This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft File: U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft (raw, json) Hash identifier: ThqhB5h+2Tqz4vgG3HG0tO0q+CyAR4cIwhWq/PZFtv0= Subject key identifier: 01:DE:DF:92:79:A6:EB:00:7B:8F:AC:A5:E6:ED:EB:36:4D:6E:08:1B Authority key identifier: 53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C Certificate issuer: /CN=5349c2d00ba46be9244b76194baa10f33ce3462c Certificate serial: 019BFF53AB617DA564D99B02897DA83E1594 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft Manifest number: 087A Signing time: Tue 27 Jan 2026 12:00:31 +0000 Manifest this update: Tue 27 Jan 2026 12:00:31 +0000 Manifest next update: Wed 28 Jan 2026 12:00:31 +0000 Files and hashes: 1: U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl (hash: lXGiLkr7Q8a+X0LGq850OTJydni6Z4kReQRPguRYszw=) 2: XcRX1RAJL4NGdzyun1ejeZqAF24.roa (hash: YNAZegeHiWzquonxoxjxpFIiVyp3kn/I+1eygwpZVIc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ff:53:ab:61:7d:a5:64:d9:9b:02:89:7d:a8:3e:15:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5349c2d00ba46be9244b76194baa10f33ce3462c Validity Not Before: Jan 27 12:00:31 2026 GMT Not After : Jan 28 12:00:31 2026 GMT Subject: CN=01dedf9279a6eb007b8faca5e6edeb364d6e081b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:2d:4a:ee:58:9e:7a:f8:f8:39:0a:8a:db: 9a:7c:24:6d:0e:8c:45:76:7f:cf:fe:9f:6d:7d:f4: 9a:5c:32:43:e6:ca:fc:10:ab:c7:e7:2d:93:20:21: e2:2a:b3:17:f0:8b:ce:13:57:8f:02:a0:a7:59:e7: 84:5a:e3:33:52:c0:67:f0:f2:36:15:5e:12:2f:5f: 83:9e:24:85:9b:c2:31:fb:4f:8f:d5:ec:34:63:5a: bf:30:25:5b:1e:8c:f6:71:ea:1f:2c:f5:70:a3:2c: b7:02:db:ea:3b:63:7f:d2:00:87:36:f0:46:27:5f: dd:22:6e:e1:15:f9:71:39:51:d0:9a:06:26:33:1b: 11:ec:d3:67:e1:8f:0d:cd:4e:22:ca:9d:c1:db:4c: d0:58:01:ca:b2:93:89:43:4f:b4:ab:7e:4b:68:e3: 70:f8:46:8b:ef:16:e1:ae:08:34:de:74:4d:9c:f1: cc:9d:0f:56:e1:ac:8e:fc:2c:ad:c6:9e:bc:5c:b1: b3:3a:46:72:5b:d7:c7:fd:7e:3c:b3:32:fe:76:53: e4:b2:0c:ba:fe:78:79:95:e1:d7:32:bb:1a:e5:6b: 8e:12:2d:a4:f1:80:26:41:06:06:1b:c3:29:0a:bf: c0:07:6d:d8:12:58:22:57:db:ba:17:94:9c:87:4b: 95:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:DE:DF:92:79:A6:EB:00:7B:8F:AC:A5:E6:ED:EB:36:4D:6E:08:1B X509v3 Authority Key Identifier: keyid:53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ad:d9:37:aa:3b:43:22:b1:82:b3:e7:80:38:96:be:24:47: db:32:b9:5c:f9:4d:27:ee:85:d9:fc:60:75:9b:f9:2c:eb:7a: 33:69:b3:95:79:c0:76:c2:ac:2d:68:81:7f:a3:1c:53:2d:59: 41:f9:33:9e:44:13:63:d9:b9:96:37:38:c5:21:ee:79:c2:dd: 5c:3c:d3:6c:a6:68:fa:bd:cc:bf:49:3f:f8:54:dc:aa:b9:52: 5d:73:9e:6a:b4:f8:1f:e9:7e:cd:32:45:f5:bc:6b:15:ac:6a: 27:76:01:ce:ed:aa:f4:88:1a:21:cf:1a:a7:d9:76:ae:f2:b7: 96:a8:6e:39:96:a3:b9:bd:24:bf:1b:eb:fb:ba:7b:ff:c1:b1: 30:ed:2b:df:01:2b:a9:ff:5e:d4:a7:59:c5:cc:c0:fa:6a:63: 46:87:7c:14:ac:ed:a3:8f:4c:a8:f2:49:16:a5:60:dd:e7:96: e5:a5:a9:b4:6c:cf:80:39:30:c8:ce:89:0d:6d:4b:0f:b6:77: 28:b8:5c:25:b7:3a:cf:e2:7b:6c:6d:b8:5c:f7:cd:56:f5:b7: 5c:4a:17:01:63:2c:85:1a:bc:7b:7d:a3:10:9e:a2:0d:05:01: 8a:6f:74:e7:f3:87:d4:81:ec:c4:83:ba:0a:2b:98:2b:e5:6a: 19:ec:48:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv/U6thfaVk2ZsCiX2oPhWUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNDljMmQwMGJhNDZiZTkyNDRiNzYxOTRiYWExMGYzM2Nl MzQ2MmMwHhcNMjYwMTI3MTIwMDMxWhcNMjYwMTI4MTIwMDMxWjAzMTEwLwYDVQQD EygwMWRlZGY5Mjc5YTZlYjAwN2I4ZmFjYTVlNmVkZWIzNjRkNmUwODFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSMtSu5Ynnr4+DkKituafCRtDoxF dn/P/p9tffSaXDJD5sr8EKvH5y2TICHiKrMX8IvOE1ePAqCnWeeEWuMzUsBn8PI2 FV4SL1+DniSFm8Ix+0+P1ew0Y1q/MCVbHoz2ceofLPVwoyy3AtvqO2N/0gCHNvBG J1/dIm7hFflxOVHQmgYmMxsR7NNn4Y8NzU4iyp3B20zQWAHKspOJQ0+0q35LaONw +EaL7xbhrgg03nRNnPHMnQ9W4ayO/Cytxp68XLGzOkZyW9fH/X48szL+dlPksgy6 /nh5leHXMrsa5WuOEi2k8YAmQQYGG8MpCr/AB23YElgiV9u6F5Sch0uVlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAHe35J5pusAe4+spebt6zZNbggbMB8GA1UdIwQY MBaAFFNJwtALpGvpJEt2GUuqEPM840YsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTBuQzBBdWthLWtrUzNZWlM2b1E4enpqUml3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9mOGFlNDctMGVkNC00NjgxLTljMTIt ZmExMjYwODUwNzA5LzEvVTBuQzBBdWthLWtrUzNZWlM2b1E4enpqUml3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9mOGFlNDctMGVkNC00NjgxLTljMTItZmExMjYwODUwNzA5 LzEvVTBuQzBBdWthLWtrUzNZWlM2b1E4enpqUml3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADq3ZN6o7 QyKxgrPngDiWviRH2zK5XPlNJ+6F2fxgdZv5LOt6M2mzlXnAdsKsLWiBf6McUy1Z QfkznkQTY9m5ljc4xSHuecLdXDzTbKZo+r3Mv0k/+FTcqrlSXXOearT4H+l+zTJF 9bxrFaxqJ3YBzu2q9IgaIc8ap9l2rvK3lqhuOZajub0kvxvr+7p7/8GxMO0r3wEr qf9e1KdZxczA+mpjRod8FKzto49MqPJJFqVg3eeW5aWptGzPgDkwyM6JDW1LD7Z3 KLhcJbc6z+J7bG24XPfNVvW3XEoXAWMshRq8e32jEJ6iDQUBim905/OH1IHsxIO6 CiuYK+VqGexIaQ== -----END CERTIFICATE-----Generated at Tue Jan 27 17:12:26 2026 by rpki-client