This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json) Hash identifier: JsmJVKZmSVv38d7BUQeBiJuYKLxWFOq47sdCri5RCvM= Subject key identifier: 5D:FF:51:BF:93:F3:F2:AF:F8:02:25:08:D2:6D:83:93:89:20:61:8B Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93 Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93 Certificate serial: 019BF5E4143677273BD6A75679395C0929BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft Manifest number: 17F4 Signing time: Sun 25 Jan 2026 16:02:03 +0000 Manifest this update: Sun 25 Jan 2026 16:02:03 +0000 Manifest next update: Mon 26 Jan 2026 16:02:03 +0000 Files and hashes: 1: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: uHg5oXiQaTpmQf2AlE1J7eWKcEr1PdFQ8KQso9wcaQs=) 2: bKFR-ExETl9kc_NczqQy1RxK9rs.roa (hash: plcIB/DfvBpq4QLItxVjsjUSKb2BA3Zq8rL1ma4T6FY=) 3: pRSgM7v51dj4_nnKyTIe5vKbqck.roa (hash: zoPAj53DpixsBYDFs95Rz1APyotRYxKBCaNS8cQmVuY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e4:14:36:77:27:3b:d6:a7:56:79:39:5c:09:29:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93 Validity Not Before: Jan 25 16:02:03 2026 GMT Not After : Jan 26 16:02:03 2026 GMT Subject: CN=5dff51bf93f3f2aff8022508d26d83938920618b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:80:34:22:34:4f:b8:cb:54:cb:c4:75:3c:6e: d3:07:ee:94:a6:29:35:77:5c:6d:f7:d9:92:1a:53: 42:86:e3:ef:4b:11:5e:4b:54:a0:86:84:43:31:f9: fc:82:fc:ec:bc:ee:6f:94:a0:ed:ef:a4:5c:08:36: d0:2f:f0:26:5c:79:7f:52:e4:83:c9:ca:58:d2:cf: 19:5d:cf:c8:63:84:66:1c:7c:1a:7b:4b:7c:cb:ca: 25:5f:97:89:9c:e8:dd:fe:7e:00:17:79:4f:1f:a4: 69:87:02:f9:ea:fd:d5:d8:f3:96:5a:3e:01:d8:7f: b9:c6:0b:c4:d1:af:24:db:c3:a9:5c:e3:08:11:e6: ba:f4:19:35:f4:64:69:6e:7c:3c:68:5f:34:b8:65: fc:36:52:5d:4f:11:de:a3:d6:9f:f3:c0:ea:23:26: d5:08:fc:70:3e:ee:20:14:63:6f:7d:33:5d:8a:56: 6a:0d:0a:e0:c9:62:72:c2:22:5b:32:02:61:a6:eb: 61:5c:97:ae:f4:d3:98:d4:5b:61:a6:31:aa:91:54: 48:e4:af:08:f7:dd:39:ff:5d:3a:2d:05:73:64:95: 4d:ce:7d:c9:1f:8c:d3:2c:06:7a:17:cd:20:a4:c6: 3b:2d:b7:a6:e8:b4:98:e6:2a:b5:51:c4:6f:26:ab: f2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:FF:51:BF:93:F3:F2:AF:F8:02:25:08:D2:6D:83:93:89:20:61:8B X509v3 Authority Key Identifier: keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:2e:99:ff:b4:bc:10:7c:cb:21:99:45:99:ba:d8:70:a8:ca: bf:e6:da:4f:ee:ee:81:92:a2:33:52:1a:cd:6f:89:05:c7:d6: 46:2f:78:68:2f:4d:73:87:8e:e1:ea:d8:c5:6c:8d:08:39:29: 84:5b:28:24:18:ec:10:21:d3:70:22:6a:91:b1:69:fe:b7:2e: d7:62:c9:d6:99:38:84:e0:87:38:8c:38:07:11:1b:d7:9e:76: a4:43:36:20:d4:c4:a3:23:2f:ff:ea:f7:b9:c9:5f:55:2c:88: 76:fd:3c:b1:16:43:48:5a:bf:d1:9b:e0:7f:8c:98:e4:30:fd: 6a:4a:98:34:cb:c9:54:d0:77:0f:a2:55:c0:b9:ac:ed:05:eb: 7a:0f:b9:63:8e:1f:70:3d:89:9a:e0:3e:92:cf:44:4f:c9:f8: da:42:2c:df:b7:35:e3:86:d8:ff:1b:e2:6b:49:3d:0b:6d:a6: 90:5c:06:47:9b:c4:10:cf:9d:bd:e8:68:36:ca:27:4c:23:5f: 23:e6:ac:5b:ad:76:31:9c:fe:d8:75:f9:fb:bc:25:28:52:80: 7b:e9:e5:4f:fb:d1:80:ea:ee:54:c0:5b:76:7c:66:97:65:fe: 6a:32:0b:6c:8c:02:6c:c1:3b:2b:33:14:42:59:cb:51:32:61: 85:10:f2:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv15BQ2dyc71qdWeTlcCSm8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YThlOTNkM2Y1OTBmNDQ1MGQxZGIzYzIwNzQ1OTgyNDQz NTNlOTMwHhcNMjYwMTI1MTYwMjAzWhcNMjYwMTI2MTYwMjAzWjAzMTEwLwYDVQQD Eyg1ZGZmNTFiZjkzZjNmMmFmZjgwMjI1MDhkMjZkODM5Mzg5MjA2MThiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIA0IjRPuMtUy8R1PG7TB+6Upik1 d1xt99mSGlNChuPvSxFeS1SghoRDMfn8gvzsvO5vlKDt76RcCDbQL/AmXHl/UuSD ycpY0s8ZXc/IY4RmHHwae0t8y8olX5eJnOjd/n4AF3lPH6RphwL56v3V2POWWj4B 2H+5xgvE0a8k28OpXOMIEea69Bk19GRpbnw8aF80uGX8NlJdTxHeo9af88DqIybV CPxwPu4gFGNvfTNdilZqDQrgyWJywiJbMgJhputhXJeu9NOY1FthpjGqkVRI5K8I 9905/106LQVzZJVNzn3JH4zTLAZ6F80gpMY7Lbem6LSY5iq1UcRvJqvyHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF3/Ub+T8/Kv+AIlCNJtg5OJIGGLMB8GA1UdIwQY MBaAFGio6T0/WQ9EUNHbPCB0WYJENT6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMt MjVkZDRjYmIzNjk4LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMtMjVkZDRjYmIzNjk4 LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANS6Z/7S8 EHzLIZlFmbrYcKjKv+baT+7ugZKiM1IazW+JBcfWRi94aC9Nc4eO4erYxWyNCDkp hFsoJBjsECHTcCJqkbFp/rcu12LJ1pk4hOCHOIw4BxEb1552pEM2INTEoyMv/+r3 uclfVSyIdv08sRZDSFq/0Zvgf4yY5DD9akqYNMvJVNB3D6JVwLms7QXreg+5Y44f cD2JmuA+ks9ET8n42kIs37c144bY/xvia0k9C22mkFwGR5vEEM+dvehoNsonTCNf I+asW612MZz+2HX5+7wlKFKAe+nlT/vRgOruVMBbdnxml2X+ajILbIwCbME7KzMU QlnLUTJhhRDyFw== -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:51 2026 by rpki-client