This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft File: AOC06vnBB5HzU7qYfeI2ChOEF70.mft (raw, json) Hash identifier: eKxQ3PtcMd3ylmqFVjY9hpYKC0bUaP6GT/U1xlgp6+E= Subject key identifier: AF:FB:8F:64:FA:B4:EE:29:57:1D:25:2F:AC:80:BF:79:38:52:81:C6 Authority key identifier: 00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD Certificate issuer: /CN=00e0b4eaf9c10791f353ba987de2360a138417bd Certificate serial: 019BF3BD7731EBFDDFBE025A468694B34CF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft Manifest number: 0A11 Signing time: Sun 25 Jan 2026 06:00:38 +0000 Manifest this update: Sun 25 Jan 2026 06:00:38 +0000 Manifest next update: Mon 26 Jan 2026 06:00:38 +0000 Files and hashes: 1: AOC06vnBB5HzU7qYfeI2ChOEF70.crl (hash: 2Ei+RsKiP7LYnXy1/JwzgHX3Zhi+XOuViR7AlkGOmFw=) 2: XICIOM-gxMiR9t8IRnCK0NrB6nE.roa (hash: 9lVFALoW/hdyZ/BrGkS5tRJiyOdo/KL8ycTG9tW7DC8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:bd:77:31:eb:fd:df:be:02:5a:46:86:94:b3:4c:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e0b4eaf9c10791f353ba987de2360a138417bd Validity Not Before: Jan 25 06:00:38 2026 GMT Not After : Jan 26 06:00:38 2026 GMT Subject: CN=affb8f64fab4ee29571d252fac80bf79385281c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ea:26:ab:a3:82:94:e2:82:26:9f:a6:af:3c: 97:04:07:1c:f1:0a:7a:ef:45:80:e3:01:7c:c9:de: 20:33:81:db:0b:75:69:80:30:c5:02:fb:aa:bd:65: 1e:af:2e:24:0d:94:2a:22:d9:ad:a6:65:23:c3:c8: cb:11:c4:10:d9:e6:03:bb:40:b9:76:cb:1c:3f:6b: 2b:06:eb:73:1f:85:00:c8:14:e9:e1:29:7f:c2:63: 18:1f:32:69:cf:0c:00:5d:6f:8a:7e:65:06:47:b1: 09:49:cd:71:95:f6:ae:99:65:4f:82:2b:cf:1e:b6: a6:ba:96:fa:19:a9:05:2e:0f:0a:b6:bb:60:0f:e0: 8c:16:e9:af:0e:b0:ef:1a:d1:b3:39:d8:b8:62:74: 00:f2:9d:b1:bb:b9:c7:19:be:8b:08:10:ad:8f:54: 24:06:0c:3e:1e:d1:dd:0f:4f:11:13:02:da:0e:c6: 70:18:fa:11:49:76:39:49:40:a8:c4:d1:e7:28:46: 3d:22:95:86:d7:f0:69:35:39:38:a7:97:8b:be:9a: ed:1d:f5:ae:10:7e:f5:d1:09:9d:a9:5f:74:52:73: d8:e8:28:d7:ae:eb:55:23:aa:90:46:e9:50:d4:85: dd:63:c0:5e:15:d9:5f:bb:f3:d5:e8:72:f0:51:38: a5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FB:8F:64:FA:B4:EE:29:57:1D:25:2F:AC:80:BF:79:38:52:81:C6 X509v3 Authority Key Identifier: keyid:00:E0:B4:EA:F9:C1:07:91:F3:53:BA:98:7D:E2:36:0A:13:84:17:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOC06vnBB5HzU7qYfeI2ChOEF70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/210043-5afe-456f-b3f8-dc027432e5a5/1/AOC06vnBB5HzU7qYfeI2ChOEF70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:cd:e1:07:07:33:a0:28:ad:49:b4:b6:2a:35:a8:e9:4f:d1: 2b:82:d6:a5:9a:da:4f:2d:ed:91:a5:1e:74:4f:a1:5c:35:c7: 9e:b5:49:78:2d:4f:8d:1e:cb:e2:8e:e6:ca:62:3d:d1:29:12: 1c:4c:8d:37:db:0c:a7:97:bb:3a:96:51:87:c9:80:03:02:e5: d7:4e:21:78:5a:77:91:ee:93:47:31:32:f6:4c:5a:17:c0:3a: ad:0b:71:b0:c4:8a:1f:eb:29:47:29:e0:fb:07:4e:a0:5e:a0: 2c:d0:90:db:93:88:fb:54:86:02:31:ed:9b:20:34:2d:1e:83: e5:95:aa:5f:1d:a1:9e:50:9d:14:2d:83:76:c5:ae:1f:1e:13: b8:1d:c3:09:02:ee:e1:70:ce:0a:ce:2c:15:88:b5:a7:78:35: a1:ee:50:20:2c:24:26:90:c9:ed:86:e7:2e:57:3e:3f:be:d1: c7:15:92:86:0d:46:18:66:47:b9:7b:93:f5:f8:9e:65:d2:4d: 47:4c:f1:da:fa:d5:0b:a3:17:da:2e:04:47:7d:a6:25:fb:b3: f1:f5:99:18:7c:e0:47:48:72:8f:67:64:f3:12:29:60:6c:f3: df:d6:d0:11:09:d8:99:76:2c:1c:7d:ff:71:1f:62:97:b3:b7: ea:e7:69:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzvXcx6/3fvgJaRoaUs0z0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTBiNGVhZjljMTA3OTFmMzUzYmE5ODdkZTIzNjBhMTM4 NDE3YmQwHhcNMjYwMTI1MDYwMDM4WhcNMjYwMTI2MDYwMDM4WjAzMTEwLwYDVQQD EyhhZmZiOGY2NGZhYjRlZTI5NTcxZDI1MmZhYzgwYmY3OTM4NTI4MWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOomq6OClOKCJp+mrzyXBAcc8Qp6 70WA4wF8yd4gM4HbC3VpgDDFAvuqvWUery4kDZQqItmtpmUjw8jLEcQQ2eYDu0C5 dsscP2srButzH4UAyBTp4Sl/wmMYHzJpzwwAXW+KfmUGR7EJSc1xlfaumWVPgivP Hramupb6GakFLg8KtrtgD+CMFumvDrDvGtGzOdi4YnQA8p2xu7nHGb6LCBCtj1Qk Bgw+HtHdD08REwLaDsZwGPoRSXY5SUCoxNHnKEY9IpWG1/BpNTk4p5eLvprtHfWu EH710QmdqV90UnPY6CjXrutVI6qQRulQ1IXdY8BeFdlfu/PV6HLwUTilKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK/7j2T6tO4pVx0lL6yAv3k4UoHGMB8GA1UdIwQY MBaAFADgtOr5wQeR81O6mH3iNgoThBe9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8yMTAwNDMtNWFmZS00NTZmLWIzZjgt ZGMwMjc0MzJlNWE1LzEvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8yMTAwNDMtNWFmZS00NTZmLWIzZjgtZGMwMjc0MzJlNWE1 LzEvQU9DMDZ2bkJCNUh6VTdxWWZlSTJDaE9FRjcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp83hBwcz oCitSbS2KjWo6U/RK4LWpZraTy3tkaUedE+hXDXHnrVJeC1PjR7L4o7mymI90SkS HEyNN9sMp5e7OpZRh8mAAwLl104heFp3ke6TRzEy9kxaF8A6rQtxsMSKH+spRyng +wdOoF6gLNCQ25OI+1SGAjHtmyA0LR6D5ZWqXx2hnlCdFC2DdsWuHx4TuB3DCQLu 4XDOCs4sFYi1p3g1oe5QICwkJpDJ7YbnLlc+P77RxxWShg1GGGZHuXuT9fieZdJN R0zx2vrVC6MX2i4ER32mJfuz8fWZGHzgR0hyj2dk8xIpYGzz39bQEQnYmXYsHH3/ cR9il7O36udp4g== -----END CERTIFICATE-----Generated at Sun Jan 25 14:44:46 2026 by rpki-client