This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft File: CaaG43DW0GCBGe6wBsiq2qsHjSI.mft (raw, json) Hash identifier: b/zlXH9P2xkLHloADVTNPlX9tHAMtfM59vwwml/5ONU= Subject key identifier: 9F:30:D1:6E:33:7A:F7:8C:03:36:21:3F:58:82:37:90:DA:D2:60:33 Authority key identifier: 09:A6:86:E3:70:D6:D0:60:81:19:EE:B0:06:C8:AA:DA:AB:07:8D:22 Certificate issuer: /CN=09a686e370d6d0608119eeb006c8aadaab078d22 Certificate serial: 019BF53E46D149A4AF8E3C8BCDDFA127A93B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CaaG43DW0GCBGe6wBsiq2qsHjSI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft Manifest number: 4B Signing time: Sun 25 Jan 2026 13:00:57 +0000 Manifest this update: Sun 25 Jan 2026 13:00:57 +0000 Manifest next update: Mon 26 Jan 2026 13:00:57 +0000 Files and hashes: 1: 7uS7FJeJqfkBOKs7jAgs7VUqjPQ.roa (hash: AUrVVqZgFBpQPO1HYsXG2X9cKcmkyjTr27P1yB02VUc=) 2: CaaG43DW0GCBGe6wBsiq2qsHjSI.crl (hash: uPqZqQKjLLcu+hQgHEwdgcZE55NZQKyJlhe+fTvwIN0=) 3: hkFUUvXkJB0QAxGYGwaJ2E3Lg-4.roa (hash: V5lSuLwVqv7sVkEIcuO0QRT4zQFnDDCFROXnnfbR9tA=) 4: mfFzFr77B7li1se7tJF6OJSoedY.roa (hash: qjnquC9Z4QaN1VXTnS5n6C6aJQ2XKB8MHhH5a5KucWY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.crl rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft rsync://rpki.ripe.net/repository/DEFAULT/CaaG43DW0GCBGe6wBsiq2qsHjSI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:46:d1:49:a4:af:8e:3c:8b:cd:df:a1:27:a9:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09a686e370d6d0608119eeb006c8aadaab078d22 Validity Not Before: Jan 25 13:00:57 2026 GMT Not After : Jan 26 13:00:57 2026 GMT Subject: CN=9f30d16e337af78c0336213f58823790dad26033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:10:ae:83:e5:d3:aa:4e:f3:34:cd:c9:2c:ed: 2b:e7:28:f9:1e:97:4e:1f:38:f6:b1:16:79:ce:e7: 03:ed:12:dd:47:b1:9a:42:35:f9:2e:7a:cf:a5:0f: e4:9f:21:84:d5:41:1d:af:d3:51:f0:0e:e3:3d:f5: ac:4e:c2:11:66:3b:7d:04:8b:cd:78:ac:94:bf:a1: 8c:43:4d:5e:b9:68:2e:fb:12:48:8d:ea:82:4b:52: b9:f7:cb:3d:68:45:29:e5:f4:63:54:5b:a3:53:93: 56:63:4a:8a:8a:ca:58:fd:4c:96:6a:b1:10:c3:f8: 95:85:08:0a:ef:f9:56:82:41:63:77:bd:69:90:c8: 44:07:37:fc:ba:51:ca:45:08:cf:74:cd:db:69:17: f3:d3:cc:60:72:9b:6c:d1:a8:f3:b6:5c:dc:a8:c7: 84:82:db:2e:3c:b0:fa:2a:7d:de:fa:ba:fc:d4:6d: 2d:ca:12:53:09:43:9b:b1:80:58:94:de:24:9a:23: b0:d0:d7:53:30:d8:c5:6a:9b:7b:60:8f:50:9c:2a: 13:a0:93:df:54:f6:65:aa:72:85:50:9e:08:95:fc: 58:1c:e2:1e:ef:69:82:75:88:38:47:f8:14:53:7e: 4f:f9:b1:1e:48:73:ed:62:b2:7b:3d:19:92:0b:37: bb:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:30:D1:6E:33:7A:F7:8C:03:36:21:3F:58:82:37:90:DA:D2:60:33 X509v3 Authority Key Identifier: keyid:09:A6:86:E3:70:D6:D0:60:81:19:EE:B0:06:C8:AA:DA:AB:07:8D:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CaaG43DW0GCBGe6wBsiq2qsHjSI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/d429b9-385e-430f-b2c4-81768c60ee08/1/CaaG43DW0GCBGe6wBsiq2qsHjSI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:60:d6:04:9b:4b:ec:e6:69:11:0f:cc:66:dd:ab:37:d3:92: 7d:a6:6a:7f:1f:36:cb:7a:43:35:01:51:d3:f1:df:8e:73:cb: 86:4e:a9:87:7e:b3:e5:2c:a4:52:0c:05:a2:13:47:35:86:cd: 4d:0b:37:7a:48:52:4b:26:4a:30:cb:04:98:82:ec:4f:b8:5a: ea:29:39:c8:28:4c:d6:54:1d:1a:95:90:1d:bc:99:3a:ef:68: a0:ce:a7:e7:d6:13:3c:f4:e1:70:e1:25:bd:2b:05:00:c4:43: 0d:75:96:d2:1b:ba:14:70:8c:d0:7f:72:71:7f:b6:99:e6:2e: 19:34:08:b4:a1:ea:9c:6e:54:fd:3b:ca:a4:5b:85:f2:fb:a3: 1b:4b:45:42:5a:c1:7f:da:3a:2b:74:87:12:62:89:e2:ae:a7: 56:b2:63:65:4f:b4:cf:de:91:4d:2e:21:0f:78:b3:57:ff:72: bb:d0:be:9b:b7:48:33:f5:48:5f:c3:29:0a:7c:27:f8:eb:4e: 39:da:04:2f:94:3a:a7:7a:c1:c5:cf:bc:c0:aa:2f:03:7c:0a: e2:1b:ef:c6:bc:41:88:b3:84:1c:d1:31:de:e9:8c:ee:be:b7: e6:65:a6:7b:7f:58:99:76:75:a2:ea:41:43:a5:0d:88:aa:1a: 3e:a5:d3:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PkbRSaSvjjyLzd+hJ6k7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5YTY4NmUzNzBkNmQwNjA4MTE5ZWViMDA2YzhhYWRhYWIw NzhkMjIwHhcNMjYwMTI1MTMwMDU3WhcNMjYwMTI2MTMwMDU3WjAzMTEwLwYDVQQD Eyg5ZjMwZDE2ZTMzN2FmNzhjMDMzNjIxM2Y1ODgyMzc5MGRhZDI2MDMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthCug+XTqk7zNM3JLO0r5yj5HpdO Hzj2sRZ5zucD7RLdR7GaQjX5LnrPpQ/knyGE1UEdr9NR8A7jPfWsTsIRZjt9BIvN eKyUv6GMQ01euWgu+xJIjeqCS1K598s9aEUp5fRjVFujU5NWY0qKispY/UyWarEQ w/iVhQgK7/lWgkFjd71pkMhEBzf8ulHKRQjPdM3baRfz08xgcpts0ajztlzcqMeE gtsuPLD6Kn3e+rr81G0tyhJTCUObsYBYlN4kmiOw0NdTMNjFapt7YI9QnCoToJPf VPZlqnKFUJ4IlfxYHOIe72mCdYg4R/gUU35P+bEeSHPtYrJ7PRmSCze7bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ8w0W4zeveMAzYhP1iCN5Da0mAzMB8GA1UdIwQY MBaAFAmmhuNw1tBggRnusAbIqtqrB40iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2FhRzQzRFcwR0NCR2U2d0JzaXEycXNIalNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9kNDI5YjktMzg1ZS00MzBmLWIyYzQt ODE3NjhjNjBlZTA4LzEvQ2FhRzQzRFcwR0NCR2U2d0JzaXEycXNIalNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9kNDI5YjktMzg1ZS00MzBmLWIyYzQtODE3NjhjNjBlZTA4 LzEvQ2FhRzQzRFcwR0NCR2U2d0JzaXEycXNIalNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATmDWBJtL 7OZpEQ/MZt2rN9OSfaZqfx82y3pDNQFR0/HfjnPLhk6ph36z5SykUgwFohNHNYbN TQs3ekhSSyZKMMsEmILsT7ha6ik5yChM1lQdGpWQHbyZOu9ooM6n59YTPPThcOEl vSsFAMRDDXWW0hu6FHCM0H9ycX+2meYuGTQItKHqnG5U/TvKpFuF8vujG0tFQlrB f9o6K3SHEmKJ4q6nVrJjZU+0z96RTS4hD3izV/9yu9C+m7dIM/VIX8MpCnwn+OtO OdoEL5Q6p3rBxc+8wKovA3wK4hvvxrxBiLOEHNEx3umM7r635mWme39YmXZ1oupB Q6UNiKoaPqXTCw== -----END CERTIFICATE-----Generated at Sun Jan 25 16:34:19 2026 by rpki-client