This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft File: ruCNkzby5s0WXrcwKX_m0gyDw5o.mft (raw, json) Hash identifier: B1xoWd5k4WK9lQpaoPDGBnO0pEKA9zXoiSqoll2eAFA= Subject key identifier: 19:AE:70:14:B3:03:E5:B4:C0:A7:5C:36:DB:5C:DA:96:CE:6C:EC:8F Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a Certificate serial: 019BF4D0F2F078337384B66F71D1BDB850BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft Manifest number: 1533 Signing time: Sun 25 Jan 2026 11:01:32 +0000 Manifest this update: Sun 25 Jan 2026 11:01:32 +0000 Manifest next update: Mon 26 Jan 2026 11:01:32 +0000 Files and hashes: 1: 123WXGbRTZdeisXrE-k_3g3EMvk.roa (hash: PVrjq81b7ONxfTHO259I9HIBssHsthuK6wCJzCfRRBw=) 2: 3JLEaN47mFd4AJ1ulcTajHwX46Q.roa (hash: 7nuv0xJK6J/Wz9ZBABmkHA68zDZCu6LbMkw8k4JA0aY=) 3: 3m4ZcWe4AoRitpxIdoHTfvPCTz4.roa (hash: R1IDNKkyr2PRIrfMe44b/uoEQJhofAwIdcVDkSZ0J1s=) 4: ktGWBH_rz8CZASP_zJHcbXXlp7Y.roa (hash: WQj8sJ8bysuFkPbFG5oVPz6oUf8fVBbz+1mkOQXAzAY=) 5: qmwlU-LpszPGm_f_AiX4jfEipIU.roa (hash: eBcbl11HwyKBKgKCJIYPrcRxwRYlzqQyOytUqmTgqj8=) 6: ruCNkzby5s0WXrcwKX_m0gyDw5o.crl (hash: 9O11PgKFP+NR/BrgPSek3n8S2FE3A4NLlNli5ZQE+Bw=) 7: wwateRuj040-ENpDYQ6qLA2XVl0.roa (hash: NH6PZI4atftudx1FEvFD8kdIjwc++XEY3pey7kw2zFs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:f2:f0:78:33:73:84:b6:6f:71:d1:bd:b8:50:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a Validity Not Before: Jan 25 11:01:32 2026 GMT Not After : Jan 26 11:01:32 2026 GMT Subject: CN=19ae7014b303e5b4c0a75c36db5cda96ce6cec8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:37:c5:5c:ca:14:fd:85:52:a1:d7:28:69:85: 34:12:ae:c7:df:98:25:65:9a:62:58:9f:e5:a4:f4: 70:f8:ae:7f:a8:5b:b3:e2:e6:0f:db:a6:12:cb:68: d7:8c:0a:41:a7:ae:7f:9f:0a:1a:63:08:92:11:e1: 92:c3:0e:4a:54:d4:5d:cb:37:c3:72:76:c9:3c:e7: 9a:a5:55:da:4c:91:41:ce:b5:7e:70:a2:ec:bb:99: fb:c2:8d:77:45:61:0d:5a:77:a7:d3:06:0d:2d:68: 9e:82:f4:16:f0:a6:96:46:6d:05:94:77:d7:cd:0c: 87:24:f6:a3:26:2b:e2:26:98:b6:8a:f3:ea:8f:37: 64:88:e2:86:97:78:d0:7e:09:f2:28:ad:88:62:86: 0e:6f:57:62:de:eb:b7:6f:13:a3:90:db:b0:ce:d0: c7:26:0f:04:fe:98:bf:dc:f6:3f:b1:4e:5a:4e:72: b4:2f:3f:09:e2:54:20:f1:06:86:a4:87:93:c7:21: 82:44:1c:19:65:d1:24:78:55:aa:88:1b:07:7c:5a: 8e:b3:dd:e6:bd:32:62:13:53:f3:0c:9d:12:0d:da: 8e:8c:3f:7a:90:37:d5:9c:7c:50:5f:6f:01:a8:bd: 21:1d:53:3a:56:74:8b:35:54:47:92:5f:63:95:0d: 56:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AE:70:14:B3:03:E5:B4:C0:A7:5C:36:DB:5C:DA:96:CE:6C:EC:8F X509v3 Authority Key Identifier: keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e6:24:ce:b2:18:f6:73:89:dc:8b:f4:62:d5:85:a9:2f:b3: 95:2a:06:89:1f:6d:a8:30:9f:99:96:78:98:a3:c7:f9:e9:0e: 83:87:34:5d:1d:90:91:89:1b:52:16:e6:e6:61:b8:27:d2:17: 0e:67:61:f5:6d:9a:eb:46:a1:01:d1:3e:2e:51:e5:0c:3b:21: 2e:08:e1:98:a1:2f:1e:6c:3e:35:85:f3:88:53:04:1e:35:13: 4d:d6:70:9c:b3:69:a3:ce:b0:4d:35:5c:37:92:f8:87:38:4c: ca:60:fa:42:c8:0d:a0:4f:52:e4:2d:22:9d:08:c4:02:07:6e: ec:55:41:b3:45:4b:07:9d:26:2c:58:c7:38:80:b6:df:3b:d2: b2:0c:84:ff:c3:8e:72:49:c1:12:f6:33:71:24:d5:b3:9e:15: de:83:ae:f9:c9:87:e1:0e:ff:55:ef:64:f6:0f:cc:3b:98:c6: 20:a5:b1:80:65:f4:ac:f2:6c:4b:f4:95:a7:24:77:bb:1b:96: 0f:2d:22:72:50:2f:95:c8:2c:15:bd:b3:d6:3a:b6:30:3a:4c: 26:fb:95:30:f0:82:1e:2e:5f:28:7a:a0:e9:60:09:44:da:4c: 2f:3a:63:4a:e8:3c:2b:f4:33:86:15:4d:9f:c2:f7:9f:f4:4a: cb:72:79:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00PLweDNzhLZvcdG9uFC7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlZTA4ZDkzMzZmMmU2Y2QxNjVlYjczMDI5N2ZlNmQyMGM4 M2MzOWEwHhcNMjYwMTI1MTEwMTMyWhcNMjYwMTI2MTEwMTMyWjAzMTEwLwYDVQQD EygxOWFlNzAxNGIzMDNlNWI0YzBhNzVjMzZkYjVjZGE5NmNlNmNlYzhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jfFXMoU/YVSodcoaYU0Eq7H35gl ZZpiWJ/lpPRw+K5/qFuz4uYP26YSy2jXjApBp65/nwoaYwiSEeGSww5KVNRdyzfD cnbJPOeapVXaTJFBzrV+cKLsu5n7wo13RWENWnen0wYNLWiegvQW8KaWRm0FlHfX zQyHJPajJiviJpi2ivPqjzdkiOKGl3jQfgnyKK2IYoYOb1di3uu3bxOjkNuwztDH Jg8E/pi/3PY/sU5aTnK0Lz8J4lQg8QaGpIeTxyGCRBwZZdEkeFWqiBsHfFqOs93m vTJiE1PzDJ0SDdqOjD96kDfVnHxQX28BqL0hHVM6VnSLNVRHkl9jlQ1WGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBmucBSzA+W0wKdcNttc2pbObOyPMB8GA1UdIwQY MBaAFK7gjZM28ubNFl63MCl/5tIMg8OaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9mODUzZjgtMjA3MS00OWRlLWI2YTAt NDk3YmVkZDcxZWI5LzEvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9mODUzZjgtMjA3MS00OWRlLWI2YTAtNDk3YmVkZDcxZWI5 LzEvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW+YkzrIY 9nOJ3Iv0YtWFqS+zlSoGiR9tqDCfmZZ4mKPH+ekOg4c0XR2QkYkbUhbm5mG4J9IX Dmdh9W2a60ahAdE+LlHlDDshLgjhmKEvHmw+NYXziFMEHjUTTdZwnLNpo86wTTVc N5L4hzhMymD6QsgNoE9S5C0inQjEAgdu7FVBs0VLB50mLFjHOIC23zvSsgyE/8OO cknBEvYzcSTVs54V3oOu+cmH4Q7/Ve9k9g/MO5jGIKWxgGX0rPJsS/SVpyR3uxuW Dy0iclAvlcgsFb2z1jq2MDpMJvuVMPCCHi5fKHqg6WAJRNpMLzpjSug8K/QzhhVN n8L3n/RKy3J5Hg== -----END CERTIFICATE-----Generated at Sun Jan 25 17:44:08 2026 by rpki-client