This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
File:                     kPwsEuoXAhuorOBiGJfwhW2sJVk.mft (raw, json)
Hash identifier:          5cHVfkgt0nGSkALUKUInZSbLbxJvuSzWnbVn4ZRXSBg=
Subject key identifier:   46:62:79:1C:BA:14:CE:FC:05:51:A4:10:49:92:03:AB:A1:E6:8D:AA
Authority key identifier: 90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59
Certificate issuer:       /CN=90fc2c12ea17021ba8ace0621897f0856dac2559
Certificate serial:       019BFD2F087A0B53374D35FEAAB8E3C1C940
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
Manifest number:          0766
Signing time:             Tue 27 Jan 2026 02:01:16 +0000
Manifest this update:     Tue 27 Jan 2026 02:01:16 +0000
Manifest next update:     Wed 28 Jan 2026 02:01:16 +0000
Files and hashes:         1: 41FDoFH6M2is1lsICkgfh5ITDqc.roa (hash: EewgyLxSVnO+QoRL7ntY20ccJSFgs1pW1bzWTclj1yE=)
                          2: BRDlyqeJrmrBAcGjXwsME96B8FA.roa (hash: jjDNz/Y1cZhGq2xfdDGq/oEMuXVbmPo8+lz5IqqCETc=)
                          3: kPwsEuoXAhuorOBiGJfwhW2sJVk.crl (hash: AXmYPmPWHq3gl2J7EBzfA9ijF6XppL9F6N92mXq7ZG8=)
                          4: nXsgPSU5eo-g-H5HVGkbUxzs-M0.roa (hash: bHUY+9ATlshHA4NGy9V8O1pXq9p6uilZoEQtRA9DmuU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 27 Jan 2026 20:39:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:fd:2f:08:7a:0b:53:37:4d:35:fe:aa:b8:e3:c1:c9:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=90fc2c12ea17021ba8ace0621897f0856dac2559
        Validity
            Not Before: Jan 27 02:01:16 2026 GMT
            Not After : Jan 28 02:01:16 2026 GMT
        Subject: CN=4662791cba14cefc0551a410499203aba1e68daa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:61:47:7c:13:b6:a2:bb:c9:04:a9:0b:37:17:
                    06:a5:6a:ce:de:6d:a1:e5:6b:52:bb:88:f4:47:ad:
                    d9:66:f1:8f:bd:6e:3a:f8:8a:61:b6:78:0c:e6:07:
                    93:75:27:c6:8a:d4:d7:4a:62:1f:69:91:10:59:5a:
                    5a:3a:b1:10:6c:03:ef:e6:89:e0:48:6e:4a:10:09:
                    3a:eb:b9:76:7d:8f:7b:f2:b7:83:11:f3:10:b1:a0:
                    bc:8f:29:db:15:6b:95:8a:f1:71:b0:ed:4b:48:0b:
                    c2:64:9f:22:45:b4:57:f5:ab:71:13:51:86:99:9f:
                    51:60:f3:08:d1:e3:8d:06:dc:ff:cb:8a:25:b1:d5:
                    cc:d1:cf:76:e9:14:4c:61:cb:2b:bd:8d:d8:98:c7:
                    dd:e4:e7:c6:5d:05:7c:eb:9c:62:26:41:da:7c:de:
                    a1:9d:58:9b:d6:76:1d:22:9c:76:fb:c6:cd:c8:ae:
                    34:25:15:6e:41:ca:06:3e:f9:d8:33:09:0d:79:f1:
                    79:99:ca:02:7d:ed:8c:e7:ad:ec:99:57:d7:a8:27:
                    52:c3:c5:79:e5:e7:8e:d6:36:be:0c:e4:fa:e7:eb:
                    6a:84:db:77:3f:82:65:6c:77:4a:eb:56:d1:05:2d:
                    53:23:5a:99:cc:f7:03:ae:29:71:e1:3b:05:c9:c4:
                    f9:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:62:79:1C:BA:14:CE:FC:05:51:A4:10:49:92:03:AB:A1:E6:8D:AA
            X509v3 Authority Key Identifier:
                keyid:90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         af:17:33:4c:9e:4c:63:68:50:dc:59:19:4d:53:82:31:71:72:
         fd:07:c6:d0:ad:29:f2:63:6c:1b:e6:48:50:76:b8:61:28:a7:
         98:1e:63:43:e7:0c:24:fe:25:dd:c7:4d:04:6e:f2:35:00:31:
         94:2e:84:61:b4:72:da:63:0f:46:4d:aa:aa:ed:2d:44:cb:aa:
         b3:ae:b9:b7:8f:fd:2f:be:9a:17:55:22:fc:31:e1:39:2f:3c:
         6b:16:fe:6f:99:30:96:2e:70:0b:2a:0c:e1:6b:c3:6f:22:cf:
         88:fc:6a:97:70:d4:89:3e:4c:88:ec:97:6a:37:12:4d:0f:40:
         c7:ac:6a:6c:50:1d:ce:d6:b7:a6:c3:e2:6f:d0:a1:cb:a1:eb:
         a4:4b:32:3b:2f:d8:e8:0e:7c:f4:37:87:98:6b:26:7d:71:b2:
         78:7b:09:c5:75:90:d2:6a:62:01:9e:47:ec:fd:68:4a:33:04:
         82:a2:24:94:f5:b5:ef:f3:2e:ca:de:93:0f:0a:16:85:23:7c:
         4a:87:5a:cf:e3:7b:d4:b2:f4:8e:96:0f:04:12:1a:3f:0f:d7:
         0c:d8:73:36:6e:70:eb:8d:8b:a8:1f:56:0d:47:73:57:e9:42:
         30:13:94:11:f7:89:37:06:75:73:d7:ee:15:21:71:8a:d0:89:
         99:9f:92:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 27 05:37:33 2026 by rpki-client