This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft File: AYGCKpyioAj1zRG5-duhbuLGFFk.mft (raw, json) Hash identifier: WM8y0xlbU1GGFm/WjVvbSbKxsG9Z/IKshyZrL1rIL+A= Subject key identifier: 19:8A:49:A1:F2:74:6B:9F:BA:4C:E7:41:E3:41:33:53:53:8D:48:A2 Authority key identifier: 01:81:82:2A:9C:A2:A0:08:F5:CD:11:B9:F9:DB:A1:6E:E2:C6:14:59 Certificate issuer: /CN=0181822a9ca2a008f5cd11b9f9dba16ee2c61459 Certificate serial: 019BF687C774336AE5E786E68C899D9DA594 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft Manifest number: 032E Signing time: Sun 25 Jan 2026 19:00:52 +0000 Manifest this update: Sun 25 Jan 2026 19:00:52 +0000 Manifest next update: Mon 26 Jan 2026 19:00:52 +0000 Files and hashes: 1: AYGCKpyioAj1zRG5-duhbuLGFFk.crl (hash: UfdUZmzygFwZ5oIZ4/ev4EucOTbQh6Kfm6lD7ivMhoQ=) 2: Ys_4DR1wULGBNA_eDYgXZEWOD2Q.roa (hash: qjKc7M+pEY0qhXBmrNC0EBe740v+5vXbrYaxAIWy74Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:87:c7:74:33:6a:e5:e7:86:e6:8c:89:9d:9d:a5:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0181822a9ca2a008f5cd11b9f9dba16ee2c61459 Validity Not Before: Jan 25 19:00:52 2026 GMT Not After : Jan 26 19:00:52 2026 GMT Subject: CN=198a49a1f2746b9fba4ce741e3413353538d48a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:3b:80:c3:b1:c0:9c:a5:09:61:55:6a:16:06: 6d:75:8d:e5:a8:90:60:de:7a:d3:0f:98:16:33:6f: 1d:9c:23:a4:aa:38:f4:ac:a2:4d:e2:d4:8b:01:c6: f9:ab:50:5b:be:a6:1c:ed:be:a1:f3:6b:9d:02:e6: 02:95:b0:f0:da:b1:67:c3:18:69:4a:0c:bf:d0:08: 8d:84:64:41:a6:a4:25:60:37:94:bf:16:14:65:d4: 3b:6c:de:34:a4:72:d2:0c:c2:c9:d6:f5:9b:d7:24: c2:b6:92:95:bc:cb:56:1d:d4:e2:6d:70:38:33:72: ba:ee:e5:86:82:a2:e7:ab:ba:a2:41:b1:4b:6e:d0: 08:4a:3a:be:09:e1:64:cf:71:03:31:46:f4:66:6d: df:22:ea:65:63:a1:6d:3a:b9:65:1e:da:46:59:d6: 90:00:08:f9:39:85:4c:c8:c5:24:40:3a:38:9b:f6: 57:43:60:04:3a:f7:e9:e7:6d:ad:27:3f:ae:a0:a8: 40:d3:1e:69:4f:21:49:b7:f4:06:55:48:4b:13:0c: 48:7e:91:a1:47:0e:f6:74:6f:f6:8e:3e:cd:6c:50: 3b:8d:ac:a3:06:df:c0:ab:60:7a:10:08:9f:e1:f0: 3b:57:a1:0a:75:24:c3:9e:da:15:b4:18:f8:9d:13: 53:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8A:49:A1:F2:74:6B:9F:BA:4C:E7:41:E3:41:33:53:53:8D:48:A2 X509v3 Authority Key Identifier: keyid:01:81:82:2A:9C:A2:A0:08:F5:CD:11:B9:F9:DB:A1:6E:E2:C6:14:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYGCKpyioAj1zRG5-duhbuLGFFk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3e9525-a2ce-4e90-900d-80d4945911dd/1/AYGCKpyioAj1zRG5-duhbuLGFFk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:c3:e6:02:b5:c5:46:7a:06:0a:f2:3c:20:c3:91:80:a2:39: df:24:dc:3b:d3:d1:52:c7:ce:4c:a6:d1:42:92:5a:80:0d:6a: 27:82:a8:03:5c:8d:af:27:c4:05:be:03:28:0a:94:d6:4f:90: 2e:34:e6:e2:1c:1d:1e:f1:0e:d3:5d:4d:00:97:c9:20:99:39: e4:c8:a5:37:b7:c0:e9:5f:02:44:67:7d:d0:51:6e:69:e0:1c: 7e:b9:54:9b:b4:dc:b7:15:1b:3a:3b:ca:21:d8:4c:ba:22:32: 9e:c2:35:64:c3:4b:81:d5:66:69:a3:44:6e:e9:97:80:0d:43: d8:1a:d3:a7:42:3b:0c:57:02:c5:44:2e:78:a9:1b:39:2c:08: 2e:e1:d7:f1:23:be:c2:c3:ef:2f:a6:f6:9c:c2:ba:c4:ec:1b: 19:77:f0:e1:22:8a:db:ce:a0:79:d6:b2:26:38:34:44:35:51: 39:ed:2b:8f:ae:36:ae:75:83:23:48:16:a7:8b:67:f7:eb:16: fa:27:28:8c:25:84:2a:aa:4c:27:fc:09:02:a8:9c:fe:93:bb: 7b:a2:00:f6:ac:09:6c:24:b2:af:b9:5e:63:a8:a3:d5:04:4c: eb:e7:7d:fb:7b:65:7f:e7:51:7e:32:9d:e5:30:84:94:91:00: 2c:dd:d0:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2h8d0M2rl54bmjImdnaWUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxODE4MjJhOWNhMmEwMDhmNWNkMTFiOWY5ZGJhMTZlZTJj NjE0NTkwHhcNMjYwMTI1MTkwMDUyWhcNMjYwMTI2MTkwMDUyWjAzMTEwLwYDVQQD EygxOThhNDlhMWYyNzQ2YjlmYmE0Y2U3NDFlMzQxMzM1MzUzOGQ0OGEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjuAw7HAnKUJYVVqFgZtdY3lqJBg 3nrTD5gWM28dnCOkqjj0rKJN4tSLAcb5q1BbvqYc7b6h82udAuYClbDw2rFnwxhp Sgy/0AiNhGRBpqQlYDeUvxYUZdQ7bN40pHLSDMLJ1vWb1yTCtpKVvMtWHdTibXA4 M3K67uWGgqLnq7qiQbFLbtAISjq+CeFkz3EDMUb0Zm3fIuplY6FtOrllHtpGWdaQ AAj5OYVMyMUkQDo4m/ZXQ2AEOvfp522tJz+uoKhA0x5pTyFJt/QGVUhLEwxIfpGh Rw72dG/2jj7NbFA7jayjBt/Aq2B6EAif4fA7V6EKdSTDntoVtBj4nRNTpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBmKSaHydGufukznQeNBM1NTjUiiMB8GA1UdIwQY MBaAFAGBgiqcoqAI9c0RufnboW7ixhRZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVlHQ0tweWlvQWoxelJHNS1kdWhidUxHRkZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8zZTk1MjUtYTJjZS00ZTkwLTkwMGQt ODBkNDk0NTkxMWRkLzEvQVlHQ0tweWlvQWoxelJHNS1kdWhidUxHRkZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi8zZTk1MjUtYTJjZS00ZTkwLTkwMGQtODBkNDk0NTkxMWRk LzEvQVlHQ0tweWlvQWoxelJHNS1kdWhidUxHRkZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZsPmArXF RnoGCvI8IMORgKI53yTcO9PRUsfOTKbRQpJagA1qJ4KoA1yNryfEBb4DKAqU1k+Q LjTm4hwdHvEO011NAJfJIJk55MilN7fA6V8CRGd90FFuaeAcfrlUm7TctxUbOjvK IdhMuiIynsI1ZMNLgdVmaaNEbumXgA1D2BrTp0I7DFcCxUQueKkbOSwILuHX8SO+ wsPvL6b2nMK6xOwbGXfw4SKK286gedayJjg0RDVROe0rj642rnWDI0gWp4tn9+sW +icojCWEKqpMJ/wJAqic/pO7e6IA9qwJbCSyr7leY6ij1QRM6+d9+3tlf+dRfjKd 5TCElJEALN3QaQ== -----END CERTIFICATE-----Generated at Mon Jan 26 03:31:35 2026 by rpki-client