This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft File: sCqa8vxf6TxDFIqssTxRvpBMjkw.mft (raw, json) Hash identifier: 0LkiJos/QD924HbUwKlFY2MwalHnT1IrAvpyOmjfInE= Subject key identifier: AA:8B:FF:2C:03:B9:46:F1:E7:B9:F4:11:E5:51:AF:52:68:A6:C9:9F Authority key identifier: B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C Certificate issuer: /CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c Certificate serial: 019BFC8A675B0BF9C947BE81FF32A1699804 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft Manifest number: 0626 Signing time: Mon 26 Jan 2026 23:01:27 +0000 Manifest this update: Mon 26 Jan 2026 23:01:27 +0000 Manifest next update: Tue 27 Jan 2026 23:01:27 +0000 Files and hashes: 1: sCqa8vxf6TxDFIqssTxRvpBMjkw.crl (hash: BGaFhN7yJOm7jqkO3ja3TldA4DmLdkdh31kr6efbHgI=) 2: y0urSuZI8k80qDTQJ3kG5eohDE0.roa (hash: Y9liF5XubPckrTgkSr37iUFqjTSMFsZSlRvzu6Hk6eI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:8a:67:5b:0b:f9:c9:47:be:81:ff:32:a1:69:98:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c Validity Not Before: Jan 26 23:01:27 2026 GMT Not After : Jan 27 23:01:27 2026 GMT Subject: CN=aa8bff2c03b946f1e7b9f411e551af5268a6c99f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:21:92:62:71:2d:88:9c:aa:62:bd:69:33:2a: 5e:aa:13:a5:61:e5:0d:d8:5b:e9:db:7b:ac:e6:9c: 8d:a6:ba:06:58:b1:3a:c9:a0:99:3d:02:9a:ea:01: c0:e9:6f:1e:8e:2a:1e:30:84:40:c3:5b:f4:9a:89: a3:52:96:86:00:c7:0c:16:d3:92:4a:0d:25:2a:8f: 9b:52:3e:47:a0:b7:63:52:76:05:c0:5e:51:83:5b: 8c:8e:b7:b7:c7:d9:a9:e3:a7:ea:b3:10:d2:d0:54: b6:91:dd:7a:12:6e:a2:da:ff:8d:06:a0:21:ab:cd: 6a:5e:d5:3b:9d:cf:42:32:a2:b2:45:23:ab:88:56: 3e:03:3f:25:50:97:3f:ac:d5:9f:47:c9:65:8b:7e: 42:ee:89:14:c8:62:3e:b4:cd:90:f1:36:3b:4b:83: 7a:62:33:30:04:55:80:a6:20:d9:1d:95:4b:91:90: c1:45:e0:ee:5f:25:dc:94:2c:42:71:84:0d:50:53: 36:66:9f:0d:26:68:fa:e0:2c:46:12:f7:ef:e9:28: d5:8b:f9:56:72:d0:34:f1:f0:1b:20:69:f3:5d:50: a2:1a:01:86:e6:56:76:28:10:d5:9a:6a:a1:e8:03: 2c:a7:91:ec:be:8f:9d:b2:d5:3d:e4:ef:0c:04:c4: c5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8B:FF:2C:03:B9:46:F1:E7:B9:F4:11:E5:51:AF:52:68:A6:C9:9F X509v3 Authority Key Identifier: keyid:B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:4b:fa:66:df:dd:11:7f:07:4b:fc:2c:db:64:a0:2a:e0:ba: 91:c4:cb:76:ec:15:3d:1b:cd:10:00:dd:9d:44:77:bb:8a:73: 63:bb:b9:6d:4d:3a:f7:fd:c5:a4:49:7a:32:6e:5f:e9:73:34: 8c:7d:c2:0b:84:9f:75:b5:65:8b:09:24:df:97:00:89:c7:80: 8d:f2:48:a1:61:fd:c5:b5:92:6c:5a:95:d4:22:50:07:9b:17: cd:89:e5:94:7e:0e:eb:b6:ef:12:3c:31:36:e7:00:9a:98:92: 60:cd:08:d0:67:e1:33:6c:80:74:80:d0:63:19:a7:2e:f3:17: 90:ca:99:cd:44:69:1e:86:74:f8:e1:80:b6:59:db:75:e4:87: d2:91:f7:9e:db:4d:47:9f:b8:f7:ce:27:c1:7a:13:cd:fc:87: 04:19:42:e8:97:4c:77:58:cc:7d:6a:c9:ac:3e:9c:65:a0:5d: 4c:3a:44:e1:8e:96:b3:ea:16:2a:db:3a:ce:1a:d5:b3:40:ad: dd:d0:1f:72:05:41:a0:af:fd:e7:ac:6c:67:90:55:b2:ca:50: 7f:e4:ef:6e:7c:2b:47:0d:42:73:51:79:d2:6e:64:03:a1:50: 7f:ee:8e:fb:6c:d9:07:d9:f6:3a:a6:93:ee:23:84:ae:72:20: c7:04:17:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8imdbC/nJR76B/zKhaZgEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwMmE5YWYyZmM1ZmU5M2M0MzE0OGFhY2IxM2M1MWJlOTA0 YzhlNGMwHhcNMjYwMTI2MjMwMTI3WhcNMjYwMTI3MjMwMTI3WjAzMTEwLwYDVQQD EyhhYThiZmYyYzAzYjk0NmYxZTdiOWY0MTFlNTUxYWY1MjY4YTZjOTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjyGSYnEtiJyqYr1pMypeqhOlYeUN 2Fvp23us5pyNproGWLE6yaCZPQKa6gHA6W8ejioeMIRAw1v0momjUpaGAMcMFtOS Sg0lKo+bUj5HoLdjUnYFwF5Rg1uMjre3x9mp46fqsxDS0FS2kd16Em6i2v+NBqAh q81qXtU7nc9CMqKyRSOriFY+Az8lUJc/rNWfR8lli35C7okUyGI+tM2Q8TY7S4N6 YjMwBFWApiDZHZVLkZDBReDuXyXclCxCcYQNUFM2Zp8NJmj64CxGEvfv6SjVi/lW ctA08fAbIGnzXVCiGgGG5lZ2KBDVmmqh6AMsp5Hsvo+dstU95O8MBMTFQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKqL/ywDuUbx57n0EeVRr1JopsmfMB8GA1UdIwQY MBaAFLAqmvL8X+k8QxSKrLE8Ub6QTI5MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0NxYTh2eGY2VHhERklxc3NUeFJ2cEJNamt3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8wYTYwY2UtYmIzNy00MzM3LWJmNTAt NWVjYTM2ZTE5ZjVkLzEvc0NxYTh2eGY2VHhERklxc3NUeFJ2cEJNamt3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi8wYTYwY2UtYmIzNy00MzM3LWJmNTAtNWVjYTM2ZTE5ZjVk LzEvc0NxYTh2eGY2VHhERklxc3NUeFJ2cEJNamt3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhEv6Zt/d EX8HS/ws22SgKuC6kcTLduwVPRvNEADdnUR3u4pzY7u5bU069/3FpEl6Mm5f6XM0 jH3CC4SfdbVliwkk35cAiceAjfJIoWH9xbWSbFqV1CJQB5sXzYnllH4O67bvEjwx NucAmpiSYM0I0GfhM2yAdIDQYxmnLvMXkMqZzURpHoZ0+OGAtlnbdeSH0pH3nttN R5+4984nwXoTzfyHBBlC6JdMd1jMfWrJrD6cZaBdTDpE4Y6Ws+oWKts6zhrVs0Ct 3dAfcgVBoK/956xsZ5BVsspQf+TvbnwrRw1Cc1F50m5kA6FQf+6O+2zZB9n2OqaT 7iOErnIgxwQX4g== -----END CERTIFICATE-----Generated at Tue Jan 27 06:42:39 2026 by rpki-client