This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft File: aNQlzHsbeICodfdr7agP4xCTGe0.mft (raw, json) Hash identifier: kDjC8O9pC0kDqPIALip3jH+mKfk/GmCDi+zXauoiqgg= Subject key identifier: EF:6C:3D:4C:20:CD:A4:DF:C5:1E:05:FB:8F:20:40:E3:6C:08:50:E8 Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed Certificate serial: 019BFD2E5BC32A2908DA905E7F469F5CC680 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft Manifest number: 17ED Signing time: Tue 27 Jan 2026 02:00:32 +0000 Manifest this update: Tue 27 Jan 2026 02:00:32 +0000 Manifest next update: Wed 28 Jan 2026 02:00:32 +0000 Files and hashes: 1: 9V6-AqA_4zEech3d9e-zrslLlYg.roa (hash: 2ZWDpKA0ocbpi4aN6axitNn05JRLFs0cLkW8mMIC92U=) 2: aNQlzHsbeICodfdr7agP4xCTGe0.crl (hash: iYWatkCfhczcreo1f9a+656AJJb9OMdpsbudK6PGS0g=) 3: s_Oj6JBKTNB4x3fb0XdQ9zvwP1o.roa (hash: 0jQdDlhdIZaz2WGN97YHIXqbtv/kRGloASKQBe2397Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:2e:5b:c3:2a:29:08:da:90:5e:7f:46:9f:5c:c6:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed Validity Not Before: Jan 27 02:00:32 2026 GMT Not After : Jan 28 02:00:32 2026 GMT Subject: CN=ef6c3d4c20cda4dfc51e05fb8f2040e36c0850e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:81:3f:90:8f:10:18:c4:b4:7d:8f:dc:ff:65: c6:89:40:41:bf:cc:47:b0:86:f7:95:06:67:c3:9f: a1:fc:ea:5e:b0:b7:21:df:73:02:bc:98:c9:15:8e: ec:51:46:23:a7:76:1d:6f:84:be:a4:81:6c:8a:cd: b3:a5:19:dc:fb:4a:23:da:cc:fa:00:5c:54:85:df: 81:f0:06:7e:83:5c:1b:53:90:29:d1:bb:a7:b9:f2: d8:fa:2e:ec:ec:4a:e2:82:b4:c1:bd:54:8c:a4:8c: 67:d4:89:34:7a:c0:16:c8:32:c5:6f:eb:45:61:b1: df:1d:d7:15:aa:a4:dd:45:b6:b4:f7:1c:90:9e:a8: af:63:25:94:ba:13:c7:ac:a3:90:54:e2:8f:85:0e: 53:b3:43:66:10:b8:09:98:d8:08:f8:af:52:69:cf: 96:e6:fc:04:1e:04:1a:0b:9c:e4:08:93:e0:da:c5: eb:30:cb:cb:12:88:01:47:12:8c:66:6f:a6:3c:33: 11:97:f7:bd:e2:19:38:72:3b:5f:85:71:c5:8b:5d: 0b:54:d2:10:42:bb:a6:de:97:44:13:14:e8:43:d6: 76:c9:d3:f1:a0:e8:6a:4a:5d:d7:9b:e4:65:bf:cb: 43:b7:24:e6:24:8a:4a:fe:cc:ef:77:52:0d:55:46: d3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:6C:3D:4C:20:CD:A4:DF:C5:1E:05:FB:8F:20:40:E3:6C:08:50:E8 X509v3 Authority Key Identifier: keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:63:57:08:d0:b8:87:b0:4a:af:e2:5d:66:54:3d:cb:7b:ab: b4:ce:6e:b7:4a:c0:a7:d4:35:ee:9a:cb:0c:72:c4:0d:f1:e3: c1:b2:59:52:8f:65:ce:26:c7:fb:37:20:f9:8e:fa:23:b6:55: fa:39:dd:6d:07:82:3c:8b:18:f3:c9:f3:b2:c4:ff:2a:9f:d4: 60:3d:20:05:59:f1:26:74:c2:d5:2d:bc:1e:a5:66:0a:d0:72: 2b:05:7c:87:b0:56:a2:0c:71:6c:27:0f:f8:1d:d1:38:90:42: c9:3d:b6:11:80:f1:65:69:d2:f6:af:08:3f:fa:a6:1e:1b:29: ab:84:b6:41:f9:37:9a:8b:57:cc:b6:89:7a:0a:f0:31:90:50: bc:96:56:cb:d7:55:e3:1e:22:4f:78:89:76:7c:27:bb:d7:65: 18:b5:12:31:ec:73:56:1a:81:22:9f:6d:d8:04:63:34:52:bc: 6e:8d:62:b3:98:a3:62:f0:18:9e:8c:f6:8a:01:d1:12:a6:9c: c1:1f:dd:0c:12:b7:17:71:fe:8b:51:bd:1f:bd:6e:46:43:44: 19:68:b6:a9:c1:8e:2c:b2:c0:d5:81:95:1b:31:fb:62:4c:c8: 64:c5:39:7a:23:a2:44:99:88:e6:cb:ba:eb:4a:05:fd:17:7a: a3:e2:ef:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9LlvDKikI2pBef0afXMaAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZDQyNWNjN2IxYjc4ODBhODc1Zjc2YmVkYTgwZmUzMTA5 MzE5ZWQwHhcNMjYwMTI3MDIwMDMyWhcNMjYwMTI4MDIwMDMyWjAzMTEwLwYDVQQD EyhlZjZjM2Q0YzIwY2RhNGRmYzUxZTA1ZmI4ZjIwNDBlMzZjMDg1MGU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4E/kI8QGMS0fY/c/2XGiUBBv8xH sIb3lQZnw5+h/OpesLch33MCvJjJFY7sUUYjp3Ydb4S+pIFsis2zpRnc+0oj2sz6 AFxUhd+B8AZ+g1wbU5Ap0bunufLY+i7s7ErigrTBvVSMpIxn1Ik0esAWyDLFb+tF YbHfHdcVqqTdRba09xyQnqivYyWUuhPHrKOQVOKPhQ5Ts0NmELgJmNgI+K9Sac+W 5vwEHgQaC5zkCJPg2sXrMMvLEogBRxKMZm+mPDMRl/e94hk4cjtfhXHFi10LVNIQ Qrum3pdEExToQ9Z2ydPxoOhqSl3Xm+Rlv8tDtyTmJIpK/szvd1INVUbTJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO9sPUwgzaTfxR4F+48gQONsCFDoMB8GA1UdIwQY MBaAFGjUJcx7G3iAqHX3a+2oD+MQkxntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2Et NWM0NWI2MThmOTkwLzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2EtNWM0NWI2MThmOTkw LzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfGNXCNC4 h7BKr+JdZlQ9y3urtM5ut0rAp9Q17prLDHLEDfHjwbJZUo9lzibH+zcg+Y76I7ZV +jndbQeCPIsY88nzssT/Kp/UYD0gBVnxJnTC1S28HqVmCtByKwV8h7BWogxxbCcP +B3ROJBCyT22EYDxZWnS9q8IP/qmHhspq4S2Qfk3motXzLaJegrwMZBQvJZWy9dV 4x4iT3iJdnwnu9dlGLUSMexzVhqBIp9t2ARjNFK8bo1is5ijYvAYnoz2igHREqac wR/dDBK3F3H+i1G9H71uRkNEGWi2qcGOLLLA1YGVGzH7YkzIZMU5eiOiRJmI5su6 60oF/Rd6o+LvVw== -----END CERTIFICATE-----Generated at Tue Jan 27 04:46:29 2026 by rpki-client