This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json) Hash identifier: m0iqGS3mds3/eFQXBZrrIg6Hl4o6QE0Y8fvs3i6oCVs= Subject key identifier: 37:DD:8F:15:E9:2B:AE:21:18:C3:23:5C:21:5A:18:30:1B:A1:7F:29 Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00 Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000 Certificate serial: 019BF53E2480972C4C1141F4D5C2E3C303C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft Manifest number: 17F9 Signing time: Sun 25 Jan 2026 13:00:49 +0000 Manifest this update: Sun 25 Jan 2026 13:00:49 +0000 Manifest next update: Mon 26 Jan 2026 13:00:49 +0000 Files and hashes: 1: 1-zEgOYWTHaiqMcDqGEot8D9hfIE.roa (hash: jVaMeN32gu4WLb8RXEU7QtT8NJ8As10+YaSSTQDJyMM=) 2: 77UuERyh3Z3AUcULCIiJEdc-fQo.roa (hash: DnHBthnf/STbIAi1O3tZFh2P5fMOYtzdif9FPjsRkXU=) 3: I74vLo5CklRsbzCPNYnKrvIvLj4.roa (hash: ylSWG2wfgpUMhcZpBHxBahFVE1pyuX6ebVuzOtGSKVo=) 4: OA8Bk3tPUiZSmiAzbm0eBXa4nuE.roa (hash: oWNPNPjgcKmmhmYQ0/KR/N+7+UQanOVovcIMTSyV2uo=) 5: hYxTxK4AHKTY1TwSA43oGaIbwvI.roa (hash: pXMygWt3Q3zIvm4RuMnURnfNgvmTHNGm+Wsjn0P2p18=) 6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: ypFu2CKbW43Zkx83+ExO4cEkhCThrVyTDdaLamHxv4k=) 7: nS-qR-87gGJ6pBf2l7_HCJOIeHM.roa (hash: uHfPOVPyEDve9s1ba9V4RroyQ1/pD8S/mdaAMdEB9is=) 8: pxTDDl8HD6hZo5qJKIkeKUT3PHY.roa (hash: FICr2xp4vd+7n3rWeWvKoKoWXhNvU50pS0gZxwPllVU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:24:80:97:2c:4c:11:41:f4:d5:c2:e3:c3:03:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000 Validity Not Before: Jan 25 13:00:49 2026 GMT Not After : Jan 26 13:00:49 2026 GMT Subject: CN=37dd8f15e92bae2118c3235c215a18301ba17f29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ea:11:3f:b2:44:ed:a7:5f:f3:49:db:3c:98: 19:f5:c9:a5:22:d7:40:ff:33:bc:e3:71:d2:ab:9c: 83:13:78:62:c3:20:33:55:c1:d9:52:7a:ff:22:1f: 3a:bc:96:92:79:93:4a:05:d7:cc:38:33:19:a5:b2: 60:46:d6:7c:04:2b:b9:3c:7b:97:d7:99:c1:84:d7: 61:ca:cc:e4:1c:c5:91:e9:1e:51:49:bc:3e:d2:b5: 1c:c9:23:8d:77:00:e0:c3:ea:13:4d:5c:d4:22:6d: b5:51:53:45:dd:14:99:b3:d9:9a:84:8d:dc:c5:e0: 1c:c8:54:9f:60:1f:10:4e:71:a9:9d:bd:29:3b:a4: b9:09:28:1d:c9:6e:37:58:24:30:39:00:2f:46:6e: 4f:29:01:1b:7e:a7:6f:f0:47:8c:1f:47:fa:63:4b: c8:9a:02:0d:77:9d:dc:5d:b4:b7:f3:6b:b0:e1:f6: 0e:02:f3:7c:7a:6e:ea:e7:1e:90:3f:60:4b:56:e3: 86:3e:0b:79:95:64:af:bf:5a:9f:fd:9a:be:03:14: 69:70:39:44:56:37:77:4a:db:95:7b:65:93:ee:9a: 42:8b:87:c7:91:e3:d1:c9:c8:30:83:cd:d3:90:bf: 0c:46:b9:ce:17:35:ee:72:8c:f1:1c:e9:d0:09:cb: 92:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:DD:8F:15:E9:2B:AE:21:18:C3:23:5C:21:5A:18:30:1B:A1:7F:29 X509v3 Authority Key Identifier: keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:82:33:6d:4f:fc:64:e8:89:91:15:a6:22:c0:98:f6:f3:9b: 91:0c:c6:87:1a:5a:3c:89:e1:9f:f5:4a:2e:ba:af:41:61:52: 94:14:9f:4b:82:c3:04:23:33:1e:d6:66:33:dd:a5:7a:c5:ff: fd:c3:2b:1e:84:c7:d1:91:38:55:e3:d0:6c:5d:d0:8c:6f:2f: 58:1b:45:12:83:f7:06:bf:65:4d:3e:d5:32:b3:6a:8a:de:c8: c2:ab:82:a0:21:e9:53:e4:42:8e:1f:5d:97:bf:50:51:7e:6f: cb:47:3b:94:df:20:69:cc:c6:24:91:8a:c2:37:21:b6:01:6a: 6a:95:98:66:94:27:80:b8:86:f6:01:95:78:de:7f:db:48:74: f2:1c:84:66:cb:b5:cd:8c:34:4c:79:78:cf:93:0c:9e:75:05: c5:fa:b4:65:b1:cc:4a:99:4f:1f:88:d1:f9:e6:59:19:d7:29: 62:0d:31:c3:c8:b3:91:b2:ee:f3:37:d5:88:0b:50:b9:98:65: c7:5b:6d:aa:66:e5:fa:4d:f9:7c:71:1c:39:87:42:98:7d:20: a2:53:df:54:ef:19:9f:15:c5:81:c8:a9:fd:85:9e:69:4a:56: 42:17:5b:03:c7:77:2f:c8:5b:52:f3:ea:da:9b:af:4b:2d:c2: 62:df:5b:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PiSAlyxMEUH01cLjwwPDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MGExMGEyNTY3MjhmMTFhNGJiYWFkYzMyMDRiN2YwYTM1 YTUwMDAwHhcNMjYwMTI1MTMwMDQ5WhcNMjYwMTI2MTMwMDQ5WjAzMTEwLwYDVQQD EygzN2RkOGYxNWU5MmJhZTIxMThjMzIzNWMyMTVhMTgzMDFiYTE3ZjI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouoRP7JE7adf80nbPJgZ9cmlItdA /zO843HSq5yDE3hiwyAzVcHZUnr/Ih86vJaSeZNKBdfMODMZpbJgRtZ8BCu5PHuX 15nBhNdhyszkHMWR6R5RSbw+0rUcySONdwDgw+oTTVzUIm21UVNF3RSZs9mahI3c xeAcyFSfYB8QTnGpnb0pO6S5CSgdyW43WCQwOQAvRm5PKQEbfqdv8EeMH0f6Y0vI mgINd53cXbS382uw4fYOAvN8em7q5x6QP2BLVuOGPgt5lWSvv1qf/Zq+AxRpcDlE Vjd3StuVe2WT7ppCi4fHkePRycgwg83TkL8MRrnOFzXucozxHOnQCcuSBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDfdjxXpK64hGMMjXCFaGDAboX8pMB8GA1UdIwQY MBaAFJQKEKJWco8RpLuq3DIEt/CjWlAAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYt ZGNlNmQ2OTA5MjQ3LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYtZGNlNmQ2OTA5MjQ3 LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtIIzbU/8 ZOiJkRWmIsCY9vObkQzGhxpaPInhn/VKLrqvQWFSlBSfS4LDBCMzHtZmM92lesX/ /cMrHoTH0ZE4VePQbF3QjG8vWBtFEoP3Br9lTT7VMrNqit7IwquCoCHpU+RCjh9d l79QUX5vy0c7lN8gaczGJJGKwjchtgFqapWYZpQngLiG9gGVeN5/20h08hyEZsu1 zYw0THl4z5MMnnUFxfq0ZbHMSplPH4jR+eZZGdcpYg0xw8izkbLu8zfViAtQuZhl x1ttqmbl+k35fHEcOYdCmH0golPfVO8ZnxXFgcip/YWeaUpWQhdbA8d3L8hbUvPq 2puvSy3CYt9bUQ== -----END CERTIFICATE-----Generated at Sun Jan 25 18:15:14 2026 by rpki-client