This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json) Hash identifier: evRNFQGkY8cUdrIkUnSczqA757oeYuDodoW9OnR28eU= Subject key identifier: CC:77:EC:FA:03:62:9A:75:24:32:D2:EB:60:67:A7:6E:B9:58:84:9E Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86 Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486 Certificate serial: 3BA954364A75FB55EC4AD2F532243873446D7506 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft Manifest number: 03D5 Signing time: Mon 19 Jan 2026 14:39:03 +0000 Manifest this update: Mon 19 Jan 2026 14:34:03 +0000 Manifest next update: Tue 20 Jan 2026 16:34:03 +0000 Files and hashes: 1: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: 8xGFplm++qGEN8XxDceSY6Jjb8uRv087xaFBB6P8Mus=) 2: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: SQPPpGAfcWzeQjBcG69M0Ql5cnWUCRPHaAkbYVbbBkE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a9:54:36:4a:75:fb:55:ec:4a:d2:f5:32:24:38:73:44:6d:75:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486 Validity Not Before: Jan 19 14:34:03 2026 GMT Not After : Jan 20 16:34:03 2026 GMT Subject: CN=CC77ECFA03629A752432D2EB6067A76EB958849E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:c8:bf:8b:e7:65:0e:6e:d3:95:95:33:92:85: 58:69:b1:5e:eb:3a:76:9f:80:72:2b:8c:5b:76:b4: 57:c1:88:b7:25:d5:3f:fc:22:4b:ec:f5:fc:aa:6f: b4:5a:59:a0:da:77:59:9d:0e:06:02:be:36:dc:72: e6:6d:42:69:56:52:a5:63:b1:3e:17:02:32:a0:51: 1c:ab:6e:b3:cb:fe:10:bf:87:01:2f:9d:e7:b3:4d: a2:54:fa:82:3d:ee:3f:51:2a:b5:66:6a:b6:e5:e0: dc:39:14:87:6c:a2:99:07:5c:fa:e0:e1:7c:78:02: 98:09:c3:48:bb:ab:d7:fb:67:29:5c:7e:f4:14:2f: a6:05:58:24:1b:63:3e:54:1c:84:45:85:88:ab:bd: 82:1b:66:14:87:0b:c5:7a:43:08:25:37:71:09:d1: 8c:59:36:73:75:90:50:04:fe:0a:c9:8c:0a:5e:6f: c2:3c:48:4b:37:b0:71:d7:bd:4f:a6:be:b7:db:2e: a6:eb:61:a7:02:02:66:b7:f2:40:99:b5:49:83:1f: 62:eb:da:82:62:9f:8d:37:26:3d:1f:fe:a9:86:70: 41:23:d0:84:94:c3:1c:fb:d1:66:0e:df:13:96:41: 62:22:ff:ca:b0:9f:cf:d3:76:48:6d:b6:58:42:bb: 8a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:77:EC:FA:03:62:9A:75:24:32:D2:EB:60:67:A7:6E:B9:58:84:9E X509v3 Authority Key Identifier: keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:ef:b8:f7:57:59:8f:d6:16:f7:37:ef:77:90:3d:77:3c:fb: a2:05:bc:f7:15:8f:4f:d1:15:9d:07:02:eb:62:97:c9:b2:38: ac:75:1c:d0:37:1d:50:eb:8d:4c:6c:22:87:83:bd:9d:24:34: d1:06:aa:d9:bf:56:72:65:5b:69:32:d1:28:ca:df:ec:d1:84: b7:2d:5b:92:e3:64:57:ff:54:20:75:96:fb:db:b6:95:66:80: 9f:be:c2:c6:3e:9d:62:13:9e:19:b4:5d:b9:f9:1f:0f:55:8b: 51:64:4f:ab:7e:3d:fa:71:3b:d7:c8:d2:ae:71:c9:87:43:39: a8:f8:a5:38:22:fa:cb:ec:5e:c5:79:c5:20:7d:c6:44:8d:22: 00:37:9c:d7:3c:5d:b4:bf:d7:87:fb:89:4f:62:d2:e6:c7:0b: b9:05:62:05:01:ea:7c:14:ab:7b:80:6a:a0:8b:c4:29:72:57: 0d:c8:64:97:61:96:ca:79:dc:53:16:bb:16:5f:9a:79:be:5b: 3c:f5:96:ab:bf:36:e3:a5:01:f8:ab:f1:58:b5:1a:67:8d:17: 16:83:4f:85:03:72:08:69:8e:52:29:4f:13:40:ff:eb:fb:b1: 92:1c:bb:0a:2a:17:f9:9e:af:af:fa:0b:8c:81:8d:21:30:f7: f0:0f:4e:60 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUO6lUNkp1+1XsStL1MiQ4c0RtdQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhkMDk3YWZkODhhZWYzZjEwMjgyZjMyMThmYzEzZjAx YTBkZTQ4NjAeFw0yNjAxMTkxNDM0MDNaFw0yNjAxMjAxNjM0MDNaMDMxMTAvBgNV BAMTKENDNzdFQ0ZBMDM2MjlBNzUyNDMyRDJFQjYwNjdBNzZFQjk1ODg0OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuyL+L52UObtOVlTOShVhpsV7r OnafgHIrjFt2tFfBiLcl1T/8Ikvs9fyqb7RaWaDad1mdDgYCvjbccuZtQmlWUqVj sT4XAjKgURyrbrPL/hC/hwEvneezTaJU+oI97j9RKrVmarbl4Nw5FIdsopkHXPrg 4Xx4ApgJw0i7q9f7ZylcfvQUL6YFWCQbYz5UHIRFhYirvYIbZhSHC8V6QwglN3EJ 0YxZNnN1kFAE/grJjApeb8I8SEs3sHHXvU+mvrfbLqbrYacCAma38kCZtUmDH2Lr 2oJin403Jj0f/qmGcEEj0ISUwxz70WYO3xOWQWIi/8qwn8/TdkhttlhCu4q9AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUzHfs+gNimnUkMtLrYGenbrlYhJ4wHwYDVR0j BBgwFoAUaNCXr9iK7z8QKC8yGPwT8BoN5IYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvN2MxMWI4MTktZDQ1OS00MTM2LTk5ODctZjAyOTJhODdl NjQwLzAvNjhEMDk3QUZEODhBRUYzRjEwMjgyRjMyMThGQzEzRjAxQTBERTQ4Ni5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FOQ1hyOWlLN3o4UUtDOHlHUHdUOEJv TjVJWS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83YzExYjgxOS1k NDU5LTQxMzYtOTk4Ny1mMDI5MmE4N2U2NDAvMC82OEQwOTdBRkQ4OEFFRjNGMTAy ODJGMzIxOEZDMTNGMDFBMERFNDg2Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjO+491dZj9YW9zfvd5A9 dzz7ogW89xWPT9EVnQcC62KXybI4rHUc0DcdUOuNTGwih4O9nSQ00Qaq2b9WcmVb aTLRKMrf7NGEty1bkuNkV/9UIHWW+9u2lWaAn77Cxj6dYhOeGbRdufkfD1WLUWRP q349+nE718jSrnHJh0M5qPilOCL6y+xexXnFIH3GRI0iADec1zxdtL/Xh/uJT2LS 5scLuQViBQHqfBSre4BqoIvEKXJXDchkl2GWynncUxa7Fl+aeb5bPPWWq78246UB +KvxWLUaZ40XFoNPhQNyCGmOUilPE0D/6/uxkhy7CioX+Z6vr/oLjIGNITD38A9O YA== -----END CERTIFICATE-----Generated at Mon Jan 19 18:29:33 2026 by rpki-client