This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/2GeflcqbZWt8oiG-brJPleMosBA.mft File: 2GeflcqbZWt8oiG-brJPleMosBA.mft (raw, json) Hash identifier: NH91QvKWIXEdJKLT5NRDPhQb+SEjv85urr6PLQfqOK4= Subject key identifier: CF:93:32:34:3C:E7:AE:6C:64:7A:23:10:F2:02:6E:DC:86:17:C2:6E Authority key identifier: D8:67:9F:95:CA:9B:65:6B:7C:A2:21:BE:6E:B2:4F:95:E3:28:B0:10 Certificate issuer: /CN=d8679f95ca9b656b7ca221be6eb24f95e328b010 Certificate serial: 019C0CD90E0C4A36D97362D09CF9B93B157F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GeflcqbZWt8oiG-brJPleMosBA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/2GeflcqbZWt8oiG-brJPleMosBA.mft Manifest number: 1A Signing time: Fri 30 Jan 2026 03:01:17 +0000 Manifest this update: Fri 30 Jan 2026 03:01:17 +0000 Manifest next update: Sat 31 Jan 2026 03:01:17 +0000 Files and hashes: 1: 2GeflcqbZWt8oiG-brJPleMosBA.crl (hash: FPgSOG44dsQyfZDn2d6u/HUnjThPyIQb6GIz7cNGhgE=) 2: BSZLZZU8WnO1HNWxWSVR-o_RsAQ.roa (hash: eIYiIuRaJOxAqm6Szxm9PX2GnxZ6UxTo1qMiKhfknrA=) 3: P-cBT9GtfwAV2Rbt0kBltwGf42I.roa (hash: sRPFuUPV4/Yh7kICP3uHlk73kVCyDpzxlUWN6hEeTyw=) 4: cfrZnlPG5kV-B-LGvN_WIWHqS4w.roa (hash: PVHP4t1Ul4PgCzLB7W22P/P4WDxT70HX4ueJqp6VpmY=) 5: r48UpQfIFT_00L01sN999jQbTcc.roa (hash: B09mf8eaBwNCmIzM3aQ+pzMc7N9vQ8EVkw29KyQzVHc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/2GeflcqbZWt8oiG-brJPleMosBA.crl rsync://rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/2GeflcqbZWt8oiG-brJPleMosBA.mft rsync://rpki.ripe.net/repository/DEFAULT/2GeflcqbZWt8oiG-brJPleMosBA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 31 Jan 2026 03:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:0c:d9:0e:0c:4a:36:d9:73:62:d0:9c:f9:b9:3b:15:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8679f95ca9b656b7ca221be6eb24f95e328b010 Validity Not Before: Jan 30 03:01:17 2026 GMT Not After : Jan 31 03:01:17 2026 GMT Subject: CN=cf9332343ce7ae6c647a2310f2026edc8617c26e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:8e:56:5d:d2:b9:a5:84:33:27:bd:f0:c5:22: 1d:48:47:71:a2:09:69:fa:61:df:c9:41:34:ba:30: 50:ff:e0:9d:57:1e:5c:12:83:bb:c1:d6:ba:fb:11: 57:63:2f:e7:c6:00:f9:c3:62:a6:4e:0b:f1:f0:eb: 8d:ec:20:45:7d:a2:bc:70:4c:3c:61:f8:87:65:1e: e3:2d:85:fe:fb:e9:b8:14:03:65:22:65:ac:7d:7b: e6:54:39:00:67:3b:1a:54:dd:9d:fe:ba:37:cb:6d: c0:14:6e:d9:cf:6f:72:74:ae:1b:e7:44:24:64:69: 98:e4:12:db:0f:6d:cd:8f:25:ff:9b:ff:d0:45:ca: 6c:06:5e:06:86:16:d8:6e:d1:72:da:c9:e2:b3:4c: c1:12:6b:a0:b6:99:16:56:86:6d:c7:71:13:bf:10: 86:dc:b5:d4:74:5c:30:ec:8f:6a:98:3b:11:87:db: ee:7f:a1:79:ca:b0:68:a4:16:01:5e:9c:8b:8d:ec: c7:d6:29:78:fe:36:17:87:ff:c0:db:82:fc:2f:a6: 39:fa:cc:de:bf:bb:c4:84:97:e1:f5:4e:5e:3c:e7: bc:1d:ba:8a:2f:7a:9c:8f:33:72:1d:58:6e:e2:3c: ad:b7:5d:62:21:d5:10:32:51:7d:54:9a:46:0f:5e: ff:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:93:32:34:3C:E7:AE:6C:64:7A:23:10:F2:02:6E:DC:86:17:C2:6E X509v3 Authority Key Identifier: keyid:D8:67:9F:95:CA:9B:65:6B:7C:A2:21:BE:6E:B2:4F:95:E3:28:B0:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GeflcqbZWt8oiG-brJPleMosBA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/2GeflcqbZWt8oiG-brJPleMosBA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/2GeflcqbZWt8oiG-brJPleMosBA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:48:63:24:fc:94:c7:a4:be:c5:09:d1:2f:6e:ee:5d:2e:e9: ba:23:61:b3:83:ba:53:14:8f:be:1e:08:65:9b:9d:4d:5d:a6: dd:0c:de:57:15:bc:7d:4a:bc:d1:fb:34:f3:b5:3e:b9:f2:4b: 00:5e:b1:1e:a3:c4:94:22:cd:b1:1a:56:52:46:a8:fd:27:5f: 6c:a4:46:78:b6:b8:d8:8f:88:90:bc:21:09:c6:6c:de:f4:d8: 95:cb:9e:88:93:ff:fd:3f:b8:00:dc:57:44:36:cf:eb:c4:37: 74:11:fe:9d:bd:d3:92:41:05:1a:ac:29:2d:d5:24:b7:f2:f3: 21:bf:b3:c2:0f:d2:5c:bc:d0:06:f5:40:89:e5:f6:c3:7d:52: b5:79:8e:c9:b8:77:b2:24:f6:56:7e:5e:1c:45:e8:8f:8a:c7: 1c:61:40:e9:4c:e3:e4:92:99:ce:31:03:b3:68:8b:9f:b1:1e: ae:58:44:1c:83:18:fb:b4:6a:4c:51:f9:e0:ae:ef:58:95:59: 1f:88:81:24:28:82:dd:d3:18:5a:d7:d8:1b:02:46:05:3f:ad: 03:3f:1a:0e:95:72:fe:a5:73:03:85:ce:c7:4e:eb:e7:74:41: ec:93:78:4d:ae:41:5f:be:dd:61:d7:01:15:21:73:c8:4a:cd: 05:5a:83:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwM2Q4MSjbZc2LQnPm5OxV/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4Njc5Zjk1Y2E5YjY1NmI3Y2EyMjFiZTZlYjI0Zjk1ZTMy OGIwMTAwHhcNMjYwMTMwMDMwMTE3WhcNMjYwMTMxMDMwMTE3WjAzMTEwLwYDVQQD EyhjZjkzMzIzNDNjZTdhZTZjNjQ3YTIzMTBmMjAyNmVkYzg2MTdjMjZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgo5WXdK5pYQzJ73wxSIdSEdxoglp +mHfyUE0ujBQ/+CdVx5cEoO7wda6+xFXYy/nxgD5w2KmTgvx8OuN7CBFfaK8cEw8 YfiHZR7jLYX+++m4FANlImWsfXvmVDkAZzsaVN2d/ro3y23AFG7Zz29ydK4b50Qk ZGmY5BLbD23NjyX/m//QRcpsBl4GhhbYbtFy2snis0zBEmugtpkWVoZtx3ETvxCG 3LXUdFww7I9qmDsRh9vuf6F5yrBopBYBXpyLjezH1il4/jYXh//A24L8L6Y5+sze v7vEhJfh9U5ePOe8HbqKL3qcjzNyHVhu4jytt11iIdUQMlF9VJpGD17/uQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM+TMjQ8565sZHojEPICbtyGF8JuMB8GA1UdIwQY MBaAFNhnn5XKm2VrfKIhvm6yT5XjKLAQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkdlZmxjcWJaV3Q4b2lHLWJySlBsZU1vc0JBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni9jNGQwNWYtMTBkNS00ZjhmLTlhMzct ZTUyMjlhZDUyMTRlLzEvMkdlZmxjcWJaV3Q4b2lHLWJySlBsZU1vc0JBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni9jNGQwNWYtMTBkNS00ZjhmLTlhMzctZTUyMjlhZDUyMTRl LzEvMkdlZmxjcWJaV3Q4b2lHLWJySlBsZU1vc0JBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj0hjJPyU x6S+xQnRL27uXS7puiNhs4O6UxSPvh4IZZudTV2m3QzeVxW8fUq80fs087U+ufJL AF6xHqPElCLNsRpWUkao/SdfbKRGeLa42I+IkLwhCcZs3vTYlcueiJP//T+4ANxX RDbP68Q3dBH+nb3TkkEFGqwpLdUkt/LzIb+zwg/SXLzQBvVAieX2w31StXmOybh3 siT2Vn5eHEXoj4rHHGFA6Uzj5JKZzjEDs2iLn7EerlhEHIMY+7RqTFH54K7vWJVZ H4iBJCiC3dMYWtfYGwJGBT+tAz8aDpVy/qVzA4XOx07r53RB7JN4Ta5BX77dYdcB FSFzyErNBVqDIQ== -----END CERTIFICATE-----Generated at Fri Jan 30 10:19:12 2026 by rpki-client