This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft File: Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft (raw, json) Hash identifier: mOrgfDHaxa2Wc4vAuVW9zRAPZTHPDNrR65ZSvh0LtZo= Subject key identifier: 81:AE:96:15:CB:55:9C:A3:52:B4:C6:82:15:44:D8:3E:90:2A:78:A5 Authority key identifier: 02:AF:3B:63:53:54:B9:75:7B:9F:2D:68:EA:5D:58:C5:07:42:AA:B0 Certificate issuer: /CN=02af3b635354b9757b9f2d68ea5d58c50742aab0 Certificate serial: 019BF87629681B43EE6C7FED96CDDD5C10A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft Manifest number: 84 Signing time: Mon 26 Jan 2026 04:00:51 +0000 Manifest this update: Mon 26 Jan 2026 04:00:51 +0000 Manifest next update: Tue 27 Jan 2026 04:00:51 +0000 Files and hashes: 1: Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl (hash: f9cazXOu/UcaWY+Sm1fIcundUmCmB6SXEUSGHX4i74E=) 2: NGyMHcBWRIkoIoJ_ncGJDqHCOTQ.roa (hash: 7EeVGxOBQ9n5FgZRMYhe7gBwkfF77z2pQwSgFDZNEOk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:76:29:68:1b:43:ee:6c:7f:ed:96:cd:dd:5c:10:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02af3b635354b9757b9f2d68ea5d58c50742aab0 Validity Not Before: Jan 26 04:00:51 2026 GMT Not After : Jan 27 04:00:51 2026 GMT Subject: CN=81ae9615cb559ca352b4c6821544d83e902a78a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:59:18:27:f3:ac:7b:ed:c4:c5:05:e3:e0:78: cc:77:7b:75:a8:bb:fc:93:10:48:3c:22:27:7a:ff: 56:01:f7:25:41:8a:18:f9:48:59:91:c6:f2:42:e5: 16:89:46:0f:5b:29:3a:c7:48:a7:1c:75:f1:d9:b4: bd:b6:8d:f8:b0:7a:3b:c2:06:7b:c0:2b:67:85:e9: e9:69:6d:29:86:f3:02:fc:53:f8:f7:19:f1:7b:ce: b8:da:74:b2:c2:b6:97:77:7d:1b:2f:30:50:92:cb: 23:9f:e0:85:aa:92:fd:4e:c9:b7:8b:49:62:94:79: 89:9b:25:f8:cb:f6:18:0e:f4:2d:e2:09:5e:8d:ac: 31:d5:3e:c9:4b:bf:9a:58:15:2f:a2:9f:f4:92:90: e3:2e:ea:ba:db:10:fa:3f:dc:e8:21:f1:b6:3b:88: 66:a6:52:ac:e9:ed:fb:ba:17:9a:fe:83:33:a1:b0: cb:a9:96:d8:da:4f:4e:3e:4f:32:c6:3c:2b:a6:30: 07:59:21:e2:99:5b:89:5d:c0:c4:ef:76:2e:04:79: 79:61:94:86:13:59:88:bf:90:b6:67:c7:2f:32:9e: ad:b1:f9:c9:7b:ca:6c:92:96:9b:d6:4a:0f:2f:c5: 00:65:a4:f4:38:ca:e4:ea:94:4d:c9:f0:d0:d1:a0: 3a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:AE:96:15:CB:55:9C:A3:52:B4:C6:82:15:44:D8:3E:90:2A:78:A5 X509v3 Authority Key Identifier: keyid:02:AF:3B:63:53:54:B9:75:7B:9F:2D:68:EA:5D:58:C5:07:42:AA:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/43d4ca-82cb-414a-b39e-86f88ce44793/1/Aq87Y1NUuXV7ny1o6l1YxQdCqrA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:44:41:9c:a3:f4:64:ef:63:50:73:ce:d2:42:97:ba:bf:bc: e6:e5:9b:b0:bb:ef:88:29:43:8e:5c:c8:d4:a5:cc:6b:5b:b6: 01:ba:ae:6e:50:17:61:69:76:e8:71:5d:49:88:29:64:92:80: 00:c7:ce:40:ba:0f:77:1e:9c:23:2e:05:7a:af:5b:9c:fe:06: e6:d8:cd:ab:9f:be:e2:08:f8:85:88:b8:59:cf:0e:e6:60:d8: 7c:44:bb:a4:6c:b1:fb:76:17:11:3c:1b:2b:ee:a8:bf:1d:19: a2:a1:e5:1b:a7:93:db:23:c0:a4:2a:64:7f:62:b2:56:12:34: a1:c2:5f:94:46:0d:ac:33:72:43:6c:5a:27:a8:b7:18:60:8e: 09:c6:bc:51:31:c0:49:71:2d:eb:26:cb:9a:14:1e:e4:e8:b4: 88:cb:ae:fa:c4:5e:38:cb:89:82:ef:09:60:b2:a8:c1:43:48: b2:1c:e7:58:5b:ab:98:60:32:d7:d4:ca:bb:76:56:86:dc:e9: c7:6f:cb:e5:b5:2b:ce:d8:7c:a7:5d:39:b3:5b:1e:bd:ed:f5: 35:25:77:0f:d4:dd:96:f1:20:9f:44:5f:35:a3:69:2f:af:7c: 56:e5:18:45:3a:e8:b2:d8:e7:fe:76:07:3d:82:1a:a0:08:75: 35:7e:dd:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4diloG0PubH/tls3dXBCjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyYWYzYjYzNTM1NGI5NzU3YjlmMmQ2OGVhNWQ1OGM1MDc0 MmFhYjAwHhcNMjYwMTI2MDQwMDUxWhcNMjYwMTI3MDQwMDUxWjAzMTEwLwYDVQQD Eyg4MWFlOTYxNWNiNTU5Y2EzNTJiNGM2ODIxNTQ0ZDgzZTkwMmE3OGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1kYJ/Ose+3ExQXj4HjMd3t1qLv8 kxBIPCInev9WAfclQYoY+UhZkcbyQuUWiUYPWyk6x0inHHXx2bS9to34sHo7wgZ7 wCtnhenpaW0phvMC/FP49xnxe8642nSywraXd30bLzBQkssjn+CFqpL9Tsm3i0li lHmJmyX4y/YYDvQt4glejawx1T7JS7+aWBUvop/0kpDjLuq62xD6P9zoIfG2O4hm plKs6e37uhea/oMzobDLqZbY2k9OPk8yxjwrpjAHWSHimVuJXcDE73YuBHl5YZSG E1mIv5C2Z8cvMp6tsfnJe8pskpab1koPL8UAZaT0OMrk6pRNyfDQ0aA6IwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIGulhXLVZyjUrTGghVE2D6QKnilMB8GA1UdIwQY MBaAFAKvO2NTVLl1e58taOpdWMUHQqqwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXE4N1kxTlV1WFY3bnkxbzZsMVl4UWRDcXJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC80M2Q0Y2EtODJjYi00MTRhLWIzOWUt ODZmODhjZTQ0NzkzLzEvQXE4N1kxTlV1WFY3bnkxbzZsMVl4UWRDcXJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC80M2Q0Y2EtODJjYi00MTRhLWIzOWUtODZmODhjZTQ0Nzkz LzEvQXE4N1kxTlV1WFY3bnkxbzZsMVl4UWRDcXJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi0RBnKP0 ZO9jUHPO0kKXur+85uWbsLvviClDjlzI1KXMa1u2AbqublAXYWl26HFdSYgpZJKA AMfOQLoPdx6cIy4Feq9bnP4G5tjNq5++4gj4hYi4Wc8O5mDYfES7pGyx+3YXETwb K+6ovx0ZoqHlG6eT2yPApCpkf2KyVhI0ocJflEYNrDNyQ2xaJ6i3GGCOCca8UTHA SXEt6ybLmhQe5Oi0iMuu+sReOMuJgu8JYLKowUNIshznWFurmGAy19TKu3ZWhtzp x2/L5bUrzth8p105s1seve31NSV3D9TdlvEgn0RfNaNpL698VuUYRTrostjn/nYH PYIaoAh1NX7dVA== -----END CERTIFICATE-----Generated at Mon Jan 26 11:07:26 2026 by rpki-client