This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft File: VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft (raw, json) Hash identifier: 1dgPjhUQ/BqU9Tz2TUn02WFfbhJAO5F6xBMnXfofC3s= Subject key identifier: 56:D5:B3:54:93:AA:CF:D4:FF:C1:2B:B6:E7:7B:01:61:24:98:07:14 Authority key identifier: 54:08:25:EC:7B:D3:3A:02:20:4C:D1:BC:15:35:FC:1C:A2:15:09:50 Certificate issuer: /CN=540825ec7bd33a02204cd1bc1535fc1ca2150950 Certificate serial: 019BF72C97F18EDF45C3E0BBBB925E0C6E25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VAgl7HvTOgIgTNG8FTX8HKIVCVA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft Manifest number: 06 Signing time: Sun 25 Jan 2026 22:00:53 +0000 Manifest this update: Sun 25 Jan 2026 22:00:53 +0000 Manifest next update: Mon 26 Jan 2026 22:00:53 +0000 Files and hashes: 1: LpiRzUIJUTDqe4gSj8ZBL1pjI5k.asa (hash: 9vpRMBwHLJ+gwVVy2U1cWncm4c8I6qEnRJ9+hefVBkw=) 2: VAgl7HvTOgIgTNG8FTX8HKIVCVA.crl (hash: 65q43AI9Cl85ZrZJtGWuFQZkwcBi/SLKIqepPBCLocE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft rsync://rpki.ripe.net/repository/DEFAULT/VAgl7HvTOgIgTNG8FTX8HKIVCVA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:97:f1:8e:df:45:c3:e0:bb:bb:92:5e:0c:6e:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=540825ec7bd33a02204cd1bc1535fc1ca2150950 Validity Not Before: Jan 25 22:00:53 2026 GMT Not After : Jan 26 22:00:53 2026 GMT Subject: CN=56d5b35493aacfd4ffc12bb6e77b016124980714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fe:90:1f:07:cc:eb:da:ce:85:a0:37:db:51: 7d:cb:e1:fe:d8:ae:0e:18:28:08:1f:a0:0b:a4:5e: cd:63:6d:63:57:2e:bb:31:c9:e6:e8:8f:06:2b:52: 31:84:e7:fb:a7:e3:7d:77:45:63:60:0d:f6:c7:66: 3a:d0:9f:08:84:a4:90:2f:79:68:f1:f3:9d:1d:2a: 7c:f7:8b:aa:57:88:28:01:4b:e6:1e:d1:c2:9c:87: 5a:77:6a:d8:f9:53:e7:ee:55:dd:c2:de:e2:68:ae: 96:1d:f5:29:a6:04:10:9c:9e:65:3f:97:73:f1:32: 9a:5f:e4:ff:b9:12:7a:b6:6b:67:51:d4:80:10:8e: a5:d3:1c:f4:6b:3e:f2:08:b7:3a:6a:09:ef:55:0e: 6b:b2:8b:d2:39:9f:a9:81:7b:62:36:1f:1c:82:41: 88:7a:48:1b:2c:55:49:26:7b:21:70:a2:c3:7f:80: 1b:3e:a4:fc:a4:4c:0b:cc:7d:76:86:37:07:04:f2: 0f:8d:ee:45:2f:cc:b8:bd:e9:86:fc:94:db:69:d5: 62:3b:38:ef:81:4d:45:bf:b1:5a:9a:88:58:7d:db: a6:0f:ac:a1:85:76:65:3d:06:ca:a1:fb:7e:41:60: fb:0d:f8:d2:87:4b:8e:1c:ab:25:59:b9:12:3d:a8: 38:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D5:B3:54:93:AA:CF:D4:FF:C1:2B:B6:E7:7B:01:61:24:98:07:14 X509v3 Authority Key Identifier: keyid:54:08:25:EC:7B:D3:3A:02:20:4C:D1:BC:15:35:FC:1C:A2:15:09:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VAgl7HvTOgIgTNG8FTX8HKIVCVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ba:42:0b:e8:75:7f:78:c6:03:69:aa:96:a2:fa:e5:40:38: e5:a6:31:0d:73:d3:b4:3f:38:2e:e3:c4:be:f4:3d:44:d2:d5: 23:5e:55:88:44:6e:72:95:3b:7c:dd:2f:80:41:a2:e3:85:66: 09:e2:61:01:10:2b:33:7c:79:1f:45:80:b6:92:7f:f3:c6:34: 07:54:f2:90:0b:a1:30:f0:ce:a5:0d:35:9a:a4:dd:98:c9:74: 0e:3f:36:03:17:c7:c8:fa:ad:a7:2b:48:3f:47:e4:27:03:79: 00:87:1c:83:b5:ed:78:52:b8:fc:8f:4b:27:39:95:e8:df:90: 37:78:59:4e:18:22:7c:6f:f2:0f:f6:4c:03:18:e6:71:24:12: 85:e6:85:8d:a5:29:5e:b7:47:bc:35:33:24:59:bf:81:b4:28: ff:a7:d4:1e:dd:9a:64:e7:65:63:44:5d:19:9a:71:ff:c2:57: 0c:54:18:87:a4:b1:42:48:23:43:18:5b:0f:92:ea:88:85:ac: 6d:28:25:3d:f9:39:fc:8d:f7:9c:05:f5:3c:d6:68:8a:22:e8: c7:20:37:d5:a7:db:73:6c:e3:c5:7f:02:b2:ef:53:a2:de:35: 84:66:c2:a1:6d:34:81:af:db:3d:88:2c:7c:05:7f:bc:ba:b4: ad:12:dd:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LJfxjt9Fw+C7u5JeDG4lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0MDgyNWVjN2JkMzNhMDIyMDRjZDFiYzE1MzVmYzFjYTIx NTA5NTAwHhcNMjYwMTI1MjIwMDUzWhcNMjYwMTI2MjIwMDUzWjAzMTEwLwYDVQQD Eyg1NmQ1YjM1NDkzYWFjZmQ0ZmZjMTJiYjZlNzdiMDE2MTI0OTgwNzE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAov6QHwfM69rOhaA321F9y+H+2K4O GCgIH6ALpF7NY21jVy67Mcnm6I8GK1IxhOf7p+N9d0VjYA32x2Y60J8IhKSQL3lo 8fOdHSp894uqV4goAUvmHtHCnIdad2rY+VPn7lXdwt7iaK6WHfUppgQQnJ5lP5dz 8TKaX+T/uRJ6tmtnUdSAEI6l0xz0az7yCLc6agnvVQ5rsovSOZ+pgXtiNh8cgkGI ekgbLFVJJnshcKLDf4AbPqT8pEwLzH12hjcHBPIPje5FL8y4vemG/JTbadViOzjv gU1Fv7FamohYfdumD6yhhXZlPQbKoft+QWD7DfjSh0uOHKslWbkSPag4nQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFbVs1STqs/U/8Ertud7AWEkmAcUMB8GA1UdIwQY MBaAFFQIJex70zoCIEzRvBU1/ByiFQlQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkFnbDdIdlRPZ0lnVE5HOEZUWDhIS0lWQ1ZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi82OGJmNTQtZDk4OS00ODgxLWE3NmYt NWYyZjE1YmUyN2M0LzEvVkFnbDdIdlRPZ0lnVE5HOEZUWDhIS0lWQ1ZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi82OGJmNTQtZDk4OS00ODgxLWE3NmYtNWYyZjE1YmUyN2M0 LzEvVkFnbDdIdlRPZ0lnVE5HOEZUWDhIS0lWQ1ZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXLpCC+h1 f3jGA2mqlqL65UA45aYxDXPTtD84LuPEvvQ9RNLVI15ViERucpU7fN0vgEGi44Vm CeJhARArM3x5H0WAtpJ/88Y0B1TykAuhMPDOpQ01mqTdmMl0Dj82AxfHyPqtpytI P0fkJwN5AIccg7XteFK4/I9LJzmV6N+QN3hZThgifG/yD/ZMAxjmcSQSheaFjaUp XrdHvDUzJFm/gbQo/6fUHt2aZOdlY0RdGZpx/8JXDFQYh6SxQkgjQxhbD5LqiIWs bSglPfk5/I33nAX1PNZoiiLoxyA31afbc2zjxX8Csu9Tot41hGbCoW00ga/bPYgs fAV/vLq0rRLdzA== -----END CERTIFICATE-----Generated at Mon Jan 26 01:15:21 2026 by rpki-client