This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft File: pavEOvztcvuSd4covuVxxnj1OFM.mft (raw, json) Hash identifier: zOdtVwx6Zyv48qkOoTklIM9V5uMN/Ygpp2iREwmoQQk= Subject key identifier: DB:C2:1A:9F:C2:76:9A:13:03:A6:95:E2:A6:D6:97:79:9A:14:AF:B5 Authority key identifier: A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53 Certificate issuer: /CN=a5abc43afced72fb92778728bee571c678f53853 Certificate serial: 019BF9F6E3DA43FC491DE4A88A60D257ED5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft Manifest number: 17EC Signing time: Mon 26 Jan 2026 11:01:05 +0000 Manifest this update: Mon 26 Jan 2026 11:01:05 +0000 Manifest next update: Tue 27 Jan 2026 11:01:05 +0000 Files and hashes: 1: 7lnc40Qf7cmKBKbjZfYqwpwmGoI.roa (hash: BeI1VtCjRkNwuAsQq6REw2kbuVRCtpMkqUU7iZWA1og=) 2: BGZv9D_VhejCl-jfPTnDgqEd_C8.roa (hash: 24tOC1DrpPlHEZKfZuWIAXFtAWXcsMjorM9au3Z+HuM=) 3: pavEOvztcvuSd4covuVxxnj1OFM.crl (hash: dqfRbNz+hLoMLFzadwjkFnqfyj9hqztQzn3QRWodH1A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:f6:e3:da:43:fc:49:1d:e4:a8:8a:60:d2:57:ed:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5abc43afced72fb92778728bee571c678f53853 Validity Not Before: Jan 26 11:01:05 2026 GMT Not After : Jan 27 11:01:05 2026 GMT Subject: CN=dbc21a9fc2769a1303a695e2a6d697799a14afb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:18:d8:73:77:14:db:9a:c7:22:6c:3d:64:59: 9c:56:52:f8:59:17:27:48:d5:36:38:f5:7d:2b:71: cc:ab:1a:12:85:bb:c9:e8:12:a8:97:83:a9:2c:db: 36:79:fe:8a:0c:b9:36:a0:e4:4e:81:f7:e1:33:a0: c1:42:45:31:07:ac:75:3c:e5:52:cf:05:8f:8f:b8: ca:a1:b9:67:6f:1c:e2:ae:55:95:84:00:18:33:bb: b3:e8:28:ed:ff:ea:78:01:b6:52:f3:dc:1c:7f:1a: 89:b8:30:91:3a:f7:1a:d7:5c:d4:80:96:ce:1f:3b: a4:2d:2a:f4:77:10:1d:68:6c:27:0b:1c:af:9c:17: eb:b0:26:ee:3a:0f:6d:fa:37:d9:00:4b:12:0c:7e: ff:b7:33:a2:2c:50:20:11:13:9d:fc:28:99:c3:32: c9:3e:73:64:0d:39:a0:b4:31:5a:9e:21:46:2a:cd: e3:71:b2:a6:29:1e:15:5e:54:32:55:4e:03:60:42: 46:9e:a6:e3:e5:6b:ea:fd:5f:78:89:0b:2c:c5:74: 6f:0b:04:88:6e:5a:bf:00:3b:a2:7a:71:1d:ab:77: e8:7f:bc:a7:7b:84:c4:ec:74:23:a8:c3:9b:d1:0d: e6:d1:d6:21:8b:fb:09:a7:8a:dc:ad:fb:1c:f0:2f: c8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C2:1A:9F:C2:76:9A:13:03:A6:95:E2:A6:D6:97:79:9A:14:AF:B5 X509v3 Authority Key Identifier: keyid:A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ec:ea:ef:72:b5:da:d8:5f:3d:b1:e6:0d:c2:87:bf:d8:5d: de:29:ee:c2:d8:a6:7b:12:10:bb:7d:04:c8:e3:a1:42:dc:0b: 9e:2e:7c:5e:5d:dc:85:bc:e2:2c:d1:ff:6a:a3:79:f9:87:a1: 5a:84:bf:16:1c:90:b4:fd:d7:99:ca:a6:ee:eb:21:cd:bc:cc: a5:1b:bd:4b:37:3c:ff:ac:a8:b7:10:62:f4:a1:b1:b5:c8:9f: 69:d5:3c:a1:16:0b:0e:dd:c0:51:5d:c9:cb:33:01:41:13:72: 0e:73:21:66:9f:c3:4c:6c:43:88:ac:84:50:5f:0a:88:1a:a1: 91:fe:2e:d7:32:fe:3e:e2:b4:67:d5:e7:3a:ed:a2:fd:8c:74: 2b:19:e6:65:6a:33:00:1e:82:18:08:89:25:41:f9:e7:c4:8a: a4:58:9a:83:89:be:e6:e5:1d:b2:4f:1a:ba:09:86:e1:28:38: 41:c7:4a:cb:b1:66:8e:37:a8:d0:66:a0:02:6d:1f:d0:fd:d2: 77:91:69:af:80:e4:10:23:24:62:85:38:47:f6:05:0e:1c:e0: b4:ce:54:3a:ac:b1:7d:7a:90:06:6c:dc:73:d7:c7:f4:11:4f: bc:d9:e2:50:e1:0d:c4:11:64:bf:da:16:3f:37:89:6b:e6:85: c6:c3:cb:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv59uPaQ/xJHeSoimDSV+1bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1YWJjNDNhZmNlZDcyZmI5Mjc3ODcyOGJlZTU3MWM2Nzhm NTM4NTMwHhcNMjYwMTI2MTEwMTA1WhcNMjYwMTI3MTEwMTA1WjAzMTEwLwYDVQQD EyhkYmMyMWE5ZmMyNzY5YTEzMDNhNjk1ZTJhNmQ2OTc3OTlhMTRhZmI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnxjYc3cU25rHImw9ZFmcVlL4WRcn SNU2OPV9K3HMqxoShbvJ6BKol4OpLNs2ef6KDLk2oOROgffhM6DBQkUxB6x1POVS zwWPj7jKoblnbxzirlWVhAAYM7uz6Cjt/+p4AbZS89wcfxqJuDCROvca11zUgJbO HzukLSr0dxAdaGwnCxyvnBfrsCbuOg9t+jfZAEsSDH7/tzOiLFAgEROd/CiZwzLJ PnNkDTmgtDFaniFGKs3jcbKmKR4VXlQyVU4DYEJGnqbj5Wvq/V94iQssxXRvCwSI blq/ADuienEdq3fof7yne4TE7HQjqMOb0Q3m0dYhi/sJp4rcrfsc8C/I9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNvCGp/CdpoTA6aV4qbWl3maFK+1MB8GA1UdIwQY MBaAFKWrxDr87XL7kneHKL7lccZ49ThTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGF2RU92enRjdnVTZDRjb3Z1Vnh4bmoxT0ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9lOWI3NmEtMTBiMy00N2MwLWE1MTct YjVlOTFmYzY1MDUxLzEvcGF2RU92enRjdnVTZDRjb3Z1Vnh4bmoxT0ZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9lOWI3NmEtMTBiMy00N2MwLWE1MTctYjVlOTFmYzY1MDUx LzEvcGF2RU92enRjdnVTZDRjb3Z1Vnh4bmoxT0ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW+zq73K1 2thfPbHmDcKHv9hd3inuwtimexIQu30EyOOhQtwLni58Xl3chbziLNH/aqN5+Yeh WoS/FhyQtP3Xmcqm7ushzbzMpRu9Szc8/6yotxBi9KGxtcifadU8oRYLDt3AUV3J yzMBQRNyDnMhZp/DTGxDiKyEUF8KiBqhkf4u1zL+PuK0Z9XnOu2i/Yx0KxnmZWoz AB6CGAiJJUH558SKpFiag4m+5uUdsk8augmG4Sg4QcdKy7Fmjjeo0GagAm0f0P3S d5Fpr4DkECMkYoU4R/YFDhzgtM5UOqyxfXqQBmzcc9fH9BFPvNniUOENxBFkv9oW PzeJa+aFxsPLiw== -----END CERTIFICATE-----Generated at Mon Jan 26 14:48:19 2026 by rpki-client