This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json) Hash identifier: 3FsyjrRf63LfO4lIrFfSK1vt8gXukxhGe2aZFTIkp2c= Subject key identifier: 57:98:8A:28:1B:AE:86:85:07:B5:8A:E1:20:1C:7F:A9:13:8D:26:B5 Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd Certificate serial: 019BF79AF7F67180CC6474B7383EDDDA3BB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft Manifest number: 152D Signing time: Mon 26 Jan 2026 00:01:26 +0000 Manifest this update: Mon 26 Jan 2026 00:01:26 +0000 Manifest next update: Tue 27 Jan 2026 00:01:26 +0000 Files and hashes: 1: J8ydQUQXwbdeLKGsKIlOYLkn-2g.roa (hash: x5tw3RQ3h8IFbqDxJqbX4jZdtBMVMlLrubg1cBqUbGY=) 2: ZnincJbZ5PaTXoMonj_Ctiiqrus.roa (hash: isWE5Tfc29wZU5CXfTVoPdXm00k/FOrPBirq1sQW5u0=) 3: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: ryrqgOGrDa5ogfAMYDzuG0DRvlyv1CJfnT7rdzCmEFA=) 4: djk33VTAFS7Xg0krsRI1T_nFwPA.roa (hash: 8hgR6br/pEJbt5XXEd2D/vHBDf8jYfgzmueO6ffVo28=) 5: knCed-keSzVEOPICx1gRMxep3OM.roa (hash: PwNnPjtHsrQvIYgK4ATN14eaGro5/ZgkqW0B/Ot+2cU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:f7:f6:71:80:cc:64:74:b7:38:3e:dd:da:3b:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd Validity Not Before: Jan 26 00:01:26 2026 GMT Not After : Jan 27 00:01:26 2026 GMT Subject: CN=57988a281bae868507b58ae1201c7fa9138d26b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2b:91:b9:07:b4:54:22:2f:46:91:b2:17:82: 3a:81:ea:3d:17:ba:44:4b:09:69:97:f1:94:7b:a2: 6d:5d:4a:83:f6:75:91:a8:7a:60:21:4d:ac:22:07: 66:a1:a7:4f:45:cc:9e:6c:95:78:82:03:97:7d:36: fc:e6:8e:fe:ef:fe:73:70:44:c5:90:5a:bc:6f:dd: b6:8c:9f:c0:7b:16:d7:1c:07:42:0f:0c:ce:8a:8f: 69:43:1b:de:d3:68:7f:c6:8b:4e:43:05:a2:79:1f: a1:47:fd:ba:7a:df:77:26:80:fa:7e:9c:79:9f:90: 96:41:bc:ca:68:e9:4d:c8:09:a6:97:60:bf:27:ca: ef:9a:5f:a4:12:61:bf:6a:ef:9a:6e:81:8d:a5:16: 3d:fc:f7:47:01:94:0d:f0:35:95:4b:d4:2a:2b:42: a6:10:ac:67:79:8f:1f:16:74:a4:9f:ab:c6:4b:52: 44:db:96:3e:71:17:9d:bd:08:2d:b7:6a:ab:7a:6e: fa:a6:03:de:c6:a0:e4:b9:0b:c5:a4:1a:5c:0c:99: 6a:b9:23:fe:ab:92:a7:7a:ec:1e:5f:af:05:78:23: d7:5f:3b:e6:5b:72:80:d7:12:4a:29:5a:a4:42:8c: 0e:cd:0e:a9:0f:e6:50:b5:22:66:88:df:d2:53:8d: 94:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:98:8A:28:1B:AE:86:85:07:B5:8A:E1:20:1C:7F:A9:13:8D:26:B5 X509v3 Authority Key Identifier: keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:d9:16:55:36:78:da:7f:fe:40:78:e6:d8:11:da:8a:be:44: 24:50:7b:29:dd:e5:a8:b4:43:24:8d:e4:28:45:dd:d4:e7:a1: d7:88:d5:73:e4:a6:89:4c:90:af:8d:9a:43:5d:06:38:a1:0d: ec:71:86:20:54:2a:e8:a6:14:4c:c6:ef:35:63:c2:ac:a2:35: f9:b8:20:19:5b:61:bf:f7:ed:4b:84:56:8e:de:57:3f:e2:0f: f8:5f:fa:fa:21:a3:16:c2:76:01:0b:12:95:58:eb:8d:27:e8: d4:d6:39:44:6e:2c:68:4d:05:5f:f0:a7:66:d9:07:af:a0:2e: f0:8b:ca:aa:94:06:c7:74:b2:20:3e:bb:cd:43:9d:f0:43:15: 1b:cc:aa:df:7e:c0:dd:75:36:47:dc:f2:cc:2b:c6:4c:7f:e7: 3c:15:ea:d8:68:c6:74:09:e2:78:66:34:2b:8c:6d:0c:46:d1: 63:62:c2:72:e6:91:a8:0f:f6:9a:0a:51:87:9f:5f:e0:21:c3: 1a:29:f8:95:1d:20:eb:35:9a:26:83:65:a6:2d:b3:33:dc:8e: c3:90:09:72:40:6d:74:92:58:84:de:64:9a:5b:aa:5c:ec:cf: 68:06:57:41:79:09:5d:65:91:22:a5:57:09:91:ce:87:91:a7: 72:59:77:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mvf2cYDMZHS3OD7d2ju0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5YTRkNjkxNmI5MzE1OWFhODA5ODRhOWIzNzc0NjgzYmI1 NTBlYmQwHhcNMjYwMTI2MDAwMTI2WhcNMjYwMTI3MDAwMTI2WjAzMTEwLwYDVQQD Eyg1Nzk4OGEyODFiYWU4Njg1MDdiNThhZTEyMDFjN2ZhOTEzOGQyNmI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyuRuQe0VCIvRpGyF4I6geo9F7pE Swlpl/GUe6JtXUqD9nWRqHpgIU2sIgdmoadPRcyebJV4ggOXfTb85o7+7/5zcETF kFq8b922jJ/AexbXHAdCDwzOio9pQxve02h/xotOQwWieR+hR/26et93JoD6fpx5 n5CWQbzKaOlNyAmml2C/J8rvml+kEmG/au+aboGNpRY9/PdHAZQN8DWVS9QqK0Km EKxneY8fFnSkn6vGS1JE25Y+cRedvQgtt2qrem76pgPexqDkuQvFpBpcDJlquSP+ q5KneuweX68FeCPXXzvmW3KA1xJKKVqkQowOzQ6pD+ZQtSJmiN/SU42UvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFeYiigbroaFB7WK4SAcf6kTjSa1MB8GA1UdIwQY MBaAFGmk1pFrkxWaqAmEqbN3RoO7VQ69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUt MzE5NzExMDA5N2M5LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUtMzE5NzExMDA5N2M5 LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAtkWVTZ4 2n/+QHjm2BHair5EJFB7Kd3lqLRDJI3kKEXd1Oeh14jVc+SmiUyQr42aQ10GOKEN 7HGGIFQq6KYUTMbvNWPCrKI1+bggGVthv/ftS4RWjt5XP+IP+F/6+iGjFsJ2AQsS lVjrjSfo1NY5RG4saE0FX/CnZtkHr6Au8IvKqpQGx3SyID67zUOd8EMVG8yq337A 3XU2R9zyzCvGTH/nPBXq2GjGdAnieGY0K4xtDEbRY2LCcuaRqA/2mgpRh59f4CHD Gin4lR0g6zWaJoNlpi2zM9yOw5AJckBtdJJYhN5kmluqXOzPaAZXQXkJXWWRIqVX CZHOh5Gncll30w== -----END CERTIFICATE-----Generated at Mon Jan 26 06:24:07 2026 by rpki-client