This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft File: _SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft (raw, json) Hash identifier: DAVWO2Rc5Zofumyx43ZdXq9Jb8MslQ91ahbBBBiNGBg= Subject key identifier: FF:A5:DF:9A:0E:32:A0:9F:11:2B:B8:0E:83:13:CB:47:2B:77:27:41 Authority key identifier: FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4 Certificate issuer: /CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4 Certificate serial: 019BFB77DF231075B2ED60057EFBE77FC817 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft Manifest number: 12FC Signing time: Mon 26 Jan 2026 18:01:35 +0000 Manifest this update: Mon 26 Jan 2026 18:01:35 +0000 Manifest next update: Tue 27 Jan 2026 18:01:35 +0000 Files and hashes: 1: Lh9ws7Zx-Z49Y3KqDWbQ2Lm-Lb8.roa (hash: PF/ed+k7gtadd5HsxTcEuV0PkSMYqzIOsEkgaO30wiM=) 2: M3kEZhwNAZH2MoRits4PT4v1XYY.roa (hash: 9BRevnCxVw2l/jCPOd7XDBAI+hID2up62MsIMKdFJLE=) 3: Ugs1R72eLpNOvqQLq80_hJnxxCs.roa (hash: HAAX/DAdp/HiBc6dDbGVPO1NxsuLn8+Z1EDMvgnvFTM=) 4: _SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl (hash: 6ia5fd5T2n3sn7ANv8AoBuF+Ma6nPmBj5EpFpuOQHD0=) 5: d1DdXgc0G77dhrd6ZdfdSd_hf70.roa (hash: VPxYVo5tR4ALJMz9uvC5RMlfofG9QR9Ag17Z6g94IPk=) 6: ldHMEOJiE59-H0cOPRmvSFACx0s.roa (hash: mOMIPtr1abOjWcrfM5eKbECfrNaucrP77WVejoM6ds4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:77:df:23:10:75:b2:ed:60:05:7e:fb:e7:7f:c8:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4 Validity Not Before: Jan 26 18:01:35 2026 GMT Not After : Jan 27 18:01:35 2026 GMT Subject: CN=ffa5df9a0e32a09f112bb80e8313cb472b772741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:96:3c:35:29:e9:c2:8f:d9:5c:00:8a:82:e1: 09:15:3f:ff:2d:08:69:9c:b3:e9:56:5d:24:ea:13: 47:57:83:df:40:62:b0:e4:00:28:d9:5c:93:c6:42: 20:eb:c5:95:e7:ed:58:64:aa:5e:51:c9:52:4c:e4: 35:d9:7f:15:41:56:d1:1f:37:5b:9d:ef:65:4c:9a: f8:e7:04:1f:2e:ba:bb:4b:a1:4f:29:9f:a9:e2:cb: 98:68:a9:02:30:33:f9:c4:4e:83:88:bf:0e:a0:84: 32:60:02:81:50:6b:2e:56:60:72:31:42:32:3d:f7: 6f:85:81:7f:72:05:18:98:e5:19:23:59:81:ee:bd: c7:76:f1:5d:1f:ed:c2:09:80:34:1c:01:be:01:9d: fc:bb:8d:14:b1:a7:b1:7f:8b:58:d4:b3:d9:40:6c: 7c:b5:71:1c:9c:dc:78:4f:b2:d3:20:3d:74:c5:d4: 6e:17:cb:f3:ea:ea:bc:29:41:fd:de:02:97:cd:42: c6:1e:b4:70:91:9f:1a:97:dd:3f:9e:ab:c8:d2:f8: 32:5f:da:c7:b5:f6:72:10:de:a9:29:9c:f6:83:35: f9:83:62:d0:7c:b9:0e:b2:7b:3b:dd:b3:5e:3f:db: 19:39:05:71:4c:33:6c:f3:a5:73:61:43:90:b6:f2: 37:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A5:DF:9A:0E:32:A0:9F:11:2B:B8:0E:83:13:CB:47:2B:77:27:41 X509v3 Authority Key Identifier: keyid:FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:14:fc:f4:b2:42:04:bc:37:03:b1:7a:fc:40:f3:7d:88:62: bb:29:6b:dd:0a:c9:44:a5:11:dd:38:c0:bf:fc:3e:3c:69:c4: 68:66:5b:17:b6:0c:c1:c7:c8:1e:26:3f:a9:e7:f5:1f:bb:db: 86:d3:9d:6f:ac:ed:b1:2e:5f:eb:14:c7:80:91:9c:ff:bc:85: b3:a5:c8:5b:66:16:a9:07:a9:fe:1a:01:a6:35:61:44:68:be: 08:d6:30:4d:64:29:f3:ae:1a:7e:d5:49:d6:e8:30:77:8f:67: 31:91:ce:42:b1:eb:3a:13:90:ce:ba:7a:04:d6:e9:4f:e4:d8: 67:bc:6f:47:51:8a:0b:64:8a:b4:43:e0:82:f2:5d:5e:13:fa: 98:27:72:25:c0:2e:d4:fc:47:f3:18:70:98:85:db:85:e5:51: 7d:d2:9d:89:f9:83:1c:ff:ca:99:c2:9e:21:8a:03:ea:f8:3d: 59:1f:12:20:57:32:1b:77:cc:19:ad:b3:0f:e3:79:76:06:f1: 5d:b6:d6:af:7c:5e:62:22:dc:98:c5:a5:c8:29:bd:63:b1:6f: 8b:66:96:26:d5:a1:78:5f:12:b3:b1:bf:a2:75:c5:85:8b:d0: 47:8c:f9:a2:a7:b1:91:8a:5c:0b:5b:f1:3d:1f:a0:9c:eb:f4: 6c:44:02:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7d98jEHWy7WAFfvvnf8gXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMjFjYjRiYWExNTg2MmQxYjU3NzNiZjJiZTYwY2E1ZjRm YzI0ZDQwHhcNMjYwMTI2MTgwMTM1WhcNMjYwMTI3MTgwMTM1WjAzMTEwLwYDVQQD EyhmZmE1ZGY5YTBlMzJhMDlmMTEyYmI4MGU4MzEzY2I0NzJiNzcyNzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6JY8NSnpwo/ZXACKguEJFT//LQhp nLPpVl0k6hNHV4PfQGKw5AAo2VyTxkIg68WV5+1YZKpeUclSTOQ12X8VQVbRHzdb ne9lTJr45wQfLrq7S6FPKZ+p4suYaKkCMDP5xE6DiL8OoIQyYAKBUGsuVmByMUIy PfdvhYF/cgUYmOUZI1mB7r3HdvFdH+3CCYA0HAG+AZ38u40Usaexf4tY1LPZQGx8 tXEcnNx4T7LTID10xdRuF8vz6uq8KUH93gKXzULGHrRwkZ8al90/nqvI0vgyX9rH tfZyEN6pKZz2gzX5g2LQfLkOsns73bNeP9sZOQVxTDNs86VzYUOQtvI3TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP+l35oOMqCfESu4DoMTy0crdydBMB8GA1UdIwQY MBaAFP0hy0uqFYYtG1dzvyvmDKX0/CTUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1NITFM2b1ZoaTBiVjNPX0stWU1wZlQ4Sk5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8zMjY2MDYtMTRiYS00NDM2LTk5ODUt YmU1NTIwYTVjODIxLzEvX1NITFM2b1ZoaTBiVjNPX0stWU1wZlQ4Sk5RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8zMjY2MDYtMTRiYS00NDM2LTk5ODUtYmU1NTIwYTVjODIx LzEvX1NITFM2b1ZoaTBiVjNPX0stWU1wZlQ4Sk5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOxT89LJC BLw3A7F6/EDzfYhiuylr3QrJRKUR3TjAv/w+PGnEaGZbF7YMwcfIHiY/qef1H7vb htOdb6ztsS5f6xTHgJGc/7yFs6XIW2YWqQep/hoBpjVhRGi+CNYwTWQp864aftVJ 1ugwd49nMZHOQrHrOhOQzrp6BNbpT+TYZ7xvR1GKC2SKtEPggvJdXhP6mCdyJcAu 1PxH8xhwmIXbheVRfdKdifmDHP/KmcKeIYoD6vg9WR8SIFcyG3fMGa2zD+N5dgbx XbbWr3xeYiLcmMWlyCm9Y7Fvi2aWJtWheF8Ss7G/onXFhYvQR4z5oqexkYpcC1vx PR+gnOv0bEQCEA== -----END CERTIFICATE-----Generated at Mon Jan 26 22:40:19 2026 by rpki-client