This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft File: pl24nou2YPIetcSvO5rdUtV-uJ8.mft (raw, json) Hash identifier: HdlfAgDWfO6V4FSQbM1h1OPhDeOj6CLAYd9oXw7oLdE= Subject key identifier: 3B:71:E3:17:7A:78:3A:F1:3E:96:80:AB:9A:FD:FF:22:66:21:E0:CC Authority key identifier: A6:5D:B8:9E:8B:B6:60:F2:1E:B5:C4:AF:3B:9A:DD:52:D5:7E:B8:9F Certificate issuer: /CN=a65db89e8bb660f21eb5c4af3b9add52d57eb89f Certificate serial: 019BFCF7C117AA41D307492EB4845F486FCB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft Manifest number: 0555 Signing time: Tue 27 Jan 2026 01:00:53 +0000 Manifest this update: Tue 27 Jan 2026 01:00:53 +0000 Manifest next update: Wed 28 Jan 2026 01:00:53 +0000 Files and hashes: 1: NnDti1qolMnRdu6TKLIWSO85A8k.roa (hash: rZbXVayKsphGvgxDa2Rkpb2xF4uS1h5k4Mw2d6eGCNs=) 2: pl24nou2YPIetcSvO5rdUtV-uJ8.crl (hash: wQmGH1qw7VYIdEjSCaYqIp8/VPqmqbSi/i0Z+JNEN5M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:f7:c1:17:aa:41:d3:07:49:2e:b4:84:5f:48:6f:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a65db89e8bb660f21eb5c4af3b9add52d57eb89f Validity Not Before: Jan 27 01:00:53 2026 GMT Not After : Jan 28 01:00:53 2026 GMT Subject: CN=3b71e3177a783af13e9680ab9afdff226621e0cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e0:9c:c4:f6:6d:7a:c5:d6:95:3e:4a:1d:41: 4a:c0:48:8d:23:d4:e7:ed:41:95:6e:02:fa:dd:e0: e4:4c:c6:50:60:95:94:73:61:e4:93:ef:be:3b:3a: 91:dc:d9:4a:03:19:f5:80:8c:aa:9d:01:5b:f8:56: 86:fa:c9:d8:04:de:e7:f2:40:80:b7:f5:c8:ed:01: f4:b2:95:0d:46:3f:67:2e:07:38:c4:89:a6:06:bb: 76:61:6d:43:70:d3:e2:d4:06:c1:bb:82:57:e0:a2: 31:10:23:a4:53:3c:54:e5:24:74:0a:f5:95:6b:1f: 7e:26:0c:ae:50:ba:69:cf:c5:65:01:32:ff:0a:17: f2:88:70:cb:c1:3d:b3:a1:c9:3b:21:6e:3f:5c:5e: 26:f9:88:49:90:d9:c6:1d:b0:93:cf:28:2d:de:b1: 73:0b:5f:c7:40:6c:76:8b:36:88:2c:c6:54:21:e5: 9e:9b:16:ca:44:45:97:e8:65:c8:6c:0c:95:58:78: 3b:ce:83:6a:7a:35:bc:ef:1e:a5:93:7a:a3:07:b0: 2e:f5:ac:ae:04:d0:45:13:47:fa:7c:0b:34:c0:8e: b0:ec:1e:16:5d:e0:27:71:2a:5d:10:93:fa:ff:31: 24:52:93:ba:14:b9:31:37:18:cb:ca:9c:6a:f2:da: 62:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:71:E3:17:7A:78:3A:F1:3E:96:80:AB:9A:FD:FF:22:66:21:E0:CC X509v3 Authority Key Identifier: keyid:A6:5D:B8:9E:8B:B6:60:F2:1E:B5:C4:AF:3B:9A:DD:52:D5:7E:B8:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:82:12:61:a9:58:98:94:30:48:cd:2b:6c:ab:df:b0:83:d3: 6b:97:62:4a:84:de:d1:86:3b:fd:69:79:5c:58:54:4b:6b:27: 68:bd:63:05:e7:30:cd:4a:e5:ec:6b:36:c7:59:c4:34:cf:bb: 0a:a0:f9:57:93:0c:c7:e6:db:3a:59:3f:dc:94:02:77:81:d2: 04:fa:89:66:90:ba:4c:9e:83:d7:81:99:d0:93:ca:5e:d5:c3: 33:70:a4:43:a2:72:2b:e4:3d:36:f6:43:ef:0d:ee:aa:a8:f7: 68:d7:b7:06:68:42:35:02:4d:6c:df:ed:23:89:3c:86:c7:b2: 3b:45:95:2a:c6:47:dd:f7:5c:fb:72:20:ef:9b:66:51:ea:c1: e6:97:bc:57:b8:43:a5:be:69:65:60:c9:d3:c1:27:34:f4:76: 5b:6c:16:2d:51:57:32:f9:4f:b5:b4:76:57:81:ae:48:a1:76: 38:d2:1a:c0:a0:3c:16:41:9c:5a:eb:60:88:5f:9a:7a:9b:bd: 08:df:9c:69:cc:dd:e3:52:78:08:b7:a5:90:00:46:0b:bc:c2: 24:01:ce:04:bd:49:2c:98:5a:f8:13:bd:5a:7e:9b:91:ed:c5: a9:d6:fa:81:24:b0:58:f3:7a:b8:b5:4e:c5:fc:38:af:05:79: c1:c6:41:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv898EXqkHTB0kutIRfSG/LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2NWRiODllOGJiNjYwZjIxZWI1YzRhZjNiOWFkZDUyZDU3 ZWI4OWYwHhcNMjYwMTI3MDEwMDUzWhcNMjYwMTI4MDEwMDUzWjAzMTEwLwYDVQQD EygzYjcxZTMxNzdhNzgzYWYxM2U5NjgwYWI5YWZkZmYyMjY2MjFlMGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApuCcxPZtesXWlT5KHUFKwEiNI9Tn 7UGVbgL63eDkTMZQYJWUc2Hkk+++OzqR3NlKAxn1gIyqnQFb+FaG+snYBN7n8kCA t/XI7QH0spUNRj9nLgc4xImmBrt2YW1DcNPi1AbBu4JX4KIxECOkUzxU5SR0CvWV ax9+JgyuULppz8VlATL/ChfyiHDLwT2zock7IW4/XF4m+YhJkNnGHbCTzygt3rFz C1/HQGx2izaILMZUIeWemxbKREWX6GXIbAyVWHg7zoNqejW87x6lk3qjB7Au9ayu BNBFE0f6fAs0wI6w7B4WXeAncSpdEJP6/zEkUpO6FLkxNxjLypxq8tpidwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDtx4xd6eDrxPpaAq5r9/yJmIeDMMB8GA1UdIwQY MBaAFKZduJ6LtmDyHrXErzua3VLVfrifMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGwyNG5vdTJZUElldGNTdk81cmRVdFYtdUo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8zYjA2YTMtY2FmNC00ZDZjLWJiN2It YTM1NzhjOTQ0MDQwLzEvcGwyNG5vdTJZUElldGNTdk81cmRVdFYtdUo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS8zYjA2YTMtY2FmNC00ZDZjLWJiN2ItYTM1NzhjOTQ0MDQw LzEvcGwyNG5vdTJZUElldGNTdk81cmRVdFYtdUo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI4ISYalY mJQwSM0rbKvfsIPTa5diSoTe0YY7/Wl5XFhUS2snaL1jBecwzUrl7Gs2x1nENM+7 CqD5V5MMx+bbOlk/3JQCd4HSBPqJZpC6TJ6D14GZ0JPKXtXDM3CkQ6JyK+Q9NvZD 7w3uqqj3aNe3BmhCNQJNbN/tI4k8hseyO0WVKsZH3fdc+3Ig75tmUerB5pe8V7hD pb5pZWDJ08EnNPR2W2wWLVFXMvlPtbR2V4GuSKF2ONIawKA8FkGcWutgiF+aepu9 CN+caczd41J4CLelkABGC7zCJAHOBL1JLJha+BO9Wn6bke3Fqdb6gSSwWPN6uLVO xfw4rwV5wcZBUg== -----END CERTIFICATE-----Generated at Tue Jan 27 07:16:33 2026 by rpki-client