This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft File: aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft (raw, json) Hash identifier: 8VX2BFDt6ODKKFXZ1dDEiAaCw3CifJPmK9PTzECoonA= Subject key identifier: 74:43:99:97:BF:B3:BD:E9:3B:EB:7F:64:29:DC:78:57:00:B4:7E:EF Authority key identifier: 68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92 Certificate issuer: /CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392 Certificate serial: 019BFAD241B4BC189676115D8DD09C694E90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft Manifest number: 177E Signing time: Mon 26 Jan 2026 15:00:41 +0000 Manifest this update: Mon 26 Jan 2026 15:00:41 +0000 Manifest next update: Tue 27 Jan 2026 15:00:41 +0000 Files and hashes: 1: aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl (hash: Z+QT/i3UlI90nbYIR36TdiLX60Aa/ykqm4ymkCwVSG0=) 2: pwbWCuGOLTFOrJupg71uoibxjHU.roa (hash: AW3hofHwJcZNnJFiGJ8uTdZk7az4nc9IpPWU/+dKm48=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:d2:41:b4:bc:18:96:76:11:5d:8d:d0:9c:69:4e:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392 Validity Not Before: Jan 26 15:00:41 2026 GMT Not After : Jan 27 15:00:41 2026 GMT Subject: CN=74439997bfb3bde93beb7f6429dc785700b47eef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:98:c2:e7:5a:0e:6e:56:9c:3b:b3:e5:98:54: 7e:d0:11:fc:b1:dc:64:23:07:1b:f3:2c:ee:ee:71: df:88:e8:b8:6f:02:c9:b6:49:19:6c:4c:2f:1c:05: 28:41:39:d9:0f:0a:04:3d:f8:db:da:f6:d0:48:e3: fd:37:13:69:12:4b:8a:37:b5:cd:54:d9:99:ae:9e: 9e:e9:56:2f:8e:5b:e5:39:f2:af:e8:fc:f9:6a:57: 93:10:6f:a3:b8:7c:7d:f8:f6:f2:7c:27:9c:5a:c8: 99:ad:23:95:52:dc:03:a1:13:69:d5:de:66:36:97: a2:42:ff:eb:b3:ee:da:e1:7d:41:df:64:d2:02:4a: 7b:18:e5:6f:7d:b8:14:82:c2:68:32:d6:04:1d:8a: 9f:43:cd:dc:93:18:0f:f8:91:02:27:37:17:ff:80: 2b:e6:06:86:a5:c5:5c:4c:2f:61:0d:f6:ff:24:04: 3c:b3:20:dc:f9:72:28:cf:97:85:b3:9c:83:30:0a: 3c:ce:26:db:68:d8:f2:dd:98:45:02:96:44:3d:58: 15:13:e0:e8:dd:9e:2e:2c:42:b8:87:72:e9:73:c5: 40:8a:d6:12:e2:9b:3b:9d:22:32:32:64:66:55:bf: 8c:1e:f4:3d:93:47:40:25:2a:c9:a0:d5:5e:53:fd: ed:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:43:99:97:BF:B3:BD:E9:3B:EB:7F:64:29:DC:78:57:00:B4:7E:EF X509v3 Authority Key Identifier: keyid:68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:aa:a8:a4:d7:28:bd:3f:cc:a7:7e:76:9d:f3:58:2f:ca:1f: 17:ec:65:6b:28:d9:c9:70:62:71:25:5d:95:c7:b7:09:85:02: 51:d3:a9:70:32:73:c8:27:9e:39:ef:15:10:3f:50:15:01:51: 65:09:44:df:d3:43:a4:1c:37:38:42:ff:6f:cb:f0:31:84:02: cf:13:1e:10:b9:f6:e8:3f:fc:ab:fd:e1:3a:6d:3d:01:c0:7b: 6b:ec:f5:fa:65:46:8a:15:4b:13:40:8d:b5:df:ca:ec:98:60: 46:b9:13:fd:d1:eb:df:35:78:e6:52:df:78:dd:96:db:0f:df: 26:10:fe:b0:48:fc:39:f0:d7:82:11:9e:ff:c1:19:10:0a:36: 49:27:6c:5a:74:d4:0f:c9:98:11:0a:a9:40:1e:69:6a:67:26: 03:7d:eb:36:d2:c5:57:ec:9f:c7:c9:76:a5:1d:3e:f6:2f:e5: a6:6b:5f:dd:b6:37:08:90:ab:3c:15:71:d0:25:56:f2:c1:dd: f6:e2:3e:0e:31:43:d2:62:b5:d0:d1:cc:9b:19:d5:08:7e:8c: 7b:11:99:31:43:bf:08:04:6f:2e:08:c2:20:eb:ec:7d:63:21: 80:12:65:59:28:5b:06:b2:ec:d1:00:6b:9f:11:c3:39:81:43: a6:d4:a8:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv60kG0vBiWdhFdjdCcaU6QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4OTZlNzYzZjg5YzcyMGU4N2NlNGQ3OWY4YzA5ZDA3ZjJm YTYzOTIwHhcNMjYwMTI2MTUwMDQxWhcNMjYwMTI3MTUwMDQxWjAzMTEwLwYDVQQD Eyg3NDQzOTk5N2JmYjNiZGU5M2JlYjdmNjQyOWRjNzg1NzAwYjQ3ZWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZjC51oOblacO7PlmFR+0BH8sdxk Iwcb8yzu7nHfiOi4bwLJtkkZbEwvHAUoQTnZDwoEPfjb2vbQSOP9NxNpEkuKN7XN VNmZrp6e6VYvjlvlOfKv6Pz5aleTEG+juHx9+PbyfCecWsiZrSOVUtwDoRNp1d5m NpeiQv/rs+7a4X1B32TSAkp7GOVvfbgUgsJoMtYEHYqfQ83ckxgP+JECJzcX/4Ar 5gaGpcVcTC9hDfb/JAQ8syDc+XIoz5eFs5yDMAo8zibbaNjy3ZhFApZEPVgVE+Do 3Z4uLEK4h3Lpc8VAitYS4ps7nSIyMmRmVb+MHvQ9k0dAJSrJoNVeU/3tMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHRDmZe/s73pO+t/ZCnceFcAtH7vMB8GA1UdIwQY MBaAFGiW52P4nHIOh85NefjAnQfy+mOSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9iNDA4ZDctMDEyYy00OGMzLWE3ZWEt Yzg4NDBmYTg1MTQxLzEvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9iNDA4ZDctMDEyYy00OGMzLWE3ZWEtYzg4NDBmYTg1MTQx LzEvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnaqopNco vT/Mp352nfNYL8ofF+xlayjZyXBicSVdlce3CYUCUdOpcDJzyCeeOe8VED9QFQFR ZQlE39NDpBw3OEL/b8vwMYQCzxMeELn26D/8q/3hOm09AcB7a+z1+mVGihVLE0CN td/K7JhgRrkT/dHr3zV45lLfeN2W2w/fJhD+sEj8OfDXghGe/8EZEAo2SSdsWnTU D8mYEQqpQB5pamcmA33rNtLFV+yfx8l2pR0+9i/lpmtf3bY3CJCrPBVx0CVW8sHd 9uI+DjFD0mK10NHMmxnVCH6MexGZMUO/CARvLgjCIOvsfWMhgBJlWShbBrLs0QBr nxHDOYFDptSoRA== -----END CERTIFICATE-----Generated at Mon Jan 26 18:23:30 2026 by rpki-client