This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft File: NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft (raw, json) Hash identifier: eTmRPGiw2I20y0kJzyQmnqixH0VrQ1/6SADiNQLjnj4= Subject key identifier: B0:24:65:C1:26:0B:83:AD:B0:1B:FD:33:C9:F5:02:53:C8:BF:EC:BF Authority key identifier: 34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D Certificate issuer: /CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d Certificate serial: 019BFC1C56AE563DF41FE69D5E01C1D7212B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft Manifest number: 033A Signing time: Mon 26 Jan 2026 21:01:14 +0000 Manifest this update: Mon 26 Jan 2026 21:01:14 +0000 Manifest next update: Tue 27 Jan 2026 21:01:14 +0000 Files and hashes: 1: 7ksTJ_jFitxF4bukC24j3eo_mx0.roa (hash: P5sZaUJcRIlYxIsN9061EjjltvsNE9PdjoK/NkSXYrQ=) 2: NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl (hash: uKHOllVHKYsSCH4GziQSbSQyH1ToOYzjDYhoBppvum0=) 3: jSMK0-DQ4LkW8HGxfeOZqpRoUDg.roa (hash: LbCW9qnhO4rcrIcNPyJRkz9sjQKYiVfJkLlpl6db0Mw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1c:56:ae:56:3d:f4:1f:e6:9d:5e:01:c1:d7:21:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d Validity Not Before: Jan 26 21:01:14 2026 GMT Not After : Jan 27 21:01:14 2026 GMT Subject: CN=b02465c1260b83adb01bfd33c9f50253c8bfecbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0a:47:cb:8c:7a:29:54:4d:06:fd:43:2b:39: 3f:f6:4e:89:4f:0f:80:02:15:01:1f:ba:f2:89:e3: dc:da:af:43:7c:db:42:9f:3b:5f:11:a7:3d:f4:d4: ea:11:ee:4c:98:bc:37:c5:d6:45:db:d0:da:6d:87: 5f:14:08:14:82:ab:94:14:e2:6d:03:01:f2:aa:ae: 5d:1c:e8:0b:3b:de:42:ef:7f:19:74:b1:8c:7d:d6: 73:1a:0c:bb:e8:5f:22:b7:cf:ac:a8:84:65:40:59: 34:01:9a:0a:c2:3f:03:4c:8a:ca:5b:64:79:0f:06: 7e:6d:b1:45:6b:4c:34:e7:ee:6a:99:fc:16:78:95: f0:a9:c5:9c:ab:21:5c:f0:ae:58:4c:f2:14:52:c8: 2f:37:89:a5:7d:1a:5b:e2:85:61:85:2d:d5:0f:54: ab:f7:bb:44:eb:50:79:19:ab:6f:a7:b1:50:c4:73: 6f:91:8d:df:76:54:d3:30:02:fb:4f:f1:7c:a9:6c: a7:f0:7b:2b:3d:3c:40:a5:ad:55:60:22:8c:07:47: 81:e3:9f:ee:2b:3a:b3:c2:9b:71:c8:50:cb:a7:58: 81:dd:86:86:4e:c4:28:04:69:b3:ad:ec:3a:ea:22: 1d:66:ec:1e:5b:a4:6d:d6:1c:d6:17:68:f7:00:01: 13:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:24:65:C1:26:0B:83:AD:B0:1B:FD:33:C9:F5:02:53:C8:BF:EC:BF X509v3 Authority Key Identifier: keyid:34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:c9:42:b5:df:3f:1a:8d:84:ec:6d:ec:ca:97:1b:9d:b2:55: e1:90:de:2f:e4:0f:6f:0c:ce:4a:f1:4e:b4:a7:80:fb:4f:ed: c1:d2:30:5b:4e:6c:59:cb:2d:83:23:97:9b:49:f7:df:d0:b6: 32:07:25:9c:0a:5a:c6:ce:dc:7d:0e:ff:56:4a:53:64:1c:dc: 55:85:06:8a:0c:69:58:08:6c:3d:20:9d:af:a1:56:bf:26:bd: 2e:aa:41:8b:b6:ac:9f:f5:e3:9e:f8:1f:bc:9f:3b:57:99:59: 08:fa:b3:c8:21:01:38:87:58:b6:65:41:9e:c5:a2:94:35:21: 17:b8:3b:f4:c0:ea:b2:0b:fa:9e:f5:04:e3:3f:1a:69:4a:9a: 88:25:58:19:f1:8d:26:09:d8:7b:57:d4:11:0f:85:1b:b1:f5: 44:9f:97:65:35:1f:b5:9e:34:1e:ee:a0:6d:e2:b7:d7:ac:b6: 74:05:1a:4e:ff:a9:7f:be:56:a5:8d:0c:45:24:48:bd:de:e7: eb:bb:50:0f:f9:98:fd:82:97:5f:0e:6f:f1:0c:54:64:02:59: 2f:3c:e5:bc:db:44:12:e0:f8:eb:89:d1:30:9a:cf:03:d9:95: 00:42:20:eb:61:0c:6d:42:01:9b:0c:64:e4:bb:5c:77:6f:0a: 2f:ce:36:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8HFauVj30H+adXgHB1yErMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ZGQ0MDI2ZDI5MGYzMjAxZDI4ZWY2ODRkM2M1YWMxM2M5 NmVjNmQwHhcNMjYwMTI2MjEwMTE0WhcNMjYwMTI3MjEwMTE0WjAzMTEwLwYDVQQD EyhiMDI0NjVjMTI2MGI4M2FkYjAxYmZkMzNjOWY1MDI1M2M4YmZlY2JmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygpHy4x6KVRNBv1DKzk/9k6JTw+A AhUBH7ryiePc2q9DfNtCnztfEac99NTqEe5MmLw3xdZF29DabYdfFAgUgquUFOJt AwHyqq5dHOgLO95C738ZdLGMfdZzGgy76F8it8+sqIRlQFk0AZoKwj8DTIrKW2R5 DwZ+bbFFa0w05+5qmfwWeJXwqcWcqyFc8K5YTPIUUsgvN4mlfRpb4oVhhS3VD1Sr 97tE61B5Gatvp7FQxHNvkY3fdlTTMAL7T/F8qWyn8HsrPTxApa1VYCKMB0eB45/u KzqzwptxyFDLp1iB3YaGTsQoBGmzrew66iIdZuweW6Rt1hzWF2j3AAETpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLAkZcEmC4OtsBv9M8n1AlPIv+y/MB8GA1UdIwQY MBaAFDTdQCbSkPMgHSjvaE08WsE8luxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy83MmE0MDUtMTU5OC00MDMzLThlMmIt ODc4NTA3ZWQ0NmY3LzEvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy83MmE0MDUtMTU5OC00MDMzLThlMmItODc4NTA3ZWQ0NmY3 LzEvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuclCtd8/ Go2E7G3sypcbnbJV4ZDeL+QPbwzOSvFOtKeA+0/twdIwW05sWcstgyOXm0n339C2 MgclnApaxs7cfQ7/VkpTZBzcVYUGigxpWAhsPSCdr6FWvya9LqpBi7asn/Xjnvgf vJ87V5lZCPqzyCEBOIdYtmVBnsWilDUhF7g79MDqsgv6nvUE4z8aaUqaiCVYGfGN JgnYe1fUEQ+FG7H1RJ+XZTUftZ40Hu6gbeK316y2dAUaTv+pf75WpY0MRSRIvd7n 67tQD/mY/YKXXw5v8QxUZAJZLzzlvNtEEuD464nRMJrPA9mVAEIg62EMbUIBmwxk 5Ltcd28KL842bw== -----END CERTIFICATE-----Generated at Tue Jan 27 03:56:47 2026 by rpki-client