This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: VcmBcnPnlcNgNGknqmpnHcjs+U/qZkXr/ZC4vQXitsc= Subject key identifier: CE:3E:63:AD:35:7C:D1:00:37:68:D1:6E:9E:7E:7B:91:BD:08:A4:D0 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019BF274A33C135A72D7EC90B07569A18E04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 18E7 Signing time: Sun 25 Jan 2026 00:01:28 +0000 Manifest this update: Sun 25 Jan 2026 00:01:28 +0000 Manifest next update: Mon 26 Jan 2026 00:01:28 +0000 Files and hashes: 1: 1-7-GRl1DpJL9MX_Eh7vVlgQAtds.roa (hash: qBQ+Yv34RT+76LqwEUvZMWK4vq87p/Tm5N2E03sJUtE=) 2: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: rFghVFNaST2tFLXBQKO/dE9ClpGbnsju4mu2layuvoo=) 3: CP1700xQhoIo0eqZb96w49fwMZU.roa (hash: FhGMMmXWb4O7zbwANRuKCF/ES8PwzOmEkZV99iTN5xU=) 4: H0mOY9wuLVETq2ln9i8nsRGizPs.roa (hash: f6tqfXk1h6HwESq3+qY8gA0p10qoZtvqkambfiIyPc4=) 5: MQ0e7OQgina0hHLbzkJJI7ocRMY.roa (hash: lYlPT7y2KTJ0qjKzQaLtDJlIn+M8xo18ZCJuzXN583Y=) 6: VcGOwSBLa8MeclenBwYCnJTkc6Q.roa (hash: ZpKqr8OOjlncepBvaT8KeQio9IThw68qGgH8coHhuVI=) 7: a7fmewR9JdjnsMaHhIpEnMvRrtE.roa (hash: i7/n8DiKsj3BxkwJUc52TE1W/4S7Doq4RW4ZXouA4BQ=) 8: gF0x-IgTBvCJCERAByN93AH9MjM.roa (hash: f9L9sZ2MryoARd93KF5kcE6ImNuSL3mNiWJ8yZc3d58=) 9: hGF5HckbV_mO1zNnnUvLaxvGgg0.roa (hash: LswWVKDsb8V0ubfBEeUCi7BkiOP6J97pjosqCGNORUk=) 10: oPPgaBYxfthIjxyRNKKvuQhADcA.roa (hash: vJpx4imZl2f0ZsJVLjSi4WZMmzQUNNlQIXHfoEUu3/k=) 11: tDS2Cs2obRP0GxSw9_zcJ3O6_H8.roa (hash: 6+3w2X7QmyZajlkvHT3Z32O7WpWvoPyxaW4Oqr2oNl8=) 12: v3K9UBCZQXetZHCASn_v-Er6z80.roa (hash: M01ADTQv5+WF8EwvS7wZ9W7tolykwshPsb2JjYqw3EQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f2:74:a3:3c:13:5a:72:d7:ec:90:b0:75:69:a1:8e:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Jan 25 00:01:28 2026 GMT Not After : Jan 26 00:01:28 2026 GMT Subject: CN=ce3e63ad357cd1003768d16e9e7e7b91bd08a4d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4c:db:3f:25:16:4a:15:b0:7d:43:17:e9:23: ac:57:74:68:cd:14:20:f5:1e:84:cb:09:8f:9b:0b: 59:30:3e:fb:38:31:c6:f9:10:79:9f:78:fb:e7:ff: 70:bd:46:7a:0d:54:80:5a:a1:fa:2a:50:42:42:ca: a4:11:17:e0:13:e5:50:56:e5:6e:e3:54:49:67:55: 59:f8:24:81:3c:60:d6:c1:37:6a:ec:af:0c:d2:dc: f8:57:7d:64:ea:7e:38:f8:ad:12:83:0e:77:6a:3b: 50:4c:72:07:34:66:26:6f:d7:1e:44:cf:e3:0d:c3: 00:cf:d7:8f:0f:c9:aa:7f:69:d3:04:eb:63:d2:44: d9:45:b6:5e:86:23:ca:cd:0d:9d:b7:80:df:a1:8a: 31:40:be:d7:97:b0:5c:0a:1c:17:c9:5e:2b:46:1d: e2:29:ff:48:de:24:7f:e5:45:b4:ce:74:e4:8f:43: 19:0d:91:63:23:ff:de:43:7e:c1:63:27:fe:d3:23: 43:4d:f7:04:b5:78:ae:e5:ca:e6:ab:b6:4c:6e:55: ad:0d:e0:eb:85:c7:a6:78:be:d7:c3:51:93:39:4f: 78:3e:ec:75:38:2b:f8:43:85:38:24:c6:f5:8f:5f: 12:b7:d9:33:29:de:e0:f5:34:1c:2b:a3:47:f4:aa: 35:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3E:63:AD:35:7C:D1:00:37:68:D1:6E:9E:7E:7B:91:BD:08:A4:D0 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:00:b4:16:37:08:45:49:ec:0a:70:c0:73:14:49:10:dd:16: bd:2e:4f:11:dc:d1:4c:9f:1b:29:d1:b7:82:94:e8:e0:2e:9f: dc:ce:15:ea:ea:67:f0:eb:9b:6f:21:c3:43:7f:42:65:dc:78: 8b:dc:19:3e:ea:9d:a3:d1:d6:38:16:7b:13:74:d8:6d:04:01: d3:bc:34:6a:d1:78:4a:3c:29:c9:54:cf:11:ce:bf:2a:e5:b6: 8c:46:92:cf:f4:fa:cb:9c:20:37:f8:b4:f1:95:bc:15:29:f1: bc:7a:5a:ab:89:69:ec:c5:db:a0:73:9f:ab:78:5a:66:fd:73: e1:eb:2b:1f:cb:4b:93:3d:8a:f3:c8:74:a0:67:7b:a3:f1:d4: 1d:0c:34:6e:b3:60:0a:4b:b3:09:f9:cd:b8:ff:58:28:7e:9d: 41:ca:a9:9b:9c:75:cc:9b:ea:86:8c:02:0b:63:97:7c:34:90: fb:a1:cf:b7:bc:7f:b3:d6:be:eb:c0:49:0a:1f:35:4e:66:8c: 9f:5e:7a:ab:37:1f:cd:c6:f1:8a:37:c3:db:59:00:94:a4:5b: 8e:4c:e6:66:e5:de:d3:c2:31:30:09:86:8b:ac:ea:4b:fc:d7: e8:0c:ef:62:8a:17:cb:0f:de:5b:3b:f0:15:89:55:01:79:77: f0:77:f8:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvydKM8E1py1+yQsHVpoY4EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjYwMTI1MDAwMTI4WhcNMjYwMTI2MDAwMTI4WjAzMTEwLwYDVQQD EyhjZTNlNjNhZDM1N2NkMTAwMzc2OGQxNmU5ZTdlN2I5MWJkMDhhNGQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUzbPyUWShWwfUMX6SOsV3RozRQg 9R6EywmPmwtZMD77ODHG+RB5n3j75/9wvUZ6DVSAWqH6KlBCQsqkERfgE+VQVuVu 41RJZ1VZ+CSBPGDWwTdq7K8M0tz4V31k6n44+K0Sgw53ajtQTHIHNGYmb9ceRM/j DcMAz9ePD8mqf2nTBOtj0kTZRbZehiPKzQ2dt4DfoYoxQL7Xl7BcChwXyV4rRh3i Kf9I3iR/5UW0znTkj0MZDZFjI//eQ37BYyf+0yNDTfcEtXiu5crmq7ZMblWtDeDr hcemeL7Xw1GTOU94Pux1OCv4Q4U4JMb1j18St9kzKd7g9TQcK6NH9Ko1IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM4+Y601fNEAN2jRbp5+e5G9CKTQMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbgC0FjcI RUnsCnDAcxRJEN0WvS5PEdzRTJ8bKdG3gpTo4C6f3M4V6upn8OubbyHDQ39CZdx4 i9wZPuqdo9HWOBZ7E3TYbQQB07w0atF4SjwpyVTPEc6/KuW2jEaSz/T6y5wgN/i0 8ZW8FSnxvHpaq4lp7MXboHOfq3haZv1z4esrH8tLkz2K88h0oGd7o/HUHQw0brNg CkuzCfnNuP9YKH6dQcqpm5x1zJvqhowCC2OXfDSQ+6HPt7x/s9a+68BJCh81TmaM n156qzcfzcbxijfD21kAlKRbjkzmZuXe08IxMAmGi6zqS/zX6AzvYooXyw/eWzvw FYlVAXl38Hf4Mw== -----END CERTIFICATE-----Generated at Sun Jan 25 10:41:37 2026 by rpki-client