This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft File: 2PcA7rBSdLMdwdrzDNfIExCrRS0.mft (raw, json) Hash identifier: fl8tXjh3W4tuYyDHx+ARWCVH9wCjsfukyYMY7770Rws= Subject key identifier: AB:4C:54:6B:66:0A:29:C4:CA:0D:80:4B:A3:AA:EE:67:4A:E5:EF:41 Authority key identifier: D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D Certificate issuer: /CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d Certificate serial: 019BD80F9D2A442AAEFE78AF641672057189 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft Manifest number: 0A15 Signing time: Mon 19 Jan 2026 21:01:00 +0000 Manifest this update: Mon 19 Jan 2026 21:01:00 +0000 Manifest next update: Tue 20 Jan 2026 21:01:00 +0000 Files and hashes: 1: 2PcA7rBSdLMdwdrzDNfIExCrRS0.crl (hash: BjuIdIVJTQsTKthW/6HxQDCEBZxpwtVpYZUpeUy3jSA=) 2: zuAP0P2ieWMLtXb48E1VVwKO93w.roa (hash: KzZQHMAxju4Nmcnntgy06fN2nxsFzdB0gSb36aOEgek=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d8:0f:9d:2a:44:2a:ae:fe:78:af:64:16:72:05:71:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d Validity Not Before: Jan 19 21:01:00 2026 GMT Not After : Jan 20 21:01:00 2026 GMT Subject: CN=ab4c546b660a29c4ca0d804ba3aaee674ae5ef41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:62:53:dc:a7:3d:10:8d:d3:90:ed:98:5a:bd: e5:5f:ea:77:d8:06:6e:49:18:96:4f:94:1e:48:e1: 6a:d3:2e:28:86:a0:ae:22:c8:08:c7:e8:cf:fb:28: 3b:80:60:19:97:72:d5:62:93:e1:9c:67:c3:58:97: d4:04:53:f1:e9:15:1f:f4:9b:56:5a:21:14:b5:9d: 48:31:0b:f0:f7:c5:44:00:03:7c:ae:40:6b:4f:dc: 44:0e:79:c1:d7:47:b6:11:08:b1:ba:e4:5b:10:b9: a4:ad:38:a3:ce:b0:55:35:fe:df:a5:b0:59:60:11: 7c:c5:23:61:29:80:ab:b9:e6:25:a9:98:87:9c:e4: 65:71:e0:ee:02:26:e2:d7:fe:f8:21:4b:e6:a0:df: d8:f0:f3:ce:da:eb:8c:14:90:92:14:d1:07:ed:5e: 76:27:95:80:ad:50:2a:f7:a6:81:2a:7f:6e:10:6b: e8:19:33:39:1f:4e:4d:3f:11:8e:f5:d0:23:ae:16: f9:88:5a:f8:51:13:0c:c0:73:f2:fb:6a:25:80:61: af:08:42:72:85:67:b7:fb:13:ea:d9:84:23:83:b8: 11:09:1d:d1:14:76:24:b6:47:ae:fe:81:da:76:c8: 7d:4e:cf:a9:59:9b:ac:ea:65:b7:d6:b5:e1:e2:c8: 19:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:4C:54:6B:66:0A:29:C4:CA:0D:80:4B:A3:AA:EE:67:4A:E5:EF:41 X509v3 Authority Key Identifier: keyid:D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:ef:8d:10:c4:65:b2:f7:36:07:6a:fe:4b:f6:4f:c1:0f:ee: ce:37:f7:85:22:09:99:9e:f4:87:a2:72:ed:82:ae:32:cd:f5: 53:f5:e9:22:03:0b:85:51:f3:e0:3a:93:3c:2c:7b:e9:62:04: 64:ff:17:51:fc:37:5f:4f:f2:ba:cc:f1:a2:00:88:37:67:b2: 98:2d:56:cd:f4:34:42:a2:14:9e:17:b8:8b:c2:16:19:c7:f9: 01:51:08:b6:be:30:c8:5d:67:f1:fb:6b:06:9f:87:bc:f6:91: af:e2:76:53:72:f1:b8:da:ef:73:3c:81:bc:e4:42:02:bd:ce: 97:a0:9e:90:70:f8:ab:a6:c5:7f:74:38:b4:a8:54:6f:44:16: 07:8d:bb:86:18:82:47:a0:1a:97:a6:25:af:fb:2a:39:2a:2a: df:df:75:2e:cb:48:75:9f:93:ab:4a:46:f7:89:d3:40:1a:e2: b5:17:01:e5:3d:3e:31:fc:c7:99:76:ff:14:16:57:f1:84:cb: 8f:7d:55:1b:35:ad:7a:61:a1:b7:1e:ee:fe:f3:0f:7d:c7:fc: a2:99:03:05:c2:48:2a:fa:e9:39:83:3c:1f:f0:8c:44:f5:5c: 85:88:db:11:13:34:65:ea:e8:78:27:dd:7f:14:ec:30:e0:7e: db:09:80:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvYD50qRCqu/nivZBZyBXGJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZjcwMGVlYjA1Mjc0YjMxZGMxZGFmMzBjZDdjODEzMTBh YjQ1MmQwHhcNMjYwMTE5MjEwMTAwWhcNMjYwMTIwMjEwMTAwWjAzMTEwLwYDVQQD EyhhYjRjNTQ2YjY2MGEyOWM0Y2EwZDgwNGJhM2FhZWU2NzRhZTVlZjQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmJT3Kc9EI3TkO2YWr3lX+p32AZu SRiWT5QeSOFq0y4ohqCuIsgIx+jP+yg7gGAZl3LVYpPhnGfDWJfUBFPx6RUf9JtW WiEUtZ1IMQvw98VEAAN8rkBrT9xEDnnB10e2EQixuuRbELmkrTijzrBVNf7fpbBZ YBF8xSNhKYCrueYlqZiHnORlceDuAibi1/74IUvmoN/Y8PPO2uuMFJCSFNEH7V52 J5WArVAq96aBKn9uEGvoGTM5H05NPxGO9dAjrhb5iFr4URMMwHPy+2olgGGvCEJy hWe3+xPq2YQjg7gRCR3RFHYktkeu/oHadsh9Ts+pWZus6mW31rXh4sgZuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKtMVGtmCinEyg2AS6Oq7mdK5e9BMB8GA1UdIwQY MBaAFNj3AO6wUnSzHcHa8wzXyBMQq0UtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlBjQTdyQlNkTE1kd2RyekROZklFeENyUlMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9iMDhhM2EtZDZiOS00YTVkLTlkMzct MzcxYjkwNzQ4ODdmLzEvMlBjQTdyQlNkTE1kd2RyekROZklFeENyUlMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS9iMDhhM2EtZDZiOS00YTVkLTlkMzctMzcxYjkwNzQ4ODdm LzEvMlBjQTdyQlNkTE1kd2RyekROZklFeENyUlMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALu+NEMRl svc2B2r+S/ZPwQ/uzjf3hSIJmZ70h6Jy7YKuMs31U/XpIgMLhVHz4DqTPCx76WIE ZP8XUfw3X0/yuszxogCIN2eymC1WzfQ0QqIUnhe4i8IWGcf5AVEItr4wyF1n8ftr Bp+HvPaRr+J2U3LxuNrvczyBvORCAr3Ol6CekHD4q6bFf3Q4tKhUb0QWB427hhiC R6Aal6Ylr/sqOSoq3991LstIdZ+Tq0pG94nTQBritRcB5T0+MfzHmXb/FBZX8YTL j31VGzWtemGhtx7u/vMPfcf8opkDBcJIKvrpOYM8H/CMRPVchYjbERM0ZeroeCfd fxTsMOB+2wmAyw== -----END CERTIFICATE-----Generated at Tue Jan 20 03:00:42 2026 by rpki-client