This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft File: lAoQolZyjxGku6rcMgS38KNaUAA.mft (raw, json) Hash identifier: xPzIlS2S+I4dt3vNFibMZKcr8Hvbh1rsu/4wYwhiZp0= Subject key identifier: C4:1E:F3:25:28:43:27:3C:CD:08:A5:DD:6A:D8:7B:62:12:F2:A1:D3 Authority key identifier: 94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00 Certificate issuer: /CN=940a10a256728f11a4bbaadc3204b7f0a35a5000 Certificate serial: 019BF91B21B8BDFCA113F46F888D2808584D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft Manifest number: 17FB Signing time: Mon 26 Jan 2026 07:01:03 +0000 Manifest this update: Mon 26 Jan 2026 07:01:03 +0000 Manifest next update: Tue 27 Jan 2026 07:01:03 +0000 Files and hashes: 1: 1-zEgOYWTHaiqMcDqGEot8D9hfIE.roa (hash: jVaMeN32gu4WLb8RXEU7QtT8NJ8As10+YaSSTQDJyMM=) 2: 77UuERyh3Z3AUcULCIiJEdc-fQo.roa (hash: DnHBthnf/STbIAi1O3tZFh2P5fMOYtzdif9FPjsRkXU=) 3: I74vLo5CklRsbzCPNYnKrvIvLj4.roa (hash: ylSWG2wfgpUMhcZpBHxBahFVE1pyuX6ebVuzOtGSKVo=) 4: OA8Bk3tPUiZSmiAzbm0eBXa4nuE.roa (hash: oWNPNPjgcKmmhmYQ0/KR/N+7+UQanOVovcIMTSyV2uo=) 5: hYxTxK4AHKTY1TwSA43oGaIbwvI.roa (hash: pXMygWt3Q3zIvm4RuMnURnfNgvmTHNGm+Wsjn0P2p18=) 6: lAoQolZyjxGku6rcMgS38KNaUAA.crl (hash: l0Cu66jivZaceIVbuWtc7mZUO3gsTUdaLyK/QSrAYjc=) 7: nS-qR-87gGJ6pBf2l7_HCJOIeHM.roa (hash: uHfPOVPyEDve9s1ba9V4RroyQ1/pD8S/mdaAMdEB9is=) 8: pxTDDl8HD6hZo5qJKIkeKUT3PHY.roa (hash: FICr2xp4vd+7n3rWeWvKoKoWXhNvU50pS0gZxwPllVU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:21:b8:bd:fc:a1:13:f4:6f:88:8d:28:08:58:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=940a10a256728f11a4bbaadc3204b7f0a35a5000 Validity Not Before: Jan 26 07:01:03 2026 GMT Not After : Jan 27 07:01:03 2026 GMT Subject: CN=c41ef3252843273ccd08a5dd6ad87b6212f2a1d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:61:2e:4a:7e:6f:a3:c5:e0:bf:b9:bb:5a:4a: 76:6b:a9:0a:bc:00:46:5b:63:b6:6a:f8:17:f4:08: e1:2a:a4:c3:dc:d2:c3:db:65:20:36:25:64:fc:22: ed:c8:bc:b2:a2:2e:49:4f:0f:0a:ed:65:dc:5b:5a: e9:28:f3:8f:21:c8:c2:ed:36:0c:04:60:82:02:f5: ae:ab:48:d2:8d:ae:5c:4d:d1:58:c4:1b:d0:22:10: e9:5f:9d:1f:e8:cd:9f:4a:59:ce:c0:6a:67:54:75: 61:e7:15:bf:8e:fa:9c:64:d9:9b:12:52:5b:93:e6: 7b:74:b6:ad:20:84:dd:6f:f1:5c:de:29:cb:66:aa: 95:08:41:57:d7:57:3b:68:35:04:2c:a9:27:3a:c2: 6c:c9:fe:b1:b7:15:f1:72:8d:6e:cf:d4:a8:96:82: 94:35:a4:3b:2a:29:50:9c:ca:a3:32:cb:ec:de:62: 1a:4f:bd:9a:27:b9:e9:b1:54:e5:cd:23:ac:a0:fc: 93:88:55:c1:cd:e0:64:36:90:94:ab:5d:c4:da:e7: 6c:0d:29:88:f8:d8:e0:76:24:41:07:b7:2f:0a:5b: cb:9c:6f:e8:75:cd:ba:8c:87:29:ae:2f:19:7a:e5: 59:4b:f7:71:31:d2:b4:3e:36:1c:f9:1e:a3:14:a4: 87:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:1E:F3:25:28:43:27:3C:CD:08:A5:DD:6A:D8:7B:62:12:F2:A1:D3 X509v3 Authority Key Identifier: keyid:94:0A:10:A2:56:72:8F:11:A4:BB:AA:DC:32:04:B7:F0:A3:5A:50:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lAoQolZyjxGku6rcMgS38KNaUAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a1ae75-2d6b-4cc6-acef-dce6d6909247/1/lAoQolZyjxGku6rcMgS38KNaUAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cd:f3:5b:8e:44:35:b3:5d:1c:1a:87:3a:0a:3c:11:7d:d7:f1: 1d:1e:fa:8b:75:06:b5:a5:06:be:f4:45:9d:12:86:ff:4b:ad: 1a:08:82:97:b1:8f:ca:07:ed:bd:48:d3:c3:01:d9:ae:78:7d: eb:23:16:99:8d:25:9e:f2:27:ee:61:b8:6a:a2:30:98:6f:4f: 20:1d:df:4b:73:85:52:dd:83:94:61:17:2b:53:94:b6:87:de: a9:5d:33:82:5e:dd:13:af:23:7e:70:e7:53:98:bd:ab:05:8f: be:96:11:54:61:ca:6a:56:42:e6:cd:cc:6a:e3:c5:94:c3:bd: 13:92:6f:33:3d:c5:be:91:82:27:24:99:f9:18:3c:5b:8b:a8: d0:80:dc:7f:ee:d6:dd:04:35:c4:1f:6d:7a:16:e9:ba:4c:39: f9:29:d6:0d:9b:63:53:66:cc:58:39:22:44:d2:e3:65:51:f3: 64:7e:4b:57:21:13:8f:3e:24:9c:4a:55:42:b2:66:c2:43:c9: c3:3d:7e:ea:61:49:c1:e0:4a:db:41:63:81:53:b2:bb:cb:aa: d4:61:d7:22:3d:ae:30:6a:6f:35:d2:19:f1:15:92:bf:49:08: a3:e5:df:7f:fd:bd:4a:38:e0:83:1a:ae:43:20:58:e9:1b:08: 72:71:f8:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5GyG4vfyhE/RviI0oCFhNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MGExMGEyNTY3MjhmMTFhNGJiYWFkYzMyMDRiN2YwYTM1 YTUwMDAwHhcNMjYwMTI2MDcwMTAzWhcNMjYwMTI3MDcwMTAzWjAzMTEwLwYDVQQD EyhjNDFlZjMyNTI4NDMyNzNjY2QwOGE1ZGQ2YWQ4N2I2MjEyZjJhMWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2EuSn5vo8Xgv7m7Wkp2a6kKvABG W2O2avgX9AjhKqTD3NLD22UgNiVk/CLtyLyyoi5JTw8K7WXcW1rpKPOPIcjC7TYM BGCCAvWuq0jSja5cTdFYxBvQIhDpX50f6M2fSlnOwGpnVHVh5xW/jvqcZNmbElJb k+Z7dLatIITdb/Fc3inLZqqVCEFX11c7aDUELKknOsJsyf6xtxXxco1uz9SoloKU NaQ7KilQnMqjMsvs3mIaT72aJ7npsVTlzSOsoPyTiFXBzeBkNpCUq13E2udsDSmI +NjgdiRBB7cvClvLnG/odc26jIcpri8ZeuVZS/dxMdK0PjYc+R6jFKSHewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMQe8yUoQyc8zQil3WrYe2IS8qHTMB8GA1UdIwQY MBaAFJQKEKJWco8RpLuq3DIEt/CjWlAAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYt ZGNlNmQ2OTA5MjQ3LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hMWFlNzUtMmQ2Yi00Y2M2LWFjZWYtZGNlNmQ2OTA5MjQ3 LzEvbEFvUW9sWnlqeEdrdTZyY01nUzM4S05hVUFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzfNbjkQ1 s10cGoc6CjwRfdfxHR76i3UGtaUGvvRFnRKG/0utGgiCl7GPygftvUjTwwHZrnh9 6yMWmY0lnvIn7mG4aqIwmG9PIB3fS3OFUt2DlGEXK1OUtofeqV0zgl7dE68jfnDn U5i9qwWPvpYRVGHKalZC5s3MauPFlMO9E5JvMz3FvpGCJySZ+Rg8W4uo0IDcf+7W 3QQ1xB9tehbpukw5+SnWDZtjU2bMWDkiRNLjZVHzZH5LVyETjz4knEpVQrJmwkPJ wz1+6mFJweBK20FjgVOyu8uq1GHXIj2uMGpvNdIZ8RWSv0kIo+Xff/29Sjjggxqu QyBY6RsIcnH4Wg== -----END CERTIFICATE-----Generated at Mon Jan 26 15:39:51 2026 by rpki-client