This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: xxklHNLsaGFo5Re6W76oqWXr29f87YTCwm8snFkkL64= Subject key identifier: DF:3F:CA:79:78:B2:FF:FE:68:56:F2:64:70:AA:8E:1B:52:AE:2D:18 Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 019BF4995C543E75BBEBB7B23E7FA98DE8DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 15B1 Signing time: Sun 25 Jan 2026 10:00:49 +0000 Manifest this update: Sun 25 Jan 2026 10:00:49 +0000 Manifest next update: Mon 26 Jan 2026 10:00:49 +0000 Files and hashes: 1: 3U7B-AnDLcxVr4hQgcRtH3bY-Mc.roa (hash: 3EM7kaqylIIwfXdPOEw0QjuIVj1MmMgs2rs+igLT96s=) 2: C8g7Pi5B0RKpnrlAYnkGNfdVaNI.roa (hash: wxMFCVvSA3tdy7i3OaSOQ9SIAg2wmBIcYz9jkUGPtlk=) 3: Ine_1lLdl47bEMn6aiw9Axcdsgo.roa (hash: S/r8lpXeW/d857boj4AgP81lqUx6Xba1Zs9uDln2Uuk=) 4: L9nqjZgCKM_h4eShTqHdEr9Np6c.roa (hash: m3EOAebEcr3Ec2NVZh7NKfNA+27GisIbFErRrtFBX6k=) 5: MAC77AGiw2eaAoPXZSbuYQ5o9Cc.roa (hash: ghyy8oG2hGKa4y9DRVajZ2XWsgYoOvFgJh6c1yjrEXg=) 6: NanNAKKpriw1xLHpXZYYWO89_ic.roa (hash: vJoNpzNu5goOWjEeID9l0AJGNtpWeDH6gI91uoAnwIk=) 7: O6JDbaslrGOSZKrdtuCBt6ssF94.roa (hash: 8ty72z4beTGAGlxyLGLA0AACx0Qa5f/MkundTg5sepM=) 8: _d125rYs_YgWJE2199BRmZF843k.roa (hash: m5skVkixBC7cNTKqYmRl5Rw3Fyg0ZkEkKEj4MY2KXTY=) 9: dDB5YY9PZuYzIK0czNYk6awWuOU.roa (hash: B1+NRVwOUhTIMmxV8tnE89O/MNjbHirt4Fghn1v7gaE=) 10: euqS42j1OAh5nOlyn6iGDlUghrI.roa (hash: imMqy2oe/VSAfOYacDS+F5V24AlsU8Ttm5UT/4dybaA=) 11: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: T8LaoL5tXhH+tVe4SLDciEKdGzp0GxVVwg81t7tkpeU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:5c:54:3e:75:bb:eb:b7:b2:3e:7f:a9:8d:e8:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: Jan 25 10:00:49 2026 GMT Not After : Jan 26 10:00:49 2026 GMT Subject: CN=df3fca7978b2fffe6856f26470aa8e1b52ae2d18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:87:44:5a:ee:1c:50:6a:3e:32:1b:ed:62:6f: 2c:fd:33:00:3d:7f:64:94:ba:b7:43:e7:3a:53:2b: 4f:e7:62:ae:e2:2a:86:be:cd:12:a6:87:e4:f9:43: d1:30:33:62:e0:93:b1:dc:43:09:90:0f:a6:27:07: 01:3a:ae:bc:cf:c3:31:27:97:cb:e4:50:8c:f5:99: 76:84:de:21:2a:e0:cd:df:8e:ea:15:2f:21:b9:fd: d3:81:a3:bb:74:20:71:69:61:2b:05:0c:6e:26:8b: 2b:82:52:84:f2:e5:19:64:30:ef:41:8a:f1:47:59: 31:96:b2:f0:b5:6d:d5:83:50:53:a1:00:30:ed:37: 09:70:e4:c9:35:b2:60:a3:0a:c5:7f:d4:2f:7f:9a: 99:b8:6d:85:c1:5f:62:ef:58:d5:27:2b:a1:4e:b8: 8c:ce:e0:9f:3b:86:7e:42:d5:0c:89:9d:c2:ff:07: 64:50:22:57:04:6a:86:70:8d:1d:b9:15:18:01:f2: 6f:1c:ae:00:72:c8:a5:19:4a:95:15:2c:f5:dc:52: df:4c:06:8c:73:97:3b:7c:44:2c:83:80:a0:93:51: 6a:1c:d1:54:78:d0:9f:31:6f:5e:4e:b1:c0:79:f6: 57:d2:bb:5b:a9:fd:01:a4:fc:7a:20:c2:d2:9a:6d: 27:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:3F:CA:79:78:B2:FF:FE:68:56:F2:64:70:AA:8E:1B:52:AE:2D:18 X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:f7:b3:c0:42:27:fe:19:56:07:ce:f7:0a:8a:3d:14:b7:52: 71:a1:e4:9e:18:a5:4e:bd:8f:32:43:27:d7:34:cd:c2:bf:c7: 2f:71:90:d2:f8:eb:3d:71:46:97:31:4c:a0:77:d1:65:17:96: d4:e0:d4:af:11:82:d9:bb:b4:92:b8:fb:c9:a4:ac:f8:3b:a2: 07:74:5b:7b:84:43:4d:33:26:60:1e:c0:28:8b:9f:1a:47:1d: dc:cc:4c:41:b4:8a:69:f4:46:a7:d2:19:1f:24:44:fe:1a:32: 49:8b:3c:d2:93:75:03:8d:8e:91:76:48:db:02:37:5e:55:16: 67:7a:9b:38:61:a8:ef:e6:ff:33:7c:c5:39:1f:3b:e3:e7:8f: a4:ed:7e:50:d3:15:45:46:e5:15:f3:08:55:e2:8c:07:13:e2: 19:d2:14:10:22:6f:a9:2c:de:c5:bc:3c:ef:50:55:fa:94:f9: b1:8a:3a:9c:dc:90:9d:9a:2f:6d:e4:2b:98:d7:b1:74:d4:98: 01:15:ca:2f:e0:49:4c:2f:be:87:0d:ec:cc:8a:3d:82:99:a7: 87:41:f5:5f:22:ad:e3:73:04:09:d5:16:62:75:bc:a9:8e:1e: 8d:54:30:b0:81:be:bf:90:bd:05:07:10:b5:d4:63:04:5c:ca: 15:75:8d:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mVxUPnW767eyPn+pjejcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjYwMTI1MTAwMDQ5WhcNMjYwMTI2MTAwMDQ5WjAzMTEwLwYDVQQD EyhkZjNmY2E3OTc4YjJmZmZlNjg1NmYyNjQ3MGFhOGUxYjUyYWUyZDE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34dEWu4cUGo+MhvtYm8s/TMAPX9k lLq3Q+c6UytP52Ku4iqGvs0Spofk+UPRMDNi4JOx3EMJkA+mJwcBOq68z8MxJ5fL 5FCM9Zl2hN4hKuDN347qFS8huf3TgaO7dCBxaWErBQxuJosrglKE8uUZZDDvQYrx R1kxlrLwtW3Vg1BToQAw7TcJcOTJNbJgowrFf9Qvf5qZuG2FwV9i71jVJyuhTriM zuCfO4Z+QtUMiZ3C/wdkUCJXBGqGcI0duRUYAfJvHK4AcsilGUqVFSz13FLfTAaM c5c7fEQsg4Cgk1FqHNFUeNCfMW9eTrHAefZX0rtbqf0BpPx6IMLSmm0nswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN8/ynl4sv/+aFbyZHCqjhtSri0YMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIPezwEIn /hlWB873Coo9FLdScaHknhilTr2PMkMn1zTNwr/HL3GQ0vjrPXFGlzFMoHfRZReW 1ODUrxGC2bu0krj7yaSs+DuiB3Rbe4RDTTMmYB7AKIufGkcd3MxMQbSKafRGp9IZ HyRE/hoySYs80pN1A42OkXZI2wI3XlUWZ3qbOGGo7+b/M3zFOR874+ePpO1+UNMV RUblFfMIVeKMBxPiGdIUECJvqSzexbw871BV+pT5sYo6nNyQnZovbeQrmNexdNSY ARXKL+BJTC++hw3szIo9gpmnh0H1XyKt43MECdUWYnW8qY4ejVQwsIG+v5C9BQcQ tdRjBFzKFXWN9A== -----END CERTIFICATE-----Generated at Sun Jan 25 16:47:16 2026 by rpki-client