This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft File: vSUqdclhrTOP2RFH1GHdiz0gz1E.mft (raw, json) Hash identifier: CttAcKwo213het6uIVIVxtr9/Ma8WQDGPBgG0u1nzZ4= Subject key identifier: AA:72:07:5C:13:36:1D:7C:FF:AE:68:6B:3E:27:B6:8F:70:3E:3A:48 Authority key identifier: BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51 Certificate issuer: /CN=bd252a75c961ad338fd91147d461dd8b3d20cf51 Certificate serial: 019BF53E53367819B6945B275B139F106F5A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft Manifest number: 17F0 Signing time: Sun 25 Jan 2026 13:01:00 +0000 Manifest this update: Sun 25 Jan 2026 13:01:00 +0000 Manifest next update: Mon 26 Jan 2026 13:01:00 +0000 Files and hashes: 1: GJIEMFvCXOGxwMSx43guQFRPh8M.roa (hash: oeNhpu1q2YVhaNJfdDI1KC0StxYU+WfFhgtlfHrXwlM=) 2: N7xp5A4irg8DKzqXWFOFM39t3u8.roa (hash: qInCZHWCOK/PbCu1c+rmFecdDUSwXaQ9cyfT/I5HPdo=) 3: hTMMYpMuqGPoG2J1CKhmES38yHA.roa (hash: rvTmRXH6/6D95X7iHQWTgs6oiDZA0aQ3QNoQMnR5ayw=) 4: vSUqdclhrTOP2RFH1GHdiz0gz1E.crl (hash: FlVfGMZqT8LgrIchDLuZTQ8iYnd1BWoCdghpXEpqi+8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:53:36:78:19:b6:94:5b:27:5b:13:9f:10:6f:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd252a75c961ad338fd91147d461dd8b3d20cf51 Validity Not Before: Jan 25 13:01:00 2026 GMT Not After : Jan 26 13:01:00 2026 GMT Subject: CN=aa72075c13361d7cffae686b3e27b68f703e3a48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:93:a7:b1:04:55:46:1f:ce:99:b0:d9:5f:3b: b1:96:fa:ea:9a:a5:3d:49:64:c8:aa:9a:a6:fc:1f: dd:d8:43:46:ea:3a:ba:d0:06:9d:0f:d1:01:bc:83: 3b:4e:de:d8:21:94:87:d5:d1:5a:ae:4d:cd:03:32: 83:e6:b7:15:2c:84:ad:cf:45:b4:0d:fa:6a:c9:0d: 9e:c8:67:59:f5:92:af:dc:92:e3:4e:70:51:76:93: c4:0f:34:aa:e6:b8:f6:a0:17:38:72:64:d7:18:d9: cf:df:2a:6e:57:c6:49:93:f8:68:0b:6d:8d:bb:32: 24:76:03:a8:79:b6:60:cd:ac:22:88:be:71:02:21: c5:20:26:7a:b7:e9:13:04:20:ba:83:54:d7:9e:48: 00:08:53:df:97:0c:6a:c6:db:0b:5a:1b:fa:25:07: 7d:6a:86:66:e5:75:22:4e:08:a6:81:d5:6a:61:a2: 8e:cc:c4:65:1f:2d:da:bd:66:5b:e0:f7:2b:32:d5: 5e:9d:f4:fa:97:45:13:bf:b2:c9:60:85:47:dd:48: d7:7f:57:3d:82:ba:9d:70:4f:9c:8b:9c:e4:16:16: c6:be:6c:1d:a0:36:13:e3:39:92:c9:4f:c9:c9:84: e4:ac:05:17:e4:58:2f:38:80:62:96:56:1d:bf:42: 3e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:72:07:5C:13:36:1D:7C:FF:AE:68:6B:3E:27:B6:8F:70:3E:3A:48 X509v3 Authority Key Identifier: keyid:BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:2e:a0:29:8d:fe:e6:fb:c7:7e:1e:65:9c:a1:27:e0:da:91: c0:7a:5d:3e:e8:13:e6:48:ca:16:f0:3e:31:2c:07:72:2f:86: bd:30:03:2d:e6:0b:05:26:86:1c:75:b6:c0:ba:5b:7a:51:fc: 67:d5:95:f1:27:71:e1:b2:98:82:91:de:48:01:8f:90:1c:a2: aa:ad:ff:90:d0:1e:59:f8:ed:6f:85:11:8d:10:fd:a1:a2:5b: 61:11:8d:06:7f:4a:08:64:d5:8d:56:7d:b7:68:fa:ce:83:98: 39:90:d5:d5:ee:13:7e:ef:8b:7b:78:5a:b2:cf:a6:53:b2:96: 03:c7:d9:f2:74:67:2c:85:b0:87:f9:69:14:74:2a:9c:1a:f6: 25:ff:b3:4a:0f:79:3f:9d:a7:20:0c:93:ee:ef:8e:77:56:4c: a0:52:dc:df:99:76:9b:71:10:ef:ee:c8:f7:3e:43:35:fd:78: cd:48:7d:73:52:18:78:d6:ba:75:bb:fe:d2:cd:f1:fe:d3:7b: 3b:52:27:06:34:f1:61:3e:fe:d9:26:0a:72:02:5b:49:54:bc: 3d:3d:7c:26:a7:d0:7e:66:7b:44:d0:ac:3d:8a:52:d2:e9:d1: be:f1:d0:ab:11:ac:4c:db:d5:c4:8f:91:93:a9:1f:d0:4b:7b: 3f:65:3d:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PlM2eBm2lFsnWxOfEG9aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkMjUyYTc1Yzk2MWFkMzM4ZmQ5MTE0N2Q0NjFkZDhiM2Qy MGNmNTEwHhcNMjYwMTI1MTMwMTAwWhcNMjYwMTI2MTMwMTAwWjAzMTEwLwYDVQQD EyhhYTcyMDc1YzEzMzYxZDdjZmZhZTY4NmIzZTI3YjY4ZjcwM2UzYTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+pOnsQRVRh/OmbDZXzuxlvrqmqU9 SWTIqpqm/B/d2ENG6jq60AadD9EBvIM7Tt7YIZSH1dFark3NAzKD5rcVLIStz0W0 DfpqyQ2eyGdZ9ZKv3JLjTnBRdpPEDzSq5rj2oBc4cmTXGNnP3ypuV8ZJk/hoC22N uzIkdgOoebZgzawiiL5xAiHFICZ6t+kTBCC6g1TXnkgACFPflwxqxtsLWhv6JQd9 aoZm5XUiTgimgdVqYaKOzMRlHy3avWZb4PcrMtVenfT6l0UTv7LJYIVH3UjXf1c9 grqdcE+ci5zkFhbGvmwdoDYT4zmSyU/JyYTkrAUX5FgvOIBillYdv0I+SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKpyB1wTNh18/65oaz4nto9wPjpIMB8GA1UdIwQY MBaAFL0lKnXJYa0zj9kRR9Rh3Ys9IM9RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlNVcWRjbGhyVE9QMlJGSDFHSGRpejBnejFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9kMWM3MGUtMjI2YS00NzgxLWI2NjIt NzQxYWI5Mjk5N2QwLzEvdlNVcWRjbGhyVE9QMlJGSDFHSGRpejBnejFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS9kMWM3MGUtMjI2YS00NzgxLWI2NjItNzQxYWI5Mjk5N2Qw LzEvdlNVcWRjbGhyVE9QMlJGSDFHSGRpejBnejFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlS6gKY3+ 5vvHfh5lnKEn4NqRwHpdPugT5kjKFvA+MSwHci+GvTADLeYLBSaGHHW2wLpbelH8 Z9WV8Sdx4bKYgpHeSAGPkByiqq3/kNAeWfjtb4URjRD9oaJbYRGNBn9KCGTVjVZ9 t2j6zoOYOZDV1e4Tfu+Le3hass+mU7KWA8fZ8nRnLIWwh/lpFHQqnBr2Jf+zSg95 P52nIAyT7u+Od1ZMoFLc35l2m3EQ7+7I9z5DNf14zUh9c1IYeNa6dbv+0s3x/tN7 O1InBjTxYT7+2SYKcgJbSVS8PT18JqfQfmZ7RNCsPYpS0unRvvHQqxGsTNvVxI+R k6kf0Et7P2U90g== -----END CERTIFICATE-----Generated at Sun Jan 25 16:45:38 2026 by rpki-client