This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft File: S5nNYSQguFk0kdhobOTEr4W5CtU.mft (raw, json) Hash identifier: 1+H8ECJum3Akz7zV9TZcYOPb1fFVWYuC3WQ36tLyxZU= Subject key identifier: 27:F6:90:EA:01:1F:18:80:C0:B5:6B:FE:8A:B5:BD:AD:D6:1F:20:BD Authority key identifier: 4B:99:CD:61:24:20:B8:59:34:91:D8:68:6C:E4:C4:AF:85:B9:0A:D5 Certificate issuer: /CN=4b99cd612420b8593491d8686ce4c4af85b90ad5 Certificate serial: 019BFB770F014D9A586C3600A507EF8682FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft Manifest number: 021C Signing time: Mon 26 Jan 2026 18:00:42 +0000 Manifest this update: Mon 26 Jan 2026 18:00:42 +0000 Manifest next update: Tue 27 Jan 2026 18:00:42 +0000 Files and hashes: 1: 8DpSJKviZ7cSTOBb1JPdqUAWjZI.roa (hash: KJ3gvkRDPvd6FYiFgYbSLnhGd4p7f+DOyl+s6ewmo1Y=) 2: NDIauRSXxmTRxMaMxKWAcWs2hiY.roa (hash: niReydPhxoIGyEf8VzGlx6ngoJ93K3AzsN+453eTTKQ=) 3: S5nNYSQguFk0kdhobOTEr4W5CtU.crl (hash: 5I6tb9J2rLgcoko1r9gfStSOzgUvb32umgro1JXcpJ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.crl rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 18:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:77:0f:01:4d:9a:58:6c:36:00:a5:07:ef:86:82:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b99cd612420b8593491d8686ce4c4af85b90ad5 Validity Not Before: Jan 26 18:00:42 2026 GMT Not After : Jan 27 18:00:42 2026 GMT Subject: CN=27f690ea011f1880c0b56bfe8ab5bdadd61f20bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5e:c8:46:c9:bf:bd:e2:01:18:8d:14:83:fb: dd:8e:5d:1a:71:49:93:8f:08:69:7b:7f:be:24:a1: 4e:53:39:ae:62:62:34:01:27:1a:33:80:28:a9:b6: 73:ff:8d:16:c3:dd:e2:40:a9:80:8b:e7:90:c1:6a: 62:78:73:01:f7:6e:df:cc:3e:76:49:89:89:c6:24: c7:a4:6e:70:1f:13:21:2c:38:39:30:1a:a3:81:12: 8f:80:b1:5c:79:3a:4e:ff:ff:77:37:b7:de:83:86: 43:66:52:1d:de:eb:a3:c8:79:ef:c4:b1:b8:fd:b1: 65:7c:fc:ad:97:79:9a:15:b7:02:f2:91:ae:29:3a: 84:17:7b:b1:67:44:1b:23:cc:9f:91:d0:e2:43:73: 2b:19:2d:97:c6:c6:f0:0a:97:50:01:67:85:46:33: fc:75:60:88:df:e4:2f:47:f3:25:1d:de:d8:7c:62: 9c:3f:cf:2e:69:34:77:cf:28:8c:f9:f8:a9:ba:15: e8:ef:11:78:78:72:06:15:10:dd:07:c0:3d:2a:3c: d4:61:bd:a3:74:a5:fd:3a:96:61:b7:db:ad:fc:35: 3c:93:b4:7e:29:c6:81:ab:bd:5e:0f:a0:2e:77:ab: db:52:e6:51:cc:e8:9f:40:5e:b2:a1:cf:c1:29:b1: 43:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F6:90:EA:01:1F:18:80:C0:B5:6B:FE:8A:B5:BD:AD:D6:1F:20:BD X509v3 Authority Key Identifier: keyid:4B:99:CD:61:24:20:B8:59:34:91:D8:68:6C:E4:C4:AF:85:B9:0A:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5nNYSQguFk0kdhobOTEr4W5CtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7c1b17-b7b5-4401-b0a7-974720889ffa/1/S5nNYSQguFk0kdhobOTEr4W5CtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:a2:e7:16:3b:70:1b:11:85:f2:c2:46:a9:34:f0:66:91:bd: 63:d5:2c:60:44:d3:d1:84:17:7c:60:9b:cb:0b:48:7c:4e:92: 4f:99:a7:25:78:a9:05:63:31:c9:68:b3:41:42:1e:cd:c8:2f: 2b:52:14:07:ed:d9:f2:a7:47:aa:56:d4:36:98:bd:af:2e:5e: 3c:bf:01:3d:41:6a:25:75:99:8e:64:72:97:4b:f4:e1:41:b3: 4a:c2:16:b4:c7:b7:07:4e:b9:c9:4f:8e:f5:6a:5d:af:38:95: be:8d:c3:ad:03:04:0d:d9:65:8d:3a:5d:e7:65:35:60:72:74: 9d:ac:af:6e:b1:c6:c9:1e:d8:ed:f7:da:b9:3c:13:c5:ed:8f: 87:ea:95:a9:63:36:e7:bd:18:0f:34:f1:bd:6c:36:68:8a:65: 06:61:08:2c:50:a2:0e:4b:51:25:fe:01:65:e9:dd:f4:fd:87: 3d:68:fb:fa:9f:c8:9d:74:28:01:9b:d5:0b:d4:eb:43:84:50: 79:10:2f:1d:02:ba:3f:2f:4d:cc:cc:61:f5:34:f1:53:21:58: e9:13:d0:17:a4:91:8b:e7:69:b6:22:5f:bb:df:9a:4f:90:04: dd:e5:4c:df:c5:54:65:95:99:a3:c0:8b:87:f7:d5:ff:f9:31: c4:80:74:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7dw8BTZpYbDYApQfvhoL8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiOTljZDYxMjQyMGI4NTkzNDkxZDg2ODZjZTRjNGFmODVi OTBhZDUwHhcNMjYwMTI2MTgwMDQyWhcNMjYwMTI3MTgwMDQyWjAzMTEwLwYDVQQD EygyN2Y2OTBlYTAxMWYxODgwYzBiNTZiZmU4YWI1YmRhZGQ2MWYyMGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvF7IRsm/veIBGI0Ug/vdjl0acUmT jwhpe3++JKFOUzmuYmI0AScaM4AoqbZz/40Ww93iQKmAi+eQwWpieHMB927fzD52 SYmJxiTHpG5wHxMhLDg5MBqjgRKPgLFceTpO//93N7feg4ZDZlId3uujyHnvxLG4 /bFlfPytl3maFbcC8pGuKTqEF3uxZ0QbI8yfkdDiQ3MrGS2XxsbwCpdQAWeFRjP8 dWCI3+QvR/MlHd7YfGKcP88uaTR3zyiM+fipuhXo7xF4eHIGFRDdB8A9KjzUYb2j dKX9OpZht9ut/DU8k7R+KcaBq71eD6Aud6vbUuZRzOifQF6yoc/BKbFDRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCf2kOoBHxiAwLVr/oq1va3WHyC9MB8GA1UdIwQY MBaAFEuZzWEkILhZNJHYaGzkxK+FuQrVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzVuTllTUWd1Rmswa2Rob2JPVEVyNFc1Q3RVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS83YzFiMTctYjdiNS00NDAxLWIwYTct OTc0NzIwODg5ZmZhLzEvUzVuTllTUWd1Rmswa2Rob2JPVEVyNFc1Q3RVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS83YzFiMTctYjdiNS00NDAxLWIwYTctOTc0NzIwODg5ZmZh LzEvUzVuTllTUWd1Rmswa2Rob2JPVEVyNFc1Q3RVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPKLnFjtw GxGF8sJGqTTwZpG9Y9UsYETT0YQXfGCbywtIfE6ST5mnJXipBWMxyWizQUIezcgv K1IUB+3Z8qdHqlbUNpi9ry5ePL8BPUFqJXWZjmRyl0v04UGzSsIWtMe3B065yU+O 9WpdrziVvo3DrQMEDdlljTpd52U1YHJ0nayvbrHGyR7Y7ffauTwTxe2Ph+qVqWM2 570YDzTxvWw2aIplBmEILFCiDktRJf4BZend9P2HPWj7+p/InXQoAZvVC9TrQ4RQ eRAvHQK6Py9NzMxh9TTxUyFY6RPQF6SRi+dptiJfu9+aT5AE3eVM38VUZZWZo8CL h/fV//kxxIB0Dw== -----END CERTIFICATE-----Generated at Tue Jan 27 03:58:42 2026 by rpki-client