This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft File: mPArXPtBclCOBze_Jc1dIqAdxFo.mft (raw, json) Hash identifier: gKWY+kUtGvXjYslqXoL4lokKrJ+abGcv1imKxVo1RL4= Subject key identifier: 4B:7B:D2:54:9A:3C:E0:8A:89:A0:6D:2C:53:DF:08:C9:88:F4:1C:63 Authority key identifier: 98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A Certificate issuer: /CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a Certificate serial: 019C0EC722A91FD31BB69C65B978BA85296B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft Manifest number: 0925 Signing time: Fri 30 Jan 2026 12:00:57 +0000 Manifest this update: Fri 30 Jan 2026 12:00:57 +0000 Manifest next update: Sat 31 Jan 2026 12:00:57 +0000 Files and hashes: 1: Kch5YnfnliI8NHiCA07xVEbQzV4.roa (hash: 6jE9VEbDYjIrbBsLXEa9CMfNyqfSxGZFUWK682Q2o9I=) 2: mPArXPtBclCOBze_Jc1dIqAdxFo.crl (hash: x9QnZEmnblFC8Nyq3QkgLPslLedqoBhm7oLz9DcU6os=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 31 Jan 2026 12:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:0e:c7:22:a9:1f:d3:1b:b6:9c:65:b9:78:ba:85:29:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a Validity Not Before: Jan 30 12:00:57 2026 GMT Not After : Jan 31 12:00:57 2026 GMT Subject: CN=4b7bd2549a3ce08a89a06d2c53df08c988f41c63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ee:0a:14:c6:49:36:38:97:34:da:03:85:72: 28:43:d5:16:08:46:64:7c:c9:93:3a:2a:02:64:d6: 6d:51:ee:a9:40:6d:12:3d:f9:e2:cd:76:b5:0b:02: 7f:1d:e3:c8:2c:77:c3:2c:bf:8b:ba:8e:89:9b:b5: b9:74:66:45:3a:03:dd:0b:fc:7a:37:59:d1:a7:7c: 44:b8:94:80:17:40:ef:e4:5e:1f:cc:91:69:77:46: 46:ee:17:42:f7:07:13:9d:14:df:45:99:8d:3d:97: 7b:d4:ac:3e:03:d0:f5:c8:7d:7c:67:10:11:65:cc: f4:c0:27:22:c6:ab:9e:32:69:9a:17:7a:04:16:c7: 19:82:4f:cd:80:39:15:1d:9a:e0:17:7a:db:25:aa: 22:af:54:9d:2c:d8:8e:e4:ba:87:6d:dd:98:83:86: 4f:a0:ee:c9:b6:57:14:0e:c6:53:ad:b6:33:e9:29: 13:dc:83:bb:82:d0:67:9b:6c:f8:82:8f:f8:23:01: 24:9d:8f:ce:c4:75:e6:58:66:af:c7:eb:09:9f:20: 1f:94:2f:e7:58:3b:be:fb:e3:41:43:97:cd:8e:69: f9:ae:f9:05:e6:91:af:4d:af:73:04:a9:d3:86:f8: 59:82:f6:bb:27:87:b0:86:63:97:b1:1d:d7:00:42: 8d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:7B:D2:54:9A:3C:E0:8A:89:A0:6D:2C:53:DF:08:C9:88:F4:1C:63 X509v3 Authority Key Identifier: keyid:98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:67:d6:65:5c:34:fd:ce:f8:82:6b:b2:cf:14:f8:73:73:12: 27:c2:a4:0c:62:8c:9d:d7:fa:86:15:64:c9:34:41:dc:ee:83: 70:db:74:ce:23:77:e2:89:45:07:37:7b:8d:81:bc:b1:e2:ca: 72:cc:c3:a5:40:16:7e:8e:12:df:e3:eb:04:d2:e1:2c:bf:1b: 19:2e:1a:b6:ff:7b:d4:7a:bc:3d:c4:ca:fe:79:50:69:0b:2c: 0b:04:4c:4f:9b:2c:c0:c0:f1:55:58:b6:b1:1d:a2:0f:d6:92: 9e:f4:23:19:6c:89:eb:0a:e8:e4:5a:5f:f7:c8:11:fc:d5:df: 75:5f:f5:1a:b4:46:3d:65:cb:21:b9:60:0c:7f:12:dd:ae:bf: 78:3c:0a:54:3f:60:ab:03:5e:5d:0f:80:da:be:5d:8f:cc:b0: 4b:18:cb:9d:73:c6:5b:5d:7f:3e:f3:3c:72:ed:34:67:da:56: d5:e0:4f:fd:6a:02:2b:17:48:0f:6b:48:0a:1e:63:fc:99:52: 95:8d:66:85:f9:41:50:01:18:ef:69:92:ec:7d:4e:b3:86:e0: c1:44:09:e0:cb:d6:ef:ec:fc:cf:56:e6:50:49:3f:38:99:d9: 85:3d:5e:04:fd:6d:22:71:ed:e3:86:17:af:fd:ed:b8:24:6c: eb:c9:3a:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwOxyKpH9MbtpxluXi6hSlrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4ZjAyYjVjZmI0MTcyNTA4ZTA3MzdiZjI1Y2Q1ZDIyYTAx ZGM0NWEwHhcNMjYwMTMwMTIwMDU3WhcNMjYwMTMxMTIwMDU3WjAzMTEwLwYDVQQD Eyg0YjdiZDI1NDlhM2NlMDhhODlhMDZkMmM1M2RmMDhjOTg4ZjQxYzYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlu4KFMZJNjiXNNoDhXIoQ9UWCEZk fMmTOioCZNZtUe6pQG0SPfnizXa1CwJ/HePILHfDLL+Luo6Jm7W5dGZFOgPdC/x6 N1nRp3xEuJSAF0Dv5F4fzJFpd0ZG7hdC9wcTnRTfRZmNPZd71Kw+A9D1yH18ZxAR Zcz0wCcixqueMmmaF3oEFscZgk/NgDkVHZrgF3rbJaoir1SdLNiO5LqHbd2Yg4ZP oO7JtlcUDsZTrbYz6SkT3IO7gtBnm2z4go/4IwEknY/OxHXmWGavx+sJnyAflC/n WDu+++NBQ5fNjmn5rvkF5pGvTa9zBKnThvhZgva7J4ewhmOXsR3XAEKNUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEt70lSaPOCKiaBtLFPfCMmI9BxjMB8GA1UdIwQY MBaAFJjwK1z7QXJQjgc3vyXNXSKgHcRaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVBBclhQdEJjbENPQnplX0pjMWRJcUFkeEZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS80M2QzMDEtZjgxYS00OTJlLTkyMmMt Yzk3MWRjNzEzYjFmLzEvbVBBclhQdEJjbENPQnplX0pjMWRJcUFkeEZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS80M2QzMDEtZjgxYS00OTJlLTkyMmMtYzk3MWRjNzEzYjFm LzEvbVBBclhQdEJjbENPQnplX0pjMWRJcUFkeEZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD2fWZVw0 /c74gmuyzxT4c3MSJ8KkDGKMndf6hhVkyTRB3O6DcNt0ziN34olFBzd7jYG8seLK cszDpUAWfo4S3+PrBNLhLL8bGS4atv971Hq8PcTK/nlQaQssCwRMT5sswMDxVVi2 sR2iD9aSnvQjGWyJ6wro5Fpf98gR/NXfdV/1GrRGPWXLIblgDH8S3a6/eDwKVD9g qwNeXQ+A2r5dj8ywSxjLnXPGW11/PvM8cu00Z9pW1eBP/WoCKxdID2tICh5j/JlS lY1mhflBUAEY72mS7H1Os4bgwUQJ4MvW7+z8z1bmUEk/OJnZhT1eBP1tInHt44YX r/3tuCRs68k69w== -----END CERTIFICATE-----Generated at Fri Jan 30 17:21:08 2026 by rpki-client