This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft File: 2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json) Hash identifier: CIxsWG91m4gwhC5gWMP4G+ThdhZNa4HL3raeK61id+A= Subject key identifier: DA:7A:3A:64:D3:AF:05:1D:B7:22:34:BA:12:D9:99:4E:84:B4:40:3D Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f Certificate serial: 019BF988A05FA255D522C1270604A9745DDB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft Manifest number: 0547 Signing time: Mon 26 Jan 2026 09:00:39 +0000 Manifest this update: Mon 26 Jan 2026 09:00:39 +0000 Manifest next update: Tue 27 Jan 2026 09:00:39 +0000 Files and hashes: 1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: nqLaaX7ajBKCRmXMwObCaUOm6y1ARDh1rfKn77OAj8Y=) 2: 5hSNwWLNWCAUYLUKlFOgbC-vsKw.roa (hash: fkCkSIkOMr1NgMDTMDUskq39VJ7KZjaa4kYDj6t+Z0w=) 3: 7CXmH7ThrZok20WiAGjCXCBOzas.roa (hash: ML0vggVdekDweRUo8ISIsoQBBgpWCyTUPYs8nGYXR2s=) 4: 9-C51BQ9GR3x8sWko39QajrgzuQ.roa (hash: 1bZx3qAnqXddYhE0b5hAmr5qKot7DzAZND6Oe0URbRY=) 5: 92Ks2sFC0w0p0AIFF49f1gWqGCY.roa (hash: D1mBgUfkWtkbrrO6F1qZG97Uv8V0Ofc3+kHoQHbc2Zc=) 6: R9yQDUpo9qSNelx0KQxWO9fm9iA.roa (hash: RSvmXKJf5yDyS1EyQpjsuSAr6t0VEWEQu/Rk/10QmtQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:88:a0:5f:a2:55:d5:22:c1:27:06:04:a9:74:5d:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f Validity Not Before: Jan 26 09:00:39 2026 GMT Not After : Jan 27 09:00:39 2026 GMT Subject: CN=da7a3a64d3af051db72234ba12d9994e84b4403d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a2:c7:b4:9c:db:26:e5:a5:b6:a0:ea:22:2d: 72:32:25:7f:7a:68:3b:4b:f3:3c:27:13:87:8a:e3: ad:31:51:96:50:a9:6c:cc:e2:cc:40:a2:09:1e:1e: d0:10:d8:d0:9f:b6:d6:43:68:c1:f6:d6:bd:d4:4b: 21:de:25:2f:23:20:a6:21:10:07:ca:05:49:25:15: c3:f3:2f:40:bc:4a:30:1e:c2:a0:fd:cc:aa:9a:42: 33:ca:6f:7d:4d:f2:6b:a1:fb:5f:7e:70:a9:56:00: f6:9f:95:3b:7b:a2:a0:18:c9:46:91:3c:70:6f:68: 04:f6:b5:c5:fa:f7:fb:08:71:9f:55:e9:01:d6:da: 1b:b2:9d:2b:db:26:e9:9f:43:ec:21:8b:61:ae:5a: 53:cd:b3:8e:d6:ba:fe:b4:ed:55:4a:ba:fb:d5:5f: 7f:ee:e6:5d:81:fc:55:e8:3a:dc:c8:84:f0:69:af: 20:d4:ce:7a:7b:0c:c3:ef:fe:5f:70:1b:2a:49:4b: e6:41:5a:2b:2c:f7:cd:ea:1c:99:04:26:45:7d:04: 03:1d:63:68:39:bd:16:42:04:f7:60:76:e2:fb:dc: 3b:28:af:be:0c:4d:6e:47:6a:17:11:9e:10:be:d5: b0:ed:c7:a0:85:70:85:20:d2:60:62:5f:1d:28:78: b9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:7A:3A:64:D3:AF:05:1D:B7:22:34:BA:12:D9:99:4E:84:B4:40:3D X509v3 Authority Key Identifier: keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:97:da:81:22:0e:47:21:76:c9:ec:b4:bb:ad:70:b8:c9:e7: 26:c0:ae:aa:25:6d:3b:af:ac:0a:24:b4:66:b8:30:13:b5:ca: a3:c9:ba:e7:1c:94:78:54:a9:6d:0a:de:ee:72:89:e2:fb:21: a7:b6:e6:40:78:96:d4:5f:e0:d9:cc:8b:1e:c3:57:fc:5b:0a: dc:5a:fd:bb:f2:95:c7:fe:8e:4b:f3:89:87:fb:3b:37:1e:9f: bd:2e:12:8a:57:f8:50:f3:0a:2e:1c:2e:f2:27:42:4e:be:6f: d8:9d:31:6f:63:58:72:a1:10:db:f2:c5:b7:b1:40:74:fc:cc: 8b:28:53:32:a9:78:a3:5e:40:33:81:c8:99:d1:e9:02:1c:30: 9c:5e:5d:9c:b4:73:6e:98:c0:cb:f9:d9:4b:ee:1e:00:da:53: 20:1e:0f:c5:49:3a:45:b5:60:25:9d:9c:31:0a:be:c0:38:20: 65:c3:76:78:ef:28:37:6f:44:56:d4:72:a3:ce:0c:95:a1:d7: 92:c8:0f:1c:b5:71:d8:e6:54:75:6b:97:33:03:4f:ae:47:94: 56:e9:5f:b8:c0:0a:e0:02:c9:b4:5d:b2:07:30:d3:62:fb:6a: d6:3d:c0:16:4e:e4:7e:ef:31:52:3f:9e:15:cf:68:53:4a:0f: 9c:7f:f1:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5iKBfolXVIsEnBgSpdF3bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MTRkYTU2ZTFhOTM0NjQ5ZGEwMjk2NGFjMTJlYmEzNGM1 Y2I4NGYwHhcNMjYwMTI2MDkwMDM5WhcNMjYwMTI3MDkwMDM5WjAzMTEwLwYDVQQD EyhkYTdhM2E2NGQzYWYwNTFkYjcyMjM0YmExMmQ5OTk0ZTg0YjQ0MDNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA56LHtJzbJuWltqDqIi1yMiV/emg7 S/M8JxOHiuOtMVGWUKlszOLMQKIJHh7QENjQn7bWQ2jB9ta91Esh3iUvIyCmIRAH ygVJJRXD8y9AvEowHsKg/cyqmkIzym99TfJroftffnCpVgD2n5U7e6KgGMlGkTxw b2gE9rXF+vf7CHGfVekB1tobsp0r2ybpn0PsIYthrlpTzbOO1rr+tO1VSrr71V9/ 7uZdgfxV6DrcyITwaa8g1M56ewzD7/5fcBsqSUvmQVorLPfN6hyZBCZFfQQDHWNo Ob0WQgT3YHbi+9w7KK++DE1uR2oXEZ4QvtWw7ceghXCFINJgYl8dKHi5OwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNp6OmTTrwUdtyI0uhLZmU6EtEA9MB8GA1UdIwQY MBaAFNkU2lbhqTRknaApZKwS66NMXLhPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2It ZjZiY2NmMWU1MzFmLzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2ItZjZiY2NmMWU1MzFm LzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsZfagSIO RyF2yey0u61wuMnnJsCuqiVtO6+sCiS0ZrgwE7XKo8m65xyUeFSpbQre7nKJ4vsh p7bmQHiW1F/g2cyLHsNX/FsK3Fr9u/KVx/6OS/OJh/s7Nx6fvS4Silf4UPMKLhwu 8idCTr5v2J0xb2NYcqEQ2/LFt7FAdPzMiyhTMql4o15AM4HImdHpAhwwnF5dnLRz bpjAy/nZS+4eANpTIB4PxUk6RbVgJZ2cMQq+wDggZcN2eO8oN29EVtRyo84MlaHX ksgPHLVx2OZUdWuXMwNPrkeUVulfuMAK4ALJtF2yBzDTYvtq1j3AFk7kfu8xUj+e Fc9oU0oPnH/xTQ== -----END CERTIFICATE-----Generated at Mon Jan 26 15:04:58 2026 by rpki-client