This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft File: UAFR5GSyl5E3bAxXvrQMWE71oc8.mft (raw, json) Hash identifier: TzO8goQ8UBPMdz7sN43Ezg+llETDb/d99kxiiC4GSus= Subject key identifier: F5:49:89:3B:F9:AD:C4:FD:71:AC:FF:87:ED:96:79:C6:24:0D:FA:43 Authority key identifier: 50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF Certificate issuer: /CN=500151e464b29791376c0c57beb40c584ef5a1cf Certificate serial: 019BF6BF58B4B9D0A767F6A6ACBF98262285 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft Manifest number: 110E Signing time: Sun 25 Jan 2026 20:01:33 +0000 Manifest this update: Sun 25 Jan 2026 20:01:33 +0000 Manifest next update: Mon 26 Jan 2026 20:01:33 +0000 Files and hashes: 1: DQXO04aHVF3WA-Uo1KSu2Uv_5Z8.roa (hash: Bz0GwY7uz2/9HGwt667qRq1fWspWzC65aQYWTQYVTX4=) 2: E38S2iuMO9vMOny68uYZj610htc.roa (hash: j5FESm0d3Q8JXR8RXWmvIsv0pwl9dgxNmPqCykFcXso=) 3: UAFR5GSyl5E3bAxXvrQMWE71oc8.crl (hash: WsEHPlUTP6/fZQt0ERvCOfRFF6+kfBpZWXj2KnAYMhc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:bf:58:b4:b9:d0:a7:67:f6:a6:ac:bf:98:26:22:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=500151e464b29791376c0c57beb40c584ef5a1cf Validity Not Before: Jan 25 20:01:33 2026 GMT Not After : Jan 26 20:01:33 2026 GMT Subject: CN=f549893bf9adc4fd71acff87ed9679c6240dfa43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9c:04:ca:11:09:0f:d5:ca:04:86:7f:4e:97: a3:1a:2f:67:27:74:70:0f:d3:f5:22:ae:eb:64:23: 44:8a:a7:6e:65:0b:64:ab:b8:c1:cd:fb:3a:a4:62: 5e:f2:c1:c4:6e:3d:da:72:1f:41:1c:cb:1f:f2:9e: 68:4c:b3:b9:a4:03:14:5b:29:86:47:c3:56:2c:98: fe:f7:9a:59:71:cf:65:28:14:00:54:09:1d:69:24: 3b:96:00:5f:3d:98:55:23:33:b4:49:db:72:51:8c: 45:d3:89:95:2e:ab:b0:c7:ac:1b:c3:d9:70:1e:55: 4b:73:ad:ea:94:fc:7e:a9:45:26:61:db:93:47:cc: 75:c5:da:0a:4d:5b:10:5e:e1:5b:fe:2b:7b:09:ac: e7:1c:f7:01:6a:10:83:bf:99:81:73:83:10:26:1b: 4b:ac:f1:fb:a0:ba:7c:ae:35:76:c1:4e:c1:c1:04: 31:2b:1c:71:e2:a3:22:ce:55:91:44:94:c2:78:a0: 45:31:7c:45:4c:57:1c:d9:df:e1:b9:a8:31:e7:01: 84:af:e7:57:95:64:2d:2c:4d:22:a9:f3:91:c5:0f: b6:b0:89:b1:70:59:12:90:87:29:f9:be:8f:df:8f: db:4b:eb:b1:0f:71:85:70:15:e8:bf:b3:5d:db:08: dd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:49:89:3B:F9:AD:C4:FD:71:AC:FF:87:ED:96:79:C6:24:0D:FA:43 X509v3 Authority Key Identifier: keyid:50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:59:b9:fc:a4:28:d9:25:8d:1e:ce:ad:d9:7f:a0:33:1e:94: c0:5f:db:1e:4d:9e:7b:01:3c:91:40:16:b1:f3:4b:0d:c3:08: 66:03:4c:ea:b5:7e:77:c8:f3:db:82:2c:9e:3b:2f:2e:5c:92: 2f:08:9f:cc:c9:81:05:7a:a7:85:a6:8e:33:b7:32:8a:07:b1: 90:5d:4e:bf:d0:84:f1:d5:34:70:d2:cf:e6:f2:b1:65:5f:3f: b6:93:4c:ce:09:48:b3:19:07:1d:fc:9b:39:63:b3:00:6b:dc: 17:fd:e0:87:13:41:55:27:ec:02:ef:6c:d4:08:cc:92:ed:cd: f9:e9:c5:b4:1d:9e:cc:b1:27:60:0e:c1:73:de:93:86:b0:18: d5:13:9f:6a:e2:7e:36:cd:f9:12:2a:7c:a1:c5:ed:79:a4:fd: 8d:a0:fd:3c:fc:d0:96:b5:32:40:9c:02:06:99:40:3a:ba:f8: 35:90:8f:1d:1e:86:db:f1:01:12:38:02:00:11:92:7b:e1:36: de:e4:04:25:d3:0d:05:21:62:65:d4:e5:f5:a8:c2:9c:6a:cf: f4:1e:a3:58:ee:72:3f:95:1f:45:f9:e7:e8:99:df:db:77:fe: 18:67:3a:99:c8:fa:6f:0d:91:a0:fa:8d:dd:41:d3:82:77:b2: 12:6e:4d:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2v1i0udCnZ/amrL+YJiKFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwMDE1MWU0NjRiMjk3OTEzNzZjMGM1N2JlYjQwYzU4NGVm NWExY2YwHhcNMjYwMTI1MjAwMTMzWhcNMjYwMTI2MjAwMTMzWjAzMTEwLwYDVQQD EyhmNTQ5ODkzYmY5YWRjNGZkNzFhY2ZmODdlZDk2NzljNjI0MGRmYTQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA25wEyhEJD9XKBIZ/TpejGi9nJ3Rw D9P1Iq7rZCNEiqduZQtkq7jBzfs6pGJe8sHEbj3ach9BHMsf8p5oTLO5pAMUWymG R8NWLJj+95pZcc9lKBQAVAkdaSQ7lgBfPZhVIzO0SdtyUYxF04mVLquwx6wbw9lw HlVLc63qlPx+qUUmYduTR8x1xdoKTVsQXuFb/it7CaznHPcBahCDv5mBc4MQJhtL rPH7oLp8rjV2wU7BwQQxKxxx4qMizlWRRJTCeKBFMXxFTFcc2d/huagx5wGEr+dX lWQtLE0iqfORxQ+2sImxcFkSkIcp+b6P34/bS+uxD3GFcBXov7Nd2wjdPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPVJiTv5rcT9caz/h+2WecYkDfpDMB8GA1UdIwQY MBaAFFABUeRkspeRN2wMV760DFhO9aHPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUFGUjVHU3lsNUUzYkF4WHZyUU1XRTcxb2M4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi80YTEyYzItOWJlZC00NWRkLTg2M2Mt MGI5ZmI5N2U1MjlkLzEvVUFGUjVHU3lsNUUzYkF4WHZyUU1XRTcxb2M4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi80YTEyYzItOWJlZC00NWRkLTg2M2MtMGI5ZmI5N2U1Mjlk LzEvVUFGUjVHU3lsNUUzYkF4WHZyUU1XRTcxb2M4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc1m5/KQo 2SWNHs6t2X+gMx6UwF/bHk2eewE8kUAWsfNLDcMIZgNM6rV+d8jz24IsnjsvLlyS LwifzMmBBXqnhaaOM7cyigexkF1Ov9CE8dU0cNLP5vKxZV8/tpNMzglIsxkHHfyb OWOzAGvcF/3ghxNBVSfsAu9s1AjMku3N+enFtB2ezLEnYA7Bc96ThrAY1ROfauJ+ Ns35Eip8ocXteaT9jaD9PPzQlrUyQJwCBplAOrr4NZCPHR6G2/EBEjgCABGSe+E2 3uQEJdMNBSFiZdTl9ajCnGrP9B6jWO5yP5UfRfnn6Jnf23f+GGc6mcj6bw2RoPqN 3UHTgneyEm5NYA== -----END CERTIFICATE-----Generated at Mon Jan 26 05:52:43 2026 by rpki-client