This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json) Hash identifier: 6QiGcT7a+GVeXFUFWZrDyffimb46VXLOwh68afAxihg= Subject key identifier: CF:E6:9D:A6:8D:D8:9F:BC:4C:C5:DA:37:BC:E8:7A:74:C5:C2:FD:34 Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 019BDE124236C7576A992734C79E7B7D0780 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft Manifest number: 0B56 Signing time: Wed 21 Jan 2026 01:01:37 +0000 Manifest this update: Wed 21 Jan 2026 01:01:37 +0000 Manifest next update: Thu 22 Jan 2026 01:01:37 +0000 Files and hashes: 1: 0z8pTI41iPuVrCQVQ1wuJedcLng.roa (hash: e+SXHoPepQrK1mT7vZuMdVv/Sb/mCHdwtmRTk5f2KY0=) 2: 1-1lvKVidMjz9SqtbPt81s0r7r0I.roa (hash: ZlBElaLY1A20NV3b70L3QV0eyy9Ku8m61r7maErkkKY=) 3: 1oYlZgxPctAxMYb6-vhwUO72lhc.roa (hash: o/RuyvVOaKsuCpKHwcm+jaQwGnTX4Si67GviNKnjKDE=) 4: 2_-FI-AoJnOM9FRj9JIZ87TxIGU.roa (hash: fYqLfLAgXXv2j6Hlh2bmzcVErlr45q7qc3mJo6wcwjY=) 5: 38r2X0leHHTAmJ6zVJSwuzoD2E0.roa (hash: uyTAZ2GgNW9/wIH0EkQGQyRV3AY/RO2eHsNraGcFPPk=) 6: CZCLA3Cj6YYp_k_a7y0b2rbgyzo.roa (hash: SaDoVmzs9e3hbWzh+uCnOLVQP2mnuXiNzqqPyyTBq2o=) 7: F0KEI4lW7Epb_3eoekIpwBqbc2E.roa (hash: UC+E/xpST3sk4LrjHrlkIcP31YMZn/3d6DZdEgG8Rdg=) 8: JwqCrlYj4jWk0kjghd3nRJtx-EQ.roa (hash: C2FzGkWqusy1+L9+G5l/4MmyS4qSpGF23YAr4kNJZHQ=) 9: Latg5HfFxVV45cY_wXpQ9M7y2UM.roa (hash: AMl3v5ozRzV/5w1KglWOLAOe0okRBu64taR6MmvtD44=) 10: MLJuInjQg3zDgPHSYlxPnBCsr8w.roa (hash: z204xX29eUWjwP65eKvX0LnffzPLMfSulEeLcZJVV/s=) 11: N0sDm-EFGV2amFYWHwErrX3Dbus.roa (hash: Xmo1dvVrCIWSNTaeVoMmKU+6tNLC/YtQosQjQwiD/3c=) 12: NcdnAUjF0ZmvIFIsYxSjccA1H5U.roa (hash: yrpUGMxgOjNevSVTIVpW6O91noTiRG2R4yZAODEyOJ0=) 13: UypHuJtN1zmqt0Zba9DljNJ2WgY.roa (hash: PFDshKDp/mzgsdaZsjSV8dCLT3xJ6p+HUpwQxcGrMuI=) 14: XGuSPhl5LGW7Z3BmBjxjBXpLSd4.roa (hash: xpu2LcbUiEWGNuth3F7JqXUhPdB9UW9MvNo8pgrt41c=) 15: _lKnEg1-NFO6l357CnrLER6CliY.roa (hash: Y7GAkCJm8g5O50zcWGspsENFrEJikk46pFDm8LNFtgo=) 16: _opU9Zflr19Qgw9wxcT5CzBzFeE.roa (hash: hVBzTOs1aH7AxZYfWOOyLBurJardjc8RPMc3Hjjv5+g=) 17: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: zFYLY0Yz4rJWqlKqDlg/UeMaNPQonY3R16emCej3cYo=) 18: aqPgWOakmp5fii05oBo6v_tlmAQ.roa (hash: 4j9frFtx7FlfahOenBDreDRrYBvvkfNPAcv1Ywz2/HM=) 19: cDdMTjngtYsLIOOxQvsdmflV-aA.roa (hash: dZ55CHAusf0JcOT9iKjBrQ/9IwdfrGFZWIyMSLpgGtA=) 20: enYE37jQOciNrH4vp2_3FdUT0io.roa (hash: PoAlpwtftho9gluuF95P6FYOuD1hDRKv7R9Nta21XGo=) 21: j6F5nKl7VxhTCPP7Z6aypppg1qg.roa (hash: b/KmdMBh7vGAQW3XZYIqLqb1iW1YZRpjzYx/XN6MR5Y=) 22: j6h2wYXBGU0po-975zEbDRhXVP8.roa (hash: VuTt2+GtidZibv9WAUHaogEOazxD2GyG76InT6TAm6k=) 23: l7FVy9qV9r7TJi_Vr2KpMSypfts.roa (hash: BO7WgU3AlrlmLiXeaJCpacGRr3Q1uOzmvzOfD3QKH6s=) 24: nFU8l0SuNs4mLVgObqGXtp6gnoI.roa (hash: dp4PPf/CcvyLdCI3a30WQB7bcOJJ7sLxhjedTuWlcA0=) 25: ol5o-VeacDxR8G56FJbb2bssCJU.roa (hash: HWf9NNfp469bQ5Wf7jn4TMJbz+S/ZW2Aq8n1tyLEU+8=) 26: qJ6pc4FQIOGrKblUrmzqpKhY1W8.roa (hash: h1N79r6IwikpSxLGbvCodpvdgy0jF1MGCYu94qAhjf4=) 27: s5_XzwQfnjREeGyxGEXKHTbuCec.roa (hash: f2LNPZwtscDHDTcGq3OeJusAQETPe2+DG2C2X0YawWI=) 28: t9VfVoic7D0Eb12yRbnLassyYY8.roa (hash: OIvXTMlAaBLVGYWH+/8UMptxQ45gYDbOsCNpVMjE62A=) 29: tEnzcmF181z_Fz4dFzQyfZ882o4.roa (hash: RBYNG12SzCTfXGwx/F5qbQVTQCBmyDYwNw6MWUM/ecc=) 30: uBIYg6HBl9Jf8Kf0_1APF11RXj4.roa (hash: Cy62Nntc/tzkP5N8nJbuKZSP38j9mL0EAGyc0aabhl4=) 31: wTgQ6fCMDPpS81pwpnjiyHzyTpc.roa (hash: ixnoZEKtVyJai2PVSvQa52pLsUnTfY2h9ItkAule9hg=) 32: y6XyUstS_SjZUuRcmwKI2O2hK4g.roa (hash: 6KaNgtch9hdulImqbKsvBI0tlfN0LaRnEF0phbzSwYg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 01:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:de:12:42:36:c7:57:6a:99:27:34:c7:9e:7b:7d:07:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Jan 21 01:01:37 2026 GMT Not After : Jan 22 01:01:37 2026 GMT Subject: CN=cfe69da68dd89fbc4cc5da37bce87a74c5c2fd34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7a:18:df:93:fd:46:52:38:d6:02:7d:71:47: 35:65:c1:0a:0b:71:69:23:55:f9:f5:29:9b:88:36: 4f:91:45:fd:13:cb:bf:4f:d0:b3:c5:ca:15:96:5c: 03:c9:6e:a9:58:aa:0a:b2:fd:09:75:af:55:4b:1c: 86:a4:8a:82:c3:c7:86:dd:75:3c:10:f4:a9:55:be: 39:f3:1e:cf:f4:72:5a:cc:ac:ee:d6:97:60:9c:ba: a5:6e:38:b1:9f:94:37:43:f5:b3:9f:39:07:0a:f3: a1:5f:7c:10:b4:39:38:d0:c3:c0:7f:c5:9b:bf:0e: 2e:38:52:39:bd:49:e6:ad:53:4e:8f:e7:19:0f:0a: f9:0b:d9:f9:c4:fa:ad:29:80:0b:7d:81:99:70:b4: e3:da:3f:91:b8:8a:6e:a3:db:ac:b2:e3:ac:da:4b: 47:07:70:ed:82:ea:c6:4d:24:b9:c9:19:08:9e:d4: c9:6d:14:4c:60:ce:eb:7c:58:77:ff:7e:1b:c2:41: 67:0b:e5:47:10:d2:d6:a0:aa:8d:2a:64:72:e3:43: cd:b1:28:ee:b2:9b:ef:25:d6:db:96:6d:ba:a3:55: 3f:45:04:f9:f9:3e:46:3f:6f:40:55:05:ff:7a:97: 07:53:b6:bb:1d:fd:0c:c6:72:f6:1a:17:8b:8a:5f: 0e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E6:9D:A6:8D:D8:9F:BC:4C:C5:DA:37:BC:E8:7A:74:C5:C2:FD:34 X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:71:9d:32:29:bd:7a:dc:56:f7:44:ba:e9:51:b6:62:66:52: 63:11:d4:1c:00:35:f1:63:c9:23:b9:dc:2e:29:27:5c:e5:c2: be:cc:6a:00:ef:9b:6b:63:86:d9:6f:1c:49:e7:8d:fb:98:5b: 4b:fb:7b:b7:e8:d4:d7:f8:23:fc:ca:23:57:c9:96:e8:d5:e4: e2:00:43:2d:04:9e:30:8a:5c:c9:b2:15:4e:d3:c6:7b:3b:f6: c5:77:5e:93:9b:d1:70:37:3b:f0:b0:14:e0:50:dc:f8:77:85: 6d:58:50:48:ed:ae:8b:a8:45:02:5e:ae:4f:6c:51:c8:e3:d5: e8:4a:22:ad:a5:a6:c1:fd:2b:61:3a:d9:ec:ed:9e:06:2f:2b: b5:4a:47:c9:17:53:df:cc:c6:26:5f:f7:4c:ec:bb:f6:01:7f: 29:a3:4f:89:ca:f2:a9:aa:37:fa:0e:e4:47:06:47:be:ec:76: 1c:53:e3:de:81:4d:a6:23:31:27:21:48:6d:87:70:59:a0:3f: 09:27:64:09:f5:2b:38:51:fa:9f:36:22:8f:6f:80:70:97:22: 8d:0b:2d:a6:16:9f:8a:da:fa:ca:55:e7:3d:83:53:e2:cd:62: 32:83:ec:a3:e5:7f:f7:fb:5e:4b:5a:83:10:4c:1b:cb:8c:3e: fb:14:df:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZveEkI2x1dqmSc0x557fQeAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjYwMTIxMDEwMTM3WhcNMjYwMTIyMDEwMTM3WjAzMTEwLwYDVQQD EyhjZmU2OWRhNjhkZDg5ZmJjNGNjNWRhMzdiY2U4N2E3NGM1YzJmZDM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HoY35P9RlI41gJ9cUc1ZcEKC3Fp I1X59SmbiDZPkUX9E8u/T9CzxcoVllwDyW6pWKoKsv0Jda9VSxyGpIqCw8eG3XU8 EPSpVb458x7P9HJazKzu1pdgnLqlbjixn5Q3Q/WznzkHCvOhX3wQtDk40MPAf8Wb vw4uOFI5vUnmrVNOj+cZDwr5C9n5xPqtKYALfYGZcLTj2j+RuIpuo9ussuOs2ktH B3DtgurGTSS5yRkIntTJbRRMYM7rfFh3/34bwkFnC+VHENLWoKqNKmRy40PNsSju spvvJdbblm26o1U/RQT5+T5GP29AVQX/epcHU7a7Hf0MxnL2GheLil8O4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM/mnaaN2J+8TMXaN7zoenTFwv00MB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPHGdMim9 etxW90S66VG2YmZSYxHUHAA18WPJI7ncLiknXOXCvsxqAO+ba2OG2W8cSeeN+5hb S/t7t+jU1/gj/MojV8mW6NXk4gBDLQSeMIpcybIVTtPGezv2xXdek5vRcDc78LAU 4FDc+HeFbVhQSO2ui6hFAl6uT2xRyOPV6EoiraWmwf0rYTrZ7O2eBi8rtUpHyRdT 38zGJl/3TOy79gF/KaNPicryqao3+g7kRwZHvux2HFPj3oFNpiMxJyFIbYdwWaA/ CSdkCfUrOFH6nzYij2+AcJcijQstphafitr6ylXnPYNT4s1iMoPso+V/9/teS1qD EEwby4w++xTfPg== -----END CERTIFICATE-----Generated at Wed Jan 21 11:28:08 2026 by rpki-client