This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json) Hash identifier: 4XrrQcpjLaxUkCgED9LGm3cUDvnOTzJi2ejaKSBZALk= Subject key identifier: 9E:42:6D:B5:D3:87:48:67:1C:F8:04:1B:2C:3E:E9:42:98:E2:31:47 Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd Certificate serial: 019C1E03596EB97CF754AF55726080A2480C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft Manifest number: 1800 Signing time: Mon 02 Feb 2026 11:01:01 +0000 Manifest this update: Mon 02 Feb 2026 11:01:01 +0000 Manifest next update: Tue 03 Feb 2026 11:01:01 +0000 Files and hashes: 1: RP8MgkKEHlqeBOnUZe0z_Y0SQKk.roa (hash: Ptm5tesi9injee8NYFqMkun/MxMMcArohdb5avPOa5I=) 2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: 4ZXFqGB2jKs5e/r6pGY9yArKdoofvCM9bT8LDnrPjbg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1e:03:59:6e:b9:7c:f7:54:af:55:72:60:80:a2:48:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd Validity Not Before: Feb 2 11:01:01 2026 GMT Not After : Feb 3 11:01:01 2026 GMT Subject: CN=9e426db5d38748671cf8041b2c3ee94298e23147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f7:1f:75:5d:3d:e2:9b:d1:e7:8b:57:6e:3e: e5:c2:48:ac:b8:db:d8:cb:52:3a:51:f8:a1:d7:ef: d6:99:76:1e:d6:f3:30:12:4c:84:58:96:d3:73:1e: 91:77:70:75:a9:1d:c9:1d:c0:49:74:4d:06:a0:96: ef:0f:d0:a8:df:02:82:fb:f9:2d:3c:95:98:55:8a: e6:08:39:0b:52:fa:f3:4d:19:6c:44:f7:56:07:60: 23:2b:23:73:69:58:44:42:8e:aa:2d:85:ff:d8:1d: 1d:eb:f8:d6:0e:10:5f:40:64:ac:1b:76:6e:bb:ac: 0a:d1:3d:26:dd:3d:b4:25:b2:2d:46:85:1d:51:d2: 6e:cf:d0:af:c3:b2:7e:ec:57:1b:c2:78:c3:cb:fe: f8:37:75:49:7f:59:1b:61:bf:77:26:85:2f:d8:b9: e6:62:80:54:3d:8c:df:92:f0:4b:91:48:58:ef:86: 62:42:4e:33:b3:4f:f5:0b:95:59:45:5d:0d:70:9d: dc:99:16:9e:a1:c9:16:bf:ae:51:30:22:2d:5c:20: 11:24:e0:3e:1a:c2:86:ae:c9:39:12:83:a8:3b:ff: e5:fb:b4:6d:2c:af:96:15:cc:35:b1:3e:3a:77:e4: 87:9c:fc:41:c2:95:7d:1f:3c:8d:bf:bf:67:bc:71: e9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:42:6D:B5:D3:87:48:67:1C:F8:04:1B:2C:3E:E9:42:98:E2:31:47 X509v3 Authority Key Identifier: keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:5b:ed:c0:a4:57:53:73:20:95:7b:bb:97:2b:f4:2b:c9:3c: 39:93:84:64:2d:c4:d2:2a:05:4d:2e:b9:21:b1:a6:b9:86:ce: 38:17:7e:67:1b:0c:b2:3b:d7:c2:ea:3f:97:39:b2:d0:63:2f: 69:f1:62:29:11:5e:f4:17:b0:0a:47:6e:38:f7:d6:50:18:39: 71:3c:36:d8:e5:e4:b2:fb:b7:66:38:69:89:f5:e3:b9:ef:10: 06:f6:c1:c3:1a:7b:a6:e6:0a:0e:fa:6e:62:bb:81:80:89:c9: 6f:1d:2d:b4:0a:83:1c:85:13:c5:7d:df:c1:86:37:69:a1:c9: 06:ae:1f:1e:6a:fa:96:38:db:23:ce:51:7a:05:e3:25:07:30: 1e:1c:55:b2:63:92:87:17:55:3a:54:91:3e:92:5e:aa:ed:5c: b3:9d:35:0b:bb:23:ef:de:97:6b:62:1c:65:7b:5f:ac:54:41: 2a:5c:b0:c1:fd:77:ef:0c:ae:9f:59:4f:4a:b6:5e:e1:70:c6: b7:c7:c1:67:a1:25:10:28:12:69:51:e8:a5:c0:ab:c7:be:56: 06:38:c8:b4:80:d9:9e:d6:2e:9d:d2:e5:89:21:e7:a3:63:ec: 32:17:c3:7c:07:1a:44:35:a7:b1:5a:e8:0e:b7:e3:f6:44:cd: 6a:ba:3e:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZweA1luuXz3VK9VcmCAokgMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkYTYxMDQzNTQyNDg1MDk2YjBkZjQzNTFjYzBkYTk3N2Yz NzcwZGQwHhcNMjYwMjAyMTEwMTAxWhcNMjYwMjAzMTEwMTAxWjAzMTEwLwYDVQQD Eyg5ZTQyNmRiNWQzODc0ODY3MWNmODA0MWIyYzNlZTk0Mjk4ZTIzMTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvcfdV094pvR54tXbj7lwkisuNvY y1I6Ufih1+/WmXYe1vMwEkyEWJbTcx6Rd3B1qR3JHcBJdE0GoJbvD9Co3wKC+/kt PJWYVYrmCDkLUvrzTRlsRPdWB2AjKyNzaVhEQo6qLYX/2B0d6/jWDhBfQGSsG3Zu u6wK0T0m3T20JbItRoUdUdJuz9Cvw7J+7FcbwnjDy/74N3VJf1kbYb93JoUv2Lnm YoBUPYzfkvBLkUhY74ZiQk4zs0/1C5VZRV0NcJ3cmRaeockWv65RMCItXCARJOA+ GsKGrsk5EoOoO//l+7RtLK+WFcw1sT46d+SHnPxBwpV9HzyNv79nvHHpFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ5CbbXTh0hnHPgEGyw+6UKY4jFHMB8GA1UdIwQY MBaAFL2mEENUJIUJaw30NRzA2pd/N3DdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8xOTY2ODktMmRiNy00ZTgwLWI5MmMt M2EyYWQ4OGRlYWRlLzEvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS8xOTY2ODktMmRiNy00ZTgwLWI5MmMtM2EyYWQ4OGRlYWRl LzEvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqVvtwKRX U3MglXu7lyv0K8k8OZOEZC3E0ioFTS65IbGmuYbOOBd+ZxsMsjvXwuo/lzmy0GMv afFiKRFe9BewCkduOPfWUBg5cTw22OXksvu3ZjhpifXjue8QBvbBwxp7puYKDvpu YruBgInJbx0ttAqDHIUTxX3fwYY3aaHJBq4fHmr6ljjbI85RegXjJQcwHhxVsmOS hxdVOlSRPpJequ1cs501C7sj796Xa2IcZXtfrFRBKlywwf137wyun1lPSrZe4XDG t8fBZ6ElECgSaVHopcCrx75WBjjItIDZntYundLliSHno2PsMhfDfAcaRDWnsVro Drfj9kTNaro+dA== -----END CERTIFICATE-----Generated at Mon Feb 2 15:46:46 2026 by rpki-client