This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json) Hash identifier: IOsanlkY0maYxbBLEpLuGKRDT7Sdad//FbiOFiLMea0= Subject key identifier: 54:CF:0B:AC:12:DC:63:55:B2:F5:A2:E2:24:0D:CC:6C:27:AC:84:79 Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93 Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93 Certificate serial: 019C262AE32B50A1056DC2EBDE8199E1D3F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft Manifest number: 180D Signing time: Wed 04 Feb 2026 01:01:10 +0000 Manifest this update: Wed 04 Feb 2026 01:01:10 +0000 Manifest next update: Thu 05 Feb 2026 01:01:10 +0000 Files and hashes: 1: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: rOVbChzMsQNX6BYaKLsVak81XX0RJcAU1RU2luMSUTQ=) 2: bKFR-ExETl9kc_NczqQy1RxK9rs.roa (hash: plcIB/DfvBpq4QLItxVjsjUSKb2BA3Zq8rL1ma4T6FY=) 3: pRSgM7v51dj4_nnKyTIe5vKbqck.roa (hash: zoPAj53DpixsBYDFs95Rz1APyotRYxKBCaNS8cQmVuY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 01:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:26:2a:e3:2b:50:a1:05:6d:c2:eb:de:81:99:e1:d3:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93 Validity Not Before: Feb 4 01:01:10 2026 GMT Not After : Feb 5 01:01:10 2026 GMT Subject: CN=54cf0bac12dc6355b2f5a2e2240dcc6c27ac8479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f1:e7:06:30:eb:cc:35:2a:dd:3c:2c:e1:b6: e0:7e:31:9c:e8:87:da:46:a9:90:0e:88:45:55:aa: 80:09:2b:48:c7:ed:cf:a7:c5:3e:c0:51:0a:bb:56: 49:4d:ef:ec:8b:30:e1:b7:0b:65:1a:63:fe:52:34: 71:67:1d:5c:8f:84:5e:13:bc:f4:4d:18:d8:78:e2: c9:04:1b:60:b1:41:bd:b5:96:7a:4f:13:29:1a:d8: 96:e7:23:6c:0e:ae:db:3f:dd:a2:f1:21:7e:27:f8: 07:d9:a2:a1:19:7d:b8:c7:35:52:96:59:d1:c0:be: 3b:42:e8:22:7c:dc:1f:07:b3:91:80:d0:59:01:9d: ab:de:96:ef:31:81:24:6e:9b:02:06:bb:0d:e1:e9: 20:84:50:a5:1f:e1:4d:eb:3e:eb:ad:ee:e1:2b:6c: 2c:ac:a9:b0:a9:2d:29:bd:d1:dc:f4:5b:21:bd:2e: 59:d0:8a:75:70:fc:4b:40:b1:c7:52:2a:09:64:2c: cc:79:88:c8:b1:a4:66:10:65:80:a1:5f:42:96:56: f1:54:82:b3:1a:33:0f:25:b5:c9:8e:76:a1:07:44: 1f:fc:aa:36:0a:74:1f:dc:7a:52:34:b9:0f:83:c3: bd:23:ba:6b:ff:d9:6b:74:aa:60:94:34:0f:f0:97: c2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:CF:0B:AC:12:DC:63:55:B2:F5:A2:E2:24:0D:CC:6C:27:AC:84:79 X509v3 Authority Key Identifier: keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:a3:e2:da:7f:99:d7:16:96:42:9f:56:c7:dc:81:d0:28:bb: ea:c9:ae:17:31:f9:18:bd:ec:a2:76:7a:1b:60:c3:b6:1e:a6: a7:9a:03:a9:0f:65:14:b7:b5:57:95:49:ad:a5:70:8d:5e:a3: 66:d6:93:64:28:64:88:ea:a2:66:60:73:01:8e:51:52:11:76: f6:1c:31:56:d9:75:9d:3b:3f:d2:12:bc:21:95:69:be:11:24: 72:e9:ed:99:9c:ff:88:55:54:b9:d1:87:a9:cc:78:66:03:d2: 4b:f4:9c:8c:da:3c:03:1a:43:0f:6b:11:9e:43:f7:1b:3b:d4: 08:a0:cb:00:57:70:00:78:76:1e:f3:a3:c5:62:35:90:7d:06: 7c:9d:63:9a:20:8f:bd:4c:d6:3b:a5:34:d4:ba:19:42:3d:5a: 3f:e1:22:72:c8:c2:7b:ca:6e:e1:3c:86:91:42:b8:a3:0b:61: cb:e4:f4:46:3f:93:c1:b2:00:98:ea:fc:c5:bc:81:f8:71:d2: e7:46:3f:81:f5:0b:ac:db:64:6e:72:aa:f5:23:dd:5d:c6:85: 2f:20:dc:03:59:fc:f4:e5:31:ce:45:74:55:ee:1d:2c:01:78: 98:2e:72:5c:ec:9c:72:54:ba:f0:44:61:fe:9a:17:01:2d:15: 22:49:bd:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwmKuMrUKEFbcLr3oGZ4dPxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YThlOTNkM2Y1OTBmNDQ1MGQxZGIzYzIwNzQ1OTgyNDQz NTNlOTMwHhcNMjYwMjA0MDEwMTEwWhcNMjYwMjA1MDEwMTEwWjAzMTEwLwYDVQQD Eyg1NGNmMGJhYzEyZGM2MzU1YjJmNWEyZTIyNDBkY2M2YzI3YWM4NDc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/HnBjDrzDUq3Tws4bbgfjGc6Ifa RqmQDohFVaqACStIx+3Pp8U+wFEKu1ZJTe/sizDhtwtlGmP+UjRxZx1cj4ReE7z0 TRjYeOLJBBtgsUG9tZZ6TxMpGtiW5yNsDq7bP92i8SF+J/gH2aKhGX24xzVSllnR wL47QugifNwfB7ORgNBZAZ2r3pbvMYEkbpsCBrsN4ekghFClH+FN6z7rre7hK2ws rKmwqS0pvdHc9FshvS5Z0Ip1cPxLQLHHUioJZCzMeYjIsaRmEGWAoV9CllbxVIKz GjMPJbXJjnahB0Qf/Ko2CnQf3HpSNLkPg8O9I7pr/9lrdKpglDQP8JfCHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFTPC6wS3GNVsvWi4iQNzGwnrIR5MB8GA1UdIwQY MBaAFGio6T0/WQ9EUNHbPCB0WYJENT6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMt MjVkZDRjYmIzNjk4LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMtMjVkZDRjYmIzNjk4 LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeKPi2n+Z 1xaWQp9Wx9yB0Ci76smuFzH5GL3sonZ6G2DDth6mp5oDqQ9lFLe1V5VJraVwjV6j ZtaTZChkiOqiZmBzAY5RUhF29hwxVtl1nTs/0hK8IZVpvhEkcuntmZz/iFVUudGH qcx4ZgPSS/ScjNo8AxpDD2sRnkP3GzvUCKDLAFdwAHh2HvOjxWI1kH0GfJ1jmiCP vUzWO6U01LoZQj1aP+EicsjCe8pu4TyGkUK4owthy+T0Rj+TwbIAmOr8xbyB+HHS 50Y/gfULrNtkbnKq9SPdXcaFLyDcA1n89OUxzkV0Ve4dLAF4mC5yXOycclS68ERh /poXAS0VIkm9kg== -----END CERTIFICATE-----Generated at Wed Feb 4 10:41:13 2026 by rpki-client