This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json) Hash identifier: /R/g8u3T2Q50OTQOG37X3nAKfVY1HClNVSepRipgBDE= Subject key identifier: F3:0F:DB:6D:0C:F4:CC:38:EA:09:B0:5A:49:BA:49:D0:C0:3D:C1:17 Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 019BE000D6DD8A9459731E056635044A0C60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft Manifest number: 0B57 Signing time: Wed 21 Jan 2026 10:01:49 +0000 Manifest this update: Wed 21 Jan 2026 10:01:49 +0000 Manifest next update: Thu 22 Jan 2026 10:01:49 +0000 Files and hashes: 1: 0z8pTI41iPuVrCQVQ1wuJedcLng.roa (hash: e+SXHoPepQrK1mT7vZuMdVv/Sb/mCHdwtmRTk5f2KY0=) 2: 1-1lvKVidMjz9SqtbPt81s0r7r0I.roa (hash: ZlBElaLY1A20NV3b70L3QV0eyy9Ku8m61r7maErkkKY=) 3: 1oYlZgxPctAxMYb6-vhwUO72lhc.roa (hash: o/RuyvVOaKsuCpKHwcm+jaQwGnTX4Si67GviNKnjKDE=) 4: 2_-FI-AoJnOM9FRj9JIZ87TxIGU.roa (hash: fYqLfLAgXXv2j6Hlh2bmzcVErlr45q7qc3mJo6wcwjY=) 5: 38r2X0leHHTAmJ6zVJSwuzoD2E0.roa (hash: uyTAZ2GgNW9/wIH0EkQGQyRV3AY/RO2eHsNraGcFPPk=) 6: CZCLA3Cj6YYp_k_a7y0b2rbgyzo.roa (hash: SaDoVmzs9e3hbWzh+uCnOLVQP2mnuXiNzqqPyyTBq2o=) 7: F0KEI4lW7Epb_3eoekIpwBqbc2E.roa (hash: UC+E/xpST3sk4LrjHrlkIcP31YMZn/3d6DZdEgG8Rdg=) 8: JwqCrlYj4jWk0kjghd3nRJtx-EQ.roa (hash: C2FzGkWqusy1+L9+G5l/4MmyS4qSpGF23YAr4kNJZHQ=) 9: Latg5HfFxVV45cY_wXpQ9M7y2UM.roa (hash: AMl3v5ozRzV/5w1KglWOLAOe0okRBu64taR6MmvtD44=) 10: MLJuInjQg3zDgPHSYlxPnBCsr8w.roa (hash: z204xX29eUWjwP65eKvX0LnffzPLMfSulEeLcZJVV/s=) 11: N0sDm-EFGV2amFYWHwErrX3Dbus.roa (hash: Xmo1dvVrCIWSNTaeVoMmKU+6tNLC/YtQosQjQwiD/3c=) 12: NcdnAUjF0ZmvIFIsYxSjccA1H5U.roa (hash: yrpUGMxgOjNevSVTIVpW6O91noTiRG2R4yZAODEyOJ0=) 13: UypHuJtN1zmqt0Zba9DljNJ2WgY.roa (hash: PFDshKDp/mzgsdaZsjSV8dCLT3xJ6p+HUpwQxcGrMuI=) 14: XGuSPhl5LGW7Z3BmBjxjBXpLSd4.roa (hash: xpu2LcbUiEWGNuth3F7JqXUhPdB9UW9MvNo8pgrt41c=) 15: _lKnEg1-NFO6l357CnrLER6CliY.roa (hash: Y7GAkCJm8g5O50zcWGspsENFrEJikk46pFDm8LNFtgo=) 16: _opU9Zflr19Qgw9wxcT5CzBzFeE.roa (hash: hVBzTOs1aH7AxZYfWOOyLBurJardjc8RPMc3Hjjv5+g=) 17: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: tOAUQCbr+iL8rbKnI16d1mhzmvmoKhvEebwRte7cBb0=) 18: aqPgWOakmp5fii05oBo6v_tlmAQ.roa (hash: 4j9frFtx7FlfahOenBDreDRrYBvvkfNPAcv1Ywz2/HM=) 19: cDdMTjngtYsLIOOxQvsdmflV-aA.roa (hash: dZ55CHAusf0JcOT9iKjBrQ/9IwdfrGFZWIyMSLpgGtA=) 20: enYE37jQOciNrH4vp2_3FdUT0io.roa (hash: PoAlpwtftho9gluuF95P6FYOuD1hDRKv7R9Nta21XGo=) 21: j6F5nKl7VxhTCPP7Z6aypppg1qg.roa (hash: b/KmdMBh7vGAQW3XZYIqLqb1iW1YZRpjzYx/XN6MR5Y=) 22: j6h2wYXBGU0po-975zEbDRhXVP8.roa (hash: VuTt2+GtidZibv9WAUHaogEOazxD2GyG76InT6TAm6k=) 23: l7FVy9qV9r7TJi_Vr2KpMSypfts.roa (hash: BO7WgU3AlrlmLiXeaJCpacGRr3Q1uOzmvzOfD3QKH6s=) 24: nFU8l0SuNs4mLVgObqGXtp6gnoI.roa (hash: dp4PPf/CcvyLdCI3a30WQB7bcOJJ7sLxhjedTuWlcA0=) 25: ol5o-VeacDxR8G56FJbb2bssCJU.roa (hash: HWf9NNfp469bQ5Wf7jn4TMJbz+S/ZW2Aq8n1tyLEU+8=) 26: qJ6pc4FQIOGrKblUrmzqpKhY1W8.roa (hash: h1N79r6IwikpSxLGbvCodpvdgy0jF1MGCYu94qAhjf4=) 27: s5_XzwQfnjREeGyxGEXKHTbuCec.roa (hash: f2LNPZwtscDHDTcGq3OeJusAQETPe2+DG2C2X0YawWI=) 28: t9VfVoic7D0Eb12yRbnLassyYY8.roa (hash: OIvXTMlAaBLVGYWH+/8UMptxQ45gYDbOsCNpVMjE62A=) 29: tEnzcmF181z_Fz4dFzQyfZ882o4.roa (hash: RBYNG12SzCTfXGwx/F5qbQVTQCBmyDYwNw6MWUM/ecc=) 30: uBIYg6HBl9Jf8Kf0_1APF11RXj4.roa (hash: Cy62Nntc/tzkP5N8nJbuKZSP38j9mL0EAGyc0aabhl4=) 31: wTgQ6fCMDPpS81pwpnjiyHzyTpc.roa (hash: ixnoZEKtVyJai2PVSvQa52pLsUnTfY2h9ItkAule9hg=) 32: y6XyUstS_SjZUuRcmwKI2O2hK4g.roa (hash: 6KaNgtch9hdulImqbKsvBI0tlfN0LaRnEF0phbzSwYg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:00:d6:dd:8a:94:59:73:1e:05:66:35:04:4a:0c:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Jan 21 10:01:49 2026 GMT Not After : Jan 22 10:01:49 2026 GMT Subject: CN=f30fdb6d0cf4cc38ea09b05a49ba49d0c03dc117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b7:23:66:b4:e7:a1:78:e4:a4:3f:a3:d1:b5: b7:70:fc:7f:53:9c:e9:77:c3:a7:1e:6f:4a:2d:af: a4:3a:89:8b:0a:c4:53:b7:58:cc:a4:f1:b9:5b:62: 32:df:aa:91:dc:31:d6:b1:03:ce:f1:cc:19:cf:bd: f4:46:45:be:43:d9:29:ac:72:85:7a:ae:f6:5c:46: a4:37:82:1c:0e:2c:4d:d8:d3:da:96:fa:af:f0:00: 61:15:62:ff:6a:73:b5:f8:c3:a3:38:57:c0:d6:6f: 16:b6:70:b6:e6:5f:1e:2f:1d:2b:81:9f:40:66:cb: 4d:0d:d5:5f:7e:d5:66:fa:d3:bc:9d:93:fe:70:e4: 78:ca:7d:2b:26:be:0b:c8:77:ae:0e:3d:b6:06:ab: 79:ec:e3:7c:2c:be:24:c0:62:67:37:b0:a0:a7:0d: 2b:ca:6c:71:c2:c2:99:f0:01:cf:02:ec:0e:fc:45: 24:c6:9d:e4:17:8e:88:8d:f8:5c:65:87:85:8a:8d: e8:c8:26:59:0e:00:80:ec:9b:68:4b:f9:d3:a4:3c: 41:e2:44:6d:23:4a:e6:49:90:1d:f1:a3:93:82:de: 21:b9:e8:75:f4:a6:55:fd:d3:44:57:27:84:5c:6e: 2f:60:3f:fa:dd:18:7e:cb:e3:15:08:40:01:50:3e: ff:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:0F:DB:6D:0C:F4:CC:38:EA:09:B0:5A:49:BA:49:D0:C0:3D:C1:17 X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:01:13:f8:6c:82:b0:77:d6:de:85:64:ef:df:7c:9a:c7:79: ed:98:23:90:d6:62:e8:4c:9c:2e:0c:0f:4f:50:cb:13:07:d0: 5b:fc:2b:fa:34:33:a4:6c:5c:8d:a3:1a:d8:3e:1d:e1:bb:42: 13:37:51:0f:4b:e3:54:cb:74:63:07:ad:5a:8c:e7:d6:66:21: aa:c0:31:77:8e:71:00:0a:fa:2e:13:97:87:e1:4b:fc:e4:d1: ec:8c:73:f1:4b:84:b7:ff:73:66:71:3b:f1:11:50:84:e8:56: 93:38:47:b4:1d:64:76:94:20:f6:93:0d:c3:8d:f9:81:03:72: 30:2b:e9:44:5b:e2:26:1c:7a:f9:22:ca:da:1b:40:19:d6:61: 3b:c8:b1:1c:fb:b5:d6:9b:08:07:c9:75:e9:fe:26:9d:b3:71: 51:1b:f5:f2:17:55:06:29:23:de:97:c7:b1:62:d2:bb:41:63: 2d:40:bc:3b:6d:51:af:94:58:e6:ac:ec:87:f4:a5:0e:d9:3d: c3:a9:0b:f5:1b:fe:5c:47:a6:46:99:0e:55:6e:b7:ed:ce:55: 99:10:74:6e:d7:cf:d4:a4:c2:9f:cc:b9:74:bb:ff:14:62:70: 3b:d2:03:dc:d1:98:d4:1a:90:9c:aa:3d:d1:d1:0a:04:e8:bb: 1f:43:c3:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvgANbdipRZcx4FZjUESgxgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjYwMTIxMTAwMTQ5WhcNMjYwMTIyMTAwMTQ5WjAzMTEwLwYDVQQD EyhmMzBmZGI2ZDBjZjRjYzM4ZWEwOWIwNWE0OWJhNDlkMGMwM2RjMTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybcjZrTnoXjkpD+j0bW3cPx/U5zp d8OnHm9KLa+kOomLCsRTt1jMpPG5W2Iy36qR3DHWsQPO8cwZz730RkW+Q9kprHKF eq72XEakN4IcDixN2NPalvqv8ABhFWL/anO1+MOjOFfA1m8WtnC25l8eLx0rgZ9A ZstNDdVfftVm+tO8nZP+cOR4yn0rJr4LyHeuDj22Bqt57ON8LL4kwGJnN7Cgpw0r ymxxwsKZ8AHPAuwO/EUkxp3kF46IjfhcZYeFio3oyCZZDgCA7JtoS/nTpDxB4kRt I0rmSZAd8aOTgt4hueh19KZV/dNEVyeEXG4vYD/63Rh+y+MVCEABUD7/tQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPMP220M9Mw46gmwWkm6SdDAPcEXMB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANQET+GyC sHfW3oVk7998msd57ZgjkNZi6EycLgwPT1DLEwfQW/wr+jQzpGxcjaMa2D4d4btC EzdRD0vjVMt0YwetWozn1mYhqsAxd45xAAr6LhOXh+FL/OTR7Ixz8UuEt/9zZnE7 8RFQhOhWkzhHtB1kdpQg9pMNw435gQNyMCvpRFviJhx6+SLK2htAGdZhO8ixHPu1 1psIB8l16f4mnbNxURv18hdVBikj3pfHsWLSu0FjLUC8O21Rr5RY5qzsh/SlDtk9 w6kL9Rv+XEemRpkOVW637c5VmRB0btfP1KTCn8y5dLv/FGJwO9ID3NGY1BqQnKo9 0dEKBOi7H0PDwg== -----END CERTIFICATE-----Generated at Wed Jan 21 12:48:59 2026 by rpki-client