This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft File: MAVrA3XYlLk8sOJtm01koIxYNx4.mft (raw, json) Hash identifier: BHIlML7Y8vE2fygq2rO4nQUhnm1wy2dzyIumJxqd54A= Subject key identifier: 31:7E:1F:74:41:96:6C:90:02:89:B1:A7:23:8E:3C:6C:97:15:12:4C Authority key identifier: 30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E Certificate issuer: /CN=30056b0375d894b93cb0e26d9b4d64a08c58371e Certificate serial: 019BA30F89A6DF556F440B40A21A4FBD6830 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft Manifest number: 0D47 Signing time: Fri 09 Jan 2026 14:01:03 +0000 Manifest this update: Fri 09 Jan 2026 14:01:03 +0000 Manifest next update: Sat 10 Jan 2026 14:01:03 +0000 Files and hashes: 1: GBkpxMzxrmyVPOC0jew5XJ8aWhY.roa (hash: 0vABW6RkwXsVeCWaOEjF8mfFrqV+hg0CI9slDlZi5Hs=) 2: MAVrA3XYlLk8sOJtm01koIxYNx4.crl (hash: cX08yd03EZmxpTTt1ISKNlXxVumoq1i4pZA5jCuMdcw=) 3: xKJGESGTjFwwHaYD9v272aHamsA.roa (hash: fgbTfswP5/p+4NfMt/CDHRQt2/uUSdoKPJJSPF2ke2k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a3:0f:89:a6:df:55:6f:44:0b:40:a2:1a:4f:bd:68:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30056b0375d894b93cb0e26d9b4d64a08c58371e Validity Not Before: Jan 9 14:01:03 2026 GMT Not After : Jan 10 14:01:03 2026 GMT Subject: CN=317e1f7441966c900289b1a7238e3c6c9715124c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:35:ab:14:25:e5:db:05:57:21:19:a8:da:e7: 31:9a:04:0b:21:1b:b1:e8:8d:33:5f:e1:5b:97:11: cb:e7:c6:56:ac:8c:29:fb:9c:af:37:6f:24:b3:4a: dc:9f:bc:82:31:08:ba:50:f2:52:81:e1:ba:a7:3e: 17:fc:c6:4d:5c:91:93:0f:8c:6b:80:4d:ea:8f:7c: 49:dd:b8:91:3e:6e:ac:62:dc:de:8c:9b:2a:ae:2d: 64:fd:ea:a8:34:7c:ae:eb:8a:54:80:79:d7:20:82: 3e:b5:19:41:d6:4b:33:a0:e7:34:46:93:1e:3b:c3: 1e:90:db:7b:91:65:7c:b9:27:de:60:c3:db:61:e8: 6c:44:a6:6f:b0:9f:8e:1b:e1:5a:df:f3:f0:f6:e4: 07:63:e0:1e:f9:f6:15:95:76:d6:64:b5:ed:33:99: c4:8e:2d:68:fe:5a:c5:10:9f:c8:5e:08:2c:03:74: 02:c3:fc:a4:e4:ac:47:b0:51:50:84:ff:02:76:ef: ff:5d:6c:07:40:4b:43:3f:31:69:df:6a:5b:b9:5d: 00:94:2c:19:2e:d6:87:1c:ed:20:ed:b2:2a:d8:ea: c7:4c:4c:ca:39:65:8b:3d:40:a4:e1:e5:64:22:b1: ab:11:4a:d2:5d:85:0b:d1:c9:46:7e:2c:0c:04:e0: 73:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7E:1F:74:41:96:6C:90:02:89:B1:A7:23:8E:3C:6C:97:15:12:4C X509v3 Authority Key Identifier: keyid:30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:b6:a5:04:0f:d6:7f:65:89:3b:8c:a6:36:fb:a0:ed:b7:59: 42:32:9e:a1:e0:16:c6:13:e0:56:5f:fa:f3:f9:43:d6:d4:5e: 9b:83:99:4c:7f:ce:51:bc:79:ea:ca:7a:c9:66:b0:ba:9b:ed: e2:49:a4:b0:e7:dc:da:2c:61:66:34:16:71:43:bd:b7:ed:49: 0d:8f:a0:e9:f3:cd:31:76:27:54:cd:02:1c:7b:46:29:66:33: d8:db:7b:86:f3:cf:1b:7f:91:3f:3c:84:f6:ee:87:2d:b6:d0: d7:16:3e:93:ab:75:a4:03:f2:96:b1:c8:00:ef:5c:f9:6d:97: 30:97:30:cf:2f:30:ac:03:e9:70:85:f4:d0:2e:de:21:cd:e9: 91:98:66:00:36:0a:1a:7e:bf:6a:ea:bd:00:a5:93:65:66:91: 61:09:6f:36:63:19:f8:eb:8d:67:97:35:79:ea:0e:74:a4:e1: 9c:39:3f:26:73:89:bd:20:f1:f2:a6:ad:fe:f1:64:4f:c0:a9: 0f:46:ad:5c:ce:58:b2:24:65:79:5d:34:25:36:ce:9a:13:e5: 64:75:47:ef:3c:94:60:98:c8:e3:ba:42:98:50:8c:12:f3:41: 47:7a:7d:5a:75:4a:f9:60:16:a7:29:a4:21:7c:8b:ac:43:5f: 7b:6d:25:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZujD4mm31VvRAtAohpPvWgwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwMDU2YjAzNzVkODk0YjkzY2IwZTI2ZDliNGQ2NGEwOGM1 ODM3MWUwHhcNMjYwMTA5MTQwMTAzWhcNMjYwMTEwMTQwMTAzWjAzMTEwLwYDVQQD EygzMTdlMWY3NDQxOTY2YzkwMDI4OWIxYTcyMzhlM2M2Yzk3MTUxMjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDWrFCXl2wVXIRmo2ucxmgQLIRux 6I0zX+FblxHL58ZWrIwp+5yvN28ks0rcn7yCMQi6UPJSgeG6pz4X/MZNXJGTD4xr gE3qj3xJ3biRPm6sYtzejJsqri1k/eqoNHyu64pUgHnXIII+tRlB1kszoOc0RpMe O8MekNt7kWV8uSfeYMPbYehsRKZvsJ+OG+Fa3/Pw9uQHY+Ae+fYVlXbWZLXtM5nE ji1o/lrFEJ/IXggsA3QCw/yk5KxHsFFQhP8Cdu//XWwHQEtDPzFp32pbuV0AlCwZ LtaHHO0g7bIq2OrHTEzKOWWLPUCk4eVkIrGrEUrSXYUL0clGfiwMBOBzowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDF+H3RBlmyQAomxpyOOPGyXFRJMMB8GA1UdIwQY MBaAFDAFawN12JS5PLDibZtNZKCMWDceMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUFWckEzWFlsTGs4c09KdG0wMWtvSXhZTng0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8yYTc0NzItY2JiOC00Yzk5LWJlMjEt MTFiNGFmYmVkZTE5LzEvTUFWckEzWFlsTGs4c09KdG0wMWtvSXhZTng0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS8yYTc0NzItY2JiOC00Yzk5LWJlMjEtMTFiNGFmYmVkZTE5 LzEvTUFWckEzWFlsTGs4c09KdG0wMWtvSXhZTng0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGralBA/W f2WJO4ymNvug7bdZQjKeoeAWxhPgVl/68/lD1tRem4OZTH/OUbx56sp6yWawupvt 4kmksOfc2ixhZjQWcUO9t+1JDY+g6fPNMXYnVM0CHHtGKWYz2Nt7hvPPG3+RPzyE 9u6HLbbQ1xY+k6t1pAPylrHIAO9c+W2XMJcwzy8wrAPpcIX00C7eIc3pkZhmADYK Gn6/auq9AKWTZWaRYQlvNmMZ+OuNZ5c1eeoOdKThnDk/JnOJvSDx8qat/vFkT8Cp D0atXM5YsiRleV00JTbOmhPlZHVH7zyUYJjI47pCmFCMEvNBR3p9WnVK+WAWpymk IXyLrENfe20llA== -----END CERTIFICATE-----Generated at Fri Jan 9 18:08:10 2026 by rpki-client