This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json) Hash identifier: yxSbz/ZPUpYZv46+BchjOPMIsyvzr+7Md5PXAjsO35s= Subject key identifier: 68:E2:0B:E0:A1:3E:A9:8E:84:31:E7:C9:7C:3A:A6:C6:65:FC:42:3A Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3 Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3 Certificate serial: 019C08C4FB4E9CD2F539815CDB35160690C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft Manifest number: 1800 Signing time: Thu 29 Jan 2026 08:00:52 +0000 Manifest this update: Thu 29 Jan 2026 08:00:52 +0000 Manifest next update: Fri 30 Jan 2026 08:00:52 +0000 Files and hashes: 1: ADB2NS1OG8KwsVLAD6NYCaCtJi4.roa (hash: aji7irnO+hSBbZms7WFiwbNpASyVLJ3jxlOuf/BgaKY=) 2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: J43OSTSwoCW1u35zTOOMk8vESJvzECXt9mdw8Q6tNzw=) 3: ETuJmIkUjvADd3UUWdC650htGXA.roa (hash: cAH43gJZX/Jo2JqBoDIwhveRaUPmMSrjgllQlOy9U+4=) 4: PUJfscloQMHgI371vUqE3n8p0O0.roa (hash: HCrGmAGRieyRrO1ZecDc/2ZONQZ1+T4NdqF9jJscfgc=) 5: TJ-NxfDDAC6I8oepMl_uJgBKeY4.roa (hash: LQb2DMXHpcDAYFTx6JeAZ71tuwMz9N0jPtDCjoOf9gM=) 6: lX8eqAs6CwoIAtAewjNrfYtrQ4s.roa (hash: z/P+PTXsb20XgLXYqeqn92M2nr8qJ+zQMUYiqOb95J8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 03:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:08:c4:fb:4e:9c:d2:f5:39:81:5c:db:35:16:06:90:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3 Validity Not Before: Jan 29 08:00:52 2026 GMT Not After : Jan 30 08:00:52 2026 GMT Subject: CN=68e20be0a13ea98e8431e7c97c3aa6c665fc423a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ff:ff:da:f5:1d:e9:29:e2:20:22:3c:d0:18: cc:a1:6b:68:d0:17:6e:9e:7b:d1:71:4f:bc:73:ab: 0b:9d:75:b9:56:e6:2b:66:83:f2:f4:f7:e4:ba:27: cd:05:25:d5:56:af:12:b8:78:57:dd:dc:39:11:ca: 76:94:53:fb:12:74:00:11:7a:fa:4a:0c:e7:00:d9: 29:bf:f7:04:d9:e2:a9:8e:ce:7e:85:a8:c2:f3:7d: 2b:ac:36:c2:aa:4f:1b:42:9c:8e:61:1d:d0:27:7a: 6c:f7:46:fb:6f:05:95:3c:08:f6:8a:15:1b:91:ee: fa:6f:97:c8:f4:d4:7c:f7:2c:f4:5e:e5:e7:3a:f8: 79:73:b3:35:ac:73:2f:2d:c6:66:2a:4b:9c:f7:04: dc:2c:75:ec:1d:1f:bf:93:43:31:35:d4:b2:63:b8: 15:fc:c3:7e:18:39:bb:48:6d:90:d0:2c:d1:2f:76: 39:75:36:46:da:50:99:d9:cc:a6:6e:63:95:3c:2c: b3:05:e7:00:5a:63:a0:fa:a2:2b:3e:87:32:8c:18: ea:23:3f:8f:23:15:82:e4:28:ea:7d:5d:9e:29:b2: 3e:8a:a3:5d:65:bf:2a:94:16:14:00:fa:47:3e:98: a2:77:85:6a:6c:3a:58:d2:2f:2c:2d:1b:cb:6b:ef: 5c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E2:0B:E0:A1:3E:A9:8E:84:31:E7:C9:7C:3A:A6:C6:65:FC:42:3A X509v3 Authority Key Identifier: keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:90:2a:6e:08:27:d1:62:47:88:3c:e7:03:cb:a2:ab:19:b9: 8e:d2:f7:2e:d4:b8:03:b2:2a:97:8f:63:a1:59:a5:63:3b:71: 6e:cf:d4:9a:f9:cb:b3:78:76:c1:d8:b9:0a:69:f4:1c:1f:9c: 41:3c:f1:0d:1c:ff:68:af:63:1e:a1:94:b6:52:5c:b4:a8:fd: 7a:f5:26:cf:1c:85:49:98:21:39:a6:cd:39:1c:2d:f2:8f:83: 91:8c:31:36:b7:60:19:e8:37:66:e1:49:12:d5:03:95:7f:e5: 8c:ad:7d:9a:dd:f9:8d:7c:3d:ca:12:60:f4:dc:5b:3b:e4:de: 7b:08:66:f1:a1:2c:54:84:22:af:32:a8:95:80:a8:f9:42:b5: 1d:3b:cd:57:c1:43:41:2a:d8:72:65:f4:50:e4:d1:19:8f:0e: 25:94:b0:27:3b:dc:10:f7:7d:cf:e7:9e:15:d1:d7:91:79:a7: 36:7a:92:d1:55:8f:62:a4:e4:c9:d8:53:20:75:ab:45:85:bf: 9f:ca:c2:3d:91:3b:37:c7:f5:3a:8b:aa:49:3a:ad:79:e2:c4: 69:34:0b:0a:0d:4e:7a:3d:e3:31:6f:17:7b:b1:dd:58:29:f3: 79:8c:95:05:2e:6b:8f:ce:c9:9d:e6:e1:fb:bf:bf:5a:2c:62: 89:e5:fb:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwIxPtOnNL1OYFc2zUWBpDAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNWYyYTkzZGIxMGYyZGQ1ZjZhNTViYjJhNDQwZjY3NDg2 Y2QxYTMwHhcNMjYwMTI5MDgwMDUyWhcNMjYwMTMwMDgwMDUyWjAzMTEwLwYDVQQD Eyg2OGUyMGJlMGExM2VhOThlODQzMWU3Yzk3YzNhYTZjNjY1ZmM0MjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArP//2vUd6SniICI80BjMoWto0Bdu nnvRcU+8c6sLnXW5VuYrZoPy9PfkuifNBSXVVq8SuHhX3dw5Ecp2lFP7EnQAEXr6 SgznANkpv/cE2eKpjs5+hajC830rrDbCqk8bQpyOYR3QJ3ps90b7bwWVPAj2ihUb ke76b5fI9NR89yz0XuXnOvh5c7M1rHMvLcZmKkuc9wTcLHXsHR+/k0MxNdSyY7gV /MN+GDm7SG2Q0CzRL3Y5dTZG2lCZ2cymbmOVPCyzBecAWmOg+qIrPocyjBjqIz+P IxWC5CjqfV2eKbI+iqNdZb8qlBYUAPpHPpiid4VqbDpY0i8sLRvLa+9c6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGjiC+ChPqmOhDHnyXw6psZl/EI6MB8GA1UdIwQY MBaAFAJfKpPbEPLdX2pVuypED2dIbNGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYt MmVjZGExMWRlMTUzLzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYtMmVjZGExMWRlMTUz LzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAepAqbggn 0WJHiDznA8uiqxm5jtL3LtS4A7Iql49joVmlYztxbs/UmvnLs3h2wdi5Cmn0HB+c QTzxDRz/aK9jHqGUtlJctKj9evUmzxyFSZghOabNORwt8o+DkYwxNrdgGeg3ZuFJ EtUDlX/ljK19mt35jXw9yhJg9NxbO+Teewhm8aEsVIQirzKolYCo+UK1HTvNV8FD QSrYcmX0UOTRGY8OJZSwJzvcEPd9z+eeFdHXkXmnNnqS0VWPYqTkydhTIHWrRYW/ n8rCPZE7N8f1OouqSTqteeLEaTQLCg1Oej3jMW8Xe7HdWCnzeYyVBS5rj87Jnebh +7+/WixiieX7OQ== -----END CERTIFICATE-----Generated at Thu Jan 29 11:30:32 2026 by rpki-client