This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File:                     s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier:          9/5O/paW0a7bLhTnAHpzySWsCfzDfa7uoKvIUrYxVzQ=
Subject key identifier:   B5:F0:9E:FD:50:50:76:D4:D4:C6:88:38:C2:E9:7D:18:B2:41:99:57
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer:       /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial:       019C1CB986263F4D667DD06121F30D78F842
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number:          1804
Signing time:             Mon 02 Feb 2026 05:00:46 +0000
Manifest this update:     Mon 02 Feb 2026 05:00:46 +0000
Manifest next update:     Tue 03 Feb 2026 05:00:46 +0000
Files and hashes:         1: aftA-bCSN_cfnaumewln08mRqyk.roa (hash: ewCgfj5ZHQWWUV5zhZ6e7KdXcICBairndqt6imFYbD4=)
                          2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: LFDS1SXGvNRS115onR9yKmAE0c6LfoaMxU7xYww0088=)
                          3: sHSL6KeWD6muqNxIvHz053KucUs.asa (hash: Dii9+VgXhOO/o5gmGbq2K3cC3ucJXOQeg7Dp4dNWbSE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Feb 2026 05:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:1c:b9:86:26:3f:4d:66:7d:d0:61:21:f3:0d:78:f8:42
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
        Validity
            Not Before: Feb  2 05:00:46 2026 GMT
            Not After : Feb  3 05:00:46 2026 GMT
        Subject: CN=b5f09efd505076d4d4c68838c2e97d18b2419957
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:4e:ae:ab:6a:6c:1f:90:11:d8:5d:cf:2a:40:
                    e8:12:f4:36:f5:d4:e2:47:a5:53:86:5a:0c:ef:df:
                    4d:99:24:b0:98:4d:1c:4b:cc:4c:d5:e1:3a:7f:51:
                    fa:43:4e:67:0d:b4:6e:f9:80:f0:91:94:74:1b:7e:
                    09:7e:c0:d4:ac:dc:aa:c6:8c:d1:bc:a8:43:53:26:
                    3e:84:0f:f6:c5:e1:ac:6e:df:d8:d7:ae:2a:84:9b:
                    d8:5c:df:20:0e:3e:9d:b7:6f:4c:05:d7:79:a9:76:
                    7c:4c:6f:8f:6f:b1:22:5e:41:6c:19:91:53:5a:03:
                    6f:0e:9a:0b:03:22:0f:c6:e3:52:69:5e:84:ed:3f:
                    01:e2:8d:0a:4c:62:96:fe:c0:34:15:4a:4e:e9:0a:
                    93:60:bc:3a:5f:0f:8c:05:63:b2:fd:7b:17:97:3d:
                    f6:1e:b5:a8:a3:81:68:5f:66:74:aa:15:81:f6:fe:
                    6c:a1:9a:41:54:90:f4:6c:d1:f7:7b:15:56:57:6a:
                    28:de:28:43:ab:05:da:3e:c3:d6:b5:c6:84:bb:b7:
                    33:c2:ed:5a:36:1a:f9:33:4e:30:8b:b5:f0:1c:48:
                    a7:f9:0f:92:a4:0e:8a:1a:0f:b0:b1:de:50:91:34:
                    a0:91:29:20:6f:0f:aa:2f:7d:39:41:72:c1:76:3a:
                    10:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:F0:9E:FD:50:50:76:D4:D4:C6:88:38:C2:E9:7D:18:B2:41:99:57
            X509v3 Authority Key Identifier:
                keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ba:8b:30:90:fc:fb:67:b4:55:00:a3:57:65:d5:c8:53:4a:71:
         4a:75:38:a0:9e:a2:8a:75:41:de:a2:23:d5:6f:1c:95:a3:b7:
         e0:b6:d7:eb:ef:78:89:7a:f8:2f:ad:ce:16:6c:56:05:a9:cf:
         28:ce:fb:ff:b0:42:f4:63:db:e7:7d:1e:5e:d5:7e:cd:e6:0e:
         d9:64:7f:ec:58:46:ee:17:31:a5:4b:34:ca:ae:72:e1:3f:9a:
         ec:33:63:1c:c7:ca:b1:0d:b8:e1:80:7c:10:d9:56:64:7b:18:
         d1:66:99:0f:7d:44:7c:f8:27:bb:34:8b:0b:70:94:74:3e:66:
         61:3f:2a:5a:47:fb:47:60:f5:e9:6b:f1:e6:55:2d:6c:f3:10:
         7c:20:e6:c1:62:1b:86:7b:58:14:c1:6d:25:24:ce:b7:8f:bc:
         46:52:4d:41:a5:5a:53:f8:47:13:6f:d1:e5:8f:3b:f3:56:af:
         36:53:eb:55:13:20:e7:15:76:c5:65:e9:b5:5a:e0:8c:24:3b:
         27:7d:62:fc:85:8b:c8:c4:82:12:54:75:87:f3:80:20:f2:d1:
         90:f9:52:05:0d:01:67:d4:fd:34:19:dc:e9:9a:31:c5:7b:ab:
         a0:fd:f4:25:61:e0:12:eb:7a:b6:58:77:08:bd:f5:6d:dc:ff:
         55:1c:91:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 2 09:30:15 2026 by rpki-client