This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft File: ZD4bqRxWmoshptLWf1271sBOQ-o.mft (raw, json) Hash identifier: GC7NAu+snw6/zl2INI9QyhrJR/skUoENMWeqA/Xhjk0= Subject key identifier: 2C:13:67:E4:1E:AD:85:82:34:86:79:4A:ED:7C:8A:DC:CF:E9:25:6E Authority key identifier: 64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA Certificate issuer: /CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea Certificate serial: 019BF91C11E27B0351E2B938BD59FA3FFDFF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft Manifest number: 17EC Signing time: Mon 26 Jan 2026 07:02:04 +0000 Manifest this update: Mon 26 Jan 2026 07:02:04 +0000 Manifest next update: Tue 27 Jan 2026 07:02:04 +0000 Files and hashes: 1: 3s8sY8JfXcq5h0JX5tklV5kK-kI.roa (hash: tUMXR+PdDpzmT4OFEkUcYoWlIAGQobO28dDLQShQPJw=) 2: ATgciNvIucjKCFQUFyNe0yS56Xs.roa (hash: ODwExdkuk2O0WB+oRGE/a1ipu8Cu3cgAGkwUAaoVX9Y=) 3: OQzv-VnaVoUaemq98kXrP_sXKa8.roa (hash: 0UtFVm4divpIKSWLm6cbL2r77Cn14CFuHmjdZonPbwc=) 4: RS2ZY1uc0JYuhYWkx4aN_m6o7qE.roa (hash: ustjYTj3tB8+/KIrC0a07UkmqBeIt1gvoyIyFDQVlds=) 5: Wg4SVphoReQnCpUyJ5-oZULRakI.roa (hash: Q8EhoBGzMhLpl/1N6VdUdhxyINS1Dda6nBjz3JP3ehw=) 6: ZD4bqRxWmoshptLWf1271sBOQ-o.crl (hash: DULuDN695l5G4IWsP3vyLjPCLFJq4dkUr9h4uydFlSs=) 7: brDP8rCtmy1_6zegBiE3p8TvEes.roa (hash: Z9tvowz9KVQdbieVlExnm4rsZGGsOyESicqYmRLZjd8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1c:11:e2:7b:03:51:e2:b9:38:bd:59:fa:3f:fd:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea Validity Not Before: Jan 26 07:02:04 2026 GMT Not After : Jan 27 07:02:04 2026 GMT Subject: CN=2c1367e41ead85823486794aed7c8adccfe9256e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5b:3b:8e:7a:1e:8a:1b:d0:06:92:7e:c3:77: f0:46:b9:db:e0:7e:62:c3:72:f5:18:fd:3d:e7:c8: 19:61:96:b1:ce:a1:50:6a:f0:56:02:7b:f4:62:04: 43:8b:b9:7c:03:00:06:42:8c:6f:2d:93:c2:eb:cc: c1:58:b5:bf:a6:d5:04:c0:96:4e:5d:60:ae:8d:01: 04:3a:20:dd:4b:86:62:de:d3:d4:dd:d3:75:26:0e: 61:5c:a7:2f:12:97:32:59:5f:de:9d:3f:13:1b:69: c8:67:bf:b5:8f:9b:75:50:0e:93:2a:8d:0d:a2:f1: f4:65:c0:6e:e3:db:ca:41:5a:63:56:af:03:47:40: 36:7c:ad:21:c1:cd:0a:99:32:ab:36:29:50:cd:09: 7e:5c:1c:d1:1e:1d:4f:8f:4f:12:4b:ff:0f:72:e1: fe:28:97:a1:17:50:3b:7a:ad:22:da:70:97:f5:33: e7:96:89:42:4a:ae:b6:22:20:e6:47:7a:13:a1:46: 14:6d:e8:1c:5a:1f:d4:5a:96:70:9f:b8:61:2f:9d: 62:e7:90:0f:ef:0f:c7:ad:db:11:0f:1e:84:34:9f: 47:e6:2b:97:ee:56:c2:1b:62:35:46:fc:e7:83:ec: 13:b8:5f:9f:e2:cd:7f:fa:97:5e:da:82:46:3a:f8: 44:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:13:67:E4:1E:AD:85:82:34:86:79:4A:ED:7C:8A:DC:CF:E9:25:6E X509v3 Authority Key Identifier: keyid:64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:c3:c3:a5:fc:ec:ab:f4:d9:b1:d3:b9:8c:45:f8:16:63:84: 89:86:4e:0d:e2:0b:aa:5f:21:82:96:28:81:09:92:cf:a3:c8: ac:a5:7a:2a:7c:7b:b4:88:12:25:e5:3f:1d:5d:a2:cc:93:34: ce:54:89:cc:f4:92:c8:77:a8:bb:e4:5d:dc:01:63:be:64:b2: 13:ca:28:3f:06:93:c5:ae:6f:c8:8e:78:8d:72:5d:1f:f6:71: 18:3e:5c:1a:f1:a6:14:3a:ff:d8:b7:b7:fb:5a:b5:83:e6:25: f4:87:d7:83:92:40:39:e2:fe:ea:9e:ee:44:a3:9c:df:61:92: dd:c4:58:c9:17:75:f6:5f:29:46:8e:1a:14:b5:25:41:b0:c3: d4:14:b2:01:7a:36:a0:ef:f8:74:7e:45:03:d4:5f:65:35:7b: e0:fb:84:96:4f:e6:4c:1b:20:88:9d:62:63:cb:fa:f3:fe:db: 4c:24:4d:2a:f5:8a:b8:9e:52:ad:58:6b:f9:19:2b:a3:e5:ab: 77:41:85:35:8b:6d:d5:ea:b4:1b:36:20:a0:00:c8:dc:d4:13: 07:a5:44:c2:39:f2:fe:bc:b6:5f:ca:53:f4:8a:71:f4:6f:67: f5:53:f3:35:8b:32:96:04:16:d8:ec:76:0f:c3:20:0f:81:8f: 46:46:cc:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5HBHiewNR4rk4vVn6P/3/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0M2UxYmE5MWM1NjlhOGIyMWE2ZDJkNjdmNWRiYmQ2YzA0 ZTQzZWEwHhcNMjYwMTI2MDcwMjA0WhcNMjYwMTI3MDcwMjA0WjAzMTEwLwYDVQQD EygyYzEzNjdlNDFlYWQ4NTgyMzQ4Njc5NGFlZDdjOGFkY2NmZTkyNTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVs7jnoeihvQBpJ+w3fwRrnb4H5i w3L1GP0958gZYZaxzqFQavBWAnv0YgRDi7l8AwAGQoxvLZPC68zBWLW/ptUEwJZO XWCujQEEOiDdS4Zi3tPU3dN1Jg5hXKcvEpcyWV/enT8TG2nIZ7+1j5t1UA6TKo0N ovH0ZcBu49vKQVpjVq8DR0A2fK0hwc0KmTKrNilQzQl+XBzRHh1Pj08SS/8PcuH+ KJehF1A7eq0i2nCX9TPnlolCSq62IiDmR3oToUYUbegcWh/UWpZwn7hhL51i55AP 7w/HrdsRDx6ENJ9H5iuX7lbCG2I1Rvzng+wTuF+f4s1/+pde2oJGOvhESQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCwTZ+QerYWCNIZ5Su18itzP6SVuMB8GA1UdIwQY MBaAFGQ+G6kcVpqLIabS1n9du9bATkPqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkQ0YnFSeFdtb3NocHRMV2YxMjcxc0JPUS1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9hY2E5MTItOWU4ZC00NzQ5LTk1ZTAt ZmVhMGFmZjM1OWY1LzEvWkQ0YnFSeFdtb3NocHRMV2YxMjcxc0JPUS1vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My9hY2E5MTItOWU4ZC00NzQ5LTk1ZTAtZmVhMGFmZjM1OWY1 LzEvWkQ0YnFSeFdtb3NocHRMV2YxMjcxc0JPUS1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARcPDpfzs q/TZsdO5jEX4FmOEiYZODeILql8hgpYogQmSz6PIrKV6Knx7tIgSJeU/HV2izJM0 zlSJzPSSyHeou+Rd3AFjvmSyE8ooPwaTxa5vyI54jXJdH/ZxGD5cGvGmFDr/2Le3 +1q1g+Yl9IfXg5JAOeL+6p7uRKOc32GS3cRYyRd19l8pRo4aFLUlQbDD1BSyAXo2 oO/4dH5FA9RfZTV74PuElk/mTBsgiJ1iY8v68/7bTCRNKvWKuJ5SrVhr+Rkro+Wr d0GFNYtt1eq0GzYgoADI3NQTB6VEwjny/ry2X8pT9Ipx9G9n9VPzNYsylgQW2Ox2 D8MgD4GPRkbMLw== -----END CERTIFICATE-----Generated at Mon Jan 26 14:07:12 2026 by rpki-client