This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json) Hash identifier: /9k0mWLemBuFHokx1R0X7opEUaao3Y3d+hv9v0a6Ivg= Subject key identifier: 9E:AD:1F:D2:FA:12:5D:91:90:34:4C:5A:1E:F8:F0:25:09:97:FB:32 Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d Certificate serial: 019BF5E30854B31CC9FE8F1C28A1EDA69E09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft Manifest number: 09C1 Signing time: Sun 25 Jan 2026 16:00:55 +0000 Manifest this update: Sun 25 Jan 2026 16:00:55 +0000 Manifest next update: Mon 26 Jan 2026 16:00:55 +0000 Files and hashes: 1: Exw1Qk2SWzacP5BYuop4G0zGR9w.roa (hash: LJscICsI9uW5FgqiZjcGqJLPX1UQnMp+ey99OzItE9c=) 2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: VhWwZI0Z9tS7ljsJIzE5a4vIq5CyxVI0dDH3vYOh7m0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:08:54:b3:1c:c9:fe:8f:1c:28:a1:ed:a6:9e:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d Validity Not Before: Jan 25 16:00:55 2026 GMT Not After : Jan 26 16:00:55 2026 GMT Subject: CN=9ead1fd2fa125d9190344c5a1ef8f0250997fb32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:20:14:da:ce:7b:03:96:85:58:88:4b:98:2d: 99:1a:2e:84:73:47:ce:6e:ce:aa:23:f3:d8:8d:8d: 0b:a9:17:55:f3:03:f8:2e:75:6e:f5:3b:75:70:18: f1:fa:17:61:b2:48:94:62:16:31:2d:6e:7b:b3:eb: d4:bd:5b:03:e3:82:66:ce:35:85:7f:71:de:2b:e0: 4d:29:52:6d:e2:f9:e6:b7:fc:91:65:3e:09:c5:e2: b1:de:3b:13:41:9c:55:86:00:f8:5e:53:45:e9:81: ca:35:28:38:74:99:57:80:0a:15:d7:79:b9:b7:42: ac:f9:70:79:d1:72:0e:64:85:4e:54:92:c0:fc:f0: 40:44:b2:ea:a1:0c:45:ed:5c:46:41:67:4b:58:a9: 36:d4:68:f3:7f:da:a4:2f:cf:57:ed:f6:7d:7f:93: 49:ce:a3:2f:7e:49:5b:d4:7e:08:cc:f0:59:a4:52: 96:47:6a:b3:64:7f:dc:da:5c:fb:66:34:a8:81:59: 33:8a:4b:fe:94:37:45:70:e3:8f:d4:ce:ad:9c:c1: 3c:74:9c:c4:e1:b0:5a:bd:44:6d:a6:70:f8:a2:ad: 06:88:47:16:6d:7c:62:f0:b7:a2:ee:a8:d6:10:cc: 1b:47:f4:5f:3c:f5:c2:48:09:ef:0c:18:67:24:95: 1c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:AD:1F:D2:FA:12:5D:91:90:34:4C:5A:1E:F8:F0:25:09:97:FB:32 X509v3 Authority Key Identifier: keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:1d:e2:6b:f9:b5:b0:88:82:20:c8:d1:bc:83:0c:10:5a:57: 98:36:91:07:12:33:cb:d4:4c:d5:73:ac:92:1e:a4:c6:35:5d: 58:47:6a:fa:46:14:f2:8b:2d:0f:5c:7a:2d:0f:26:63:e9:e3: 64:ca:96:52:98:39:c9:00:1b:96:9a:6d:ef:ee:3b:d8:dc:59: 8e:5b:32:9c:65:39:53:75:ae:32:b3:65:9b:70:e7:60:7e:c0: 15:0b:f1:78:85:2f:8e:95:cc:37:22:09:eb:33:0f:9f:f5:91: 05:9d:8c:8c:c4:b1:a9:93:6a:5c:65:85:64:67:85:4f:89:8b: fb:28:6b:9c:f2:dd:aa:1e:82:db:6e:22:b6:8d:91:b2:93:d3: 34:1a:12:93:3b:a9:fd:e5:88:a0:3c:8c:e6:7a:56:f3:88:26: 4c:c7:c2:dc:2b:04:fd:bb:c6:4b:79:91:0d:59:58:e4:d8:ad: 1f:6b:78:72:65:b3:46:fd:bf:e1:4a:c0:94:34:b5:05:4b:c9: 1a:2e:1a:a7:61:8a:b4:d2:6e:b4:b0:f6:28:28:65:28:15:bf: 24:06:28:e2:d8:0d:fe:4c:42:46:9b:fa:cf:76:e5:88:81:8f: 2a:e6:00:ad:92:12:a1:76:a4:6d:c7:a7:65:11:7d:47:cf:7a: 94:93:f3:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv14whUsxzJ/o8cKKHtpp4JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NTI1YTM2MmU4NzcwNWExZWMwMjJkMTY1NjBmMjc2ZDU5 Y2VlMWQwHhcNMjYwMTI1MTYwMDU1WhcNMjYwMTI2MTYwMDU1WjAzMTEwLwYDVQQD Eyg5ZWFkMWZkMmZhMTI1ZDkxOTAzNDRjNWExZWY4ZjAyNTA5OTdmYjMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCAU2s57A5aFWIhLmC2ZGi6Ec0fO bs6qI/PYjY0LqRdV8wP4LnVu9Tt1cBjx+hdhskiUYhYxLW57s+vUvVsD44JmzjWF f3HeK+BNKVJt4vnmt/yRZT4JxeKx3jsTQZxVhgD4XlNF6YHKNSg4dJlXgAoV13m5 t0Ks+XB50XIOZIVOVJLA/PBARLLqoQxF7VxGQWdLWKk21Gjzf9qkL89X7fZ9f5NJ zqMvfklb1H4IzPBZpFKWR2qzZH/c2lz7ZjSogVkzikv+lDdFcOOP1M6tnME8dJzE 4bBavURtpnD4oq0GiEcWbXxi8Lei7qjWEMwbR/RfPPXCSAnvDBhnJJUcqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ6tH9L6El2RkDRMWh748CUJl/syMB8GA1UdIwQY MBaAFGlSWjYuh3BaHsAi0WVg8nbVnO4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzkt NjVkNmNhM2Y0OWQ4LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzktNjVkNmNhM2Y0OWQ4 LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfB3ia/m1 sIiCIMjRvIMMEFpXmDaRBxIzy9RM1XOskh6kxjVdWEdq+kYU8ostD1x6LQ8mY+nj ZMqWUpg5yQAblppt7+472NxZjlsynGU5U3WuMrNlm3DnYH7AFQvxeIUvjpXMNyIJ 6zMPn/WRBZ2MjMSxqZNqXGWFZGeFT4mL+yhrnPLdqh6C224ito2RspPTNBoSkzup /eWIoDyM5npW84gmTMfC3CsE/bvGS3mRDVlY5NitH2t4cmWzRv2/4UrAlDS1BUvJ Gi4ap2GKtNJutLD2KChlKBW/JAYo4tgN/kxCRpv6z3bliIGPKuYArZISoXakbcen ZRF9R896lJPzCA== -----END CERTIFICATE-----Generated at Mon Jan 26 01:47:47 2026 by rpki-client