This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft File: rONjRGSGG9S_jFvH48m_09JGpN0.mft (raw, json) Hash identifier: pPOC7X+/PJyg3J6giP3WnuQ84Csyd5NeGi3gaUU4zwQ= Subject key identifier: AB:BD:FD:DC:B9:A0:B3:6E:2E:0F:5F:84:27:58:FD:A1:6C:2B:86:59 Authority key identifier: AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD Certificate issuer: /CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd Certificate serial: 019BFC1C53C0ACAE686822ACD493EDB28D2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft Manifest number: 17EC Signing time: Mon 26 Jan 2026 21:01:13 +0000 Manifest this update: Mon 26 Jan 2026 21:01:13 +0000 Manifest next update: Tue 27 Jan 2026 21:01:13 +0000 Files and hashes: 1: PtYo6MwEWy1vpndhzACUN02erEo.roa (hash: 3/Pp/u1BR3pOxJGz3l7tc76JM7PepsEG/RPZ3ABSNvU=) 2: rONjRGSGG9S_jFvH48m_09JGpN0.crl (hash: E/UWA4cMFgXcfzu6IeecqD0SPPcKIP4GSXsoexfwkK4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1c:53:c0:ac:ae:68:68:22:ac:d4:93:ed:b2:8d:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd Validity Not Before: Jan 26 21:01:13 2026 GMT Not After : Jan 27 21:01:13 2026 GMT Subject: CN=abbdfddcb9a0b36e2e0f5f842758fda16c2b8659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:99:90:86:1f:aa:04:8e:72:9f:98:4d:63:9e: 2d:f8:4b:ff:d7:61:84:50:e2:f2:58:cb:f9:45:bc: f4:3a:c4:b1:05:2b:7b:a1:03:74:bb:ae:cd:a7:8e: 60:48:47:83:f4:88:41:c7:1b:e8:3f:2e:1c:c0:cb: ea:f2:62:21:43:ca:46:8d:0a:e8:44:9b:25:f2:bd: 62:44:38:77:f1:0d:50:22:dd:9c:75:91:66:d4:99: 1a:a1:fd:f5:c1:ab:bb:1d:c3:c1:4a:73:7f:d9:be: a7:29:58:f1:1d:e7:15:6a:62:d0:a5:5d:8c:4b:bf: ae:b9:bb:b6:dd:c6:36:7b:a7:61:5c:20:72:ac:9d: 23:31:a9:a4:1d:fa:6c:9e:bd:56:81:d3:5c:bd:84: 48:fd:1c:e0:d7:97:c3:9e:15:fb:6d:e9:e1:be:0d: a2:db:f9:41:60:03:f6:d5:fd:37:b0:43:0b:58:bf: 91:d4:ce:38:ca:5e:1b:bf:e3:b4:65:5c:28:e3:52: 0e:c7:da:2e:ed:9a:ce:c3:50:b4:19:37:0a:93:a2: 5b:26:dc:85:94:d9:f0:66:f0:88:77:fc:11:e3:65: 94:49:70:a9:a4:76:e0:3d:00:15:b0:2b:37:14:55: 52:89:34:92:c7:a5:ac:6d:d0:96:e7:0d:01:46:a9: ca:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BD:FD:DC:B9:A0:B3:6E:2E:0F:5F:84:27:58:FD:A1:6C:2B:86:59 X509v3 Authority Key Identifier: keyid:AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:0c:a8:20:ea:05:50:7f:eb:a3:61:f0:4f:39:4b:8f:fd:ad: 8a:c3:f3:81:09:c9:dd:42:dd:a4:2f:d5:4b:91:90:47:23:06: d2:b7:5d:77:bb:fd:e6:23:b1:b7:e1:d6:ec:0a:6e:5c:27:48: f8:28:59:94:62:1e:ed:28:6c:94:9e:f3:04:f2:73:09:91:e7: 2c:c1:14:a4:3c:59:46:37:0a:4f:71:60:24:c1:31:60:07:7f: ce:53:0c:1c:59:19:a8:04:3c:48:22:1a:ee:fa:b7:12:16:14: 67:30:48:28:77:46:73:56:de:46:40:18:42:02:e0:93:7d:56: 62:7d:8a:0e:07:b6:e5:95:7c:73:1c:9b:18:58:c6:07:f5:29: 8e:6e:3a:3f:80:d1:36:60:20:9e:f2:54:51:94:00:cd:6a:89: 12:fe:0c:d6:f1:1c:73:85:bb:b9:f4:d0:17:c6:db:dd:c9:c9: 04:0b:87:80:a6:3e:ba:58:eb:7f:25:90:d0:db:05:83:9b:60: 8c:f9:95:71:2c:35:bf:3e:57:e3:cc:29:b6:18:8a:c5:34:9c: d3:a2:8a:87:5a:0b:b1:3a:b2:52:d8:41:8d:d4:4d:b1:c3:cd: 1b:d9:4a:9a:33:2b:87:83:71:7b:16:b4:33:c1:05:7c:e7:60: 51:91:94:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8HFPArK5oaCKs1JPtso0rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjZTM2MzQ0NjQ4NjFiZDRiZjhjNWJjN2UzYzliZmQzZDI0 NmE0ZGQwHhcNMjYwMTI2MjEwMTEzWhcNMjYwMTI3MjEwMTEzWjAzMTEwLwYDVQQD EyhhYmJkZmRkY2I5YTBiMzZlMmUwZjVmODQyNzU4ZmRhMTZjMmI4NjU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJmQhh+qBI5yn5hNY54t+Ev/12GE UOLyWMv5Rbz0OsSxBSt7oQN0u67Np45gSEeD9IhBxxvoPy4cwMvq8mIhQ8pGjQro RJsl8r1iRDh38Q1QIt2cdZFm1Jkaof31wau7HcPBSnN/2b6nKVjxHecVamLQpV2M S7+uubu23cY2e6dhXCByrJ0jMamkHfpsnr1WgdNcvYRI/Rzg15fDnhX7benhvg2i 2/lBYAP21f03sEMLWL+R1M44yl4bv+O0ZVwo41IOx9ou7ZrOw1C0GTcKk6JbJtyF lNnwZvCId/wR42WUSXCppHbgPQAVsCs3FFVSiTSSx6WsbdCW5w0BRqnKJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKu9/dy5oLNuLg9fhCdY/aFsK4ZZMB8GA1UdIwQY MBaAFKzjY0RkhhvUv4xbx+PJv9PSRqTdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvck9OalJHU0dHOVNfakZ2SDQ4bV8wOUpHcE4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9iMGVmNTktMTg0Mi00Y2EzLTk4NjUt MDY3Y2M0NDI2YzI4LzEvck9OalJHU0dHOVNfakZ2SDQ4bV8wOUpHcE4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy9iMGVmNTktMTg0Mi00Y2EzLTk4NjUtMDY3Y2M0NDI2YzI4 LzEvck9OalJHU0dHOVNfakZ2SDQ4bV8wOUpHcE4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApwyoIOoF UH/ro2HwTzlLj/2tisPzgQnJ3ULdpC/VS5GQRyMG0rddd7v95iOxt+HW7ApuXCdI +ChZlGIe7ShslJ7zBPJzCZHnLMEUpDxZRjcKT3FgJMExYAd/zlMMHFkZqAQ8SCIa 7vq3EhYUZzBIKHdGc1beRkAYQgLgk31WYn2KDge25ZV8cxybGFjGB/Upjm46P4DR NmAgnvJUUZQAzWqJEv4M1vEcc4W7ufTQF8bb3cnJBAuHgKY+uljrfyWQ0NsFg5tg jPmVcSw1vz5X48wpthiKxTSc06KKh1oLsTqyUthBjdRNscPNG9lKmjMrh4Nxexa0 M8EFfOdgUZGUYQ== -----END CERTIFICATE-----Generated at Tue Jan 27 03:58:45 2026 by rpki-client