This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: bpLfxDMxkNu3QxATJ8bjGedBJU2lUDQJdl3WZGSW93s= Subject key identifier: CA:9A:FC:C2:32:3F:BD:FF:9F:42:E9:98:1F:91:A7:A8:4A:DD:64:72 Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 019C040C7B1A542DDBBEDE2897E2857E98B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 15B9 Signing time: Wed 28 Jan 2026 10:00:52 +0000 Manifest this update: Wed 28 Jan 2026 10:00:52 +0000 Manifest next update: Thu 29 Jan 2026 10:00:52 +0000 Files and hashes: 1: 3U7B-AnDLcxVr4hQgcRtH3bY-Mc.roa (hash: 3EM7kaqylIIwfXdPOEw0QjuIVj1MmMgs2rs+igLT96s=) 2: C8g7Pi5B0RKpnrlAYnkGNfdVaNI.roa (hash: wxMFCVvSA3tdy7i3OaSOQ9SIAg2wmBIcYz9jkUGPtlk=) 3: Ine_1lLdl47bEMn6aiw9Axcdsgo.roa (hash: S/r8lpXeW/d857boj4AgP81lqUx6Xba1Zs9uDln2Uuk=) 4: L9nqjZgCKM_h4eShTqHdEr9Np6c.roa (hash: m3EOAebEcr3Ec2NVZh7NKfNA+27GisIbFErRrtFBX6k=) 5: MAC77AGiw2eaAoPXZSbuYQ5o9Cc.roa (hash: ghyy8oG2hGKa4y9DRVajZ2XWsgYoOvFgJh6c1yjrEXg=) 6: NanNAKKpriw1xLHpXZYYWO89_ic.roa (hash: vJoNpzNu5goOWjEeID9l0AJGNtpWeDH6gI91uoAnwIk=) 7: O6JDbaslrGOSZKrdtuCBt6ssF94.roa (hash: 8ty72z4beTGAGlxyLGLA0AACx0Qa5f/MkundTg5sepM=) 8: _d125rYs_YgWJE2199BRmZF843k.roa (hash: m5skVkixBC7cNTKqYmRl5Rw3Fyg0ZkEkKEj4MY2KXTY=) 9: dDB5YY9PZuYzIK0czNYk6awWuOU.roa (hash: B1+NRVwOUhTIMmxV8tnE89O/MNjbHirt4Fghn1v7gaE=) 10: euqS42j1OAh5nOlyn6iGDlUghrI.roa (hash: imMqy2oe/VSAfOYacDS+F5V24AlsU8Ttm5UT/4dybaA=) 11: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: 2X0BFfGQEk+AUxpyGe/TMVuCuJQ8VGT2jUTDI9tkH4A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:04:0c:7b:1a:54:2d:db:be:de:28:97:e2:85:7e:98:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: Jan 28 10:00:52 2026 GMT Not After : Jan 29 10:00:52 2026 GMT Subject: CN=ca9afcc2323fbdff9f42e9981f91a7a84add6472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:83:b6:26:ed:0d:c5:bb:08:2e:8a:39:5b:83: 51:18:49:1e:ac:16:7d:71:02:78:e2:47:c1:fa:72: 8c:2e:fa:42:a6:99:c5:e8:59:49:22:03:8f:02:62: a9:44:0d:be:73:3e:5f:04:07:1d:4b:47:b5:e4:81: 45:cf:1c:8b:a3:d0:15:db:57:fd:d9:c5:9b:6d:0e: cd:72:47:de:6a:ec:51:92:3e:a9:93:cd:68:37:ca: 32:1a:04:0b:c9:b4:2e:8f:1d:1b:3a:45:33:e1:49: e9:55:ae:6e:22:59:0f:52:17:e0:6b:72:b4:55:66: f5:cf:b0:69:5b:12:23:91:45:3e:4d:04:3c:c1:ea: 15:a9:15:8c:79:19:6b:c7:18:76:b3:f8:d3:88:48: b2:73:95:d5:d4:4d:22:65:20:cd:f7:28:44:7e:1c: 8a:d5:97:37:b2:5a:da:41:d5:45:7c:f4:82:ea:a8: 1b:38:4f:24:4c:d0:98:e4:ab:52:98:fe:c5:11:69: ed:38:01:16:8c:e7:51:97:d0:f8:ec:02:2a:99:45: 13:1a:b0:1f:da:cf:8d:6d:e4:99:fa:d2:1c:c0:9a: 79:50:75:9c:15:28:cb:52:6c:7a:f9:94:6e:f0:2b: e5:8d:71:cc:2d:de:67:d8:0c:0e:14:22:86:f4:52: b6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:9A:FC:C2:32:3F:BD:FF:9F:42:E9:98:1F:91:A7:A8:4A:DD:64:72 X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ae:d4:a3:7b:24:04:99:40:75:4f:a8:e2:ec:20:10:c8:0a: 7c:2e:14:46:b9:bd:d4:7b:0e:ec:0e:af:54:78:93:39:5e:0e: 77:5f:96:71:7c:1a:fd:56:d7:0f:9f:b9:e3:56:23:c7:31:04: 8e:bb:cc:9a:c9:1e:4e:f0:55:c8:6e:f8:2d:4d:03:2d:f7:04: 4c:0d:6f:c9:d8:02:d2:c6:73:8f:5b:85:70:79:77:25:a4:b1: 82:f2:5e:46:13:45:05:b2:70:cf:89:ef:2b:f8:7a:ed:60:31: dc:04:b2:c2:28:42:f7:af:27:84:ff:b7:5d:bc:14:90:83:b4: f2:b1:31:dc:10:6d:98:77:d0:7a:eb:11:23:8e:b7:0e:61:3c: e2:ed:70:1f:b3:92:20:85:0d:ca:fb:62:d2:49:bf:2d:ee:04: f5:35:8e:ef:70:5c:15:dc:a9:e1:43:9b:ef:e9:ee:16:ff:fc: 1a:d1:d6:25:73:13:b5:4f:e9:0b:7f:75:78:74:41:e6:7e:a7: c8:f6:5d:89:f8:67:d3:ff:1a:b0:52:b4:81:fc:33:b2:60:1f: af:5d:51:b1:c9:84:8c:c5:4f:bd:9e:b2:74:82:2a:2e:37:12: 3c:a2:7a:3a:c8:51:1b:d0:77:0d:46:3e:b4:5c:29:fa:76:ba: 9a:5e:5a:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwEDHsaVC3bvt4ol+KFfpi3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjYwMTI4MTAwMDUyWhcNMjYwMTI5MTAwMDUyWjAzMTEwLwYDVQQD EyhjYTlhZmNjMjMyM2ZiZGZmOWY0MmU5OTgxZjkxYTdhODRhZGQ2NDcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYO2Ju0NxbsILoo5W4NRGEkerBZ9 cQJ44kfB+nKMLvpCppnF6FlJIgOPAmKpRA2+cz5fBAcdS0e15IFFzxyLo9AV21f9 2cWbbQ7NckfeauxRkj6pk81oN8oyGgQLybQujx0bOkUz4UnpVa5uIlkPUhfga3K0 VWb1z7BpWxIjkUU+TQQ8weoVqRWMeRlrxxh2s/jTiEiyc5XV1E0iZSDN9yhEfhyK 1Zc3slraQdVFfPSC6qgbOE8kTNCY5KtSmP7FEWntOAEWjOdRl9D47AIqmUUTGrAf 2s+NbeSZ+tIcwJp5UHWcFSjLUmx6+ZRu8CvljXHMLd5n2AwOFCKG9FK26wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMqa/MIyP73/n0LpmB+Rp6hK3WRyMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGq7Uo3sk BJlAdU+o4uwgEMgKfC4URrm91HsO7A6vVHiTOV4Od1+WcXwa/VbXD5+541YjxzEE jrvMmskeTvBVyG74LU0DLfcETA1vydgC0sZzj1uFcHl3JaSxgvJeRhNFBbJwz4nv K/h67WAx3ASywihC968nhP+3XbwUkIO08rEx3BBtmHfQeusRI463DmE84u1wH7OS IIUNyvti0km/Le4E9TWO73BcFdyp4UOb7+nuFv/8GtHWJXMTtU/pC391eHRB5n6n yPZdifhn0/8asFK0gfwzsmAfr11RscmEjMVPvZ6ydIIqLjcSPKJ6OshRG9B3DUY+ tFwp+na6ml5aqA== -----END CERTIFICATE-----Generated at Wed Jan 28 18:36:23 2026 by rpki-client