This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft File: nAMai2oolAx5NrpueCuUoJYr-yc.mft (raw, json) Hash identifier: sYziTo3qxtjDPgoXTd5scmy1VHc54QV78DwfAnglHTs= Subject key identifier: A4:E7:15:C9:07:AF:5E:B0:A0:F2:80:40:49:02:30:1C:A6:27:4C:ED Authority key identifier: 9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27 Certificate issuer: /CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27 Certificate serial: 019BFA2E43F56A0A9EB4CC76114627C5B23E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft Manifest number: 057A Signing time: Mon 26 Jan 2026 12:01:34 +0000 Manifest this update: Mon 26 Jan 2026 12:01:34 +0000 Manifest next update: Tue 27 Jan 2026 12:01:34 +0000 Files and hashes: 1: 6DYQyU1SL1LMvaa65DMCw3z4hO8.roa (hash: JrefBnA8RHFlhcRliMFJw03ONHlUFhDp419thhgo8CE=) 2: nAMai2oolAx5NrpueCuUoJYr-yc.crl (hash: mOSJnG4PKKhJQajdFjjctBjWLXKNetw7UB/lC0TFr08=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2e:43:f5:6a:0a:9e:b4:cc:76:11:46:27:c5:b2:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27 Validity Not Before: Jan 26 12:01:34 2026 GMT Not After : Jan 27 12:01:34 2026 GMT Subject: CN=a4e715c907af5eb0a0f280404902301ca6274ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:02:50:57:55:08:7c:8f:38:ea:a3:94:bc:30: 89:39:8e:b7:d9:a0:b3:39:77:aa:c5:e4:18:07:c1: 7a:2e:d8:e0:35:44:17:af:1d:64:d8:78:10:a0:79: 36:3a:2a:49:2b:5d:27:56:61:2c:13:27:d0:28:4e: 3e:52:84:ea:b6:39:98:24:8d:aa:27:d5:24:03:15: de:90:6e:3d:01:32:3d:d6:b8:2b:b6:54:e2:eb:d1: 25:b8:15:e7:d4:63:31:70:99:ff:21:53:88:62:ef: 1c:2d:16:a5:13:77:b4:13:cb:08:d3:dc:97:4a:36: 09:c9:90:dd:e1:cb:6f:44:51:cf:f7:74:c1:c7:16: bf:e2:59:33:f3:b7:d3:a0:e7:57:ab:f4:e9:95:21: c0:0f:26:51:00:ac:09:10:1a:e8:c8:42:4b:54:d1: dd:64:0c:7e:c3:b5:5a:0b:48:73:d7:60:0d:00:00: 1c:d8:ce:1c:98:3d:1d:42:36:8c:7e:46:f7:ba:a8: d8:fa:3d:da:f2:87:c9:8f:d4:94:6e:f9:9c:22:a7: b2:c3:7d:39:0c:96:85:37:8f:59:55:d3:d7:cc:3d: d3:db:ed:33:af:9f:df:64:77:fe:a7:c7:5d:c3:02: dc:99:39:4c:8c:81:c2:b7:70:11:e2:6e:2e:1f:b3: c4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:E7:15:C9:07:AF:5E:B0:A0:F2:80:40:49:02:30:1C:A6:27:4C:ED X509v3 Authority Key Identifier: keyid:9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:a2:56:d5:8a:91:c1:ab:95:d7:2d:8a:51:52:7e:29:7c:45: 6e:34:e9:30:ba:97:6f:4d:79:47:e5:2d:1f:47:c4:22:60:b9: 81:45:02:1d:f6:8e:b8:29:17:b4:4b:c5:34:4e:d6:5d:70:5d: 22:37:f6:c7:1c:28:7d:be:fb:62:60:ef:2f:60:ad:2e:be:ee: da:a3:2c:8c:f9:3d:bb:aa:ae:c7:4f:3a:61:74:cf:0a:ab:2c: 41:b5:5a:3f:35:2e:53:a0:0b:23:c4:d9:e7:b3:e3:37:75:82: 7e:1c:8d:0f:af:94:88:fe:aa:c8:8c:7f:f1:d5:95:55:93:a1: 84:bf:61:05:d9:69:6b:a4:5c:8a:fa:21:bf:41:6b:8c:82:df: e6:3d:86:8b:29:69:c5:7a:8a:6b:15:3f:18:8c:1e:06:49:f7: 3b:6c:8b:e5:62:d6:64:c4:b4:1a:d1:83:63:2c:61:3d:64:11: e0:68:29:f3:e2:b4:7a:b6:bd:20:73:3d:9a:ed:1f:e8:a2:c2: 0c:6d:fd:41:65:74:0b:b8:76:4d:6e:0d:65:70:22:24:43:06: ce:ea:2d:a6:cc:9c:0b:81:47:e4:7f:fd:3d:20:d5:bd:44:b0: 95:2c:cc:56:d5:96:93:a1:70:0a:f3:45:24:c5:f8:7a:bc:e0: 66:91:8d:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6LkP1agqetMx2EUYnxbI+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljMDMxYThiNmEyODk0MGM3OTM2YmE2ZTc4MmI5NGEwOTYy YmZiMjcwHhcNMjYwMTI2MTIwMTM0WhcNMjYwMTI3MTIwMTM0WjAzMTEwLwYDVQQD EyhhNGU3MTVjOTA3YWY1ZWIwYTBmMjgwNDA0OTAyMzAxY2E2Mjc0Y2VkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2wJQV1UIfI846qOUvDCJOY632aCz OXeqxeQYB8F6LtjgNUQXrx1k2HgQoHk2OipJK10nVmEsEyfQKE4+UoTqtjmYJI2q J9UkAxXekG49ATI91rgrtlTi69EluBXn1GMxcJn/IVOIYu8cLRalE3e0E8sI09yX SjYJyZDd4ctvRFHP93TBxxa/4lkz87fToOdXq/TplSHADyZRAKwJEBroyEJLVNHd ZAx+w7VaC0hz12ANAAAc2M4cmD0dQjaMfkb3uqjY+j3a8ofJj9SUbvmcIqeyw305 DJaFN49ZVdPXzD3T2+0zr5/fZHf+p8ddwwLcmTlMjIHCt3AR4m4uH7PEXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKTnFckHr16woPKAQEkCMBymJ0ztMB8GA1UdIwQY MBaAFJwDGotqKJQMeTa6bngrlKCWK/snMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8zNDMzZmUtNjQwOC00NjhkLTgxZTQt ZjAzZWI4NzQwYzNlLzEvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8zNDMzZmUtNjQwOC00NjhkLTgxZTQtZjAzZWI4NzQwYzNl LzEvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATqJW1YqR wauV1y2KUVJ+KXxFbjTpMLqXb015R+UtH0fEImC5gUUCHfaOuCkXtEvFNE7WXXBd Ijf2xxwofb77YmDvL2CtLr7u2qMsjPk9u6qux086YXTPCqssQbVaPzUuU6ALI8TZ 57PjN3WCfhyND6+UiP6qyIx/8dWVVZOhhL9hBdlpa6Rcivohv0FrjILf5j2Giylp xXqKaxU/GIweBkn3O2yL5WLWZMS0GtGDYyxhPWQR4Ggp8+K0era9IHM9mu0f6KLC DG39QWV0C7h2TW4NZXAiJEMGzuotpsycC4FH5H/9PSDVvUSwlSzMVtWWk6FwCvNF JMX4erzgZpGNJA== -----END CERTIFICATE-----Generated at Mon Jan 26 15:05:26 2026 by rpki-client