This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json) Hash identifier: 3jFSQGdGOqyFaTVdaqdq+NSGiMDWn1tTIK6tRMh4MFo= Subject key identifier: CE:75:33:B9:7D:51:5B:43:3E:97:3C:C4:AA:9A:3A:0B:D2:42:40:77 Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91 Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91 Certificate serial: 019BF6F5B21292DC3A7BD276E6BE5376A924 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft Manifest number: 173E Signing time: Sun 25 Jan 2026 21:00:55 +0000 Manifest this update: Sun 25 Jan 2026 21:00:55 +0000 Manifest next update: Mon 26 Jan 2026 21:00:55 +0000 Files and hashes: 1: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: 7QpZIfr3osGa30PA3cXs0nCOK+tIAUCXknkBmnrMjH0=) 2: niPFA17j7uRHpaTYenf6Cly67RI.roa (hash: OfpHBcAsXXX8TZPERzrr+Zdymzn7MUaqne9gmeiSJVo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:b2:12:92:dc:3a:7b:d2:76:e6:be:53:76:a9:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91 Validity Not Before: Jan 25 21:00:55 2026 GMT Not After : Jan 26 21:00:55 2026 GMT Subject: CN=ce7533b97d515b433e973cc4aa9a3a0bd2424077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7d:75:5f:b9:41:a2:8a:66:10:42:fa:29:76: a7:d4:13:11:66:91:0b:1d:5e:12:e4:ab:33:1c:99: ab:1a:ff:f8:bb:7e:ee:69:1a:c6:85:f2:8b:2a:94: 38:67:bf:ad:09:ca:84:b8:98:38:f6:16:cf:e0:79: 90:46:76:dd:b2:52:47:aa:c4:eb:df:c2:c4:45:50: c9:3b:f1:c3:92:c5:8f:f0:db:8d:21:05:d3:b5:c8: fa:fe:78:c8:64:31:d6:b1:41:0b:ed:5a:02:78:5c: 6f:b9:2b:a2:99:26:e2:aa:5d:94:28:82:e9:50:b3: 5f:9f:8d:87:b8:28:29:c9:c7:db:e6:94:6a:a3:5a: 0f:51:e0:0c:3e:6d:7e:da:91:05:ac:06:e8:4c:0f: bd:eb:82:8f:ae:86:e4:56:f7:c8:b7:89:10:55:c6: d5:eb:d0:57:25:a1:7c:35:04:65:60:be:95:e6:7a: 07:0c:73:a4:9e:ae:99:9b:9b:14:29:1f:97:3b:57: 1b:4b:4c:cb:a2:ae:9e:c8:0f:0f:bb:2b:77:39:af: ba:1d:81:9c:cd:d5:c8:f8:bd:9b:29:3c:d5:e4:38: 49:e2:88:d0:b5:d1:36:30:bb:16:84:e3:2b:d6:8a: c3:74:9b:57:00:01:1d:70:07:00:03:df:d3:46:f0: 93:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:75:33:B9:7D:51:5B:43:3E:97:3C:C4:AA:9A:3A:0B:D2:42:40:77 X509v3 Authority Key Identifier: keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:87:4c:28:2e:76:61:c0:b3:ed:5e:e4:7b:4d:56:0a:19:93: 6e:c5:ce:62:0b:42:93:5a:6c:7f:70:74:17:f3:84:a1:a7:dd: 1c:69:76:47:55:7e:43:93:77:bb:f9:4d:63:00:f6:81:89:39: a8:c8:99:4b:cc:b6:6c:ca:43:80:13:c2:14:3d:eb:de:e1:eb: 87:07:56:4d:f4:e5:b6:6e:5e:a7:f2:74:f5:a0:f5:17:0f:6d: 8a:cd:26:35:7a:dc:81:66:3b:e2:bf:10:bf:73:d6:31:fc:10: d3:67:87:1e:34:23:dd:86:68:4f:fa:20:85:3f:a1:38:74:0a: 36:50:3b:f8:2c:bb:67:88:4e:1d:a7:ae:e8:ab:6d:42:ba:73: de:0c:cb:ec:c2:bb:3e:6c:c6:f5:49:7d:3b:28:b9:14:6f:7a: 7b:c8:bf:72:be:d4:2c:8e:69:ff:19:2a:7e:52:54:0d:b5:3e: 7a:27:7a:77:0e:ff:5a:03:d6:a4:89:95:28:b8:83:b4:66:12: d0:d5:70:a8:fa:92:08:1c:97:71:74:25:31:5f:02:6c:4f:39: 84:b4:12:84:4d:60:10:d5:df:4a:b7:f9:28:7c:34:70:ad:f0: 63:f0:94:56:83:66:66:65:d0:27:6f:90:1b:b6:c8:df:83:ac: bf:05:82:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29bISktw6e9J25r5TdqkkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxOTJjNTJmMzYwYTNhNzJmZTIyNDQxYWMzZmM3ZTBlNTIy NWVlOTEwHhcNMjYwMTI1MjEwMDU1WhcNMjYwMTI2MjEwMDU1WjAzMTEwLwYDVQQD EyhjZTc1MzNiOTdkNTE1YjQzM2U5NzNjYzRhYTlhM2EwYmQyNDI0MDc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAun11X7lBoopmEEL6KXan1BMRZpEL HV4S5KszHJmrGv/4u37uaRrGhfKLKpQ4Z7+tCcqEuJg49hbP4HmQRnbdslJHqsTr 38LERVDJO/HDksWP8NuNIQXTtcj6/njIZDHWsUEL7VoCeFxvuSuimSbiql2UKILp ULNfn42HuCgpycfb5pRqo1oPUeAMPm1+2pEFrAboTA+964KProbkVvfIt4kQVcbV 69BXJaF8NQRlYL6V5noHDHOknq6Zm5sUKR+XO1cbS0zLoq6eyA8Puyt3Oa+6HYGc zdXI+L2bKTzV5DhJ4ojQtdE2MLsWhOMr1orDdJtXAAEdcAcAA9/TRvCTHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM51M7l9UVtDPpc8xKqaOgvSQkB3MB8GA1UdIwQY MBaAFDGSxS82Cjpy/iJEGsP8fg5SJe6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81MjRiZmUtYzVhZS00ZjY3LTg0MTMt Mjc0OGM0MDAyYzJlLzEvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi81MjRiZmUtYzVhZS00ZjY3LTg0MTMtMjc0OGM0MDAyYzJl LzEvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACYdMKC52 YcCz7V7ke01WChmTbsXOYgtCk1psf3B0F/OEoafdHGl2R1V+Q5N3u/lNYwD2gYk5 qMiZS8y2bMpDgBPCFD3r3uHrhwdWTfTltm5ep/J09aD1Fw9tis0mNXrcgWY74r8Q v3PWMfwQ02eHHjQj3YZoT/oghT+hOHQKNlA7+Cy7Z4hOHaeu6KttQrpz3gzL7MK7 PmzG9Ul9Oyi5FG96e8i/cr7ULI5p/xkqflJUDbU+eid6dw7/WgPWpImVKLiDtGYS 0NVwqPqSCByXcXQlMV8CbE85hLQShE1gENXfSrf5KHw0cK3wY/CUVoNmZmXQJ2+Q G7bI34OsvwWCtA== -----END CERTIFICATE-----Generated at Mon Jan 26 05:13:37 2026 by rpki-client