This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json) Hash identifier: o7CgIVkHXf2BDhVjocRtl5co6otiNF7QVj/V8VP2jdE= Subject key identifier: E4:70:9E:C9:39:37:1A:F5:9B:78:9E:C7:48:64:9A:74:D4:32:42:1B Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c Certificate serial: 019BFBAE1EF2EC3055D3CAE13F3B01D1396E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft Manifest number: 095D Signing time: Mon 26 Jan 2026 19:00:50 +0000 Manifest this update: Mon 26 Jan 2026 19:00:50 +0000 Manifest next update: Tue 27 Jan 2026 19:00:50 +0000 Files and hashes: 1: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: O241NugXCz4VUxUbuKtuN+CR/+jieFTAM6OGWnZNncA=) 2: g0oXLuj5iDetxALq5Bw1KiMkRUo.roa (hash: PW9/wUds/6yFiBdtio7q4yhD06x/RpMiIm+VqX8uKYc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 19:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:ae:1e:f2:ec:30:55:d3:ca:e1:3f:3b:01:d1:39:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c Validity Not Before: Jan 26 19:00:50 2026 GMT Not After : Jan 27 19:00:50 2026 GMT Subject: CN=e4709ec939371af59b789ec748649a74d432421b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f1:50:63:8f:90:33:1f:5c:7b:85:20:67:f3: 03:6a:42:69:50:dd:aa:b0:0d:d5:97:4d:af:e3:dc: 36:b5:52:e2:17:36:fe:56:0a:e1:6c:17:a6:c5:83: 84:d6:cd:dc:cd:89:cd:58:d2:5c:10:05:9c:4b:a0: 15:7d:76:a9:2e:d0:ce:66:82:6d:c8:0b:e3:5e:5e: 2a:c3:24:cd:34:47:48:73:d3:fc:b4:7e:71:c8:a6: b9:12:d4:1e:8d:92:46:f6:46:9d:38:a7:42:22:7e: b4:4e:d8:96:37:e4:2b:bb:a8:0a:d6:fc:a8:dd:ae: 0a:18:c2:4f:b5:7d:48:24:f6:10:cf:2f:d2:8c:f1: 25:3d:1f:24:1f:4a:35:82:6d:33:89:99:7a:fb:7c: b2:94:37:33:b8:3d:cb:d2:b6:52:74:dd:b8:61:4e: 16:1d:de:e7:cf:fb:ae:ba:49:af:48:7a:29:49:b5: 07:94:6d:1e:d7:92:e6:ab:90:4c:6b:7d:49:ec:05: ee:e8:3a:e9:9b:38:28:9a:f7:7d:53:31:fb:cb:b3: a3:c4:28:00:05:be:0f:bd:2f:89:d7:52:59:1f:cb: 47:da:b0:66:d3:07:81:b4:6b:f6:b0:c4:c3:3c:75: 70:c3:1a:c5:a2:cf:9e:8e:a1:9b:8f:ac:65:0a:eb: d1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:70:9E:C9:39:37:1A:F5:9B:78:9E:C7:48:64:9A:74:D4:32:42:1B X509v3 Authority Key Identifier: keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:00:fc:56:26:fe:ab:73:3e:84:39:b5:d6:6a:08:89:bf:d3: a4:a3:63:58:c6:0f:82:2f:e1:76:fb:33:e1:f1:76:3b:1a:c6: 36:b3:9a:cb:de:58:e2:c0:15:09:b7:2f:4c:08:28:ad:cc:94: c7:fa:59:81:7e:28:82:40:e7:36:88:2f:35:61:39:60:ef:a2: 51:34:85:6f:54:da:c8:55:80:34:ee:51:a5:de:ca:5e:87:27: eb:45:28:14:73:8f:1d:0e:ae:2d:83:66:83:69:74:9a:44:47: 22:8d:88:3d:5e:c2:0b:a4:f5:a4:73:45:fe:c2:41:ee:d2:96: 04:fc:4b:c6:ea:d5:3c:74:6c:7e:cc:21:62:05:dc:9b:1c:a5: dc:4c:7b:62:a9:1e:0d:14:a0:24:9e:4d:d3:9b:38:5a:95:60: a5:a6:bc:70:f2:48:2f:21:2d:5c:53:be:38:e7:2c:5a:56:99: 19:c5:68:ce:1e:b9:40:8e:f4:3c:8b:f3:0a:6e:99:41:4e:8e: ca:ac:8e:cc:33:49:7e:5a:35:56:e8:ff:68:7f:a2:4b:71:c5: a3:1b:fc:76:03:0a:c0:e1:44:fb:e9:00:bb:66:30:90:5d:5f: f9:ae:29:af:39:8c:23:65:5d:5e:23:19:d4:36:81:d0:b5:81: 45:36:09:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7rh7y7DBV08rhPzsB0TluMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzZWE1MDhhODViYzczYTlhYWEyMDNhOGE3YmFmOWMxNjJl NmYzNmMwHhcNMjYwMTI2MTkwMDUwWhcNMjYwMTI3MTkwMDUwWjAzMTEwLwYDVQQD EyhlNDcwOWVjOTM5MzcxYWY1OWI3ODllYzc0ODY0OWE3NGQ0MzI0MjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/FQY4+QMx9ce4UgZ/MDakJpUN2q sA3Vl02v49w2tVLiFzb+VgrhbBemxYOE1s3czYnNWNJcEAWcS6AVfXapLtDOZoJt yAvjXl4qwyTNNEdIc9P8tH5xyKa5EtQejZJG9kadOKdCIn60TtiWN+Qru6gK1vyo 3a4KGMJPtX1IJPYQzy/SjPElPR8kH0o1gm0ziZl6+3yylDczuD3L0rZSdN24YU4W Hd7nz/uuukmvSHopSbUHlG0e15Lmq5BMa31J7AXu6Drpmzgomvd9UzH7y7OjxCgA Bb4PvS+J11JZH8tH2rBm0weBtGv2sMTDPHVwwxrFos+ejqGbj6xlCuvRPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFORwnsk5Nxr1m3iex0hkmnTUMkIbMB8GA1UdIwQY MBaAFAPqUIqFvHOpqqIDqKe6+cFi5vNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAt ZDcyNzA5MDVlOTIzLzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAtZDcyNzA5MDVlOTIz LzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFAD8Vib+ q3M+hDm11moIib/TpKNjWMYPgi/hdvsz4fF2OxrGNrOay95Y4sAVCbcvTAgorcyU x/pZgX4ogkDnNogvNWE5YO+iUTSFb1TayFWANO5Rpd7KXocn60UoFHOPHQ6uLYNm g2l0mkRHIo2IPV7CC6T1pHNF/sJB7tKWBPxLxurVPHRsfswhYgXcmxyl3Ex7Yqke DRSgJJ5N05s4WpVgpaa8cPJILyEtXFO+OOcsWlaZGcVozh65QI70PIvzCm6ZQU6O yqyOzDNJflo1Vuj/aH+iS3HFoxv8dgMKwOFE++kAu2YwkF1f+a4przmMI2VdXiMZ 1DaB0LWBRTYJnQ== -----END CERTIFICATE-----Generated at Tue Jan 27 02:17:16 2026 by rpki-client