This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft File: stLBGv8HK-w3pYJiEU4cBr7bSUI.mft (raw, json) Hash identifier: 6LYtU1TlPjsmaLkWbpxCxPDRAH5HGCJUZGuGLH68ZY8= Subject key identifier: C4:B8:C6:B4:03:9D:01:9E:B1:85:95:75:00:6F:43:3C:B1:5E:EB:5F Authority key identifier: B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42 Certificate issuer: /CN=b2d2c11aff072bec37a58262114e1c06bedb4942 Certificate serial: 019BFE78C28A3C71563FEE90A1546047F3B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft Manifest number: 0188 Signing time: Tue 27 Jan 2026 08:01:25 +0000 Manifest this update: Tue 27 Jan 2026 08:01:25 +0000 Manifest next update: Wed 28 Jan 2026 08:01:25 +0000 Files and hashes: 1: 9a5ary6iFvpPhI3-VZwXzEYUNS4.roa (hash: bUunzrEWYSDdnUyB7OzOajjtkOR72CIasRBys0Yz5Bg=) 2: stLBGv8HK-w3pYJiEU4cBr7bSUI.crl (hash: EFulFheHfjRehDCHlOttRxWg/SEcg9uURlurPIS4ThU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 08:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fe:78:c2:8a:3c:71:56:3f:ee:90:a1:54:60:47:f3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2d2c11aff072bec37a58262114e1c06bedb4942 Validity Not Before: Jan 27 08:01:25 2026 GMT Not After : Jan 28 08:01:25 2026 GMT Subject: CN=c4b8c6b4039d019eb1859575006f433cb15eeb5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:65:aa:aa:82:d0:4a:18:e9:0c:1d:82:07:de: c9:bf:83:e4:d5:cc:af:43:ca:d1:8e:f7:9a:ee:b6: 81:64:5d:7a:f8:c3:6e:d5:9e:2f:b0:2f:ba:34:ee: 42:5f:ca:79:cf:7d:ca:86:d6:7c:f8:cf:97:57:b0: fe:93:66:99:6c:7f:8c:6e:44:25:75:91:35:a6:e1: ec:ae:09:bf:a8:f3:2f:25:20:d6:f0:a4:bb:04:b6: 8f:ec:3a:f8:12:1a:b8:a5:8a:18:53:a6:bc:41:b8: 87:26:1c:e3:69:01:53:a3:de:26:0b:84:70:80:d6: c2:60:c4:60:8c:fc:af:54:37:da:d7:65:2c:31:fc: 0d:86:13:6d:c5:b6:8e:e7:1f:66:ec:04:44:45:12: d5:c8:a1:82:31:fa:fd:26:5e:8b:01:d3:17:2d:d0: 09:17:67:68:ed:17:e1:21:4c:56:7d:27:55:13:7d: ec:7e:30:95:d5:26:69:2b:25:e5:4f:4e:f6:7c:99: c3:4e:b1:3f:ee:38:28:ee:10:fe:82:02:b6:8c:49: 1c:b8:c8:7a:6e:d3:f5:ce:78:72:98:a4:02:97:ec: 6b:84:0d:c0:f4:4d:96:20:de:fd:04:2e:66:3f:a5: a8:6a:32:d8:f2:ca:17:09:f2:96:aa:ef:13:a4:b3: 28:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B8:C6:B4:03:9D:01:9E:B1:85:95:75:00:6F:43:3C:B1:5E:EB:5F X509v3 Authority Key Identifier: keyid:B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:94:3b:b2:51:4b:16:38:d1:cb:84:4c:43:3e:58:ad:9b:c6: 3a:de:19:09:f7:68:43:b7:c6:36:82:e9:c3:b5:40:5c:17:a1: cc:34:0e:7a:83:95:1e:f9:0a:49:50:55:91:98:e6:c9:eb:7f: 4d:56:b1:ba:d3:ac:99:67:8e:f1:b6:0e:26:3f:2a:36:ab:f6: b6:ba:12:af:1d:89:eb:1e:a8:28:8e:4c:6a:d6:8d:03:e7:ab: 6a:af:66:18:af:ea:b3:14:95:61:a4:6a:84:b8:ae:94:91:42: 0c:fe:64:df:35:d1:6d:e0:81:6a:b7:27:6a:aa:fd:6f:d5:09: e6:93:c4:da:db:26:96:b5:92:54:ec:df:53:b2:96:98:04:1e: 89:27:ee:5e:8c:7a:eb:8f:99:4d:d1:d3:3d:7d:c7:0d:32:fd: ab:fa:24:e4:fe:58:9e:e8:80:11:c4:a7:c0:f8:eb:5e:29:3f: ea:43:0e:d2:55:83:9a:dd:da:4c:30:fd:0c:a2:57:d1:cc:bb: 3f:c3:77:7f:07:42:31:a3:48:0f:e8:4b:3a:fc:76:7e:1f:1f: 98:23:4a:ab:4d:76:26:62:19:58:46:ec:d4:54:e4:68:fc:46: 17:57:ed:3e:91:8b:4d:88:4f:95:28:0c:ef:ce:51:75:2a:ff: 05:26:c4:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv+eMKKPHFWP+6QoVRgR/OyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZDJjMTFhZmYwNzJiZWMzN2E1ODI2MjExNGUxYzA2YmVk YjQ5NDIwHhcNMjYwMTI3MDgwMTI1WhcNMjYwMTI4MDgwMTI1WjAzMTEwLwYDVQQD EyhjNGI4YzZiNDAzOWQwMTllYjE4NTk1NzUwMDZmNDMzY2IxNWVlYjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmWqqoLQShjpDB2CB97Jv4Pk1cyv Q8rRjvea7raBZF16+MNu1Z4vsC+6NO5CX8p5z33KhtZ8+M+XV7D+k2aZbH+MbkQl dZE1puHsrgm/qPMvJSDW8KS7BLaP7Dr4Ehq4pYoYU6a8QbiHJhzjaQFTo94mC4Rw gNbCYMRgjPyvVDfa12UsMfwNhhNtxbaO5x9m7ARERRLVyKGCMfr9Jl6LAdMXLdAJ F2do7RfhIUxWfSdVE33sfjCV1SZpKyXlT072fJnDTrE/7jgo7hD+ggK2jEkcuMh6 btP1znhymKQCl+xrhA3A9E2WIN79BC5mP6WoajLY8soXCfKWqu8TpLMoOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMS4xrQDnQGesYWVdQBvQzyxXutfMB8GA1UdIwQY MBaAFLLSwRr/ByvsN6WCYhFOHAa+20lCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTct YzViYWVhM2YxNzI5LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTctYzViYWVhM2YxNzI5 LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAZQ7slFL FjjRy4RMQz5YrZvGOt4ZCfdoQ7fGNoLpw7VAXBehzDQOeoOVHvkKSVBVkZjmyet/ TVaxutOsmWeO8bYOJj8qNqv2troSrx2J6x6oKI5MataNA+eraq9mGK/qsxSVYaRq hLiulJFCDP5k3zXRbeCBarcnaqr9b9UJ5pPE2tsmlrWSVOzfU7KWmAQeiSfuXox6 64+ZTdHTPX3HDTL9q/ok5P5YnuiAEcSnwPjrXik/6kMO0lWDmt3aTDD9DKJX0cy7 P8N3fwdCMaNID+hLOvx2fh8fmCNKq012JmIZWEbs1FTkaPxGF1ftPpGLTYhPlSgM 785RdSr/BSbELw== -----END CERTIFICATE-----Generated at Tue Jan 27 12:44:22 2026 by rpki-client