This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft File: aNQlzHsbeICodfdr7agP4xCTGe0.mft (raw, json) Hash identifier: /n/g5RHPN8MILwOBEo29GC7k+bsqBbcYRo8XxPz1oJU= Subject key identifier: 8D:BF:22:77:13:DB:22:30:C2:C2:80:4D:CC:AA:9F:A0:DE:74:FD:5E Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed Certificate serial: 019BF574D776143E43B894ABE378BD5F036D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft Manifest number: 17E9 Signing time: Sun 25 Jan 2026 14:00:33 +0000 Manifest this update: Sun 25 Jan 2026 14:00:33 +0000 Manifest next update: Mon 26 Jan 2026 14:00:33 +0000 Files and hashes: 1: 9V6-AqA_4zEech3d9e-zrslLlYg.roa (hash: 2ZWDpKA0ocbpi4aN6axitNn05JRLFs0cLkW8mMIC92U=) 2: aNQlzHsbeICodfdr7agP4xCTGe0.crl (hash: hvvZGH5Kpm5LfdbJEaHruZ0vVOsih75kJgN0ITPaIe0=) 3: s_Oj6JBKTNB4x3fb0XdQ9zvwP1o.roa (hash: 0jQdDlhdIZaz2WGN97YHIXqbtv/kRGloASKQBe2397Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:74:d7:76:14:3e:43:b8:94:ab:e3:78:bd:5f:03:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed Validity Not Before: Jan 25 14:00:33 2026 GMT Not After : Jan 26 14:00:33 2026 GMT Subject: CN=8dbf227713db2230c2c2804dccaa9fa0de74fd5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c4:60:43:a3:c2:58:a3:b7:15:f9:ee:1c:e4: ab:0a:e7:e6:ab:26:f0:44:b5:06:fb:6a:e8:3a:81: bb:41:b6:d4:e4:b6:7e:13:ef:7c:af:37:ad:39:2f: 2e:d4:dc:8a:43:9a:f1:78:d1:de:1f:27:b7:26:3a: 1d:ab:18:9a:b1:cf:53:f6:be:60:a8:32:38:4b:ac: 2f:c2:a8:d0:9e:20:03:39:55:dd:18:70:7a:73:13: 96:98:7a:da:a7:32:0f:f1:78:bd:f9:2a:89:ce:6f: 7d:1b:3f:76:08:24:66:55:69:19:42:e0:70:d7:92: d7:66:18:c9:ba:74:7f:05:d5:f2:4f:4a:c4:c0:f5: 8d:27:bb:a1:ec:25:08:6f:bc:8c:76:04:9a:0d:97: 12:9f:49:b0:31:cf:51:60:0e:fe:38:63:2d:85:17: 74:cc:0c:b6:a7:1f:f4:51:6d:d7:29:61:6e:05:19: f6:06:71:72:30:dd:11:80:fa:dc:84:8f:f7:61:94: 58:83:ae:83:f1:7a:a0:80:a4:76:71:df:ad:1f:1b: 71:00:47:8a:20:9b:a8:98:2d:1b:33:07:fb:68:7b: 42:e5:39:4b:8a:46:90:6d:c8:96:03:09:1a:17:df: 3f:41:0d:95:6f:23:7a:3b:b0:ba:8b:a1:eb:9b:2f: 79:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:BF:22:77:13:DB:22:30:C2:C2:80:4D:CC:AA:9F:A0:DE:74:FD:5E X509v3 Authority Key Identifier: keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:b8:37:5f:d2:57:99:3c:e5:70:25:60:ca:b3:03:9b:75:2f: 58:a9:69:fe:0a:4f:6f:cd:a7:ba:23:f7:2e:6c:76:21:e0:c0: 0f:97:30:b8:2b:8e:70:d3:9e:5b:f0:ed:54:6a:55:22:eb:23: 70:2e:a5:74:76:5e:be:9e:60:5a:96:c5:01:79:11:08:f3:d5: e9:53:3c:64:39:78:04:3d:ce:1d:78:bb:07:ec:83:82:34:c4: bd:d6:cc:1f:ef:2f:1b:cd:08:c5:54:cd:62:fc:13:98:e7:78: 08:34:70:e9:2a:57:84:cd:ca:b7:37:d1:9b:d1:e9:08:01:e8: 9b:10:87:e5:57:58:61:4e:e5:f7:d0:0f:b4:fb:5e:35:9e:03: c3:37:21:fe:f0:54:33:64:4c:6e:14:8e:88:fb:96:9e:d1:95: de:b2:11:7f:27:ba:cb:d9:24:51:2b:03:d0:c1:71:e9:d7:c0: c6:aa:d6:ed:1c:40:f7:2a:72:42:0e:5e:6f:0d:f3:95:a3:f2: f2:60:05:81:d9:3f:dd:3e:de:1b:db:b2:56:2a:aa:8a:2a:30: 23:4b:19:6f:49:71:1e:5b:41:9c:f3:c9:02:67:1c:f6:37:eb: 9b:cd:44:3c:02:f0:55:ba:b1:64:11:01:45:81:9b:81:5f:0e: 92:9f:78:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1dNd2FD5DuJSr43i9XwNtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZDQyNWNjN2IxYjc4ODBhODc1Zjc2YmVkYTgwZmUzMTA5 MzE5ZWQwHhcNMjYwMTI1MTQwMDMzWhcNMjYwMTI2MTQwMDMzWjAzMTEwLwYDVQQD Eyg4ZGJmMjI3NzEzZGIyMjMwYzJjMjgwNGRjY2FhOWZhMGRlNzRmZDVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMRgQ6PCWKO3FfnuHOSrCufmqybw RLUG+2roOoG7QbbU5LZ+E+98rzetOS8u1NyKQ5rxeNHeHye3Jjodqxiasc9T9r5g qDI4S6wvwqjQniADOVXdGHB6cxOWmHrapzIP8Xi9+SqJzm99Gz92CCRmVWkZQuBw 15LXZhjJunR/BdXyT0rEwPWNJ7uh7CUIb7yMdgSaDZcSn0mwMc9RYA7+OGMthRd0 zAy2px/0UW3XKWFuBRn2BnFyMN0RgPrchI/3YZRYg66D8XqggKR2cd+tHxtxAEeK IJuomC0bMwf7aHtC5TlLikaQbciWAwkaF98/QQ2VbyN6O7C6i6Hrmy95BwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI2/IncT2yIwwsKATcyqn6DedP1eMB8GA1UdIwQY MBaAFGjUJcx7G3iAqHX3a+2oD+MQkxntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2Et NWM0NWI2MThmOTkwLzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2EtNWM0NWI2MThmOTkw LzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARLg3X9JX mTzlcCVgyrMDm3UvWKlp/gpPb82nuiP3Lmx2IeDAD5cwuCuOcNOeW/DtVGpVIusj cC6ldHZevp5gWpbFAXkRCPPV6VM8ZDl4BD3OHXi7B+yDgjTEvdbMH+8vG80IxVTN YvwTmOd4CDRw6SpXhM3KtzfRm9HpCAHomxCH5VdYYU7l99APtPteNZ4Dwzch/vBU M2RMbhSOiPuWntGV3rIRfye6y9kkUSsD0MFx6dfAxqrW7RxA9ypyQg5ebw3zlaPy 8mAFgdk/3T7eG9uyViqqiiowI0sZb0lxHltBnPPJAmcc9jfrm81EPALwVbqxZBEB RYGbgV8Okp94oA== -----END CERTIFICATE-----Generated at Mon Jan 26 00:18:14 2026 by rpki-client