This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json) Hash identifier: 2VBXX8Srpd+blhNzBVFmUiClhqiplbBe5kUxC/ed1gw= Subject key identifier: 40:B6:86:3E:20:E9:9F:51:A9:D4:FD:22:33:6B:61:BA:C2:36:89:3E Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb Certificate serial: 019BFC535C3BD0C831337D7AB3AA9D51C8E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft Manifest number: 054C Signing time: Mon 26 Jan 2026 22:01:20 +0000 Manifest this update: Mon 26 Jan 2026 22:01:20 +0000 Manifest next update: Tue 27 Jan 2026 22:01:20 +0000 Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: yeEi86VU4ZmPaGiTO7fDVRTF/oZ6L1iVemK8JSlR818=) 2: so3uet9HxmTT1e6-Xaeu7Xu47R4.roa (hash: YS3OlsV7nqbX92XpohfbsDi48e2F2cYz3EHfcdxmOmQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:53:5c:3b:d0:c8:31:33:7d:7a:b3:aa:9d:51:c8:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb Validity Not Before: Jan 26 22:01:20 2026 GMT Not After : Jan 27 22:01:20 2026 GMT Subject: CN=40b6863e20e99f51a9d4fd22336b61bac236893e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:50:e3:7f:ce:70:ce:ed:53:cc:5c:eb:dc:fd: 41:05:84:09:c3:37:42:0c:69:18:d5:cb:92:d8:b3: 0b:6a:76:71:42:33:f7:92:bd:51:67:bc:8d:9a:43: 19:d9:0a:72:a1:9d:33:3a:0b:a3:87:6f:0c:72:28: 8d:21:57:91:a5:c8:6b:30:ab:5a:d5:0b:05:0a:c0: e3:8a:98:49:45:47:13:f3:75:08:a1:0d:39:d6:32: be:bd:a0:41:25:78:74:30:92:16:d9:90:7c:e2:3b: c5:c9:54:f2:b6:13:4e:a2:71:99:00:f0:52:cc:ae: 00:12:c5:3a:5b:8f:cd:93:37:7c:d6:0e:67:b4:92: 78:7d:05:de:51:3c:da:6a:e7:47:b1:ff:ec:61:c2: d6:d4:d2:fa:83:87:6c:60:d6:81:a5:bd:2a:38:8b: 93:2f:bc:e7:93:6c:20:50:b4:da:75:5f:7c:8d:a5: 51:2b:fb:a9:2f:31:d5:24:c1:ad:14:fb:ef:6b:b8: ca:90:69:87:92:c4:21:4b:7a:ce:47:d4:fc:28:eb: 1c:ef:18:6d:57:cb:92:82:4c:a1:3e:40:ce:fa:6c: 37:b7:fc:2b:f6:4a:f9:a2:d9:32:e3:ae:8f:46:17: fe:af:f8:fa:3a:45:4f:24:ae:04:ee:c1:1c:79:af: 24:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B6:86:3E:20:E9:9F:51:A9:D4:FD:22:33:6B:61:BA:C2:36:89:3E X509v3 Authority Key Identifier: keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:98:c1:2d:c0:4c:5d:1c:8e:03:e5:4d:59:38:6f:70:20:94: 6a:70:9c:76:db:a4:5c:ef:f8:be:20:e4:30:b1:35:45:68:71: 75:f8:ac:fd:f0:88:d5:f3:60:49:3b:a6:b4:d6:24:b2:75:e5: 2e:00:c5:a1:7f:ee:9a:f8:fc:27:98:3f:9f:6a:0b:4e:da:93: 11:82:a0:ed:68:14:00:4c:bb:5d:94:55:81:03:e6:4e:ab:c4: 5c:77:36:db:7f:b2:99:b2:ef:c6:a8:a8:0c:c3:08:34:bc:c7: b8:f0:a2:8b:86:f9:38:07:45:03:88:b4:85:fd:9f:46:c5:2b: d4:2c:8b:f6:38:b7:22:d3:64:db:17:26:6a:43:de:94:44:93: c9:6a:0e:0e:5e:84:ad:a3:72:ce:84:ef:5f:ea:4c:08:36:5a: 3b:03:2b:8f:65:44:0d:7e:a9:ed:44:20:2f:fe:bb:ff:b4:74: 26:c1:43:ff:10:4f:a1:d3:c1:1a:b8:83:a2:44:6c:0f:dc:ce: 53:9a:5e:b0:df:cb:9c:e8:14:18:78:78:fd:09:96:86:b4:be: 2f:c0:6d:ed:e2:4f:fb:3e:26:92:93:4e:3b:ec:a2:44:a5:9b: cf:78:22:aa:b8:06:4a:00:45:60:d3:4d:cc:d2:44:e1:d1:78: 34:f5:b0:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8U1w70MgxM316s6qdUcjjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NmI5YzE3NzhhMDUyOWVlN2UyMzIwMDNjYmU1Yzk5M2Mz NmZkZGIwHhcNMjYwMTI2MjIwMTIwWhcNMjYwMTI3MjIwMTIwWjAzMTEwLwYDVQQD Eyg0MGI2ODYzZTIwZTk5ZjUxYTlkNGZkMjIzMzZiNjFiYWMyMzY4OTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwlDjf85wzu1TzFzr3P1BBYQJwzdC DGkY1cuS2LMLanZxQjP3kr1RZ7yNmkMZ2QpyoZ0zOgujh28MciiNIVeRpchrMKta 1QsFCsDjiphJRUcT83UIoQ051jK+vaBBJXh0MJIW2ZB84jvFyVTythNOonGZAPBS zK4AEsU6W4/Nkzd81g5ntJJ4fQXeUTzaaudHsf/sYcLW1NL6g4dsYNaBpb0qOIuT L7znk2wgULTadV98jaVRK/upLzHVJMGtFPvva7jKkGmHksQhS3rOR9T8KOsc7xht V8uSgkyhPkDO+mw3t/wr9kr5otky466PRhf+r/j6OkVPJK4E7sEcea8k5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEC2hj4g6Z9RqdT9IjNrYbrCNok+MB8GA1UdIwQY MBaAFNhrnBd4oFKe5+IyADy+XJk8Nv3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkd1Y0YzaWdVcDduNGpJQVBMNWNtVHcyX2RzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC85NzBmOWEtOTQ4MC00ZmRkLWE0ZjQt YTgwYTk1ZTVhMDk5LzEvMkd1Y0YzaWdVcDduNGpJQVBMNWNtVHcyX2RzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC85NzBmOWEtOTQ4MC00ZmRkLWE0ZjQtYTgwYTk1ZTVhMDk5 LzEvMkd1Y0YzaWdVcDduNGpJQVBMNWNtVHcyX2RzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV5jBLcBM XRyOA+VNWThvcCCUanCcdtukXO/4viDkMLE1RWhxdfis/fCI1fNgSTumtNYksnXl LgDFoX/umvj8J5g/n2oLTtqTEYKg7WgUAEy7XZRVgQPmTqvEXHc223+ymbLvxqio DMMINLzHuPCii4b5OAdFA4i0hf2fRsUr1CyL9ji3ItNk2xcmakPelESTyWoODl6E raNyzoTvX+pMCDZaOwMrj2VEDX6p7UQgL/67/7R0JsFD/xBPodPBGriDokRsD9zO U5pesN/LnOgUGHh4/QmWhrS+L8Bt7eJP+z4mkpNOO+yiRKWbz3giqrgGSgBFYNNN zNJE4dF4NPWwsQ== -----END CERTIFICATE-----Generated at Tue Jan 27 02:12:23 2026 by rpki-client