This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
File:                     SGUQoxFpcvztleiova_W5FXe0Lo.mft (raw, json)
Hash identifier:          Kc6ghQeTZ97Cbp89qJdnDrqFkv+DYbVzjZ+1jAAQ4Go=
Subject key identifier:   33:32:54:97:E0:24:0D:E1:1B:96:D3:EC:47:48:C4:3C:6D:BE:1F:6E
Authority key identifier: 48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA
Certificate issuer:       /CN=486510a3116972fced95e8a8bdafd6e455ded0ba
Certificate serial:       019BFEAF4BB00C0010DBF3C4F2983C961120
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
Manifest number:          17F2
Signing time:             Tue 27 Jan 2026 09:00:59 +0000
Manifest this update:     Tue 27 Jan 2026 09:00:59 +0000
Manifest next update:     Wed 28 Jan 2026 09:00:59 +0000
Files and hashes:         1: 1-_tolY0Ku6cjK7uWuGIDT-aOsUM.roa (hash: zHmw/JUfBT58tzI52qKI6ZXBHiMslg81gZfcAbrW9BY=)
                          2: 1cDQdypkn0cjo9FfkDhM0paatNY.roa (hash: +ByPIkalEzr2Rwt/bFmRxra3ZwfCDb/OP1YXhCyI2zk=)
                          3: SGUQoxFpcvztleiova_W5FXe0Lo.crl (hash: 6z1Mw02Xrk5KJDmnYIrmy/SaWA/OwawZRC+jA/rIAQk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 28 Jan 2026 09:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:fe:af:4b:b0:0c:00:10:db:f3:c4:f2:98:3c:96:11:20
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=486510a3116972fced95e8a8bdafd6e455ded0ba
        Validity
            Not Before: Jan 27 09:00:59 2026 GMT
            Not After : Jan 28 09:00:59 2026 GMT
        Subject: CN=33325497e0240de11b96d3ec4748c43c6dbe1f6e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:dd:31:a8:a2:11:84:fe:22:ff:ad:73:50:88:
                    7c:9a:02:9c:33:25:29:a1:75:d0:c2:dd:6a:af:b1:
                    d8:a1:a6:aa:ef:97:53:93:e7:9a:85:8c:a3:73:e1:
                    31:2d:03:37:bd:ac:3d:01:5d:4d:26:56:19:a4:fe:
                    3f:56:b4:ae:63:70:78:a5:7f:47:b2:60:f3:00:7b:
                    d0:c0:e3:69:8a:fa:3b:be:05:93:bc:cc:0f:3a:ee:
                    c1:40:1d:20:3f:b9:ae:24:d3:6e:f1:69:4d:15:8d:
                    62:7b:4a:b0:f3:fa:19:fc:e5:cd:71:e6:af:73:79:
                    99:65:e9:d4:67:a1:ec:e6:47:aa:b6:0f:de:1e:0b:
                    5e:04:bc:bd:95:d6:f1:f6:a3:da:92:66:b2:6c:1b:
                    a5:56:72:55:e7:8f:d3:d6:fd:0a:e2:84:5a:74:8a:
                    fc:a4:55:7f:5a:3b:fd:f0:25:2c:79:41:34:92:13:
                    32:c7:53:63:26:fe:d3:d1:9b:e6:f1:3a:99:71:5f:
                    a7:94:85:d5:0e:62:39:cd:1e:05:6b:de:a2:ff:f5:
                    88:89:21:36:7e:9b:b9:7f:87:4b:33:3b:a5:e1:e8:
                    c7:65:02:ea:08:e7:36:42:87:af:6f:a3:2d:6a:1b:
                    75:65:21:cb:39:1b:12:35:fd:e4:cf:8e:77:41:b9:
                    61:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:32:54:97:E0:24:0D:E1:1B:96:D3:EC:47:48:C4:3C:6D:BE:1F:6E
            X509v3 Authority Key Identifier:
                keyid:48:65:10:A3:11:69:72:FC:ED:95:E8:A8:BD:AF:D6:E4:55:DE:D0:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SGUQoxFpcvztleiova_W5FXe0Lo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/aeae3f-af4d-4eee-b284-a5f6c0aa11de/1/SGUQoxFpcvztleiova_W5FXe0Lo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:af:3a:f4:1e:1d:ad:e1:a7:d5:a3:4a:61:1f:88:fe:fd:60:
         36:96:20:a4:58:e9:ae:3d:2d:13:eb:b3:bd:c5:fe:32:27:b9:
         cd:27:e8:fa:d9:e9:bd:cc:13:68:a0:23:a1:c5:84:a7:7c:cc:
         ee:68:3a:36:4c:fc:c4:f1:65:4b:e5:9f:b4:3d:c7:d3:ca:01:
         34:05:7b:29:87:ad:78:3c:07:93:92:6e:a8:c8:35:8a:c7:be:
         cb:65:ee:40:a7:ca:89:97:1f:fe:e2:6d:ef:32:ce:c4:17:69:
         95:7b:48:3e:75:df:97:e2:b8:ce:fa:51:c6:fd:12:c5:a5:90:
         e1:34:6f:36:9f:6b:4f:b5:43:d9:0a:c9:17:9b:bb:11:cd:2b:
         59:4c:74:e6:71:60:fe:32:27:4d:cb:81:a7:7b:1f:23:bc:7e:
         3b:ea:61:38:b7:03:d5:68:27:d4:d2:ab:68:cc:61:73:c1:be:
         c9:6e:dc:76:00:51:8b:a7:11:c3:b3:1b:05:b0:01:e0:a1:3d:
         91:e9:78:b6:1b:dc:e5:e6:dc:ef:76:59:a8:34:2c:07:1f:50:
         6d:3e:ab:b5:5c:f4:46:f8:24:1c:e7:88:ec:9a:a4:db:ff:8e:
         6c:2d:e0:17:22:e8:2b:c9:ab:63:7e:58:fa:e5:70:a1:8e:fd:
         7a:a4:a2:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 27 12:44:07 2026 by rpki-client