This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft File: z1PAwqcKnguguGDSKQTbsOkrkgs.mft (raw, json) Hash identifier: OfYZszXF6WsTd6yiNxzwfuGq2RefE51NPH7jRo0TPeI= Subject key identifier: B8:9C:79:EF:1A:23:1E:B0:6A:54:45:CF:C8:2C:B8:B8:B3:68:62:8E Authority key identifier: CF:53:C0:C2:A7:0A:9E:0B:A0:B8:60:D2:29:04:DB:B0:E9:2B:92:0B Certificate issuer: /CN=cf53c0c2a70a9e0ba0b860d22904dbb0e92b920b Certificate serial: 019BFBADD4D303FF8C9D91BC2B7EF1814B4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft Manifest number: 075A Signing time: Mon 26 Jan 2026 19:00:31 +0000 Manifest this update: Mon 26 Jan 2026 19:00:31 +0000 Manifest next update: Tue 27 Jan 2026 19:00:31 +0000 Files and hashes: 1: _9WbrV_lxRO9A6dqxPijQXNV-ko.roa (hash: fEUSm2PwMNP9PK5a1HcBHHCSAECUxHIXVKYYdmBQe64=) 2: z1PAwqcKnguguGDSKQTbsOkrkgs.crl (hash: 31GtRAnAKO2Hbgp07GzZxPiLEHZ8H/jaMBpoAFyX1xY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 19:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:ad:d4:d3:03:ff:8c:9d:91:bc:2b:7e:f1:81:4b:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf53c0c2a70a9e0ba0b860d22904dbb0e92b920b Validity Not Before: Jan 26 19:00:31 2026 GMT Not After : Jan 27 19:00:31 2026 GMT Subject: CN=b89c79ef1a231eb06a5445cfc82cb8b8b368628e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:39:92:97:5e:26:93:f0:af:d7:fc:56:52:a5: ba:7e:69:04:d3:2a:22:da:4e:50:e8:3b:9e:9e:e7: f1:0f:48:c4:47:65:64:c9:9a:9c:51:43:ea:a0:b2: a7:dc:94:0f:86:49:fd:c8:77:22:70:82:31:36:8e: 93:f0:2b:36:18:b7:79:98:59:11:8b:2c:f8:13:89: 0b:f3:73:0c:28:b4:c0:a8:e7:dc:b4:7f:09:63:a8: f1:f2:2f:0f:dd:22:19:a3:25:e9:85:24:75:92:60: e2:6f:94:e6:dc:25:36:6a:10:d3:a3:60:8e:83:f3: 46:d7:ab:f3:9c:bb:19:1f:d3:21:28:27:44:88:a5: 25:2d:bf:6d:90:29:9b:e2:66:50:42:31:2c:13:c3: fc:9d:bd:4e:d2:20:7b:ac:a3:69:d8:ea:be:a1:e2: 56:53:ea:14:e3:d2:c6:6c:b0:f0:9e:8d:5c:dc:88: 31:f0:45:03:86:05:b5:06:fb:21:9c:f5:dc:b1:2a: 30:47:42:66:ea:38:59:59:16:3d:66:b2:64:65:c8: 42:0f:3a:69:07:78:e1:52:62:68:87:47:54:0a:81: 5d:68:af:39:9e:7b:69:cf:bd:4f:df:fd:c6:6d:1a: 9a:84:51:c1:2d:2a:32:0e:5b:22:b4:ed:8d:71:10: 04:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9C:79:EF:1A:23:1E:B0:6A:54:45:CF:C8:2C:B8:B8:B3:68:62:8E X509v3 Authority Key Identifier: keyid:CF:53:C0:C2:A7:0A:9E:0B:A0:B8:60:D2:29:04:DB:B0:E9:2B:92:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z1PAwqcKnguguGDSKQTbsOkrkgs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/bda7cc-645c-4821-ad22-3e44fcac3bc5/1/z1PAwqcKnguguGDSKQTbsOkrkgs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:82:cb:d0:1e:a0:f2:12:33:e3:17:7a:65:40:ef:d0:a8:02: 61:d2:ef:21:98:78:c7:3a:bd:18:c8:2a:3f:f9:fc:f9:26:b8: 5a:28:7c:fd:08:57:89:b9:e9:8d:a9:34:ae:94:eb:24:89:a3: 09:24:19:96:99:ef:ce:4a:e3:1d:86:d7:d6:8c:31:5d:34:e2: 4e:25:51:ee:11:e4:45:eb:e7:2a:5c:87:9a:85:10:db:66:4c: 81:81:34:95:fa:1e:ae:a6:4e:bb:06:01:85:af:a5:d8:95:08: 0e:93:6e:fd:43:5d:79:b7:b8:6f:75:a3:9f:9f:f6:bb:06:a7: 81:06:cf:68:f3:3d:58:07:cd:69:47:3d:9b:c1:8a:5a:f1:1c: fa:e2:ff:53:f5:c4:53:6d:a0:01:7b:37:77:48:b1:52:71:01: 64:a1:04:d1:8b:7a:8a:2d:53:6b:80:fb:ad:e7:df:3d:58:b5: 7d:e5:5f:01:c6:46:2a:e8:20:85:b4:3f:41:e5:25:e4:32:ab: d5:24:37:43:40:81:ed:4c:50:23:74:40:cf:e2:ab:0f:2c:cb: d4:87:fe:8b:6d:1a:d0:d1:a0:32:59:bf:7a:65:a4:9e:77:ab: 8a:3c:f2:39:9e:1a:c7:58:f6:a4:9a:1c:b1:ec:38:3c:81:bf: 30:63:5b:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7rdTTA/+MnZG8K37xgUtLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmNTNjMGMyYTcwYTllMGJhMGI4NjBkMjI5MDRkYmIwZTky YjkyMGIwHhcNMjYwMTI2MTkwMDMxWhcNMjYwMTI3MTkwMDMxWjAzMTEwLwYDVQQD EyhiODljNzllZjFhMjMxZWIwNmE1NDQ1Y2ZjODJjYjhiOGIzNjg2MjhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzmSl14mk/Cv1/xWUqW6fmkE0yoi 2k5Q6DuenufxD0jER2VkyZqcUUPqoLKn3JQPhkn9yHcicIIxNo6T8Cs2GLd5mFkR iyz4E4kL83MMKLTAqOfctH8JY6jx8i8P3SIZoyXphSR1kmDib5Tm3CU2ahDTo2CO g/NG16vznLsZH9MhKCdEiKUlLb9tkCmb4mZQQjEsE8P8nb1O0iB7rKNp2Oq+oeJW U+oU49LGbLDwno1c3Igx8EUDhgW1BvshnPXcsSowR0Jm6jhZWRY9ZrJkZchCDzpp B3jhUmJoh0dUCoFdaK85nntpz71P3/3GbRqahFHBLSoyDlsitO2NcRAEzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLicee8aIx6walRFz8gsuLizaGKOMB8GA1UdIwQY MBaAFM9TwMKnCp4LoLhg0ikE27DpK5ILMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejFQQXdxY0tuZ3VndUdEU0tRVGJzT2tya2dzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9iZGE3Y2MtNjQ1Yy00ODIxLWFkMjIt M2U0NGZjYWMzYmM1LzEvejFQQXdxY0tuZ3VndUdEU0tRVGJzT2tya2dzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9iZGE3Y2MtNjQ1Yy00ODIxLWFkMjItM2U0NGZjYWMzYmM1 LzEvejFQQXdxY0tuZ3VndUdEU0tRVGJzT2tya2dzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqILL0B6g 8hIz4xd6ZUDv0KgCYdLvIZh4xzq9GMgqP/n8+Sa4Wih8/QhXibnpjak0rpTrJImj CSQZlpnvzkrjHYbX1owxXTTiTiVR7hHkRevnKlyHmoUQ22ZMgYE0lfoerqZOuwYB ha+l2JUIDpNu/UNdebe4b3Wjn5/2uwangQbPaPM9WAfNaUc9m8GKWvEc+uL/U/XE U22gAXs3d0ixUnEBZKEE0Yt6ii1Ta4D7reffPVi1feVfAcZGKugghbQ/QeUl5DKr 1SQ3Q0CB7UxQI3RAz+KrDyzL1If+i20a0NGgMlm/emWknnerijzyOZ4ax1j2pJoc sew4PIG/MGNbGw== -----END CERTIFICATE-----Generated at Tue Jan 27 05:37:35 2026 by rpki-client