This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft File: aM73Itq-WXXKT5uoYWOI7GxlaiA.mft (raw, json) Hash identifier: NkY94pUcMGVMq5av9c3gwbEtt7VXJkVWtTynV+bA4mw= Subject key identifier: 8A:1F:06:4D:2F:89:98:CA:1E:9A:87:B8:50:C3:4E:7D:5C:A1:1A:4B Authority key identifier: 68:CE:F7:22:DA:BE:59:75:CA:4F:9B:A8:61:63:88:EC:6C:65:6A:20 Certificate issuer: /CN=68cef722dabe5975ca4f9ba8616388ec6c656a20 Certificate serial: 019BF763DDE4B14B251251D22678BFDE9996 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft Manifest number: 0CD3 Signing time: Sun 25 Jan 2026 23:01:15 +0000 Manifest this update: Sun 25 Jan 2026 23:01:15 +0000 Manifest next update: Mon 26 Jan 2026 23:01:15 +0000 Files and hashes: 1: 3Xdwalw9tG5-0AU6cIbrmwzmFpU.roa (hash: lXBSvWP0c1DLJ/X3Oyc8oTDxP2nv0ID2ImtmEhdpGbE=) 2: Txh89yPjR6ydaZe76t-4uzulsaE.roa (hash: wsaPFra5sogbcbp0OAAr/F2nwvL7a15+JUCBMqiVROI=) 3: aM73Itq-WXXKT5uoYWOI7GxlaiA.crl (hash: 5thKGxVOK2kUnlPmrDCzur/lqgBJURydpXWYKmAPMD0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:63:dd:e4:b1:4b:25:12:51:d2:26:78:bf:de:99:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68cef722dabe5975ca4f9ba8616388ec6c656a20 Validity Not Before: Jan 25 23:01:15 2026 GMT Not After : Jan 26 23:01:15 2026 GMT Subject: CN=8a1f064d2f8998ca1e9a87b850c34e7d5ca11a4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d1:a4:7f:6a:32:53:f5:0a:52:6d:95:aa:f9: 27:8c:4e:e2:73:77:65:32:df:b4:13:58:1f:9a:90: 6f:41:c9:60:51:30:ac:26:14:42:85:5d:03:c6:f3: 67:a4:a3:8e:92:14:09:51:7e:28:de:f7:6f:37:a1: b5:9a:3d:19:af:5e:31:7f:24:f4:64:ca:04:f2:9c: 8c:11:e4:e7:8b:3d:c7:8b:69:59:a9:37:93:70:9f: c2:d5:e8:37:b5:e0:62:6d:1e:a8:aa:66:b9:5a:9f: 0e:9d:8d:18:b2:4b:47:8b:c6:d7:14:31:9e:89:a5: 24:38:0e:43:eb:ae:c9:f6:c4:26:e7:4f:89:8a:04: 2e:e0:d0:c8:8d:53:80:e0:92:2d:a1:e4:2d:0b:d4: 70:1b:45:7f:26:05:74:3c:b3:16:bc:80:93:93:c3: 8d:45:db:61:92:45:c0:ae:62:45:80:66:a3:f9:53: 0c:0a:85:a9:b8:47:52:1a:1e:9b:3b:3d:6c:f8:59: a0:84:e6:2f:ec:4f:18:e9:2d:1b:4e:76:67:ae:30: 03:54:8a:9c:fb:e4:9a:71:1a:10:c7:82:20:f7:e7: d8:a0:0b:fe:6c:0a:26:6e:42:37:83:88:3f:4a:7d: 18:da:38:60:50:08:dc:65:78:a1:f3:00:12:69:16: fa:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1F:06:4D:2F:89:98:CA:1E:9A:87:B8:50:C3:4E:7D:5C:A1:1A:4B X509v3 Authority Key Identifier: keyid:68:CE:F7:22:DA:BE:59:75:CA:4F:9B:A8:61:63:88:EC:6C:65:6A:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:7b:3c:44:4a:76:07:96:57:40:62:3a:ec:c4:d4:cd:0e:43: d3:10:77:ec:5c:df:ac:73:6f:2b:8e:ec:63:cd:03:52:74:09: 84:09:5c:3b:8b:60:f4:01:1b:60:c1:44:61:18:a4:68:cf:54: bc:be:56:39:2d:d6:65:6a:4e:37:7c:9c:0f:a8:de:71:35:a9: e7:d3:40:3e:34:51:83:4c:30:07:44:91:45:e2:bb:6d:b3:b2: 1c:eb:5f:50:ab:26:a2:b5:88:0c:a6:b5:8e:f8:69:78:bd:b1: 96:6d:98:b9:ac:fd:9b:3b:ad:6d:73:07:ab:a6:44:0b:77:c8: 8e:92:38:a7:44:f0:6f:f8:33:a0:4d:e3:f6:58:08:94:15:bd: 06:42:a1:2d:2b:81:00:30:31:29:8f:d9:b3:24:a7:df:40:90: f7:e5:ad:df:e8:90:52:c7:04:81:90:8a:5b:da:38:d2:67:d2: 73:9a:23:b6:3d:1c:3d:c5:2b:60:83:b9:c1:ec:a4:54:40:0e: 10:f8:00:2b:e7:a8:18:db:3d:57:a5:35:f5:93:1c:62:7f:1c: 0f:cf:50:7a:16:ff:7f:6f:f0:95:68:85:b6:d1:bd:1a:0b:8f: c5:7d:aa:13:5d:34:d0:aa:aa:52:cb:15:f9:d2:b7:14:cd:e1: 38:61:7e:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3Y93ksUslElHSJni/3pmWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4Y2VmNzIyZGFiZTU5NzVjYTRmOWJhODYxNjM4OGVjNmM2 NTZhMjAwHhcNMjYwMTI1MjMwMTE1WhcNMjYwMTI2MjMwMTE1WjAzMTEwLwYDVQQD Eyg4YTFmMDY0ZDJmODk5OGNhMWU5YTg3Yjg1MGMzNGU3ZDVjYTExYTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtGkf2oyU/UKUm2VqvknjE7ic3dl Mt+0E1gfmpBvQclgUTCsJhRChV0DxvNnpKOOkhQJUX4o3vdvN6G1mj0Zr14xfyT0 ZMoE8pyMEeTniz3Hi2lZqTeTcJ/C1eg3teBibR6oqma5Wp8OnY0YsktHi8bXFDGe iaUkOA5D667J9sQm50+JigQu4NDIjVOA4JItoeQtC9RwG0V/JgV0PLMWvICTk8ON RdthkkXArmJFgGaj+VMMCoWpuEdSGh6bOz1s+FmghOYv7E8Y6S0bTnZnrjADVIqc ++SacRoQx4Ig9+fYoAv+bAombkI3g4g/Sn0Y2jhgUAjcZXih8wASaRb65QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIofBk0viZjKHpqHuFDDTn1coRpLMB8GA1UdIwQY MBaAFGjO9yLavll1yk+bqGFjiOxsZWogMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU03M0l0cS1XWFhLVDV1b1lXT0k3R3hsYWlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi83OTBjMTUtMjA1OC00YzM5LTkwY2It Y2Q2NzdhYjQzMWFhLzEvYU03M0l0cS1XWFhLVDV1b1lXT0k3R3hsYWlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi83OTBjMTUtMjA1OC00YzM5LTkwY2ItY2Q2NzdhYjQzMWFh LzEvYU03M0l0cS1XWFhLVDV1b1lXT0k3R3hsYWlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjXs8REp2 B5ZXQGI67MTUzQ5D0xB37FzfrHNvK47sY80DUnQJhAlcO4tg9AEbYMFEYRikaM9U vL5WOS3WZWpON3ycD6jecTWp59NAPjRRg0wwB0SRReK7bbOyHOtfUKsmorWIDKa1 jvhpeL2xlm2Yuaz9mzutbXMHq6ZEC3fIjpI4p0Twb/gzoE3j9lgIlBW9BkKhLSuB ADAxKY/ZsySn30CQ9+Wt3+iQUscEgZCKW9o40mfSc5ojtj0cPcUrYIO5weykVEAO EPgAK+eoGNs9V6U19ZMcYn8cD89Qehb/f2/wlWiFttG9GguPxX2qE1000KqqUssV +dK3FM3hOGF+Fw== -----END CERTIFICATE-----Generated at Mon Jan 26 07:12:35 2026 by rpki-client