This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft File: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft (raw, json) Hash identifier: IIprMS2bA3CxjZzIPMr/au6l0fj5l9sHIXg8z9Kp/qk= Subject key identifier: B0:92:9E:D0:A3:57:4F:E6:D1:3A:7A:10:69:60:A5:D1:74:44:26:09 Authority key identifier: D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38 Certificate issuer: /CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238 Certificate serial: 019BFE0A5EC3A3269215A14D8C27C0D9708E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft Manifest number: 08A2 Signing time: Tue 27 Jan 2026 06:00:50 +0000 Manifest this update: Tue 27 Jan 2026 06:00:50 +0000 Manifest next update: Wed 28 Jan 2026 06:00:50 +0000 Files and hashes: 1: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl (hash: Pr3erYfebQ47p4ba67O93Vrdvj4AaRvWt+fOLGIBHGM=) 2: 48OS4sWYglwtZBn1YxiPqc26nTU.roa (hash: NBM10gWvuZSa38kRQAx40WjX3amxqFeb96LnMyUj85Q=) 3: HUZvsXoFqmpwitLw4aku7m5jYa8.roa (hash: rhpAJ7/RvlTCzRrbypi+sM57yT9OZ8RJ46KD4H90XuY=) 4: Rl0xX2L5u9e-WU3LxVTHfDCZoEQ.roa (hash: iB5ApjU6OfFGOZU2O/uqHAaYYGIEkIhRygeaclVc054=) 5: hih4fzkJ3O9yEk3BE5UpAZ6h-8Q.roa (hash: R7mk0homAMVaYBl/kyf6p+7Cu/DPi0srKaEKzzxe+Sc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fe:0a:5e:c3:a3:26:92:15:a1:4d:8c:27:c0:d9:70:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238 Validity Not Before: Jan 27 06:00:50 2026 GMT Not After : Jan 28 06:00:50 2026 GMT Subject: CN=b0929ed0a3574fe6d13a7a106960a5d174442609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:9f:c6:ab:e3:07:60:09:a7:f2:78:20:64:f9: c2:bb:a6:c8:9a:70:29:e0:9b:16:9f:89:42:4e:8c: 20:9c:ec:eb:67:a8:bf:25:b0:f9:4c:cf:5f:3e:9e: cd:74:1c:54:ef:c9:93:09:52:ae:d5:18:14:dd:8c: a7:a2:2b:4f:1c:c6:5c:d8:1b:04:b8:12:63:61:d7: bb:5c:f3:e7:9a:54:b9:47:b2:a9:49:fd:24:ab:d0: 9f:b6:3c:85:f0:e9:21:60:76:1c:1b:cd:8c:ee:dd: 1d:1b:ee:81:f1:3f:ae:e3:ab:0f:5f:20:90:9a:1a: 70:c8:ba:cd:35:63:98:e8:83:6e:f4:7d:48:dd:db: 1d:a7:62:bc:ce:81:fd:98:d1:39:54:8d:8b:7e:80: 98:29:db:18:35:10:7f:de:51:96:86:a5:7d:09:3a: a3:4a:5e:9d:a7:94:e2:d0:ae:be:fb:0a:7b:a1:8f: 61:47:91:ab:b1:84:5e:16:6f:bb:9a:26:18:88:0a: a2:c9:33:39:91:b2:14:9c:e8:a4:90:fd:81:35:48: b5:fe:00:e9:91:27:fd:80:25:ee:bb:53:85:dd:3c: bb:92:c6:a8:d0:1a:b8:e7:7f:18:51:fb:0b:56:c6: 4a:4a:de:cc:be:de:ce:fa:2d:b9:f4:ee:60:93:bc: 51:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:92:9E:D0:A3:57:4F:E6:D1:3A:7A:10:69:60:A5:D1:74:44:26:09 X509v3 Authority Key Identifier: keyid:D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:81:7b:87:a2:6a:2c:25:ef:d5:88:1a:30:e6:8e:5b:a5:0b: af:9f:cc:bf:70:cd:d1:5c:4b:03:31:90:49:00:7f:97:c1:f8: 36:32:35:32:da:1a:20:00:41:3f:c2:82:93:8a:ec:96:8d:97: e9:76:64:14:19:41:ba:1f:c1:bc:55:a5:f5:1b:a9:bd:b7:a5: 5f:9e:82:04:a8:12:c6:cc:b0:70:e5:0a:99:a5:f9:39:3a:6a: f1:25:1c:64:a6:fc:5d:eb:b2:78:67:46:79:10:b4:88:81:ec: 5d:c2:8b:3d:fd:da:b1:81:c7:d7:52:29:8d:f6:f4:4e:48:04: 8f:4a:75:95:a1:47:bb:80:a4:94:0d:7c:51:20:8b:cc:ca:d8: 0c:23:23:e0:01:4d:b0:e3:9f:d4:31:2d:86:27:32:9b:c5:cf: 9a:39:9d:72:64:76:a3:a2:d8:99:54:95:54:70:0b:ef:29:d5: 8a:07:3c:ca:e6:5f:0c:d6:fd:25:0c:42:a3:14:4d:a5:de:55: 51:ea:2d:02:8b:72:48:60:be:cf:b4:91:4b:4c:9f:11:54:8f: 47:8c:6b:a9:8e:d9:c4:f0:9d:6a:91:a1:e9:4c:e7:2d:38:ad: e6:45:6f:01:b3:fb:94:2a:18:cc:52:b9:d3:a2:07:16:13:12: 26:5f:05:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv+Cl7DoyaSFaFNjCfA2XCOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5OWE0N2NkYzg5ZjQ2MzQyZjkwYjBkYTNjMzBkOWVjNWZk NjMyMzgwHhcNMjYwMTI3MDYwMDUwWhcNMjYwMTI4MDYwMDUwWjAzMTEwLwYDVQQD EyhiMDkyOWVkMGEzNTc0ZmU2ZDEzYTdhMTA2OTYwYTVkMTc0NDQyNjA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl5/Gq+MHYAmn8nggZPnCu6bImnAp 4JsWn4lCTowgnOzrZ6i/JbD5TM9fPp7NdBxU78mTCVKu1RgU3YynoitPHMZc2BsE uBJjYde7XPPnmlS5R7KpSf0kq9CftjyF8OkhYHYcG82M7t0dG+6B8T+u46sPXyCQ mhpwyLrNNWOY6INu9H1I3dsdp2K8zoH9mNE5VI2LfoCYKdsYNRB/3lGWhqV9CTqj Sl6dp5Ti0K6++wp7oY9hR5GrsYReFm+7miYYiAqiyTM5kbIUnOikkP2BNUi1/gDp kSf9gCXuu1OF3Ty7ksao0Bq4538YUfsLVsZKSt7Mvt7O+i259O5gk7xRcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLCSntCjV0/m0Tp6EGlgpdF0RCYJMB8GA1UdIwQY MBaAFNmaR83In0Y0L5Cw2jww2exf1jI4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlpwSHpjaWZSalF2a0xEYVBERFo3Rl9XTWpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9kMzBlZWYtNDk1ZS00M2JkLTkxOWMt YTJhMGUyZGI0OWQwLzEvMlpwSHpjaWZSalF2a0xEYVBERFo3Rl9XTWpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9kMzBlZWYtNDk1ZS00M2JkLTkxOWMtYTJhMGUyZGI0OWQw LzEvMlpwSHpjaWZSalF2a0xEYVBERFo3Rl9XTWpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYIF7h6Jq LCXv1YgaMOaOW6ULr5/Mv3DN0VxLAzGQSQB/l8H4NjI1MtoaIABBP8KCk4rslo2X 6XZkFBlBuh/BvFWl9RupvbelX56CBKgSxsywcOUKmaX5OTpq8SUcZKb8XeuyeGdG eRC0iIHsXcKLPf3asYHH11Ipjfb0TkgEj0p1laFHu4CklA18USCLzMrYDCMj4AFN sOOf1DEthicym8XPmjmdcmR2o6LYmVSVVHAL7ynVigc8yuZfDNb9JQxCoxRNpd5V UeotAotySGC+z7SRS0yfEVSPR4xrqY7ZxPCdapGh6UznLTit5kVvAbP7lCoYzFK5 06IHFhMSJl8Fhg== -----END CERTIFICATE-----Generated at Tue Jan 27 09:54:36 2026 by rpki-client