This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json) Hash identifier: DMUncWKv8qKvHMNfsMgwjS0zdiMDba3NoedSl47cc/o= Subject key identifier: 47:4E:C8:CA:EB:84:26:A6:60:02:E2:2A:0B:06:CF:CC:68:B6:FE:50 Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86 Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486 Certificate serial: 7144BFE309E68A527D7079C883C82C64F8E6EEA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft Manifest number: 03DD Signing time: Sun 25 Jan 2026 17:25:27 +0000 Manifest this update: Sun 25 Jan 2026 17:20:27 +0000 Manifest next update: Mon 26 Jan 2026 18:10:27 +0000 Files and hashes: 1: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: SQPPpGAfcWzeQjBcG69M0Ql5cnWUCRPHaAkbYVbbBkE=) 2: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: zXLZSxc5oWwYHrGfbMnwNnFWgtDTiIJRMwKatA83Kpg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:44:bf:e3:09:e6:8a:52:7d:70:79:c8:83:c8:2c:64:f8:e6:ee:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486 Validity Not Before: Jan 25 17:20:27 2026 GMT Not After : Jan 26 18:10:27 2026 GMT Subject: CN=474EC8CAEB8426A66002E22A0B06CFCC68B6FE50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ad:fb:cf:cb:2a:3f:7a:62:11:ea:71:1f:85: ca:16:81:b9:d0:89:dd:8c:72:25:dd:31:33:b5:56: 11:98:45:de:2f:55:0d:72:43:38:a8:4a:fa:97:3d: 93:95:ab:3c:04:50:10:2f:02:6b:2d:7c:6d:1b:60: 79:16:af:44:e2:fb:81:8f:e3:1e:28:0b:7e:53:4d: 4e:10:55:17:6c:ca:94:8d:df:0f:83:ba:56:f7:94: 42:e3:a0:d9:ab:de:62:dd:a2:f4:7a:1d:e5:3b:9f: f4:7e:43:2f:e0:aa:8b:01:07:d6:ae:a4:35:ff:9d: 9c:9d:b5:fb:73:73:6b:f6:c7:db:5b:d7:b4:29:c7: 9b:85:6f:58:b2:43:ad:77:6b:44:6b:5d:dc:c5:9c: e1:09:30:31:63:88:bc:d9:35:10:e7:27:39:ce:a0: 23:66:ce:21:63:3a:3a:93:63:1c:3d:20:03:f0:0f: 7d:f4:7f:a8:c9:31:15:e8:90:31:8b:3b:82:9f:34: bd:d9:0d:86:fd:bc:ee:94:41:d0:75:7a:e4:84:03: 21:06:15:fa:10:60:91:4b:5a:92:74:14:3d:7b:9c: 78:29:eb:74:de:31:32:56:6d:86:69:32:86:b0:bb: 5a:75:35:1f:08:6c:b8:7a:1d:e4:51:33:fc:5d:b8: 24:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:4E:C8:CA:EB:84:26:A6:60:02:E2:2A:0B:06:CF:CC:68:B6:FE:50 X509v3 Authority Key Identifier: keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:d4:bd:b5:4c:41:ec:07:48:07:2a:4c:3e:90:a2:2d:8d:12: d5:34:fb:2e:37:53:30:f8:de:2a:34:8c:43:16:2b:c4:54:35: a5:79:ac:cc:ee:10:c9:58:d5:93:51:c4:0a:9c:e7:12:74:0e: 42:8d:9f:99:c0:30:15:79:59:d8:01:cb:12:4d:8b:01:b3:df: 58:69:77:9e:b0:cc:ce:31:e5:47:54:f6:0c:7c:37:19:08:23: 80:90:65:17:f9:93:f9:4d:21:08:42:12:cf:23:32:07:e7:de: 8a:0d:c3:60:e0:fc:42:4e:49:5f:9f:f0:7c:19:88:e7:29:e3: d5:ed:78:a0:e7:59:6e:4d:a0:e5:d1:61:5c:59:78:dc:b7:13: 9d:0c:fb:71:06:fc:03:53:43:de:3b:bb:90:c8:25:74:72:88: 25:48:57:c9:bb:cb:da:a2:46:61:c6:1e:ae:ea:a3:fc:0d:8f: 06:f2:ad:08:08:8a:92:f7:0c:b3:09:12:50:28:fa:0d:09:38: 09:d5:d7:df:e9:bd:9d:33:22:05:b8:96:e9:16:00:d9:15:72: 26:80:a1:ea:47:17:ad:19:1d:c6:e7:9e:f3:37:fb:6f:26:9a: 40:b1:42:24:18:2e:1e:e6:9e:bc:5c:cb:2a:58:d5:e6:7c:d5: 8e:c5:7d:f4 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUcUS/4wnmilJ9cHnIg8gsZPjm7qQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhkMDk3YWZkODhhZWYzZjEwMjgyZjMyMThmYzEzZjAx YTBkZTQ4NjAeFw0yNjAxMjUxNzIwMjdaFw0yNjAxMjYxODEwMjdaMDMxMTAvBgNV BAMTKDQ3NEVDOENBRUI4NDI2QTY2MDAyRTIyQTBCMDZDRkNDNjhCNkZFNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYrfvPyyo/emIR6nEfhcoWgbnQ id2MciXdMTO1VhGYRd4vVQ1yQzioSvqXPZOVqzwEUBAvAmstfG0bYHkWr0Ti+4GP 4x4oC35TTU4QVRdsypSN3w+Dulb3lELjoNmr3mLdovR6HeU7n/R+Qy/gqosBB9au pDX/nZydtftzc2v2x9tb17Qpx5uFb1iyQ613a0RrXdzFnOEJMDFjiLzZNRDnJznO oCNmziFjOjqTYxw9IAPwD330f6jJMRXokDGLO4KfNL3ZDYb9vO6UQdB1euSEAyEG FfoQYJFLWpJ0FD17nHgp63TeMTJWbYZpMoawu1p1NR8IbLh6HeRRM/xduCS/AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUR07IyuuEJqZgAuIqCwbPzGi2/lAwHwYDVR0j BBgwFoAUaNCXr9iK7z8QKC8yGPwT8BoN5IYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvN2MxMWI4MTktZDQ1OS00MTM2LTk5ODctZjAyOTJhODdl NjQwLzAvNjhEMDk3QUZEODhBRUYzRjEwMjgyRjMyMThGQzEzRjAxQTBERTQ4Ni5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FOQ1hyOWlLN3o4UUtDOHlHUHdUOEJv TjVJWS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83YzExYjgxOS1k NDU5LTQxMzYtOTk4Ny1mMDI5MmE4N2U2NDAvMC82OEQwOTdBRkQ4OEFFRjNGMTAy ODJGMzIxOEZDMTNGMDFBMERFNDg2Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACNS9tUxB7AdIBypMPpCi LY0S1TT7LjdTMPjeKjSMQxYrxFQ1pXmszO4QyVjVk1HECpznEnQOQo2fmcAwFXlZ 2AHLEk2LAbPfWGl3nrDMzjHlR1T2DHw3GQgjgJBlF/mT+U0hCEISzyMyB+feig3D YOD8Qk5JX5/wfBmI5ynj1e14oOdZbk2g5dFhXFl43LcTnQz7cQb8A1ND3ju7kMgl dHKIJUhXybvL2qJGYcYeruqj/A2PBvKtCAiKkvcMswkSUCj6DQk4CdXX3+m9nTMi BbiW6RYA2RVyJoCh6kcXrRkdxuee8zf7byaaQLFCJBguHuaevFzLKljV5nzVjsV9 9A== -----END CERTIFICATE-----Generated at Sun Jan 25 21:12:02 2026 by rpki-client