This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json) Hash identifier: +ezzb2ncGe5scfIoa0X8MZlDUnZTJ+1CBkwff/KBuvU= Subject key identifier: 48:E0:EF:91:A0:9C:E1:F4:3D:E6:40:F0:DD:8A:FE:B4:B8:E4:B0:7C Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26 Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826 Certificate serial: 019BF5750EE3AC70BE8B700B4060FF5D2704 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft Manifest number: 0ECE Signing time: Sun 25 Jan 2026 14:00:47 +0000 Manifest this update: Sun 25 Jan 2026 14:00:47 +0000 Manifest next update: Mon 26 Jan 2026 14:00:47 +0000 Files and hashes: 1: 7Mj5v1lcOBzmcBBC8jLwVKnmF6E.roa (hash: FZGMBdbWDI4SBVgHGU6EFIDpQ6waV160tdsD6LVMmXc=) 2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: v3ZH2tpjbX+nWfNmILbzuPrsqpC7PEhCoOPvgdZWYXU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:75:0e:e3:ac:70:be:8b:70:0b:40:60:ff:5d:27:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826 Validity Not Before: Jan 25 14:00:47 2026 GMT Not After : Jan 26 14:00:47 2026 GMT Subject: CN=48e0ef91a09ce1f43de640f0dd8afeb4b8e4b07c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:44:37:37:47:5d:a7:46:2b:90:81:c1:52:2a: f5:ac:a6:6d:e1:8f:5f:be:29:d8:68:da:c0:31:2b: 13:2d:1e:5f:3a:71:8a:01:7f:5c:63:e3:20:34:48: da:78:7e:5b:75:88:48:a6:1f:cd:cd:c2:df:43:b4: 54:4d:c4:83:07:40:f6:13:8f:d5:71:4e:d2:1e:af: a2:e9:23:64:0c:4a:28:01:2d:7b:76:c8:2a:b3:25: 38:4d:bb:ac:08:9b:09:d5:ce:81:8e:0f:2e:ed:ba: ac:71:ce:66:a8:44:79:e8:44:a0:0b:a1:9e:59:d8: 11:31:b3:e2:c3:54:7c:83:f7:b4:fe:e6:56:10:64: 05:8c:66:52:7e:48:ca:7e:07:40:8e:81:af:e6:f7: d7:5d:7f:05:d2:49:d7:c2:5b:ab:86:65:71:5e:7b: 7e:83:54:f4:01:98:43:4c:f5:19:82:e3:51:9a:31: 22:1e:04:15:ff:19:4c:4c:9a:c3:5a:de:28:80:01: ba:98:ab:09:a3:49:20:eb:18:2d:a1:53:90:c5:71: f6:71:8b:36:c3:f3:d0:8f:46:d0:20:89:07:7b:7e: 50:71:2f:19:8b:3d:e6:f2:ab:86:6c:77:7c:fb:16: 7a:c4:b3:26:ab:48:0e:b8:56:f3:e4:95:c3:e1:ab: f2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E0:EF:91:A0:9C:E1:F4:3D:E6:40:F0:DD:8A:FE:B4:B8:E4:B0:7C X509v3 Authority Key Identifier: keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:40:04:35:35:b6:41:de:2c:e4:24:25:aa:68:b2:24:04:39: 6e:83:fd:a3:e1:c1:44:a9:14:28:b4:65:8d:88:a9:fc:b9:15: 0e:e8:ef:4c:d9:63:45:bd:b1:ca:e2:4a:f2:78:68:ae:34:bd: 40:7a:af:27:50:11:82:51:4d:32:51:37:93:a2:fc:84:cd:be: e3:17:60:21:9a:d2:1a:d2:5e:34:8a:1f:08:a2:f6:55:e8:56: 65:51:81:e4:10:71:c7:15:54:17:28:4d:36:2e:40:bd:65:18: 38:1e:9f:44:09:be:83:13:23:75:07:26:aa:8b:8a:f0:77:12: df:f8:55:fb:c0:47:0c:dc:aa:9d:89:87:20:e6:e3:54:17:8d: 44:18:40:9e:53:ce:00:58:7e:48:65:4a:ff:5e:16:0b:7f:cf: f7:39:5c:73:91:f5:17:16:e9:fa:cc:b5:d2:30:1e:d9:6f:98: e5:96:b5:07:d6:21:d0:2a:25:e2:6e:53:02:28:b8:b1:de:7d: f4:5a:bf:e1:20:a8:09:74:80:a5:75:cf:2b:86:a2:50:77:78: 52:02:d9:c7:8b:24:f3:3b:a5:b6:8c:94:7d:6f:ea:61:ef:c9: e7:e2:31:ee:ff:04:17:48:0b:ce:56:57:dc:9b:cc:c9:70:8f: d3:ff:bb:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1dQ7jrHC+i3ALQGD/XScEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YTdjMmM4NGZmYTQ5MzRjZjBmNzNlZjFhMWExYTMzNzg3 MzE4MjYwHhcNMjYwMTI1MTQwMDQ3WhcNMjYwMTI2MTQwMDQ3WjAzMTEwLwYDVQQD Eyg0OGUwZWY5MWEwOWNlMWY0M2RlNjQwZjBkZDhhZmViNGI4ZTRiMDdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3EQ3N0ddp0YrkIHBUir1rKZt4Y9f vinYaNrAMSsTLR5fOnGKAX9cY+MgNEjaeH5bdYhIph/NzcLfQ7RUTcSDB0D2E4/V cU7SHq+i6SNkDEooAS17dsgqsyU4TbusCJsJ1c6Bjg8u7bqscc5mqER56ESgC6Ge WdgRMbPiw1R8g/e0/uZWEGQFjGZSfkjKfgdAjoGv5vfXXX8F0knXwlurhmVxXnt+ g1T0AZhDTPUZguNRmjEiHgQV/xlMTJrDWt4ogAG6mKsJo0kg6xgtoVOQxXH2cYs2 w/PQj0bQIIkHe35QcS8Ziz3m8quGbHd8+xZ6xLMmq0gOuFbz5JXD4avyFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEjg75GgnOH0PeZA8N2K/rS45LB8MB8GA1UdIwQY MBaAFGinwshP+kk0zw9z7xoaGjN4cxgmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9mZTQ1NWQtZjZjZS00MzZjLTgzMjct ZGI2ZGRiNGE0NGU1LzEvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9mZTQ1NWQtZjZjZS00MzZjLTgzMjctZGI2ZGRiNGE0NGU1 LzEvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgEAENTW2 Qd4s5CQlqmiyJAQ5boP9o+HBRKkUKLRljYip/LkVDujvTNljRb2xyuJK8nhorjS9 QHqvJ1ARglFNMlE3k6L8hM2+4xdgIZrSGtJeNIofCKL2VehWZVGB5BBxxxVUFyhN Ni5AvWUYOB6fRAm+gxMjdQcmqouK8HcS3/hV+8BHDNyqnYmHIObjVBeNRBhAnlPO AFh+SGVK/14WC3/P9zlcc5H1Fxbp+sy10jAe2W+Y5Za1B9Yh0Col4m5TAii4sd59 9Fq/4SCoCXSApXXPK4aiUHd4UgLZx4sk8zultoyUfW/qYe/J5+Ix7v8EF0gLzlZX 3JvMyXCP0/+7MA== -----END CERTIFICATE-----Generated at Sun Jan 25 22:01:24 2026 by rpki-client