This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json) Hash identifier: SKQ+FuZDDYVYYsgECtHO+doVMdxg4YC47CJggk+N5o4= Subject key identifier: AB:62:31:1E:16:A5:27:0C:C9:FF:C5:AD:53:CB:29:15:7F:DE:AF:55 Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac Certificate serial: 019BFA2E3792B7A9A75E8697F7322EA41B89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft Manifest number: 0D84 Signing time: Mon 26 Jan 2026 12:01:31 +0000 Manifest this update: Mon 26 Jan 2026 12:01:31 +0000 Manifest next update: Tue 27 Jan 2026 12:01:31 +0000 Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: 2Zt+sPcNn/DLuPinWYjBtnfnONHvV4QVEmeK1Vv9r8k=) 2: uej861Aq66aiTbTh46AGK_JiRjQ.roa (hash: u2XmnqcYHbAJLSpNo2ks9hVCb6DlSKyd8Mczf2hO9GI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2e:37:92:b7:a9:a7:5e:86:97:f7:32:2e:a4:1b:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac Validity Not Before: Jan 26 12:01:31 2026 GMT Not After : Jan 27 12:01:31 2026 GMT Subject: CN=ab62311e16a5270cc9ffc5ad53cb29157fdeaf55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:24:21:8c:7f:38:3a:b0:38:8a:ce:3e:8e:b0: ad:c2:69:39:0d:57:1d:98:49:a8:1e:4f:77:46:a2: ac:1f:63:99:af:7d:81:3b:4d:e3:8a:48:d6:34:1d: 93:9d:0a:0f:8f:79:68:d5:2d:54:21:03:63:32:5f: 16:c7:33:cd:2a:3f:1b:bc:72:91:37:7c:66:e5:ea: 59:13:e9:01:83:af:c7:37:50:5c:74:07:c1:43:92: 79:6e:a9:fb:ca:55:c3:ef:59:eb:a8:7c:1e:94:f9: c3:0f:49:2c:36:d8:ea:07:3d:b4:60:86:ae:37:94: c5:6d:83:bd:26:49:9e:4c:4b:cc:8c:23:50:93:6b: 62:54:ee:8d:fa:07:2d:9c:33:26:d2:b2:61:60:22: 82:19:b3:16:02:f1:4b:39:6c:b1:1a:a4:e0:10:18: 8b:f7:3f:1f:72:86:d4:6c:ae:85:db:c7:cb:51:15: 63:b6:08:d7:23:9e:72:96:e0:22:34:c1:bd:da:92: 98:9e:ab:1f:e0:8b:95:c3:29:45:ae:b8:e3:00:85: 15:c2:59:94:70:a5:6d:db:4a:27:cd:30:ed:27:b6: fd:5e:1d:14:40:89:d4:59:b5:8e:e3:82:ed:28:8b: 67:11:38:10:94:e9:d9:be:24:b4:30:c4:91:ef:1f: 85:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:62:31:1E:16:A5:27:0C:C9:FF:C5:AD:53:CB:29:15:7F:DE:AF:55 X509v3 Authority Key Identifier: keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:cb:2e:c6:68:39:8b:f2:c0:3d:fe:34:fd:0c:ee:3b:19:63: e9:bc:4d:51:41:f6:e6:83:ab:1d:36:67:32:d4:61:20:8a:aa: 70:d9:db:7a:6d:25:e3:d6:c9:60:83:fb:14:36:42:14:3b:41: 5e:88:df:cc:d1:81:5a:a7:f4:63:b1:3b:24:34:bc:58:f7:7b: 5b:d0:30:00:0a:e3:df:80:fd:81:25:8a:20:03:7c:df:41:84: 3b:93:18:79:c2:f4:8e:61:44:80:f2:f3:3d:7c:c6:7d:15:4d: 33:b0:76:37:29:95:11:ee:ef:4a:53:c9:ed:fb:14:ac:8a:c1: fa:13:30:3c:00:ff:18:d3:3e:41:e2:49:c2:f6:6a:84:46:d5: 45:54:96:e5:3e:8f:45:57:f3:9f:ae:ff:65:6a:3c:f7:ec:9a: 7e:86:21:ad:a1:b2:9e:43:61:d9:16:a1:57:3f:46:21:7e:c1: d0:c6:3a:92:54:8f:96:db:ee:51:de:dc:93:74:14:22:00:1c: 29:8c:11:50:6e:01:30:ca:97:3e:d6:90:4f:a8:eb:6e:a5:aa: 07:13:7c:26:04:53:a2:b4:89:5f:50:f3:41:54:7a:a0:aa:9a: 66:93:7c:20:f6:c1:ab:31:6c:e0:c9:96:77:78:4d:a3:9c:55: 07:3a:43:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6LjeSt6mnXoaX9zIupBuJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMzc1ZTE2YTE5MzY3ZGU5OWJiMjRhYzExNWQyNTlhMmEw NDgxYWMwHhcNMjYwMTI2MTIwMTMxWhcNMjYwMTI3MTIwMTMxWjAzMTEwLwYDVQQD EyhhYjYyMzExZTE2YTUyNzBjYzlmZmM1YWQ1M2NiMjkxNTdmZGVhZjU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2SQhjH84OrA4is4+jrCtwmk5DVcd mEmoHk93RqKsH2OZr32BO03jikjWNB2TnQoPj3lo1S1UIQNjMl8WxzPNKj8bvHKR N3xm5epZE+kBg6/HN1BcdAfBQ5J5bqn7ylXD71nrqHwelPnDD0ksNtjqBz20YIau N5TFbYO9JkmeTEvMjCNQk2tiVO6N+gctnDMm0rJhYCKCGbMWAvFLOWyxGqTgEBiL 9z8fcobUbK6F28fLURVjtgjXI55yluAiNMG92pKYnqsf4IuVwylFrrjjAIUVwlmU cKVt20onzTDtJ7b9Xh0UQInUWbWO44LtKItnETgQlOnZviS0MMSR7x+F4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKtiMR4WpScMyf/FrVPLKRV/3q9VMB8GA1UdIwQY MBaAFNs3Xhahk2fembskrBFdJZoqBIGsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2Ut NWI4NmJhNTg1OTIyLzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy85YmM1YmMtOGY5OS00MmVkLWE4Y2UtNWI4NmJhNTg1OTIy LzEvMnpkZUZxR1RaOTZadXlTc0VWMGxtaW9FZ2F3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArcsuxmg5 i/LAPf40/QzuOxlj6bxNUUH25oOrHTZnMtRhIIqqcNnbem0l49bJYIP7FDZCFDtB XojfzNGBWqf0Y7E7JDS8WPd7W9AwAArj34D9gSWKIAN830GEO5MYecL0jmFEgPLz PXzGfRVNM7B2NymVEe7vSlPJ7fsUrIrB+hMwPAD/GNM+QeJJwvZqhEbVRVSW5T6P RVfzn67/ZWo89+yafoYhraGynkNh2RahVz9GIX7B0MY6klSPltvuUd7ck3QUIgAc KYwRUG4BMMqXPtaQT6jrbqWqBxN8JgRTorSJX1DzQVR6oKqaZpN8IPbBqzFs4MmW d3hNo5xVBzpDAQ== -----END CERTIFICATE-----Generated at Mon Jan 26 15:39:48 2026 by rpki-client