This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft File: 70AaUuP95plIbplnjb9Ih1Mpwz0.mft (raw, json) Hash identifier: jalHErweqRcDHHHHmS/c5utcmpWY5BYQEsPsP4wdqh4= Subject key identifier: AC:67:B3:49:B2:57:C3:65:21:98:14:D1:86:9F:15:0A:50:65:60:E3 Authority key identifier: EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D Certificate issuer: /CN=ef401a52e3fde699486e99678dbf48875329c33d Certificate serial: 019BF650DF65ED3D128AB08FA03F63AFF8C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft Manifest number: 0F54 Signing time: Sun 25 Jan 2026 18:00:53 +0000 Manifest this update: Sun 25 Jan 2026 18:00:53 +0000 Manifest next update: Mon 26 Jan 2026 18:00:53 +0000 Files and hashes: 1: 1-SL9hlivQGt-mLTuChMVipJ552A.roa (hash: M4LxMEo5XBi46ojcg/gR85XlQ9Z1KIxYuUCF1vDeIuI=) 2: 70AaUuP95plIbplnjb9Ih1Mpwz0.crl (hash: NTULvqp9QXBFBSbpAyD4+NC1Rhe8rgCrH9vhhWwi3pQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:50:df:65:ed:3d:12:8a:b0:8f:a0:3f:63:af:f8:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef401a52e3fde699486e99678dbf48875329c33d Validity Not Before: Jan 25 18:00:53 2026 GMT Not After : Jan 26 18:00:53 2026 GMT Subject: CN=ac67b349b257c365219814d1869f150a506560e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:59:32:4b:17:84:56:3a:4a:02:df:0b:db:31: e3:81:81:0f:8d:5f:5a:3f:4f:47:ee:07:e4:bf:99: ab:f3:32:bd:aa:b8:6e:02:87:b6:39:f8:d6:f0:ce: 83:d3:7b:25:01:be:3f:94:8a:26:8b:90:8b:e6:9d: 73:a7:6b:b6:79:84:81:42:9f:c9:8b:d1:e3:7e:2d: 48:46:8e:44:1a:f6:cd:5d:a3:cd:cd:a0:28:75:1e: e1:84:30:17:ac:7d:6b:01:75:ac:cb:43:fa:93:9c: 98:c9:75:4c:aa:ab:f6:09:cc:80:91:dd:e2:fe:6b: 77:a2:7d:1a:ce:1f:4a:06:16:36:78:b1:99:f5:65: 5e:a6:7a:c4:37:22:8e:db:03:b9:2f:24:c0:43:d6: 64:b6:1a:55:b5:da:a9:3e:ca:9c:ab:b0:3b:94:d1: cb:9f:7b:41:41:08:91:cd:1e:1e:dc:09:ea:57:1b: 41:7d:e8:57:80:b6:99:0b:6d:5a:04:cd:49:86:24: eb:2a:3f:0a:c0:63:1e:c4:8a:1f:7b:08:79:00:c2: a9:2e:38:49:2f:1e:94:58:99:36:6b:20:73:57:ee: 1a:02:80:fc:27:45:98:6a:ba:dc:d9:1f:a1:ce:90: 38:24:ef:ea:2a:37:9b:00:44:a4:b2:ef:2d:77:b5: 34:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:67:B3:49:B2:57:C3:65:21:98:14:D1:86:9F:15:0A:50:65:60:E3 X509v3 Authority Key Identifier: keyid:EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:4b:0c:90:52:59:85:ac:df:e2:30:23:75:b9:98:10:e0:ea: 27:ef:64:3f:de:02:75:fe:fd:41:5f:1c:72:c8:cf:ee:22:75: cc:9a:fd:77:9d:c2:d8:67:e2:5a:10:85:9c:89:e9:1b:3e:55: 6d:a9:39:c0:ef:8b:0c:ac:ee:69:96:e9:f4:03:4f:d4:38:37: 1d:85:c2:fa:6b:cd:4f:7c:f4:aa:65:63:a8:21:03:1a:6a:5d: 31:42:9b:84:93:16:aa:8e:61:f0:a0:e0:a4:ed:c6:20:28:5f: e5:18:44:c4:0f:84:c7:e3:3f:0c:f3:6e:2f:8f:0d:e3:95:82: 4a:f7:67:c0:45:af:d2:68:5e:8c:aa:5d:a0:c6:5d:cf:06:38: eb:a5:ba:30:26:00:f9:d4:28:80:7d:c0:9f:1f:30:d4:06:67: 33:a6:c8:6d:ed:34:f4:50:8a:2f:97:21:fd:a1:02:e6:df:83: 37:fe:9c:2c:46:30:d0:ac:09:ac:91:db:55:06:3c:64:d0:48: d9:c2:93:20:7f:9c:ef:7a:a6:ac:3b:09:43:58:4d:96:f3:9a: fd:c1:d5:e3:38:12:23:b3:17:a9:6b:2f:49:af:2f:5b:9c:8c: bd:ce:2b:17:42:a9:ca:22:01:63:e0:44:13:44:3c:89:91:72: 01:39:fe:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UN9l7T0SirCPoD9jr/jBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNDAxYTUyZTNmZGU2OTk0ODZlOTk2NzhkYmY0ODg3NTMy OWMzM2QwHhcNMjYwMTI1MTgwMDUzWhcNMjYwMTI2MTgwMDUzWjAzMTEwLwYDVQQD EyhhYzY3YjM0OWIyNTdjMzY1MjE5ODE0ZDE4NjlmMTUwYTUwNjU2MGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFkySxeEVjpKAt8L2zHjgYEPjV9a P09H7gfkv5mr8zK9qrhuAoe2OfjW8M6D03slAb4/lIomi5CL5p1zp2u2eYSBQp/J i9Hjfi1IRo5EGvbNXaPNzaAodR7hhDAXrH1rAXWsy0P6k5yYyXVMqqv2CcyAkd3i /mt3on0azh9KBhY2eLGZ9WVepnrENyKO2wO5LyTAQ9ZkthpVtdqpPsqcq7A7lNHL n3tBQQiRzR4e3AnqVxtBfehXgLaZC21aBM1JhiTrKj8KwGMexIofewh5AMKpLjhJ Lx6UWJk2ayBzV+4aAoD8J0WYarrc2R+hzpA4JO/qKjebAESksu8td7U0nwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKxns0myV8NlIZgU0YafFQpQZWDjMB8GA1UdIwQY MBaAFO9AGlLj/eaZSG6ZZ42/SIdTKcM9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzBBYVV1UDk1cGxJYnBsbmpiOUloMU1wd3owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8yNTIzOGMtOGVlZS00NDAzLTkxMDQt OWNhOTQ3YWE2NjVhLzEvNzBBYVV1UDk1cGxJYnBsbmpiOUloMU1wd3owLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy8yNTIzOGMtOGVlZS00NDAzLTkxMDQtOWNhOTQ3YWE2NjVh LzEvNzBBYVV1UDk1cGxJYnBsbmpiOUloMU1wd3owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAv0sMkFJZ hazf4jAjdbmYEODqJ+9kP94Cdf79QV8ccsjP7iJ1zJr9d53C2GfiWhCFnInpGz5V bak5wO+LDKzuaZbp9ANP1Dg3HYXC+mvNT3z0qmVjqCEDGmpdMUKbhJMWqo5h8KDg pO3GIChf5RhExA+Ex+M/DPNuL48N45WCSvdnwEWv0mhejKpdoMZdzwY466W6MCYA +dQogH3Anx8w1AZnM6bIbe009FCKL5ch/aEC5t+DN/6cLEYw0KwJrJHbVQY8ZNBI 2cKTIH+c73qmrDsJQ1hNlvOa/cHV4zgSI7MXqWsvSa8vW5yMvc4rF0KpyiIBY+BE E0Q8iZFyATn+sg== -----END CERTIFICATE-----Generated at Mon Jan 26 03:11:30 2026 by rpki-client