This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: 6A9k86sHIwmuEoqCk/8DZToXuO/YkiuVAAkleTir9oA= Subject key identifier: 6F:EB:91:F0:58:F9:EE:21:A3:03:74:93:A5:5D:1B:68:1D:32:19:66 Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 138A4D7B97A91AA75DA85267322CAF1DC214B72E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 0540 Signing time: Sun 25 Jan 2026 05:35:11 +0000 Manifest this update: Sun 25 Jan 2026 05:30:11 +0000 Manifest next update: Mon 26 Jan 2026 08:21:11 +0000 Files and hashes: 1: 34362e3138332e33312e302f32342d3234203d3e20313734.roa (hash: 3Z7e+5TwzBef1b9VYHjpmL+5jzamN8gXYO/wLKWP7lA=) 2: 34362e3138332e32392e302f32342d3234203d3e2039333034.roa (hash: 4l3m4JRRITIOBfhSXA3v4T1Tc1t3gHbU2TsBgQabcVg=) 3: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: U6sIE1tc5XNg8Vw7jnbxLLCNANnB9wH3voxb1FhuZwc=) 4: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: 4jq0qwMJqWtfRUuzz3vPyKHtua4FM5/8Y3cvVGfTKBM=) 5: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: lxi2m0tJ4IwcIv1Qu/mxuwgzf8BGdtHdxfKNM9mKZEQ=) 6: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: pxnqedD3kuwz1m+9x0q4e9R46P3xXGAP6tM7JZr4zqQ=) 7: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: MBTQi0HOcbTwY/4fQl+vTOHLOQ2FmR/EhBIZ6Dj3u14=) 8: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: EQc8ZSWRYu3w3yABE1KT+uLZnchUtUDhUBMKc9gsz8U=) 9: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: kzUJlMxv2j1SeBXxrnpO1AQ/95CKQYDnhtHqgk9nCBQ=) 10: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ckwThy9Ftd6Jb/nTbj53dd12b3F3RSR9Etp8JSW5svM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:8a:4d:7b:97:a9:1a:a7:5d:a8:52:67:32:2c:af:1d:c2:14:b7:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: Jan 25 05:30:11 2026 GMT Not After : Jan 26 08:21:11 2026 GMT Subject: CN=6FEB91F058F9EE21A3037493A55D1B681D321966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:17:53:0a:78:14:cb:ff:9c:21:1b:65:a2:37: f1:67:80:f8:c7:7d:88:61:a6:bd:b0:1e:c5:57:f8: 9b:28:d1:aa:c0:2d:55:3f:4a:a1:d5:8a:1e:4c:5b: f2:d5:0a:2c:91:9b:68:e0:ca:fa:42:9b:1f:76:12: ab:a9:ed:cd:a6:87:b9:c7:15:a1:87:26:e9:e3:69: 2d:ed:dd:16:6b:3a:2c:56:7e:af:76:c1:51:56:7c: 9c:3a:04:ae:bc:b8:c1:72:25:c8:7d:bf:0a:e3:3f: a9:32:97:32:df:78:0b:07:c9:3e:54:9b:ea:58:e4: ad:89:d1:b5:d2:56:f3:40:21:a5:a7:0c:7c:25:6d: 65:b5:6e:f5:ab:ef:a4:cf:a7:8e:e3:ff:95:8e:9b: 06:5b:5c:46:ac:68:98:5a:3a:00:46:0e:34:17:36: ec:f8:07:69:35:3f:a1:98:10:33:57:c2:2f:6d:c1: e4:89:c4:bc:9b:81:f2:f5:52:1c:6f:40:44:cd:e8: fe:9e:ea:2c:6f:80:23:cb:83:10:ff:39:e9:b2:ad: c4:5d:2c:40:e6:9d:c6:f3:d0:c9:c9:53:e5:cc:18: 96:48:fb:8b:c7:f5:ed:80:ea:71:52:3c:62:12:0b: 71:95:7b:f0:9a:33:fb:0d:77:df:39:69:cc:64:56: aa:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:EB:91:F0:58:F9:EE:21:A3:03:74:93:A5:5D:1B:68:1D:32:19:66 X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:7f:96:c7:d6:c3:55:a9:84:73:90:7e:ae:cf:81:28:a5:be: a4:e0:e6:9e:23:22:a3:de:28:2f:5e:f6:49:19:02:7a:e8:2a: 68:53:88:ec:db:70:7b:ee:1e:ad:51:43:6c:e2:c7:3a:9f:0c: df:65:76:9b:a6:b8:e2:ed:e8:9d:7e:19:5f:4f:c7:82:4f:7e: 9f:70:f4:fe:cb:2d:2c:5e:b7:b9:7e:88:48:cc:1f:a4:8b:8c: 26:09:56:1a:14:b4:e8:16:1d:8e:83:e1:86:e6:1f:a4:6b:2a: 31:0f:88:47:31:20:63:f1:e9:15:2f:2b:d5:c8:05:fe:38:39: e2:ae:b9:6a:1b:55:29:46:1d:6c:9a:d6:85:9b:0d:06:06:3d: 7c:5f:62:99:c9:74:c1:34:a4:a4:f7:02:06:cb:1a:a6:b6:d2: 7d:99:15:b0:a4:c3:02:7f:43:57:96:d3:e2:7c:e8:62:69:e1: 02:ef:73:ef:5b:18:87:99:f6:ea:7c:11:b4:10:ce:c5:24:65: 58:cc:da:98:a0:0e:8d:4e:ce:ab:5d:e1:44:65:14:88:2a:5b: 1a:43:c8:77:87:1f:1b:d4:1b:c7:4f:41:c8:87:9f:d3:10:91: 93:05:35:32:f9:77:14:dc:7e:17:df:10:ed:8c:91:cd:07:78: f3:1c:06:cb -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUE4pNe5epGqddqFJnMiyvHcIUty4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNjAxMjUwNTMwMTFaFw0yNjAxMjYwODIxMTFaMDMxMTAvBgNV BAMTKDZGRUI5MUYwNThGOUVFMjFBMzAzNzQ5M0E1NUQxQjY4MUQzMjE5NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGF1MKeBTL/5whG2WiN/FngPjH fYhhpr2wHsVX+Jso0arALVU/SqHVih5MW/LVCiyRm2jgyvpCmx92Equp7c2mh7nH FaGHJunjaS3t3RZrOixWfq92wVFWfJw6BK68uMFyJch9vwrjP6kylzLfeAsHyT5U m+pY5K2J0bXSVvNAIaWnDHwlbWW1bvWr76TPp47j/5WOmwZbXEasaJhaOgBGDjQX Nuz4B2k1P6GYEDNXwi9tweSJxLybgfL1UhxvQETN6P6e6ixvgCPLgxD/OemyrcRd LEDmncbz0MnJU+XMGJZI+4vH9e2A6nFSPGISC3GVe/CaM/sNd985acxkVqqbAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUb+uR8Fj57iGjA3STpV0baB0yGWYwHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFH+Wx9bDVamEc5B+rs+B KKW+pODmniMio94oL172SRkCeugqaFOI7Ntwe+4erVFDbOLHOp8M32V2m6a44u3o nX4ZX0/Hgk9+n3D0/sstLF63uX6ISMwfpIuMJglWGhS06BYdjoPhhuYfpGsqMQ+I RzEgY/HpFS8r1cgF/jg54q65ahtVKUYdbJrWhZsNBgY9fF9imcl0wTSkpPcCBssa prbSfZkVsKTDAn9DV5bT4nzoYmnhAu9z71sYh5n26nwRtBDOxSRlWMzamKAOjU7O q13hRGUUiCpbGkPId4cfG9Qbx09ByIef0xCRkwU1Mvl3FNx+F98Q7YyRzQd48xwG yw== -----END CERTIFICATE-----Generated at Sun Jan 25 11:02:33 2026 by rpki-client