This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json) Hash identifier: Szjw+IL/kNxYKvmp6ucZepBWWYsxP6jKcDLiAro+Bwk= Subject key identifier: 30:1D:03:4B:33:F9:00:5A:F2:3D:84:6E:11:8F:CA:41:18:35:00:0C Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d Certificate serial: 019C1C82E6ABA95BCE00876FED37C95FC617 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft Manifest number: 09D5 Signing time: Mon 02 Feb 2026 04:01:06 +0000 Manifest this update: Mon 02 Feb 2026 04:01:06 +0000 Manifest next update: Tue 03 Feb 2026 04:01:06 +0000 Files and hashes: 1: Exw1Qk2SWzacP5BYuop4G0zGR9w.roa (hash: LJscICsI9uW5FgqiZjcGqJLPX1UQnMp+ey99OzItE9c=) 2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: Fl+tQ5uLzUdjUG2mZFY8dtFvyM1T0QrGadRHthy8mag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 04:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:82:e6:ab:a9:5b:ce:00:87:6f:ed:37:c9:5f:c6:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d Validity Not Before: Feb 2 04:01:06 2026 GMT Not After : Feb 3 04:01:06 2026 GMT Subject: CN=301d034b33f9005af23d846e118fca411835000c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:36:e5:6d:fb:bc:51:d6:47:0a:d2:64:be: 16:aa:10:09:75:93:cb:c6:0f:80:35:06:a7:7a:9b: 89:21:28:90:34:05:86:50:e6:f9:87:f5:01:06:14: fe:d7:87:75:8f:7f:f5:c8:8e:bc:de:1b:b7:c9:99: c5:ef:c8:83:db:b5:8a:14:48:0a:6d:ee:a9:b9:6c: aa:b2:62:f7:5a:8a:d2:5f:07:61:e2:6c:a1:08:6b: 0a:8c:f2:bb:ea:31:f6:2b:c0:c4:a4:f7:77:62:98: 69:97:42:f6:55:4c:38:64:21:e7:ae:12:4e:5a:c0: cc:56:69:9a:96:96:77:21:44:4e:c8:2d:29:22:db: 89:c3:7f:b1:08:37:06:2e:48:ab:05:74:cd:67:6b: 37:b7:1c:0e:fd:41:e8:50:85:86:02:ec:e0:0f:93: 65:f8:7e:0f:ae:53:14:bd:30:c0:e4:a0:77:b1:e7: 43:46:9e:0e:6b:29:5a:04:65:3f:48:53:ed:ea:82: b0:82:59:04:2a:62:fd:6f:4e:27:6f:8f:e1:5b:c8: 4f:0d:f9:a3:bb:84:a3:ea:e6:59:79:85:e4:19:2e: 1c:84:5e:ff:7c:65:86:f6:2d:f7:43:59:e9:3f:28: 73:93:5e:b9:04:3e:11:90:eb:96:87:f1:bf:6a:17: 4c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1D:03:4B:33:F9:00:5A:F2:3D:84:6E:11:8F:CA:41:18:35:00:0C X509v3 Authority Key Identifier: keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:98:bb:23:a6:54:8a:99:d4:fd:c6:ab:b0:c5:e6:59:93:be: c7:3e:67:5e:c0:5f:98:31:ec:9d:0f:31:4f:ee:de:da:81:41: bd:6d:7a:6f:bd:50:8e:c8:de:d3:d5:24:04:de:07:f8:68:5f: 74:fc:38:56:63:4f:da:ac:3f:9e:02:4e:08:d0:39:54:79:a0: b1:d6:0a:5d:4e:25:3c:40:af:2d:5a:4d:42:7f:93:f0:20:1e: c5:cf:56:63:bc:f3:05:76:88:26:8a:9f:a6:a6:9c:6d:c2:f4: a2:f1:98:35:44:1c:48:b2:88:94:b3:0c:51:65:07:42:06:dd: 60:0e:ac:26:f5:a6:11:7f:e9:9d:b8:2b:51:08:ec:ac:8a:f7: 4f:7f:42:06:5d:24:0d:25:3f:f8:d0:24:fc:fd:57:ce:08:20: 15:8c:2e:2c:73:0a:6e:e6:a7:39:67:a3:75:2c:0e:43:6a:79: 29:c7:a7:ef:9a:27:9c:55:45:88:55:fc:4e:29:f1:02:31:38: 88:fa:2b:4c:dd:1a:db:bf:80:f8:9d:79:5e:d8:58:79:b6:22: eb:3d:4c:eb:1e:7e:05:e6:a2:51:54:64:5c:8b:f5:bd:59:a8: 49:e6:9a:57:cb:c3:90:13:8c:8f:ba:3e:26:bc:24:c3:19:7c: 13:c2:23:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcguarqVvOAIdv7TfJX8YXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NTI1YTM2MmU4NzcwNWExZWMwMjJkMTY1NjBmMjc2ZDU5 Y2VlMWQwHhcNMjYwMjAyMDQwMTA2WhcNMjYwMjAzMDQwMTA2WjAzMTEwLwYDVQQD EygzMDFkMDM0YjMzZjkwMDVhZjIzZDg0NmUxMThmY2E0MTE4MzUwMDBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9k25W37vFHWRwrSZL4WqhAJdZPL xg+ANQanepuJISiQNAWGUOb5h/UBBhT+14d1j3/1yI683hu3yZnF78iD27WKFEgK be6puWyqsmL3WorSXwdh4myhCGsKjPK76jH2K8DEpPd3Yphpl0L2VUw4ZCHnrhJO WsDMVmmalpZ3IUROyC0pItuJw3+xCDcGLkirBXTNZ2s3txwO/UHoUIWGAuzgD5Nl +H4PrlMUvTDA5KB3sedDRp4OaylaBGU/SFPt6oKwglkEKmL9b04nb4/hW8hPDfmj u4Sj6uZZeYXkGS4chF7/fGWG9i33Q1npPyhzk165BD4RkOuWh/G/ahdMDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDAdA0sz+QBa8j2EbhGPykEYNQAMMB8GA1UdIwQY MBaAFGlSWjYuh3BaHsAi0WVg8nbVnO4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzkt NjVkNmNhM2Y0OWQ4LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzktNjVkNmNhM2Y0OWQ4 LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwpi7I6ZU ipnU/carsMXmWZO+xz5nXsBfmDHsnQ8xT+7e2oFBvW16b71Qjsje09UkBN4H+Ghf dPw4VmNP2qw/ngJOCNA5VHmgsdYKXU4lPECvLVpNQn+T8CAexc9WY7zzBXaIJoqf pqacbcL0ovGYNUQcSLKIlLMMUWUHQgbdYA6sJvWmEX/pnbgrUQjsrIr3T39CBl0k DSU/+NAk/P1XzgggFYwuLHMKbuanOWejdSwOQ2p5Kcen75onnFVFiFX8TinxAjE4 iPorTN0a27+A+J15XthYebYi6z1M6x5+BeaiUVRkXIv1vVmoSeaaV8vDkBOMj7o+ Jrwkwxl8E8IjHA== -----END CERTIFICATE-----Generated at Mon Feb 2 12:46:48 2026 by rpki-client