This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft File: 2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft (raw, json) Hash identifier: AEKqhtk9IFfeDgcTKYE3TrCJHA4eqXheZ+fv2/1ACFU= Subject key identifier: EB:DC:B0:19:C8:72:0A:FA:85:FE:0B:D7:37:3C:3B:6E:D0:59:A2:F1 Authority key identifier: D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6 Certificate issuer: /CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6 Certificate serial: 019BE000438BC4F3FDCC8717ACBBE660AFB6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft Manifest number: 16CB Signing time: Wed 21 Jan 2026 10:01:12 +0000 Manifest this update: Wed 21 Jan 2026 10:01:12 +0000 Manifest next update: Thu 22 Jan 2026 10:01:12 +0000 Files and hashes: 1: 2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl (hash: 4Ty0rxNimP/lxsZM29R+PbgPkP/S+CgrCyNTHvBk58k=) 2: NkvybtyieeqcXDjHG9gHl_XAsMQ.roa (hash: 00Ye2JJrLJ1zMVpdd8DivfPeXqrw+enAIn41E191EYk=) 3: WYvB7z2E3X738_d9cgopMgPJk5I.roa (hash: u5beh3Tb2byL/rGs3HaRRLRbrFXqSXUDof4rFMurirU=) 4: _0K0MbXez9Zk6hM4BfuXTicksww.roa (hash: jphVj9+5Y1KjhS9qQGa/Rzumw9Jp9UB9+NvyfpBCLSc=) 5: gLFfimILtrvNmLCqHHnLyf5HeDQ.roa (hash: Au61gdy9n9KoeOHWn+nWGKr6a14kosDrZi3ajbtwzn8=) 6: zNk-M0VG943BmxksL9suzBVm4vQ.roa (hash: UUWX1bpaoMZzwXQx5EXEi0bI53+v8tYUcjIfVRmZCYY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:00:43:8b:c4:f3:fd:cc:87:17:ac:bb:e6:60:af:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6 Validity Not Before: Jan 21 10:01:12 2026 GMT Not After : Jan 22 10:01:12 2026 GMT Subject: CN=ebdcb019c8720afa85fe0bd7373c3b6ed059a2f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4a:b7:9d:0a:3a:e2:cc:83:12:94:2f:8a:39: 6d:31:00:0c:d1:41:ca:26:03:ff:a9:41:a4:89:15: 16:23:da:f9:e9:64:c9:86:c6:7d:cb:fa:3b:e4:02: 2d:7f:b2:78:d8:33:25:48:59:4b:f3:33:7d:47:4a: 8d:1c:96:c1:c4:a0:12:bc:8c:3f:d4:b2:91:2b:16: 4e:cd:37:05:a0:04:fe:6f:a8:e8:e2:5b:ad:77:95: 3d:c5:a6:12:e4:4f:3d:4e:86:6e:0b:8c:75:86:ca: 9a:e1:33:2b:66:c2:61:25:87:3d:3d:97:6b:49:56: 06:c3:8c:4f:5f:1a:47:75:07:52:eb:41:63:cf:1e: fb:bd:9d:79:0a:6b:3a:39:e5:e7:f0:f4:92:88:8d: b2:cc:ae:37:c6:39:48:04:eb:59:9a:d9:f3:41:43: 90:6a:c0:c0:24:94:6f:d2:50:03:3c:ae:69:20:23: ac:21:91:6d:f3:cd:70:5e:0c:bb:3b:26:66:38:02: 82:d8:fd:6d:f0:8c:5d:86:d5:23:dc:26:bc:2b:de: 62:fd:46:b4:4d:55:f8:04:8f:80:ad:29:56:fa:65: 23:03:13:3b:5d:c5:1e:69:e2:4d:b7:c1:b5:a1:a8: 6c:ad:fb:20:dd:df:55:ad:b1:a8:cc:e3:4e:9a:1b: 1b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:DC:B0:19:C8:72:0A:FA:85:FE:0B:D7:37:3C:3B:6E:D0:59:A2:F1 X509v3 Authority Key Identifier: keyid:D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:b9:c1:95:34:d3:de:40:69:78:2f:85:75:75:f8:48:f1:f1: 33:4b:88:cb:5b:07:09:0c:6a:6a:e4:c0:5a:45:c1:14:e0:f1: dc:3b:13:ba:71:c9:2e:4e:a6:de:47:c8:a8:78:0e:c6:3c:46: fd:e3:22:ed:c0:c8:33:4f:8b:e4:f8:e8:ae:ba:4c:30:61:6c: 31:86:e9:4a:f8:61:e2:0b:ec:b0:29:f4:0a:b0:b1:44:ba:40: 66:08:68:df:eb:59:a2:61:8c:cb:c6:83:5e:a8:cf:35:f4:dd: f8:93:a9:a5:6e:54:79:e4:5c:d7:6e:b6:72:4d:b7:34:2a:7a: 5d:21:3d:16:a1:84:3b:2c:e7:4d:b3:b0:6d:68:50:ce:42:f4: 52:24:65:c8:2e:f4:d2:d1:c7:86:c4:7c:53:6e:3d:72:c3:24: 97:0f:ab:65:46:1b:56:56:47:eb:cc:bb:00:7a:16:31:d2:cc: 99:de:34:cd:fb:86:23:1a:55:37:db:6f:41:34:33:f6:d1:c0: 1a:7a:f6:36:0b:be:ed:c8:9e:12:02:24:7c:73:37:87:d2:8b: 87:c7:f7:37:50:b1:f9:80:da:3f:69:a1:4a:33:ba:76:13:4a: ff:40:cc:cf:b2:86:57:6c:16:76:0b:ca:eb:87:23:c7:2f:9f: e7:c3:a0:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvgAEOLxPP9zIcXrLvmYK+2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NzcyYWFjMWI2MmI4N2Q2YjAxZDU3YTFhMDBhNmE3MmI4 YTdkYTYwHhcNMjYwMTIxMTAwMTEyWhcNMjYwMTIyMTAwMTEyWjAzMTEwLwYDVQQD EyhlYmRjYjAxOWM4NzIwYWZhODVmZTBiZDczNzNjM2I2ZWQwNTlhMmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEq3nQo64syDEpQvijltMQAM0UHK JgP/qUGkiRUWI9r56WTJhsZ9y/o75AItf7J42DMlSFlL8zN9R0qNHJbBxKASvIw/ 1LKRKxZOzTcFoAT+b6jo4lutd5U9xaYS5E89ToZuC4x1hsqa4TMrZsJhJYc9PZdr SVYGw4xPXxpHdQdS60Fjzx77vZ15Cms6OeXn8PSSiI2yzK43xjlIBOtZmtnzQUOQ asDAJJRv0lADPK5pICOsIZFt881wXgy7OyZmOAKC2P1t8IxdhtUj3Ca8K95i/Ua0 TVX4BI+ArSlW+mUjAxM7XcUeaeJNt8G1oahsrfsg3d9VrbGozONOmhsbvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOvcsBnIcgr6hf4L1zc8O27QWaLxMB8GA1UdIwQY MBaAFNh3KqwbYrh9awHVehoApqcrin2mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkhjcXJCdGl1SDFyQWRWNkdnQ21weXVLZmFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My82MTZhNTgtNTM0Mi00MzJjLWE5YzUt MzMzYmVlY2ZmNmY0LzEvMkhjcXJCdGl1SDFyQWRWNkdnQ21weXVLZmFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My82MTZhNTgtNTM0Mi00MzJjLWE5YzUtMzMzYmVlY2ZmNmY0 LzEvMkhjcXJCdGl1SDFyQWRWNkdnQ21weXVLZmFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUbnBlTTT 3kBpeC+FdXX4SPHxM0uIy1sHCQxqauTAWkXBFODx3DsTunHJLk6m3kfIqHgOxjxG /eMi7cDIM0+L5PjorrpMMGFsMYbpSvhh4gvssCn0CrCxRLpAZgho3+tZomGMy8aD XqjPNfTd+JOppW5UeeRc1262ck23NCp6XSE9FqGEOyznTbOwbWhQzkL0UiRlyC70 0tHHhsR8U249csMklw+rZUYbVlZH68y7AHoWMdLMmd40zfuGIxpVN9tvQTQz9tHA Gnr2Ngu+7cieEgIkfHM3h9KLh8f3N1Cx+YDaP2mhSjO6dhNK/0DMz7KGV2wWdgvK 64cjxy+f58Ogmg== -----END CERTIFICATE-----Generated at Wed Jan 21 14:16:10 2026 by rpki-client