This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft File: aaKML4THXo0DiGlDVRUt0rcx8kk.mft (raw, json) Hash identifier: 1SG/0HW42VDNpd80Ni5Sc3PWoFZXR+lhC+Wlgsr8pbs= Subject key identifier: 10:D5:6F:D0:29:AD:4D:02:F2:21:CA:F2:BD:65:5E:E1:97:AA:10:D2 Authority key identifier: 69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49 Certificate issuer: /CN=69a28c2f84c75e8d0388694355152dd2b731f249 Certificate serial: 019BF8760117245779938E1D0D92F0AAABC9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft Manifest number: 17EC Signing time: Mon 26 Jan 2026 04:00:41 +0000 Manifest this update: Mon 26 Jan 2026 04:00:41 +0000 Manifest next update: Tue 27 Jan 2026 04:00:41 +0000 Files and hashes: 1: MB0uTApSO8m5vg_bm9trr3XpjgU.roa (hash: 2eNykuyF9+3yCGYPE8lH28bjQtkNd0f4qvsTFx03Ijs=) 2: aaKML4THXo0DiGlDVRUt0rcx8kk.crl (hash: IN/DVxgv2T7OMPpbWJPxu6nF0jRu9k0NtbNpCt+Rsrk=) 3: xg2vmPZnFpWKOjIR5eQ7FMGT8aE.roa (hash: hPOQooNWczBMB25D+ekEfhNU7YNSFMQ+pTU+YyTaGew=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:76:01:17:24:57:79:93:8e:1d:0d:92:f0:aa:ab:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69a28c2f84c75e8d0388694355152dd2b731f249 Validity Not Before: Jan 26 04:00:41 2026 GMT Not After : Jan 27 04:00:41 2026 GMT Subject: CN=10d56fd029ad4d02f221caf2bd655ee197aa10d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:64:6a:73:f2:ad:40:0a:57:46:79:0f:04:33: 5b:60:01:a5:76:7a:35:6e:cf:6f:55:de:44:4c:fa: 42:e4:4f:e3:49:67:94:2b:a9:da:94:d4:f0:ec:55: 83:eb:05:c5:f7:4d:2c:df:3b:37:fd:fa:f5:65:f6: 8b:18:e9:d0:e8:22:f5:1a:aa:45:51:46:df:e9:c2: a8:07:8a:07:61:e7:86:f8:0b:23:ee:7b:30:af:29: da:0c:29:01:6b:50:dd:34:02:01:bb:44:f2:15:34: 4c:0f:97:53:7e:54:fe:3f:90:f9:ba:97:26:04:e4: bf:45:5e:49:fa:7b:a3:88:ed:73:4f:27:a8:a9:12: ed:aa:92:72:08:47:07:37:37:ed:46:68:20:63:20: 48:93:0e:d2:f2:fd:19:a6:75:e5:79:2c:19:94:41: 2b:b2:78:50:64:cb:a3:5c:ab:2f:56:33:1f:48:99: 38:f2:37:57:74:66:2c:00:58:8f:f2:3f:f7:05:3e: fd:34:d9:2f:38:ed:82:96:d8:da:59:76:37:f4:0f: 91:94:6d:dc:24:e7:8d:c4:a9:26:d7:63:6d:2e:8e: 56:95:9a:13:fc:36:cc:dc:d8:57:23:20:32:ca:cf: 92:0c:cf:ab:f0:c4:f0:13:89:15:85:a7:79:c5:88: ed:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:D5:6F:D0:29:AD:4D:02:F2:21:CA:F2:BD:65:5E:E1:97:AA:10:D2 X509v3 Authority Key Identifier: keyid:69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:a6:35:c7:89:ff:da:6d:fe:b1:21:a9:5a:37:4f:df:a0:f2: 5e:cb:a0:77:fe:c9:28:43:b6:75:1f:6c:ef:5f:68:76:76:c7: ef:3f:d6:da:c7:94:79:23:ff:64:56:4a:32:76:85:4b:ff:57: 77:55:dc:9b:6e:1a:c5:b7:ae:03:0c:9d:31:ab:27:e6:44:64: dd:c0:1d:61:0b:c1:7f:84:44:06:ac:3c:3e:ce:a6:a2:34:73: 31:bd:2e:2c:d0:7f:37:de:23:7b:d8:eb:97:74:bb:db:56:11: 3a:bc:ba:42:5e:ed:5b:35:13:80:ce:4b:a7:92:57:ba:ba:3d: cc:ab:3b:07:22:3d:ea:94:fa:26:2a:30:f2:53:ff:4d:c2:08: 16:0a:b6:2b:84:09:63:7c:1e:32:b3:ef:81:3d:c9:34:e7:94: 17:18:56:d9:b8:5e:1b:f6:fe:a4:c5:8b:8d:f3:61:26:9f:b9: 0d:6c:50:12:82:6a:67:00:05:05:0d:8c:ca:41:da:23:f9:5c: 08:1b:94:6b:2e:3f:10:f5:95:78:a1:a9:95:48:68:80:80:1d: 1d:2d:73:14:02:11:19:49:70:8b:4a:61:3c:ab:bc:18:34:6a: 0b:77:b1:24:54:b6:c9:f5:39:8b:df:96:c8:ff:44:73:f8:0b: 5a:37:63:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4dgEXJFd5k44dDZLwqqvJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5YTI4YzJmODRjNzVlOGQwMzg4Njk0MzU1MTUyZGQyYjcz MWYyNDkwHhcNMjYwMTI2MDQwMDQxWhcNMjYwMTI3MDQwMDQxWjAzMTEwLwYDVQQD EygxMGQ1NmZkMDI5YWQ0ZDAyZjIyMWNhZjJiZDY1NWVlMTk3YWExMGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWRqc/KtQApXRnkPBDNbYAGldno1 bs9vVd5ETPpC5E/jSWeUK6nalNTw7FWD6wXF900s3zs3/fr1ZfaLGOnQ6CL1GqpF UUbf6cKoB4oHYeeG+Asj7nswrynaDCkBa1DdNAIBu0TyFTRMD5dTflT+P5D5upcm BOS/RV5J+nujiO1zTyeoqRLtqpJyCEcHNzftRmggYyBIkw7S8v0ZpnXleSwZlEEr snhQZMujXKsvVjMfSJk48jdXdGYsAFiP8j/3BT79NNkvOO2CltjaWXY39A+RlG3c JOeNxKkm12NtLo5WlZoT/DbM3NhXIyAyys+SDM+r8MTwE4kVhad5xYjtOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBDVb9AprU0C8iHK8r1lXuGXqhDSMB8GA1UdIwQY MBaAFGmijC+Ex16NA4hpQ1UVLdK3MfJJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWFLTUw0VEhYbzBEaUdsRFZSVXQwcmN4OGtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS84OWZmNDctMGI3Yi00MzA5LWE4YWYt MmNiZDU1ZjlhOGVlLzEvYWFLTUw0VEhYbzBEaUdsRFZSVXQwcmN4OGtrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS84OWZmNDctMGI3Yi00MzA5LWE4YWYtMmNiZDU1ZjlhOGVl LzEvYWFLTUw0VEhYbzBEaUdsRFZSVXQwcmN4OGtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfaY1x4n/ 2m3+sSGpWjdP36DyXsugd/7JKEO2dR9s719odnbH7z/W2seUeSP/ZFZKMnaFS/9X d1Xcm24axbeuAwydMasn5kRk3cAdYQvBf4REBqw8Ps6mojRzMb0uLNB/N94je9jr l3S721YROry6Ql7tWzUTgM5Lp5JXuro9zKs7ByI96pT6Jiow8lP/TcIIFgq2K4QJ Y3weMrPvgT3JNOeUFxhW2bheG/b+pMWLjfNhJp+5DWxQEoJqZwAFBQ2MykHaI/lc CBuUay4/EPWVeKGplUhogIAdHS1zFAIRGUlwi0phPKu8GDRqC3exJFS2yfU5i9+W yP9Ec/gLWjdjyg== -----END CERTIFICATE-----Generated at Mon Jan 26 10:17:48 2026 by rpki-client