This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft File: AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft (raw, json) Hash identifier: hNksCf7zzPkG7Ngq6Dde1zeywCopn7Ygfd2m97xnw2E= Subject key identifier: BE:F6:5A:B2:6A:3D:4F:04:F3:08:14:0A:16:0B:0F:CE:A2:78:A8:04 Authority key identifier: 03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86 Certificate issuer: /CN=0321bfea0305c48e949e6c249f4810b46905c886 Certificate serial: 019BF650E6B5C73217DBA4CECC375C243844 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft Manifest number: 17ED Signing time: Sun 25 Jan 2026 18:00:55 +0000 Manifest this update: Sun 25 Jan 2026 18:00:55 +0000 Manifest next update: Mon 26 Jan 2026 18:00:55 +0000 Files and hashes: 1: AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl (hash: XVQ63CzpSN6qI5yuhCmersMqowUc0iAQQE94TcXlz1A=) 2: WAWNpiY2vwMuD_j8ek6kZ6L9jDw.roa (hash: Aqg/w+ScPNsoJT+d0QU5LliDLOZxPSYw1XwmYdmE6pI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:50:e6:b5:c7:32:17:db:a4:ce:cc:37:5c:24:38:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321bfea0305c48e949e6c249f4810b46905c886 Validity Not Before: Jan 25 18:00:55 2026 GMT Not After : Jan 26 18:00:55 2026 GMT Subject: CN=bef65ab26a3d4f04f308140a160b0fcea278a804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b3:01:8f:62:3c:6f:75:06:62:7a:af:ed:93: 51:3f:ac:f8:03:49:3e:75:eb:a4:45:36:20:33:50: 27:0d:50:d3:9e:d3:33:66:e7:16:81:23:4b:fe:e2: 0d:8a:1a:0d:6b:0f:0a:e9:03:42:11:b7:88:5b:e6: f7:15:a3:d6:cb:63:91:a7:97:fb:c7:87:e8:72:a5: 44:c5:0c:b8:da:36:1b:c8:0a:34:6d:62:31:bb:9b: f4:69:57:0b:1d:d2:a6:67:fb:a2:a7:c1:56:20:23: 11:d9:c0:a3:2a:ed:c9:a8:44:85:d9:78:7f:c1:29: 4d:74:51:c0:22:85:c0:5e:6e:28:4f:0d:74:ae:22: 11:ef:03:98:89:01:dc:87:40:0e:18:e4:17:49:1f: 02:cc:d9:e0:27:dd:fa:c0:87:5e:6f:3d:75:76:e4: d7:eb:f5:5c:56:30:6c:ab:9d:47:5a:29:95:04:86: 7c:b3:e7:77:5d:e1:2a:49:a5:4e:c0:96:a6:29:58: a1:d4:28:76:96:c0:0a:fe:e1:c3:5d:79:97:eb:d7: 93:79:14:68:ad:7f:bb:93:1d:b3:e6:de:5d:eb:2e: ad:c9:f4:be:04:4c:c5:9a:77:35:56:74:5b:20:32: 3a:76:ad:7e:e1:0c:67:a8:4b:be:9e:e7:73:49:51: bd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:F6:5A:B2:6A:3D:4F:04:F3:08:14:0A:16:0B:0F:CE:A2:78:A8:04 X509v3 Authority Key Identifier: keyid:03:21:BF:EA:03:05:C4:8E:94:9E:6C:24:9F:48:10:B4:69:05:C8:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AyG_6gMFxI6Unmwkn0gQtGkFyIY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/11da2b-77bd-41c7-bbf3-560c9e7c0747/1/AyG_6gMFxI6Unmwkn0gQtGkFyIY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:5c:f3:e1:25:ef:68:db:56:22:a4:ce:31:59:e5:41:db:65: b4:71:d2:70:12:60:db:41:0a:62:fd:48:d5:52:f9:d5:ec:6e: bd:dd:41:44:cd:f1:c2:aa:28:e5:7d:3c:d0:04:91:06:bf:19: c1:1e:71:7e:87:ce:93:d8:3c:61:03:1a:96:a7:ec:ab:54:45: 21:1e:cb:07:a3:b6:1d:9d:5f:7d:21:de:4f:ef:f5:7a:2b:be: 83:48:98:02:0f:e8:2f:4f:4f:2b:a5:77:28:97:90:9f:a6:3f: f0:92:ae:21:7f:11:a9:e7:aa:dc:3d:3a:a4:84:b4:ec:b7:88: 9a:e6:33:cb:c2:ec:6b:d7:36:61:26:84:5d:e6:e4:26:ef:a8: 7c:da:0f:f0:01:f1:e3:d1:c3:66:cc:9d:1e:5d:62:9d:bb:2c: 3c:a0:2a:93:14:90:a3:34:67:2f:4f:7a:57:f8:31:88:58:07: 83:82:6c:12:9a:42:30:a8:e7:1e:b3:48:f5:25:31:96:55:83: c8:4b:ad:3a:f0:dd:da:22:bc:e4:84:c5:c1:03:93:bd:85:af: 63:c9:01:fb:8f:21:1d:4d:fc:5e:9e:3a:09:6e:0a:02:b1:32: f6:6e:e6:69:96:3b:4a:70:92:c7:00:e6:56:4e:b5:ee:30:e5: 86:ce:bd:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UOa1xzIX26TOzDdcJDhEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzMjFiZmVhMDMwNWM0OGU5NDllNmMyNDlmNDgxMGI0Njkw NWM4ODYwHhcNMjYwMTI1MTgwMDU1WhcNMjYwMTI2MTgwMDU1WjAzMTEwLwYDVQQD EyhiZWY2NWFiMjZhM2Q0ZjA0ZjMwODE0MGExNjBiMGZjZWEyNzhhODA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbMBj2I8b3UGYnqv7ZNRP6z4A0k+ deukRTYgM1AnDVDTntMzZucWgSNL/uINihoNaw8K6QNCEbeIW+b3FaPWy2ORp5f7 x4focqVExQy42jYbyAo0bWIxu5v0aVcLHdKmZ/uip8FWICMR2cCjKu3JqESF2Xh/ wSlNdFHAIoXAXm4oTw10riIR7wOYiQHch0AOGOQXSR8CzNngJ936wIdebz11duTX 6/VcVjBsq51HWimVBIZ8s+d3XeEqSaVOwJamKVih1Ch2lsAK/uHDXXmX69eTeRRo rX+7kx2z5t5d6y6tyfS+BEzFmnc1VnRbIDI6dq1+4QxnqEu+nudzSVG9LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL72WrJqPU8E8wgUChYLD86ieKgEMB8GA1UdIwQY MBaAFAMhv+oDBcSOlJ5sJJ9IELRpBciGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8xMWRhMmItNzdiZC00MWM3LWJiZjMt NTYwYzllN2MwNzQ3LzEvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8xMWRhMmItNzdiZC00MWM3LWJiZjMtNTYwYzllN2MwNzQ3 LzEvQXlHXzZnTUZ4STZVbm13a24wZ1F0R2tGeUlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE1zz4SXv aNtWIqTOMVnlQdtltHHScBJg20EKYv1I1VL51exuvd1BRM3xwqoo5X080ASRBr8Z wR5xfofOk9g8YQMalqfsq1RFIR7LB6O2HZ1ffSHeT+/1eiu+g0iYAg/oL09PK6V3 KJeQn6Y/8JKuIX8Rqeeq3D06pIS07LeImuYzy8Lsa9c2YSaEXebkJu+ofNoP8AHx 49HDZsydHl1inbssPKAqkxSQozRnL096V/gxiFgHg4JsEppCMKjnHrNI9SUxllWD yEutOvDd2iK85ITFwQOTvYWvY8kB+48hHU38Xp46CW4KArEy9m7maZY7SnCSxwDm Vk617jDlhs69Vw== -----END CERTIFICATE-----Generated at Mon Jan 26 02:25:50 2026 by rpki-client