This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft File: M7Zai666T_YhSS6-5vweiK2yGwM.mft (raw, json) Hash identifier: bD8hmyzsW1OTeZunP8MSw79dBEkzJHaOTnuaOmBeG2g= Subject key identifier: 80:78:8D:A7:19:CB:E8:5E:90:DD:2D:7C:83:2D:F6:4F:4A:78:AA:7A Authority key identifier: 33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03 Certificate issuer: /CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03 Certificate serial: 019BF5ABFAE83178EE183689A236BA6410C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft Manifest number: 0403 Signing time: Sun 25 Jan 2026 15:00:47 +0000 Manifest this update: Sun 25 Jan 2026 15:00:47 +0000 Manifest next update: Mon 26 Jan 2026 15:00:47 +0000 Files and hashes: 1: 1-_85ETz5jkHerkVT2dRSmXtqgNo.roa (hash: NQXJJj/OBTH49mc/x3onWdcUiAdq+Dhq5KpAVGXEyBc=) 2: CqxV1eA1GBG3a2D5f_pPgzG42eU.roa (hash: e3jb5BkEW8pwm4wMD1gq76Tk/yf9hJs9RYXqndmqFv8=) 3: M7Zai666T_YhSS6-5vweiK2yGwM.crl (hash: SEMu0cIyFwZZ1cNVDwdPp/k6dkZ3iOf985YWeIdi1TE=) 4: xR7LKB9cMx20WjaSYnBDWdIRF-g.roa (hash: vumkR84YsHI2dcyHQIVTL0w8JKyaUvc5rnjqJHi4+6U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ab:fa:e8:31:78:ee:18:36:89:a2:36:ba:64:10:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33b65a8baeba4ff621492ebee6fc1e88adb21b03 Validity Not Before: Jan 25 15:00:47 2026 GMT Not After : Jan 26 15:00:47 2026 GMT Subject: CN=80788da719cbe85e90dd2d7c832df64f4a78aa7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ac:8e:12:44:e5:50:e4:31:ac:c0:ee:7b:29: 07:dd:75:8c:a1:d4:5b:25:d9:d3:b3:18:c0:07:74: 6f:f9:ce:f4:d8:43:08:52:3a:ad:58:c0:f0:94:20: 5f:d1:23:a2:7e:04:ed:1c:c1:54:97:cc:29:60:56: 1f:0e:0f:ed:6d:0b:87:34:35:37:4e:c8:3f:b1:af: c4:9b:2f:3b:30:7e:dd:bc:43:99:c7:5c:d1:72:91: a2:d1:ce:4f:b6:76:23:a1:0e:dd:a6:88:8b:58:2c: 15:07:c2:11:e9:cd:73:6d:f6:b4:81:07:27:74:f1: 27:4f:4c:cc:81:04:34:68:1b:14:04:c8:aa:9f:dc: 8a:a9:52:57:1a:e4:f4:3c:77:f7:ac:4d:eb:a3:42: 27:7b:23:88:3b:54:ea:d4:8c:31:81:a6:0f:cf:07: a0:8e:d0:fc:4b:03:11:99:d1:77:f5:86:b0:b8:12: 28:53:71:5a:dc:15:e3:71:d7:b4:ba:cb:65:06:dd: a0:9f:e4:e2:83:b9:3d:8a:67:4b:bc:37:8c:96:f4: c2:4c:04:a4:62:09:a7:cc:e4:9e:dc:d2:1f:80:04: 6f:fc:47:be:b9:21:4b:0c:6f:7f:69:e4:12:36:0f: 6b:05:04:06:42:83:79:2a:31:0d:9e:53:f2:e2:71: a3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:78:8D:A7:19:CB:E8:5E:90:DD:2D:7C:83:2D:F6:4F:4A:78:AA:7A X509v3 Authority Key Identifier: keyid:33:B6:5A:8B:AE:BA:4F:F6:21:49:2E:BE:E6:FC:1E:88:AD:B2:1B:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M7Zai666T_YhSS6-5vweiK2yGwM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/aabc6c-0456-4935-a469-d547185512de/1/M7Zai666T_YhSS6-5vweiK2yGwM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:d2:f6:c1:fd:d8:00:0e:be:44:11:7d:38:3b:d6:74:51:dc: 54:4e:ed:12:7b:c9:12:14:ae:a7:be:84:4b:f9:b6:9b:7b:c5: 0a:02:86:f9:1f:ef:05:28:a5:f3:96:99:1d:5b:9c:67:8c:f2: 28:27:0b:6a:83:29:46:d3:45:29:07:15:43:c6:4e:c6:2e:f1: ed:8c:5e:bf:16:33:5e:d6:f8:eb:37:e8:4d:7e:e8:68:62:96: 06:59:1f:58:0b:34:d8:70:ff:f2:f2:ee:b9:8a:79:37:4e:f7: 60:25:70:5d:a2:93:6a:55:4e:4b:64:06:f1:0d:c1:b8:33:5f: 84:7c:97:2f:b2:b9:92:2e:15:be:3d:2f:dd:3e:fe:1c:c4:ec: 9c:bb:81:e7:54:a1:79:c4:0d:34:4e:e2:a6:16:1c:15:1b:60: 9d:ed:54:d4:9d:71:29:a2:1b:f2:22:2c:d4:84:f3:11:ae:69: 5c:d3:44:0b:d4:d2:4d:2e:f4:3b:44:3b:e5:f7:71:bf:9f:fb: c6:84:f6:16:b2:5e:4c:88:4c:cc:aa:75:cf:08:e4:8c:23:e6: b1:e8:15:d8:6e:0e:46:ca:6b:e8:1a:db:7d:66:a2:c3:26:c8: 4b:4f:81:80:3a:54:02:96:f6:70:85:2c:a8:3e:a3:95:47:c7: 74:ff:f9:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1q/roMXjuGDaJoja6ZBDCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzYjY1YThiYWViYTRmZjYyMTQ5MmViZWU2ZmMxZTg4YWRi MjFiMDMwHhcNMjYwMTI1MTUwMDQ3WhcNMjYwMTI2MTUwMDQ3WjAzMTEwLwYDVQQD Eyg4MDc4OGRhNzE5Y2JlODVlOTBkZDJkN2M4MzJkZjY0ZjRhNzhhYTdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKyOEkTlUOQxrMDueykH3XWModRb JdnTsxjAB3Rv+c702EMIUjqtWMDwlCBf0SOifgTtHMFUl8wpYFYfDg/tbQuHNDU3 Tsg/sa/Emy87MH7dvEOZx1zRcpGi0c5PtnYjoQ7dpoiLWCwVB8IR6c1zbfa0gQcn dPEnT0zMgQQ0aBsUBMiqn9yKqVJXGuT0PHf3rE3ro0IneyOIO1Tq1IwxgaYPzweg jtD8SwMRmdF39YawuBIoU3Fa3BXjcde0ustlBt2gn+Tig7k9imdLvDeMlvTCTASk YgmnzOSe3NIfgARv/Ee+uSFLDG9/aeQSNg9rBQQGQoN5KjENnlPy4nGjZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIB4jacZy+hekN0tfIMt9k9KeKp6MB8GA1UdIwQY MBaAFDO2Wouuuk/2IUkuvub8HoitshsDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9hYWJjNmMtMDQ1Ni00OTM1LWE0Njkt ZDU0NzE4NTUxMmRlLzEvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9hYWJjNmMtMDQ1Ni00OTM1LWE0NjktZDU0NzE4NTUxMmRl LzEvTTdaYWk2NjZUX1loU1M2LTV2d2VpSzJ5R3dNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa9L2wf3Y AA6+RBF9ODvWdFHcVE7tEnvJEhSup76ES/m2m3vFCgKG+R/vBSil85aZHVucZ4zy KCcLaoMpRtNFKQcVQ8ZOxi7x7YxevxYzXtb46zfoTX7oaGKWBlkfWAs02HD/8vLu uYp5N073YCVwXaKTalVOS2QG8Q3BuDNfhHyXL7K5ki4Vvj0v3T7+HMTsnLuB51Sh ecQNNE7iphYcFRtgne1U1J1xKaIb8iIs1ITzEa5pXNNEC9TSTS70O0Q75fdxv5/7 xoT2FrJeTIhMzKp1zwjkjCPmsegV2G4ORspr6BrbfWaiwybIS0+BgDpUApb2cIUs qD6jlUfHdP/5tQ== -----END CERTIFICATE-----Generated at Sun Jan 25 19:24:32 2026 by rpki-client