This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json) Hash identifier: rShQ0ZOeI6URWDD2Py673XEknrIF3o15wMKjCOYhgJc= Subject key identifier: A3:B8:7B:CB:98:12:71:80:DA:F9:09:3E:53:84:24:D7:F3:6B:6B:1A Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87 Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387 Certificate serial: 019BF386AD8668C861E45CE8FE86B12FD6E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft Manifest number: 10B2 Signing time: Sun 25 Jan 2026 05:00:48 +0000 Manifest this update: Sun 25 Jan 2026 05:00:48 +0000 Manifest next update: Mon 26 Jan 2026 05:00:48 +0000 Files and hashes: 1: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: Hqgy11UraKkgttZa/v3C6kH4CxLAxeaD7gf4/j8oX5c=) 2: DykLjsclXiuyJ1bWVxUABsFAYRc.roa (hash: yDoATYqwDiqCrWNjq1GKRkyue4rLBBFRvCUgX0b/4LI=) 3: yFiL8tkuuqorOSaLviO55mABZbI.roa (hash: Vpu8MbqdOIdKwRCgwYwu57X5qicUb04b2OcX0uiebwg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:86:ad:86:68:c8:61:e4:5c:e8:fe:86:b1:2f:d6:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387 Validity Not Before: Jan 25 05:00:48 2026 GMT Not After : Jan 26 05:00:48 2026 GMT Subject: CN=a3b87bcb98127180daf9093e538424d7f36b6b1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:20:80:a1:49:eb:59:f0:e0:ce:21:5e:e2:a1: e3:a3:9f:0f:e5:63:ab:31:ec:6d:14:56:b1:18:d8: e7:47:16:e6:1a:1b:72:03:67:66:c5:4f:64:ea:f1: 75:95:89:b1:45:d8:25:5b:33:11:57:31:e3:c9:48: 11:db:3d:f5:4b:92:13:cc:3e:d2:91:8c:93:52:95: 6b:e7:98:d1:12:26:09:9d:31:79:d7:0b:65:97:17: f4:b1:f1:94:d0:80:1f:ec:30:92:1b:a8:5a:16:a7: ce:94:d7:d4:64:32:76:08:85:8e:b9:95:30:6e:05: a0:46:1f:fd:90:96:fd:24:3f:f2:a2:d6:bc:8c:c6: 6a:8a:c0:21:e8:e2:c0:06:b9:51:48:db:35:85:43: 7e:de:85:ac:4c:18:93:44:fe:7e:55:23:fc:5b:04: 61:cb:f3:e2:4f:79:6d:fb:af:49:18:54:76:30:58: 47:36:c9:72:6a:49:99:ad:9e:4b:04:53:a6:68:20: c0:1a:c8:75:1f:93:61:67:48:25:c4:6b:dc:db:4a: 88:2d:d0:e2:ae:06:e3:59:d5:ad:51:c2:09:71:c8: dc:75:60:22:bc:a0:55:d2:18:8a:43:d4:d2:ed:47: 1b:64:59:97:10:23:26:6a:e8:79:13:22:75:aa:56: 6e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B8:7B:CB:98:12:71:80:DA:F9:09:3E:53:84:24:D7:F3:6B:6B:1A X509v3 Authority Key Identifier: keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:5f:cb:fb:0e:df:af:a9:4a:96:61:1c:55:46:fc:71:a1:0b: c2:60:d9:6f:12:93:77:37:6b:e3:f2:91:91:08:ee:74:91:9f: ca:bf:86:53:d7:a7:2a:3b:81:fd:61:dc:78:ed:58:d1:41:46: d8:19:8a:ae:da:ae:fa:5e:d6:f1:63:52:53:8a:fe:5f:f8:c6: fa:3b:2d:cc:9b:6e:ff:2f:5f:32:20:6a:68:1b:14:73:6e:9c: 01:e5:f9:4d:aa:ab:b9:69:b2:f5:86:72:77:0e:20:e1:0e:44: d7:0b:70:c9:ef:9f:d6:b3:9a:aa:63:1c:0a:61:83:99:db:d3: 6b:6b:37:59:f8:d0:61:59:d0:ff:a2:aa:c0:f6:a9:a5:53:86: 8b:35:05:a6:9f:e5:08:94:a5:18:d7:23:0f:d7:4c:b0:4e:19: 9d:74:db:2e:a1:8d:52:9d:01:66:94:6e:64:0e:9f:c8:8a:b8: b6:62:5c:e6:1d:6c:e0:6c:ea:1c:60:62:83:8f:e5:d5:fa:54: e2:f2:f3:10:57:10:ce:f1:4e:76:6b:4e:ec:f2:bc:f3:a7:7e: 97:2a:2e:24:c5:20:28:a1:cd:7e:eb:5b:7c:81:22:1d:45:77: 66:84:d1:f8:d4:d7:91:5d:86:8a:64:25:bc:1e:2a:54:c8:6d: ba:af:b9:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzhq2GaMhh5Fzo/oaxL9bpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxYTU2YzQyZWQ3Y2I5NjNmMjg1NTAzY2VjMDYwNmQ2MGQw YWIzODcwHhcNMjYwMTI1MDUwMDQ4WhcNMjYwMTI2MDUwMDQ4WjAzMTEwLwYDVQQD EyhhM2I4N2JjYjk4MTI3MTgwZGFmOTA5M2U1Mzg0MjRkN2YzNmI2YjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SCAoUnrWfDgziFe4qHjo58P5WOr MextFFaxGNjnRxbmGhtyA2dmxU9k6vF1lYmxRdglWzMRVzHjyUgR2z31S5ITzD7S kYyTUpVr55jREiYJnTF51wtllxf0sfGU0IAf7DCSG6haFqfOlNfUZDJ2CIWOuZUw bgWgRh/9kJb9JD/yota8jMZqisAh6OLABrlRSNs1hUN+3oWsTBiTRP5+VSP8WwRh y/PiT3lt+69JGFR2MFhHNslyakmZrZ5LBFOmaCDAGsh1H5NhZ0glxGvc20qILdDi rgbjWdWtUcIJccjcdWAivKBV0hiKQ9TS7UcbZFmXECMmauh5EyJ1qlZuawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKO4e8uYEnGA2vkJPlOEJNfza2saMB8GA1UdIwQY MBaAFAGlbELtfLlj8oVQPOwGBtYNCrOHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC85OWNmZTUtNGIzNS00OWM3LTlhNzMt ZWQwN2Y1Y2FkNmQ3LzEvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC85OWNmZTUtNGIzNS00OWM3LTlhNzMtZWQwN2Y1Y2FkNmQ3 LzEvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQV/L+w7f r6lKlmEcVUb8caELwmDZbxKTdzdr4/KRkQjudJGfyr+GU9enKjuB/WHceO1Y0UFG 2BmKrtqu+l7W8WNSU4r+X/jG+jstzJtu/y9fMiBqaBsUc26cAeX5TaqruWmy9YZy dw4g4Q5E1wtwye+f1rOaqmMcCmGDmdvTa2s3WfjQYVnQ/6KqwPappVOGizUFpp/l CJSlGNcjD9dMsE4ZnXTbLqGNUp0BZpRuZA6fyIq4tmJc5h1s4GzqHGBig4/l1fpU 4vLzEFcQzvFOdmtO7PK886d+lyouJMUgKKHNfutbfIEiHUV3ZoTR+NTXkV2GimQl vB4qVMhtuq+5rw== -----END CERTIFICATE-----Generated at Sun Jan 25 10:36:14 2026 by rpki-client