This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: rm8rBLJ2vS1wvl9cc5irCLPSw3Tqhb7srTChwVCCY64= Subject key identifier: D2:FF:6E:A4:5B:9A:0E:91:71:F1:AE:98:A4:CA:A1:CF:78:CC:03:EE Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019BFA64BFAF1FC22F0F7E8CE1997D24A0AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 0AB1 Signing time: Mon 26 Jan 2026 13:01:05 +0000 Manifest this update: Mon 26 Jan 2026 13:01:05 +0000 Manifest next update: Tue 27 Jan 2026 13:01:05 +0000 Files and hashes: 1: 3JNAFPmuRusA7_P1cHUrpNc8ZWQ.roa (hash: zKy+aXsrA8Z978tqaQi0ynXqJW9mllBBtqQYt4mz8gc=) 2: 3eP-ZYKR74zQteZxg-jYK68KuKU.roa (hash: rI+Q6O08EYSoWZw7Ks588qVsTWbvSuHUC1dp2GQPsEg=) 3: 6ez8s1YBp2TYVVuKcqGU9mGsJLQ.roa (hash: iFltius3SHf/ctu10YpbCgn/dFGwWU60BbGiBMv1N44=) 4: Ezt0FRQhgMB0E-9UJr97REAQ55w.roa (hash: Oa9Kwz+GiNskimggPADsaHBSugnVAK5DsSEzBCQ0f0w=) 5: P_D_ETEf8fM0qD-n9k3sXI0l4sQ.roa (hash: km1zfTMKVFbL54YLMOaXsziXgfhwGqdhHfk0e2A1ubg=) 6: Px4XmExl2QONyqSP6s8-qLoIeoI.roa (hash: reA0XoIHBbZsGAjNzRWT9dW+9757Ms5dgcUGYfnrDi8=) 7: SY0oaouPknTSy2MmGqSQOcOco4Q.roa (hash: HRxdYO/Iechw+UCcupxpKvFHOwFwn4JRjC6eMfFT/dQ=) 8: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: 2N8q9+bYPDIRzwk3ik2zqnsw/2Pxv14jLvx1Hzv4Mzs=) 9: _6Vs95Jmy7MF2kHG6396ytTGdZ8.roa (hash: EoAlzz1DKspJX2qs3ChwNI4PXJbIIl04jqeAnWG79Vw=) 10: b4bnSjrxkGqwlr0zkoxcOijmFkc.roa (hash: fQuLS072q+zjmBm2EgGlUmemoEePNKD15HIZM6Eyfw4=) 11: hlAbpQnKYaIDHrjCT-1lNBwSXu0.roa (hash: BILz2oAMGgMF6vZP6W3jaxaaHIODVkHC+m/GaL33QlM=) 12: kPZtrooPlOyF8jQupuEU9Gy1bJQ.roa (hash: KtcI+6F6qPHzsOZYQ0EOD+pODuibLz2OAgS4M/a6Aq4=) 13: oLlQgePRk9yvcOlL0Fl_a56u9H4.roa (hash: Wqock9cGRbZPQGtCkafIuYZm7FqajUuA17fJ83OGRks=) 14: otDdauzK1pDpIELnjnezw5Wgbks.roa (hash: PkYGbseDQrN+XnOme6deJeEpgE/JFmyzszNd7IeDEBs=) 15: qPI1ggc-eoyI91LAejwAAyCD3rI.roa (hash: tWlcYblK/ohLjpwsq6RKKOq9sGO2SDlm/NJl1KT1Ji8=) 16: xp9MuE3K7E-Sb2HgnwhKc3yErto.roa (hash: 9FJKEkYOHXVi/GiMh+ZQtwPZthuSJbC+u80wUEZ5uBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:64:bf:af:1f:c2:2f:0f:7e:8c:e1:99:7d:24:a0:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Jan 26 13:01:05 2026 GMT Not After : Jan 27 13:01:05 2026 GMT Subject: CN=d2ff6ea45b9a0e9171f1ae98a4caa1cf78cc03ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:96:66:e5:20:f9:cb:e2:b1:4e:62:28:5e:7c: 73:80:c2:81:b1:e3:62:8b:94:70:1b:9a:48:c2:78: ce:84:f9:be:fe:7d:ad:9f:42:f4:b8:2f:8e:c6:a9: 07:c5:ea:fc:88:f8:a7:fc:53:bb:40:76:12:ed:4b: bc:48:6d:df:ca:c7:f5:2d:87:ba:83:d9:d6:88:66: d7:da:64:9a:79:e7:fd:1f:10:0f:f7:d8:28:95:62: 09:93:f5:c7:cf:5e:75:07:37:d1:bd:a6:66:b3:1b: 5c:fa:a8:84:e6:48:e8:d7:cb:68:36:77:f7:95:01: 51:e1:b1:e7:07:67:a3:fe:97:65:99:99:85:37:66: 18:f7:8d:07:cc:dc:87:39:68:71:88:fa:5a:b3:7e: ce:ea:2a:27:40:32:c2:44:5e:fb:be:b6:47:64:f6: 12:90:55:16:75:74:47:2f:54:b2:78:86:cb:e9:62: e1:81:d8:da:d4:cd:6e:45:26:15:c7:37:28:54:c1: ce:22:99:85:f6:a4:e4:de:66:19:3c:e6:1e:ba:2f: 53:95:8e:f2:29:ba:9e:95:27:8c:4f:5e:87:40:72: 4e:16:84:dc:d3:0a:30:ee:44:8b:05:91:3d:34:9e: 1d:54:e3:22:38:e2:e6:17:f6:3c:bf:70:58:82:c4: c7:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:FF:6E:A4:5B:9A:0E:91:71:F1:AE:98:A4:CA:A1:CF:78:CC:03:EE X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:4a:f6:26:95:ee:f0:97:17:e7:80:87:17:22:7f:52:a6:b7: 08:50:16:c4:b0:f6:0b:55:42:6a:af:c9:be:da:42:3e:24:3f: dc:cc:3c:a2:e9:fb:f0:f3:48:12:59:49:e4:29:92:6c:6c:36: 80:bd:f2:35:7c:86:22:94:83:90:e3:79:dc:7f:0c:aa:a6:2f: 36:c2:1b:44:33:10:9b:05:8c:a3:d6:0f:3a:25:7c:e4:b3:79: 57:3e:07:16:42:67:0b:69:ba:48:e7:4c:df:0d:c0:52:2e:0d: 77:f1:1e:f4:1b:19:1d:31:fc:4f:72:7b:55:7f:89:ed:23:48: 65:34:e7:57:39:b9:47:bb:da:01:9e:6a:63:89:a8:d8:f7:ba: 24:fa:07:2c:20:71:f6:09:1f:5a:95:fd:44:80:88:90:3e:9e: 7c:bf:f6:d9:3d:05:90:5c:2d:21:a4:a1:d9:da:f5:e2:b5:49: ae:7c:63:aa:8e:68:2d:35:1a:00:11:71:b8:9d:e0:98:6f:b7: 81:4d:39:26:13:68:78:66:ab:f5:40:4a:16:23:8b:26:3c:c4: a6:06:fa:ba:4b:ee:67:38:b3:8b:c6:f6:38:ba:f6:e2:6f:72: 38:f4:ca:b6:be:75:a8:8e:0a:90:18:46:b3:b9:3f:19:31:b6: 0e:e0:02:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6ZL+vH8IvD36M4Zl9JKCrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjYwMTI2MTMwMTA1WhcNMjYwMTI3MTMwMTA1WjAzMTEwLwYDVQQD EyhkMmZmNmVhNDViOWEwZTkxNzFmMWFlOThhNGNhYTFjZjc4Y2MwM2VlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZZm5SD5y+KxTmIoXnxzgMKBseNi i5RwG5pIwnjOhPm+/n2tn0L0uC+OxqkHxer8iPin/FO7QHYS7Uu8SG3fysf1LYe6 g9nWiGbX2mSaeef9HxAP99golWIJk/XHz151BzfRvaZmsxtc+qiE5kjo18toNnf3 lQFR4bHnB2ej/pdlmZmFN2YY940HzNyHOWhxiPpas37O6ionQDLCRF77vrZHZPYS kFUWdXRHL1SyeIbL6WLhgdja1M1uRSYVxzcoVMHOIpmF9qTk3mYZPOYeui9TlY7y KbqelSeMT16HQHJOFoTc0wow7kSLBZE9NJ4dVOMiOOLmF/Y8v3BYgsTHZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNL/bqRbmg6RcfGumKTKoc94zAPuMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj0r2JpXu 8JcX54CHFyJ/Uqa3CFAWxLD2C1VCaq/JvtpCPiQ/3Mw8oun78PNIEllJ5CmSbGw2 gL3yNXyGIpSDkON53H8MqqYvNsIbRDMQmwWMo9YPOiV85LN5Vz4HFkJnC2m6SOdM 3w3AUi4Nd/Ee9BsZHTH8T3J7VX+J7SNIZTTnVzm5R7vaAZ5qY4mo2Pe6JPoHLCBx 9gkfWpX9RICIkD6efL/22T0FkFwtIaSh2dr14rVJrnxjqo5oLTUaABFxuJ3gmG+3 gU05JhNoeGar9UBKFiOLJjzEpgb6ukvuZzizi8b2OLr24m9yOPTKtr51qI4KkBhG s7k/GTG2DuACEA== -----END CERTIFICATE-----Generated at Mon Jan 26 21:53:11 2026 by rpki-client