This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json) Hash identifier: 0OEWrs0N6VVZjozPYtHhYMjjFRDSklm1Sn6hpmq7NCM= Subject key identifier: DC:68:0C:6F:A1:04:FA:BB:2F:38:0D:D2:BF:2A:51:5A:8A:8E:54:A5 Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00 Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000 Certificate serial: 019BF72D185FBC7DF31FFC2F0FCAE4A45DC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft Manifest number: 17FA Signing time: Sun 25 Jan 2026 22:01:26 +0000 Manifest this update: Sun 25 Jan 2026 22:01:26 +0000 Manifest next update: Mon 26 Jan 2026 22:01:26 +0000 Files and hashes: 1: 1-zEgOYWTHaiqMcDqGEot8D9hfIE.roa (hash: jVaMeN32gu4WLb8RXEU7QtT8NJ8As10+YaSSTQDJyMM=) 2: 77UuERyh3Z3AUcULCIiJEdc-fQo.roa (hash: DnHBthnf/STbIAi1O3tZFh2P5fMOYtzdif9FPjsRkXU=) 3: I74vLo5CklRsbzCPNYnKrvIvLj4.roa (hash: ylSWG2wfgpUMhcZpBHxBahFVE1pyuX6ebVuzOtGSKVo=) 4: OA8Bk3tPUiZSmiAzbm0eBXa4nuE.roa (hash: oWNPNPjgcKmmhmYQ0/KR/N+7+UQanOVovcIMTSyV2uo=) 5: hYxTxK4AHKTY1TwSA43oGaIbwvI.roa (hash: pXMygWt3Q3zIvm4RuMnURnfNgvmTHNGm+Wsjn0P2p18=) 6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: TKocvvvXF5IeQxDtWcay5ata06SZGHp99eDjINJxGVE=) 7: nS-qR-87gGJ6pBf2l7_HCJOIeHM.roa (hash: uHfPOVPyEDve9s1ba9V4RroyQ1/pD8S/mdaAMdEB9is=) 8: pxTDDl8HD6hZo5qJKIkeKUT3PHY.roa (hash: FICr2xp4vd+7n3rWeWvKoKoWXhNvU50pS0gZxwPllVU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:18:5f:bc:7d:f3:1f:fc:2f:0f:ca:e4:a4:5d:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000 Validity Not Before: Jan 25 22:01:26 2026 GMT Not After : Jan 26 22:01:26 2026 GMT Subject: CN=dc680c6fa104fabb2f380dd2bf2a515a8a8e54a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0a:58:d1:9e:50:b1:0c:65:bf:f2:cd:c9:17: de:94:7f:68:40:20:02:f7:c8:ea:95:83:26:25:d7: ba:c4:e9:9b:5d:a4:6f:1b:67:45:4a:f5:79:8f:9b: 07:a6:97:2f:a1:cc:e7:1b:95:32:8d:dc:92:5d:d1: ab:43:d3:1b:99:60:00:17:00:24:0d:81:92:69:93: 79:19:93:19:b0:eb:1b:bd:0e:d5:5d:45:09:67:ea: 93:cc:4e:17:ab:c2:3a:fa:7b:e2:e5:2f:5f:96:cc: 81:f0:d7:8b:91:78:9f:5f:8b:d0:86:53:9b:c6:45: eb:c4:6e:46:96:13:1b:f7:0b:01:5c:66:ee:73:16: 2b:01:48:28:b1:3a:0e:2e:3d:8d:70:e0:37:a8:b7: 58:60:ab:d8:e9:45:58:41:00:6e:7a:b1:1c:21:85: 4f:4b:a4:2d:97:46:be:ad:bf:db:60:0c:0c:9d:68: e4:01:a9:8e:0e:bf:f0:bb:30:88:0b:22:17:57:c1: 1b:9b:d1:f6:75:4b:84:5c:f5:4a:ac:8f:f2:01:b4: c5:9e:6d:73:8f:20:89:24:af:98:fb:fc:23:8b:49: 11:e7:53:69:28:34:ce:25:00:a0:b4:aa:07:30:16: dc:2a:02:38:96:98:c4:3d:2e:ca:de:59:fc:71:46: a5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:68:0C:6F:A1:04:FA:BB:2F:38:0D:D2:BF:2A:51:5A:8A:8E:54:A5 X509v3 Authority Key Identifier: keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:4a:32:58:96:a8:e4:d9:4a:2e:40:72:23:3b:bb:7d:a0:13: da:13:29:8c:5f:f4:70:1c:eb:4f:00:fc:92:72:34:6c:5a:ca: 3f:dd:31:86:5f:af:e4:0d:56:eb:ec:5f:28:72:a3:b7:5a:50: 64:c6:7b:a2:35:eb:80:dc:79:9f:a2:38:6e:42:97:05:41:1b: bb:77:5b:9f:05:e5:ef:79:dd:5f:6b:0e:10:9a:77:e7:44:e9: c7:15:9b:fb:76:d8:ac:ea:ba:36:33:02:95:eb:0b:73:62:01: e3:cd:f7:44:9e:ba:2e:c2:2e:f6:58:31:3c:81:4e:0f:10:74: e7:10:49:ec:2c:73:02:72:10:93:18:ae:67:69:7b:e6:ca:a2: 1b:3d:50:8b:cf:50:da:4e:21:4a:51:65:d9:9d:81:92:e8:52: b3:84:ad:f3:4d:fa:3e:da:52:6a:fd:92:cc:75:98:d2:34:df: 80:d4:bc:39:b8:88:d9:74:23:48:53:3a:85:fc:89:d5:75:10: ea:bb:21:5c:c2:a9:7a:ab:c1:12:e2:6f:37:5e:5f:26:c3:a1: 64:cb:78:a8:c9:4e:8e:b1:b1:c9:c3:7b:0a:4d:3d:62:18:d2: 57:cd:12:24:d9:e4:ca:eb:30:ae:1b:55:0d:0b:22:cb:69:d1: 84:95:8f:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LRhfvH3zH/wvD8rkpF3DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MGExMGEyNTY3MjhmMTFhNGJiYWFkYzMyMDRiN2YwYTM1 YTUwMDAwHhcNMjYwMTI1MjIwMTI2WhcNMjYwMTI2MjIwMTI2WjAzMTEwLwYDVQQD EyhkYzY4MGM2ZmExMDRmYWJiMmYzODBkZDJiZjJhNTE1YThhOGU1NGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1wpY0Z5QsQxlv/LNyRfelH9oQCAC 98jqlYMmJde6xOmbXaRvG2dFSvV5j5sHppcvocznG5UyjdySXdGrQ9MbmWAAFwAk DYGSaZN5GZMZsOsbvQ7VXUUJZ+qTzE4Xq8I6+nvi5S9flsyB8NeLkXifX4vQhlOb xkXrxG5GlhMb9wsBXGbucxYrAUgosToOLj2NcOA3qLdYYKvY6UVYQQBuerEcIYVP S6Qtl0a+rb/bYAwMnWjkAamODr/wuzCICyIXV8Ebm9H2dUuEXPVKrI/yAbTFnm1z jyCJJK+Y+/wji0kR51NpKDTOJQCgtKoHMBbcKgI4lpjEPS7K3ln8cUalEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNxoDG+hBPq7LzgN0r8qUVqKjlSlMB8GA1UdIwQY MBaAFJQKEKJWco8RpLuq3DIEt/CjWlAAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYt ZGNlNmQ2OTA5MjQ3LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYtZGNlNmQ2OTA5MjQ3 LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkUoyWJao 5NlKLkByIzu7faAT2hMpjF/0cBzrTwD8knI0bFrKP90xhl+v5A1W6+xfKHKjt1pQ ZMZ7ojXrgNx5n6I4bkKXBUEbu3dbnwXl73ndX2sOEJp350TpxxWb+3bYrOq6NjMC lesLc2IB4833RJ66LsIu9lgxPIFODxB05xBJ7CxzAnIQkxiuZ2l75sqiGz1Qi89Q 2k4hSlFl2Z2BkuhSs4St8036PtpSav2SzHWY0jTfgNS8ObiI2XQjSFM6hfyJ1XUQ 6rshXMKpeqvBEuJvN15fJsOhZMt4qMlOjrGxycN7Ck09YhjSV80SJNnkyuswrhtV DQsiy2nRhJWPkA== -----END CERTIFICATE-----Generated at Mon Jan 26 02:28:23 2026 by rpki-client