This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft File: afURWpSbKIPEzDxJX_uJk97Z2F0.mft (raw, json) Hash identifier: g9zfjE3nE/afn8moeXTRH3sXOSg8anPGhYrswqWAV3c= Subject key identifier: 6B:EA:B4:65:B7:BB:BE:77:50:BB:B6:03:AD:4E:EE:28:23:EE:10:82 Authority key identifier: 69:F5:11:5A:94:9B:28:83:C4:CC:3C:49:5F:FB:89:93:DE:D9:D8:5D Certificate issuer: /CN=69f5115a949b2883c4cc3c495ffb8993ded9d85d Certificate serial: 019BF8086D92F9311D68A27ABAAC0BE100ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft Manifest number: 0207 Signing time: Mon 26 Jan 2026 02:01:00 +0000 Manifest this update: Mon 26 Jan 2026 02:01:00 +0000 Manifest next update: Tue 27 Jan 2026 02:01:00 +0000 Files and hashes: 1: F0NU8SzenQKyHyDow73tXbiGwdo.roa (hash: iOBS39tMhlNuj1wPQ/s8NHjEci7w9ozCqefNCKugJMg=) 2: afURWpSbKIPEzDxJX_uJk97Z2F0.crl (hash: YUqF9Fyyi6RjxWKZHVnH7Bd772cDyQaAB5Y+1mmme+o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:08:6d:92:f9:31:1d:68:a2:7a:ba:ac:0b:e1:00:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69f5115a949b2883c4cc3c495ffb8993ded9d85d Validity Not Before: Jan 26 02:01:00 2026 GMT Not After : Jan 27 02:01:00 2026 GMT Subject: CN=6beab465b7bbbe7750bbb603ad4eee2823ee1082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2a:cd:43:d2:4e:92:32:13:24:01:0b:c4:2c: cf:4a:e6:fe:4f:9d:f3:e2:59:a5:76:f1:99:cd:08: 9f:d4:9d:55:34:93:66:61:c4:ed:9b:bf:54:16:41: f5:3f:d5:de:90:c1:6a:6f:45:e5:b2:84:63:ca:62: 4c:42:a5:da:52:d7:a6:47:7f:79:e0:df:7c:85:48: 20:0f:81:3b:88:34:8a:ab:10:85:74:13:23:2a:37: 0c:07:9f:38:a5:7c:5e:85:2f:74:5f:36:1a:6f:6e: c4:3d:31:33:91:67:ac:0a:97:9b:a8:41:5c:9a:6d: 51:9c:08:ef:ac:4e:61:ee:1c:bd:71:49:86:b6:47: b4:05:b9:a3:f2:d7:03:36:af:f3:30:cf:26:81:48: 6a:83:be:54:86:bd:c4:a0:77:78:98:d5:72:03:0b: cb:d6:fa:7c:9a:82:8d:46:0f:cf:5e:e3:b0:48:47: bf:82:eb:c2:3f:d5:5c:a2:f5:62:8e:d4:a8:70:29: 5f:9e:62:51:20:4f:86:ec:7d:fd:c4:94:02:5d:4a: a3:f2:af:72:fc:a1:72:42:e9:0e:d1:6a:61:fa:8a: 18:20:47:48:e2:d8:55:91:ec:af:38:4d:eb:02:c9: 39:89:cb:ab:e0:ad:14:26:e8:6a:09:0e:89:04:bb: 42:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:EA:B4:65:B7:BB:BE:77:50:BB:B6:03:AD:4E:EE:28:23:EE:10:82 X509v3 Authority Key Identifier: keyid:69:F5:11:5A:94:9B:28:83:C4:CC:3C:49:5F:FB:89:93:DE:D9:D8:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:32:f1:d0:25:77:41:f9:20:ab:18:7b:b4:a7:e0:36:ca:e2: bd:dc:f1:be:b2:fd:4e:4c:13:e9:c6:f2:36:41:df:b4:e4:ee: 6e:72:9b:b1:ba:6b:42:de:fe:b6:42:fd:88:46:27:ab:7b:21: a3:51:c7:a1:ed:9b:11:a7:df:fd:17:63:fd:12:ed:21:e1:14: dd:8f:68:63:a3:a6:b8:38:e3:f5:de:d2:80:48:8a:48:ba:20: 6c:61:f6:70:0b:82:1f:1a:98:32:5f:7a:0f:aa:2a:d3:41:cf: 74:6a:c6:e1:49:34:2e:1f:9a:c8:0e:6c:22:36:07:4e:89:94: 87:65:06:df:5a:1e:a2:d2:0f:d0:9e:e9:6d:ac:3c:d4:7e:d1: 2c:1c:67:fd:15:a1:92:e4:34:44:b1:04:b0:b5:de:9c:85:82: d3:03:f7:82:80:17:3f:d0:c0:94:64:20:af:c5:62:c6:d9:f2: 87:9a:ea:b6:8b:ab:51:5b:b3:22:51:3c:0d:d7:b7:93:83:ba: ec:15:ce:f8:db:90:da:97:68:9a:e3:25:e5:bb:cb:f4:a0:2e: 08:87:b0:0d:30:5b:0e:54:ac:e5:4f:e4:49:d8:0f:b8:8f:30: 38:1b:3c:11:1e:bd:e7:a1:5e:4c:92:b1:b5:64:65:d1:58:32: 4a:75:6e:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4CG2S+TEdaKJ6uqwL4QDtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZjUxMTVhOTQ5YjI4ODNjNGNjM2M0OTVmZmI4OTkzZGVk OWQ4NWQwHhcNMjYwMTI2MDIwMTAwWhcNMjYwMTI3MDIwMTAwWjAzMTEwLwYDVQQD Eyg2YmVhYjQ2NWI3YmJiZTc3NTBiYmI2MDNhZDRlZWUyODIzZWUxMDgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApirNQ9JOkjITJAELxCzPSub+T53z 4lmldvGZzQif1J1VNJNmYcTtm79UFkH1P9XekMFqb0XlsoRjymJMQqXaUtemR395 4N98hUggD4E7iDSKqxCFdBMjKjcMB584pXxehS90XzYab27EPTEzkWesCpebqEFc mm1RnAjvrE5h7hy9cUmGtke0Bbmj8tcDNq/zMM8mgUhqg75Uhr3EoHd4mNVyAwvL 1vp8moKNRg/PXuOwSEe/guvCP9VcovVijtSocClfnmJRIE+G7H39xJQCXUqj8q9y /KFyQukO0Wph+ooYIEdI4thVkeyvOE3rAsk5icur4K0UJuhqCQ6JBLtCkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGvqtGW3u753ULu2A61O7igj7hCCMB8GA1UdIwQY MBaAFGn1EVqUmyiDxMw8SV/7iZPe2dhdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWZVUldwU2JLSVBFekR4SlhfdUprOTdaMkYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDY1MzYtMDFhYS00ZTM5LTg5YjYt YjU4NzA0ZjI4NTkxLzEvYWZVUldwU2JLSVBFekR4SlhfdUprOTdaMkYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9jMDY1MzYtMDFhYS00ZTM5LTg5YjYtYjU4NzA0ZjI4NTkx LzEvYWZVUldwU2JLSVBFekR4SlhfdUprOTdaMkYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADjLx0CV3 Qfkgqxh7tKfgNsrivdzxvrL9TkwT6cbyNkHftOTubnKbsbprQt7+tkL9iEYnq3sh o1HHoe2bEaff/Rdj/RLtIeEU3Y9oY6OmuDjj9d7SgEiKSLogbGH2cAuCHxqYMl96 D6oq00HPdGrG4Uk0Lh+ayA5sIjYHTomUh2UG31oeotIP0J7pbaw81H7RLBxn/RWh kuQ0RLEEsLXenIWC0wP3goAXP9DAlGQgr8Vixtnyh5rqtourUVuzIlE8Dde3k4O6 7BXO+NuQ2pdomuMl5bvL9KAuCIewDTBbDlSs5U/kSdgPuI8wOBs8ER6956FeTJKx tWRl0VgySnVu5Q== -----END CERTIFICATE-----Generated at Mon Jan 26 05:36:42 2026 by rpki-client