This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
File:                     SGUQoxFpcvztleiova_W5FXe0Lo.mft (raw, json)
Hash identifier:          sqI35lnSKmITH9fSDBtydds+HyBCnR+vUGn9UQhULpA=
Subject key identifier:   FF:E9:C4:B3:74:82:8C:66:B8:46:D0:4A:D9:E3:E7:05:39:72:C6:C9
Authority key identifier: 48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA
Certificate issuer:       /CN=486510a3116972fced95e8a8bdafd6e455ded0ba
Certificate serial:       019BFCC0EDED97E0DFC66A4850E8EE13350D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
Manifest number:          17F1
Signing time:             Tue 27 Jan 2026 00:01:00 +0000
Manifest this update:     Tue 27 Jan 2026 00:01:00 +0000
Manifest next update:     Wed 28 Jan 2026 00:01:00 +0000
Files and hashes:         1: 1-_tolY0Ku6cjK7uWuGIDT-aOsUM.roa (hash: zHmw/JUfBT58tzI52qKI6ZXBHiMslg81gZfcAbrW9BY=)
                          2: 1cDQdypkn0cjo9FfkDhM0paatNY.roa (hash: +ByPIkalEzr2Rwt/bFmRxra3ZwfCDb/OP1YXhCyI2zk=)
                          3: SGUQoxFpcvztleiova_W5FXe0Lo.crl (hash: RrCReLxmzOMIKiQ5akErpNyTLn1ElWKeWZ36sIbyvq0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 28 Jan 2026 00:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:fc:c0:ed:ed:97:e0:df:c6:6a:48:50:e8:ee:13:35:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=486510a3116972fced95e8a8bdafd6e455ded0ba
        Validity
            Not Before: Jan 27 00:01:00 2026 GMT
            Not After : Jan 28 00:01:00 2026 GMT
        Subject: CN=ffe9c4b374828c66b846d04ad9e3e7053972c6c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:3c:04:7e:11:94:b6:a2:06:ac:da:04:a2:8c:
                    58:b1:4f:d9:3a:20:f7:fb:42:b4:08:91:4c:1f:b3:
                    85:56:93:9e:d2:6e:e7:c3:2c:e2:9a:f1:71:0b:d5:
                    21:f6:e2:d3:7d:15:53:fd:bd:c5:74:7e:e5:b9:ca:
                    0e:a1:e4:60:a2:7e:92:8d:96:1c:12:8a:e6:94:08:
                    f5:34:e6:8f:45:1c:10:4c:91:cc:60:6c:ad:98:67:
                    03:6b:d1:34:aa:ba:76:b1:fd:73:9b:93:1b:85:32:
                    06:b3:b4:8e:fb:be:9a:48:3a:17:3f:b4:85:9a:d2:
                    bd:6a:61:d5:e8:7c:c7:d0:1a:42:2a:36:41:3f:e1:
                    02:12:f9:41:11:78:3e:c8:05:8b:45:56:f4:e2:79:
                    d4:01:c1:a3:49:47:c2:13:31:1a:21:0f:79:dd:65:
                    ca:8c:08:4d:f9:fd:d8:ef:3c:d1:c7:dd:0f:58:59:
                    83:ac:15:c9:4c:e3:61:b6:ce:1f:3f:8d:40:85:89:
                    cc:3a:1f:ee:5c:03:c6:b9:88:f1:b4:57:5a:02:78:
                    e6:9b:dc:32:58:c6:68:77:91:c9:ad:23:f6:9e:18:
                    45:29:fe:8e:ea:b1:78:bb:e5:d2:40:02:f4:db:07:
                    db:a3:58:8c:f6:14:d7:58:44:38:16:c1:a9:ba:2e:
                    49:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:E9:C4:B3:74:82:8C:66:B8:46:D0:4A:D9:E3:E7:05:39:72:C6:C9
            X509v3 Authority Key Identifier:
                keyid:48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:7d:6b:a6:cf:a7:fa:28:a8:e9:0e:7c:2e:53:40:8d:fe:35:
         06:ba:8f:2d:45:4b:52:bd:f8:67:a5:80:7a:6a:fb:c9:05:88:
         14:96:3e:27:03:a7:fe:9f:46:80:38:58:78:8a:0c:65:21:47:
         bf:76:33:6d:9a:73:9b:f8:ac:e3:9a:62:50:6d:1d:f8:cd:9a:
         2a:57:73:72:4c:23:25:7d:a0:cf:75:66:d0:1f:11:01:b2:09:
         43:fb:34:a0:1e:34:45:3b:28:04:d4:73:46:53:a0:08:ab:be:
         88:10:1d:8a:d8:f0:c5:23:5b:31:42:9c:4d:f1:7e:72:21:78:
         ad:32:e3:c9:fb:e9:c8:aa:54:2d:f4:59:1f:30:7a:78:b2:fe:
         d5:d3:5c:58:26:95:cf:9d:4c:99:fc:f2:cb:ed:63:aa:4b:78:
         f0:c9:75:62:a9:c4:c9:03:5f:6d:51:74:d2:69:6e:76:f7:56:
         f0:54:3b:10:60:4b:25:62:65:38:55:9e:f4:03:88:3e:73:87:
         c2:84:78:5a:7b:07:72:2d:5b:74:9c:66:94:58:7a:51:a2:30:
         e0:38:ff:9e:54:29:f6:21:46:31:93:00:c8:80:b5:88:97:93:
         1e:76:06:b6:f6:65:93:e9:80:96:f3:0b:2e:49:5f:44:40:66:
         0a:9b:ee:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 27 11:15:56 2026 by rpki-client