoLo9X21T9K67+NvyzH3SwXTo+Y=) 2: XHzhckAnu87gDfunEM3sM2fHJc4.roa (hash: J4SR1s2pClNQQ3/S6LW+95K5vqFvopp0j499gt2QsWY=) 3: aPQ7W7zEligG6pMi7Ckum2bdzMU.crl (hash: c8UbczDwPe00cVKj3ggLBVNBdHM3c5ndqCNVXFbkoUc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f2:3d:2a:9e:5d:e7:cc:58:52:45:ea:61:9b:b4:9a:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68f43b5bbcc4962806ea9322ec292e9b66ddccc5 Validity Not Before: Jan 24 23:00:53 2026 GMT Not After : Jan 25 23:00:53 2026 GMT Subject: CN=5e38ec4f9a5d0e5a3e366dcff5ddcb81372b0b05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:83:57:05:92:2b:5c:a7:33:7a:ef:34:07:74: 31:ac:91:b5:48:ef:dd:12:54:e6:08:d5:6b:57:87: 01:67:83:24:3f:5a:98:42:24:ca:b3:30:d7:09:6d: b1:e0:e2:7d:1f:80:59:02:81:c9:66:5f:66:e8:18: a0:09:d6:5b:50:26:1b:19:2d:dc:8a:72:83:ce:f6: ba:63:1d:fb:13:e1:63:7c:39:09:ca:c6:05:8c:b7: 1c:f1:04:31:5f:2c:cb:1c:95:de:87:3f:7d:88:04: f2:ad:b2:de:8e:d6:10:82:e3:97:c5:f1:88:ff:7d: 20:b7:54:0d:4b:4e:b3:4c:bc:93:9c:d2:46:d2:be: 7c:78:7b:9b:82:e0:db:a1:31:ef:a3:3d:c6:d4:56: 39:78:9e:5e:52:fb:d3:5b:a6:99:02:f3:fe:50:d3: 09:f3:7b:49:20:59:2d:99:69:35:3e:bf:ab:f6:a6: 2d:49:8b:75:87:9a:2c:f4:4d:93:d6:1d:1b:33:b8: 09:9e:7d:18:d2:e6:e8:3e:5c:7c:2d:df:da:30:0b: 7d:58:e8:cb:c2:2f:3a:90:54:0c:e1:2f:60:14:7a: c5:1c:69:f2:c1:94:09:0f:da:fd:dd:d2:2c:6e:e9: c0:62:d6:4f:9f:c6:41:70:bc:85:9d:5c:01:1c:43: a9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:38:EC:4F:9A:5D:0E:5A:3E:36:6D:CF:F5:DD:CB:81:37:2B:0B:05 X509v3 Authority Key Identifier: keyid:68:F4:3B:5B:BC:C4:96:28:06:EA:93:22:EC:29:2E:9B:66:DD:CC:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:aa:f1:c1:2a:ab:4a:94:46:ab:ee:38:74:26:37:5c:18:ef: 8f:3d:32:8e:ac:c7:f4:84:a9:2b:4e:ce:70:f9:4a:ab:a0:a4: 6a:5f:20:20:91:c3:5b:45:66:7d:2a:10:a3:8d:93:ee:b9:ea: 3f:da:14:22:6e:26:24:97:6a:98:16:5b:14:fc:ef:c5:88:da: 31:3b:74:41:8d:54:db:c7:5e:70:d8:71:57:d5:2b:84:c3:7f: 37:cf:d0:6e:21:23:c9:9e:9f:ab:a1:2b:e4:c6:f9:fe:04:a9: 1e:3e:af:c3:16:0a:0c:86:78:b2:70:82:96:57:74:77:ae:ed: 7e:0d:54:03:96:74:f3:ef:18:38:51:6c:c0:ce:50:80:af:77: ec:c4:e9:b1:86:b4:24:8e:cc:98:fc:31:74:48:57:6d:3d:79: 8b:22:cd:f9:01:eb:fb:44:4a:dc:fa:48:c0:ee:b3:18:ea:e3: 7d:db:cf:3c:65:79:5f:bb:5a:8a:40:d0:15:bc:db:f2:2a:89: c1:c2:76:94:97:d0:d8:fa:20:d9:63:12:a8:59:f1:09:35:1c: 34:0e:dc:e1:46:02:a3:8b:76:0c:5d:e0:ef:00:5a:e4:62:85: 6d:7b:09:91:eb:2f:20:b9:83:32:93:91:6f:2e:38:38:96:9b: 69:75:ce:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvyPSqeXefMWFJF6mGbtJqYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZjQzYjViYmNjNDk2MjgwNmVhOTMyMmVjMjkyZTliNjZk ZGNjYzUwHhcNMjYwMTI0MjMwMDUzWhcNMjYwMTI1MjMwMDUzWjAzMTEwLwYDVQQD Eyg1ZTM4ZWM0ZjlhNWQwZTVhM2UzNjZkY2ZmNWRkY2I4MTM3MmIwYjA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYNXBZIrXKczeu80B3QxrJG1SO/d ElTmCNVrV4cBZ4MkP1qYQiTKszDXCW2x4OJ9H4BZAoHJZl9m6BigCdZbUCYbGS3c inKDzva6Yx37E+FjfDkJysYFjLcc8QQxXyzLHJXehz99iATyrbLejtYQguOXxfGI /30gt1QNS06zTLyTnNJG0r58eHubguDboTHvoz3G1FY5eJ5eUvvTW6aZAvP+UNMJ 83tJIFktmWk1Pr+r9qYtSYt1h5os9E2T1h0bM7gJnn0Y0uboPlx8Ld/aMAt9WOjL wi86kFQM4S9gFHrFHGnywZQJD9r93dIsbunAYtZPn8ZBcLyFnVwBHEOpAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF447E+aXQ5aPjZtz/Xdy4E3KwsFMB8GA1UdIwQY MBaAFGj0O1u8xJYoBuqTIuwpLptm3czFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVBRN1c3ekVsaWdHNnBNaTdDa3VtMmJkek1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8wNDZmZmUtMDVlYi00YzhjLTg1NDUt MDI0ODNlNjQ4MmNiLzEvYVBRN1c3ekVsaWdHNnBNaTdDa3VtMmJkek1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy8wNDZmZmUtMDVlYi00YzhjLTg1NDUtMDI0ODNlNjQ4MmNi LzEvYVBRN1c3ekVsaWdHNnBNaTdDa3VtMmJkek1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAqrxwSqr SpRGq+44dCY3XBjvjz0yjqzH9ISpK07OcPlKq6Ckal8gIJHDW0VmfSoQo42T7rnq P9oUIm4mJJdqmBZbFPzvxYjaMTt0QY1U28decNhxV9UrhMN/N8/QbiEjyZ6fq6Er 5Mb5/gSpHj6vwxYKDIZ4snCClld0d67tfg1UA5Z08+8YOFFswM5QgK937MTpsYa0 JI7MmPwxdEhXbT15iyLN+QHr+0RK3PpIwO6zGOrjfdvPPGV5X7taikDQFbzb8iqJ wcJ2lJfQ2Pog2WMSqFnxCTUcNA7c4UYCo4t2DF3g7wBa5GKFbXsJkesvILmDMpOR by44OJabaXXOhg== -----END CERTIFICATE-----Generated at Sun Jan 25 10:43:10 2026 by rpki-client