This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft File: aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft (raw, json) Hash identifier: /ONDlN7Sz5taRNP2TUScUuYTk7KqbaeUWPzY9VI/LdA= Subject key identifier: D5:53:B0:E5:10:C7:89:FA:CD:3F:C4:8C:66:61:B5:2B:57:13:D9:1C Authority key identifier: 68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80 Certificate issuer: /CN=6821c8ff0437f7edd829166fde03446f86109d80 Certificate serial: 019BF79A30B35E4AED57B7A73283A4E659F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft Manifest number: 17EC Signing time: Mon 26 Jan 2026 00:00:35 +0000 Manifest this update: Mon 26 Jan 2026 00:00:35 +0000 Manifest next update: Tue 27 Jan 2026 00:00:35 +0000 Files and hashes: 1: GtMCe24ngv6kwkwMfciDCRzIGbc.roa (hash: HPYG+bYgN4LrxtIhEXRuNsczF+K8PHsFJkbYTipolY0=) 2: aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl (hash: 6aKyQE0sJmU+JCbbikZBFI6m3+mykzgz7gvJy5TeYNA=) 3: wrOqy5HuCTVkCe5fRVTajU3ehvY.roa (hash: Fl62VKf9eEMW25X6taoDhAVNcBPYuEGUkuBrbI0k5Pc=) 4: zu9vON3GTVdkXcFBWXM21OtK-sY.roa (hash: oRLggeMjKA/oXwnbtC/44rxG30iQYGETUOL7zYRaXxM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:30:b3:5e:4a:ed:57:b7:a7:32:83:a4:e6:59:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6821c8ff0437f7edd829166fde03446f86109d80 Validity Not Before: Jan 26 00:00:35 2026 GMT Not After : Jan 27 00:00:35 2026 GMT Subject: CN=d553b0e510c789facd3fc48c6661b52b5713d91c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d9:6e:30:b0:49:75:39:e1:88:7b:4f:a6:58: 43:a2:8e:2e:0d:73:77:c8:c3:e2:44:52:db:e9:f7: f2:24:75:0f:2a:bb:c6:19:96:a9:44:7a:96:05:09: d8:70:f4:b2:35:e8:59:e1:b7:6f:9e:51:31:c9:4e: 1d:f1:53:12:f4:b8:fc:7b:89:f7:97:4b:06:ec:24: a7:6c:0b:68:2f:7d:73:bc:1b:1c:8d:0e:04:88:eb: 78:71:9a:c4:39:d8:92:35:af:d1:78:9e:53:6a:67: ae:c8:6a:fa:46:e5:c0:e6:a3:7a:89:df:e6:32:62: 44:17:a4:96:07:96:df:40:5b:ae:70:b9:b8:32:fc: 43:c5:e5:bb:de:1f:2d:8f:d7:d0:25:5a:6b:57:59: 30:0a:2c:c9:bd:10:87:49:88:fb:9e:d0:52:21:ae: 46:bc:74:5e:96:05:a2:63:dc:d7:9e:52:d8:ba:76: 1c:75:56:2f:e2:3a:52:0f:07:b9:72:f6:8d:23:98: bf:f6:fb:43:53:d8:10:09:ec:bf:98:24:27:03:73: 73:92:c7:24:ee:6c:c0:ae:d6:19:49:e4:c5:3d:b5: 78:12:4e:fa:7e:90:cb:60:b0:6a:b1:37:6d:3a:a9: a6:1a:e9:74:96:06:80:13:03:a9:1f:ff:ec:5b:63: 30:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:53:B0:E5:10:C7:89:FA:CD:3F:C4:8C:66:61:B5:2B:57:13:D9:1C X509v3 Authority Key Identifier: keyid:68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:0f:2f:2d:6a:b9:9d:5b:0e:32:1a:e2:8b:79:37:1e:5c:af: 7b:61:24:73:ee:c8:d5:fe:ac:c0:5e:32:fe:57:e7:49:46:56: d2:a5:71:5a:31:0d:fc:6a:52:59:2b:0c:d3:6c:9c:d6:c4:36: 94:a7:33:a8:e1:ef:54:a6:f1:a2:18:bd:fc:9c:10:75:dd:2d: 3f:e4:08:3b:c6:ad:46:97:12:fe:96:38:e7:75:7d:ec:5f:bd: dd:d3:4d:27:7a:f1:40:25:23:3d:0b:9a:0d:f6:10:78:6d:d6: 7d:30:be:14:34:6f:00:e7:af:72:86:f8:5e:04:96:26:dc:2d: bf:c7:89:6e:67:d0:e8:40:4d:0b:b7:52:73:60:61:57:28:79: d2:2d:62:b7:cc:21:d1:c3:18:fc:6a:8a:4e:0e:7a:f8:72:93: 90:eb:89:9c:39:1c:60:66:c3:36:b8:8b:36:95:53:df:4b:04: 65:7f:7f:09:4d:68:a1:c2:61:7c:23:4c:01:04:f1:f6:e7:a4: b1:13:3e:29:69:2c:d8:0c:02:7b:52:19:ca:aa:a7:93:7e:89: f3:ac:77:7c:bf:4a:7e:e7:8f:3e:fe:1e:d4:d5:e7:29:6d:53: e9:cd:4d:6c:d5:b2:70:a9:40:04:f2:2e:28:bf:ae:6f:69:68: c6:fe:17:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mjCzXkrtV7enMoOk5ln2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MjFjOGZmMDQzN2Y3ZWRkODI5MTY2ZmRlMDM0NDZmODYx MDlkODAwHhcNMjYwMTI2MDAwMDM1WhcNMjYwMTI3MDAwMDM1WjAzMTEwLwYDVQQD EyhkNTUzYjBlNTEwYzc4OWZhY2QzZmM0OGM2NjYxYjUyYjU3MTNkOTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9luMLBJdTnhiHtPplhDoo4uDXN3 yMPiRFLb6ffyJHUPKrvGGZapRHqWBQnYcPSyNehZ4bdvnlExyU4d8VMS9Lj8e4n3 l0sG7CSnbAtoL31zvBscjQ4EiOt4cZrEOdiSNa/ReJ5TameuyGr6RuXA5qN6id/m MmJEF6SWB5bfQFuucLm4MvxDxeW73h8tj9fQJVprV1kwCizJvRCHSYj7ntBSIa5G vHRelgWiY9zXnlLYunYcdVYv4jpSDwe5cvaNI5i/9vtDU9gQCey/mCQnA3Nzksck 7mzArtYZSeTFPbV4Ek76fpDLYLBqsTdtOqmmGul0lgaAEwOpH//sW2MwEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNVTsOUQx4n6zT/EjGZhtStXE9kcMB8GA1UdIwQY MBaAFGghyP8EN/ft2CkWb94DRG+GEJ2AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUNISV93UTM5LTNZS1JadjNnTkViNFlRbllBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy8xM2IxNDQtYmUxNi00OTIyLWE5ODMt MjVhZTkyOTNmNmI0LzEvYUNISV93UTM5LTNZS1JadjNnTkViNFlRbllBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy8xM2IxNDQtYmUxNi00OTIyLWE5ODMtMjVhZTkyOTNmNmI0 LzEvYUNISV93UTM5LTNZS1JadjNnTkViNFlRbllBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtQ8vLWq5 nVsOMhrii3k3Hlyve2Ekc+7I1f6swF4y/lfnSUZW0qVxWjEN/GpSWSsM02yc1sQ2 lKczqOHvVKbxohi9/JwQdd0tP+QIO8atRpcS/pY453V97F+93dNNJ3rxQCUjPQua DfYQeG3WfTC+FDRvAOevcob4XgSWJtwtv8eJbmfQ6EBNC7dSc2BhVyh50i1it8wh 0cMY/GqKTg56+HKTkOuJnDkcYGbDNriLNpVT30sEZX9/CU1oocJhfCNMAQTx9uek sRM+KWks2AwCe1IZyqqnk36J86x3fL9KfuePPv4e1NXnKW1T6c1NbNWycKlABPIu KL+ub2loxv4XXg== -----END CERTIFICATE-----Generated at Mon Jan 26 04:27:49 2026 by rpki-client