This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft File: aNogbIPVBeJUs-88dlD5-5NFNDU.mft (raw, json) Hash identifier: sjaJMokGDo/poW1DdnG57QXDA5EselUs8sqTaEOI/BI= Subject key identifier: 93:02:E6:D4:30:5F:13:D9:A9:EB:4B:2C:7C:B4:E3:9C:6D:14:0F:3C Authority key identifier: 68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35 Certificate issuer: /CN=68da206c83d505e254b3ef3c7650f9fb93453435 Certificate serial: 019BF499412EBB13D5E9FF9403282A3DB827 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft Manifest number: 0AD7 Signing time: Sun 25 Jan 2026 10:00:42 +0000 Manifest this update: Sun 25 Jan 2026 10:00:42 +0000 Manifest next update: Mon 26 Jan 2026 10:00:42 +0000 Files and hashes: 1: aNogbIPVBeJUs-88dlD5-5NFNDU.crl (hash: 1J6skpsv6gNSpQeCdZj9eBCax9NIo4PSHVRRErS5Hw0=) 2: tI5e6iAaAZ4nNbkpCHsMqp1-ktQ.roa (hash: A9GN5Q7BwonPYBSN1TVcg69kmzmTkS/zhmBwNF2zRqM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:41:2e:bb:13:d5:e9:ff:94:03:28:2a:3d:b8:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68da206c83d505e254b3ef3c7650f9fb93453435 Validity Not Before: Jan 25 10:00:42 2026 GMT Not After : Jan 26 10:00:42 2026 GMT Subject: CN=9302e6d4305f13d9a9eb4b2c7cb4e39c6d140f3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c4:c2:f8:36:31:66:16:4a:eb:15:cc:e2:57: fb:7d:a2:32:25:e7:00:65:22:48:f8:c6:34:f2:0c: 17:56:b8:14:86:7f:dc:aa:b2:1e:27:c5:f8:e0:0c: 5f:4c:0a:7b:0f:d8:82:d4:ce:2f:ae:ac:4b:e1:3a: cf:e6:60:7c:ff:22:43:68:71:b8:9a:c3:95:26:28: 32:eb:5f:88:b9:63:05:79:6c:da:4a:48:18:cf:95: ca:b9:03:7c:c9:ff:72:b8:ab:58:c2:a7:bb:39:3e: c4:e5:5c:f5:4b:1c:77:a4:41:16:52:53:7b:ce:4e: 8d:4c:c3:a5:d2:5a:ca:e2:3c:18:18:7e:b6:e7:ec: b1:85:1d:f3:8c:ba:f4:02:46:66:35:4d:28:23:ef: cb:54:67:3c:58:f2:88:88:3b:28:94:95:ee:48:ca: bc:9d:91:4f:f2:09:2a:f8:11:8d:35:82:1a:48:59: 20:61:89:29:06:2a:3e:ac:72:c4:ab:d0:3f:ea:52: c0:d8:2c:ee:32:10:d8:d5:35:27:35:e3:9f:18:2f: 33:52:9f:48:5b:18:2d:2c:ef:16:6d:b9:0e:ca:c0: da:42:e4:40:e2:0f:4b:ae:93:7d:28:9c:cd:d3:87: fa:62:a8:32:fb:57:35:3c:10:29:35:06:3e:f6:d2: 30:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:02:E6:D4:30:5F:13:D9:A9:EB:4B:2C:7C:B4:E3:9C:6D:14:0F:3C X509v3 Authority Key Identifier: keyid:68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:77:06:19:f7:0d:63:00:a2:0e:61:70:b4:ca:02:59:e2:d4: 36:2f:06:47:77:49:63:3d:da:a2:c7:1d:9e:84:24:b3:6f:d4: 4c:48:85:e8:44:19:0f:1b:89:ab:87:49:72:83:94:47:e4:c9: 13:d2:ce:bf:99:48:69:99:1c:84:b6:d4:56:b6:06:44:8a:f0: 6b:4a:61:4c:42:9f:03:d4:5d:29:08:f0:28:03:f4:c7:02:4e: 5b:87:f6:7a:33:bb:7f:7e:09:a9:03:14:bf:00:40:1d:c3:b6: 79:60:46:ba:35:37:99:34:8a:72:33:13:fe:c3:89:1a:82:4c: d4:00:49:1b:6e:90:97:01:01:73:f3:ec:ec:56:82:d6:f4:e5: c7:b4:bc:37:da:12:79:b4:4a:0f:af:71:39:5e:1a:90:80:4a: f0:b2:fc:1b:ee:71:e1:e6:c0:27:c1:02:71:c6:4a:0a:e2:75: 2a:58:2e:8d:45:7c:31:7c:ac:15:83:c1:ba:2c:cf:17:94:39: 23:40:34:3c:46:5b:2c:09:d2:97:99:71:f2:1a:96:10:fb:51: 11:08:c9:bf:16:18:00:95:40:9e:3b:5b:d7:aa:2c:c9:12:0c: fb:f5:70:d8:f1:a9:dd:b7:ce:6a:b1:f2:53:b5:1e:a7:ce:d6: 2e:b6:5c:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mUEuuxPV6f+UAygqPbgnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZGEyMDZjODNkNTA1ZTI1NGIzZWYzYzc2NTBmOWZiOTM0 NTM0MzUwHhcNMjYwMTI1MTAwMDQyWhcNMjYwMTI2MTAwMDQyWjAzMTEwLwYDVQQD Eyg5MzAyZTZkNDMwNWYxM2Q5YTllYjRiMmM3Y2I0ZTM5YzZkMTQwZjNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6MTC+DYxZhZK6xXM4lf7faIyJecA ZSJI+MY08gwXVrgUhn/cqrIeJ8X44AxfTAp7D9iC1M4vrqxL4TrP5mB8/yJDaHG4 msOVJigy61+IuWMFeWzaSkgYz5XKuQN8yf9yuKtYwqe7OT7E5Vz1Sxx3pEEWUlN7 zk6NTMOl0lrK4jwYGH625+yxhR3zjLr0AkZmNU0oI+/LVGc8WPKIiDsolJXuSMq8 nZFP8gkq+BGNNYIaSFkgYYkpBio+rHLEq9A/6lLA2CzuMhDY1TUnNeOfGC8zUp9I WxgtLO8WbbkOysDaQuRA4g9LrpN9KJzN04f6Yqgy+1c1PBApNQY+9tIwfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJMC5tQwXxPZqetLLHy045xtFA88MB8GA1UdIwQY MBaAFGjaIGyD1QXiVLPvPHZQ+fuTRTQ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9iYjI5OGItM2MzOS00OWIyLWFiYjEt MTFkNjM2YjU2ZGFiLzEvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS9iYjI5OGItM2MzOS00OWIyLWFiYjEtMTFkNjM2YjU2ZGFi LzEvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXXcGGfcN YwCiDmFwtMoCWeLUNi8GR3dJYz3aoscdnoQks2/UTEiF6EQZDxuJq4dJcoOUR+TJ E9LOv5lIaZkchLbUVrYGRIrwa0phTEKfA9RdKQjwKAP0xwJOW4f2ejO7f34JqQMU vwBAHcO2eWBGujU3mTSKcjMT/sOJGoJM1ABJG26QlwEBc/Ps7FaC1vTlx7S8N9oS ebRKD69xOV4akIBK8LL8G+5x4ebAJ8ECccZKCuJ1KlgujUV8MXysFYPBuizPF5Q5 I0A0PEZbLAnSl5lx8hqWEPtREQjJvxYYAJVAnjtb16osyRIM+/Vw2PGp3bfOarHy U7Uep87WLrZcpw== -----END CERTIFICATE-----Generated at Sun Jan 25 16:22:27 2026 by rpki-client