This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft File: 2AtWXXc2dT2-f2YkvfHSvBiW98A.mft (raw, json) Hash identifier: 4mI7+iqdk1NDbVI5iByo6U5EH/UPFCH6EILS/2d+3yM= Subject key identifier: 7A:65:D6:AD:5F:13:83:38:E4:3E:D8:37:EB:E7:78:D7:7E:8F:95:46 Authority key identifier: D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0 Certificate issuer: /CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0 Certificate serial: 019BDF24626E38AB90F6807481C97D702E26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft Manifest number: 1138 Signing time: Wed 21 Jan 2026 06:01:02 +0000 Manifest this update: Wed 21 Jan 2026 06:01:02 +0000 Manifest next update: Thu 22 Jan 2026 06:01:02 +0000 Files and hashes: 1: 2AtWXXc2dT2-f2YkvfHSvBiW98A.crl (hash: ttA8xt/MDRPKV/X7YPKnljHEt4rm83mSt05tN/msJvE=) 2: 5XOq4BMraJ6-AegtlaIWTtUkqxo.roa (hash: hDvJTYUbzgM4Etq6PCbmzufkHK2RaHqzKqogboxsQ0c=) 3: iIJMhiXnC0TkNFq6MHPCGZcJKp4.roa (hash: 6M+PNBTs7Ydc22YxEOoAXWjHO6P/9d3SsLY8rQkfu3Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:df:24:62:6e:38:ab:90:f6:80:74:81:c9:7d:70:2e:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0 Validity Not Before: Jan 21 06:01:02 2026 GMT Not After : Jan 22 06:01:02 2026 GMT Subject: CN=7a65d6ad5f138338e43ed837ebe778d77e8f9546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:51:a6:40:3d:82:00:ea:66:8d:db:a3:f5:80: b4:27:b4:03:e8:0a:44:30:32:59:52:63:8f:b1:c0: 05:db:07:60:d8:6a:2a:88:30:60:e9:48:7e:ee:c8: 48:2c:fc:75:cd:86:02:cc:3e:4d:44:04:73:63:5f: 51:25:4c:9e:b8:0f:5b:16:40:89:3f:e7:3f:9e:5e: 0f:5b:ff:ee:d1:af:b3:00:1f:72:b2:c4:5a:3f:f1: 5a:f9:31:42:10:4d:28:3d:d7:da:c0:7c:fb:85:f2: 68:56:a9:ce:03:8a:f7:30:18:db:b9:ce:1c:25:6e: 14:cb:b4:0d:7a:0b:e7:4f:48:b9:65:75:8f:63:50: 13:ac:51:98:9d:d4:f6:c6:a8:2f:c0:23:59:6f:68: 05:a6:4d:5e:12:c8:9d:ac:a2:b1:ee:89:20:5c:0c: 33:d7:03:15:c5:1b:be:9b:52:e1:f3:be:33:a6:06: 72:bf:a2:6e:21:96:c9:7e:68:bf:cf:cb:91:14:5e: 6f:5f:da:25:86:ec:64:e4:64:58:02:a6:5d:33:eb: 29:9e:ed:37:43:e8:cc:e1:18:ff:92:da:a1:29:34: 77:f3:6a:ea:71:62:e6:80:50:d4:3f:13:36:73:a6: a6:7d:a4:f6:cb:05:50:5c:7a:d1:53:71:66:2f:e7: a2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:65:D6:AD:5F:13:83:38:E4:3E:D8:37:EB:E7:78:D7:7E:8F:95:46 X509v3 Authority Key Identifier: keyid:D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:c9:6b:c1:e4:a0:89:1b:fb:6c:89:98:0b:dc:c4:cf:10:c9: 3e:43:94:51:b1:dc:0e:27:71:4d:2f:37:09:51:51:24:03:d6: 54:13:c5:5d:c5:47:0d:9c:4d:7f:fe:65:6c:48:81:dd:f9:37: 05:01:a0:df:da:be:b8:5b:f6:67:d5:e8:3a:b9:38:f6:af:72: f8:8e:d5:b2:e0:17:94:de:22:0f:31:18:d3:1f:2b:56:55:2f: 71:28:f8:42:55:ee:d2:fa:c0:9a:01:3d:89:93:6c:e0:f3:53: 21:29:5d:45:81:1f:ff:3a:09:cb:ec:a7:2a:eb:73:5c:d6:7b: 22:83:0f:cc:d9:92:74:5c:b9:eb:66:80:0d:ce:f6:05:d9:48: 54:36:9f:82:f7:9f:aa:67:53:f3:e0:e9:ce:27:bd:c4:3d:64: 4a:88:d0:cf:fb:30:c7:98:f1:74:e4:48:0c:eb:d4:90:77:25: 8c:c3:87:63:0f:29:3c:8b:31:b3:21:e4:a6:36:cf:2d:af:e3: 01:7f:a5:91:3d:0b:07:55:38:01:23:fc:19:15:f6:24:bf:45: d0:53:1e:a8:d0:c9:ae:63:c3:26:88:e2:16:4f:da:89:ee:11: 03:63:8c:49:9e:2c:71:cd:3f:4f:48:22:d1:87:6a:fa:fa:5b: 15:ee:ad:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvfJGJuOKuQ9oB0gcl9cC4mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4MGI1NjVkNzczNjc1M2RiZTdmNjYyNGJkZjFkMmJjMTg5 NmY3YzAwHhcNMjYwMTIxMDYwMTAyWhcNMjYwMTIyMDYwMTAyWjAzMTEwLwYDVQQD Eyg3YTY1ZDZhZDVmMTM4MzM4ZTQzZWQ4MzdlYmU3NzhkNzdlOGY5NTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1GmQD2CAOpmjduj9YC0J7QD6ApE MDJZUmOPscAF2wdg2GoqiDBg6Uh+7shILPx1zYYCzD5NRARzY19RJUyeuA9bFkCJ P+c/nl4PW//u0a+zAB9yssRaP/Fa+TFCEE0oPdfawHz7hfJoVqnOA4r3MBjbuc4c JW4Uy7QNegvnT0i5ZXWPY1ATrFGYndT2xqgvwCNZb2gFpk1eEsidrKKx7okgXAwz 1wMVxRu+m1Lh874zpgZyv6JuIZbJfmi/z8uRFF5vX9olhuxk5GRYAqZdM+spnu03 Q+jM4Rj/ktqhKTR382rqcWLmgFDUPxM2c6amfaT2ywVQXHrRU3FmL+eiwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHpl1q1fE4M45D7YN+vneNd+j5VGMB8GA1UdIwQY MBaAFNgLVl13NnU9vn9mJL3x0rwYlvfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mNzYzMzktMTcxNC00MDNiLTk5Mjct MjMyNzc4MjJmZWZhLzEvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9mNzYzMzktMTcxNC00MDNiLTk5MjctMjMyNzc4MjJmZWZh LzEvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi8lrweSg iRv7bImYC9zEzxDJPkOUUbHcDidxTS83CVFRJAPWVBPFXcVHDZxNf/5lbEiB3fk3 BQGg39q+uFv2Z9XoOrk49q9y+I7VsuAXlN4iDzEY0x8rVlUvcSj4QlXu0vrAmgE9 iZNs4PNTISldRYEf/zoJy+ynKutzXNZ7IoMPzNmSdFy562aADc72BdlIVDafgvef qmdT8+Dpzie9xD1kSojQz/swx5jxdORIDOvUkHcljMOHYw8pPIsxsyHkpjbPLa/j AX+lkT0LB1U4ASP8GRX2JL9F0FMeqNDJrmPDJojiFk/aie4RA2OMSZ4scc0/T0gi 0Ydq+vpbFe6tyw== -----END CERTIFICATE-----Generated at Wed Jan 21 14:39:52 2026 by rpki-client