This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft File: 2yOWhUCfZLocOlSo7xQckk5x2JI.mft (raw, json) Hash identifier: rgjilh7VTyRaBOFNd1ioEtUrG3hOBH55e2c4NqoBC+Y= Subject key identifier: 93:B9:F2:2E:45:8E:F2:FE:84:6F:1F:F2:07:47:9C:41:22:25:C3:DF Authority key identifier: DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92 Certificate issuer: /CN=db239685409f64ba1c3a54a8ef141c924e71d892 Certificate serial: 019BFEE65FAC2275524FC04824B9A3D6B141 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft Manifest number: 17FA Signing time: Tue 27 Jan 2026 10:01:09 +0000 Manifest this update: Tue 27 Jan 2026 10:01:09 +0000 Manifest next update: Wed 28 Jan 2026 10:01:09 +0000 Files and hashes: 1: 2yOWhUCfZLocOlSo7xQckk5x2JI.crl (hash: d5x+F0UkDwPHhEhkmv1ol4pKNhwHkd23aX7grJFZs3k=) 2: NCNcQSJc0TGzJY4u8AfMXCbg0RE.roa (hash: olrbYNRVZ37d5DGlOqhZmdOWpkC0qMK5uUX2T/dHnwk=) 3: NWPNhzQpbb1pWfOR8Do4Rk33ISE.roa (hash: zQ014lIcxxnh0W92J1yApdSlVAvsQefsim3FPRGCxsw=) 4: S-F0eq4A_ozaGKmyidwMC5Jy5Ro.roa (hash: x3y+oF+ZdUAZ9Uf6wr7xaiGLxbD/kDc2LpvrGJEYeAM=) 5: oDRJrLEWIwB2bQIN3VSRFVmzPEs.roa (hash: g0N6pLY+sNIqbqq3i2xctEc69tyHJmh/CSOpC4j0mH4=) 6: wet2iRU-DIcI7ecq9nOLNfx3URM.roa (hash: ukbv/ID6Q3IjhclCaom/PoiMdbvmxstujbtE/kfKRtw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fe:e6:5f:ac:22:75:52:4f:c0:48:24:b9:a3:d6:b1:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db239685409f64ba1c3a54a8ef141c924e71d892 Validity Not Before: Jan 27 10:01:09 2026 GMT Not After : Jan 28 10:01:09 2026 GMT Subject: CN=93b9f22e458ef2fe846f1ff207479c412225c3df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f8:fc:a0:96:39:b6:a5:de:f2:34:88:8f:aa: 98:62:9e:57:f4:25:5d:ec:8c:22:54:a4:a8:f2:f6: 5f:5e:8f:88:0a:93:da:73:70:22:ee:93:d2:7c:b6: e9:c3:ec:96:b5:0c:02:a8:a0:9e:3d:16:8d:21:f7: 9c:dc:6b:dc:5f:11:77:8b:8d:15:b8:65:72:b5:86: c0:f8:6f:25:15:23:c6:2d:a2:00:a6:c1:ad:3e:af: 5d:87:13:85:63:de:3f:2d:27:af:b1:cf:2e:a9:af: ff:a4:d0:3a:00:22:ce:60:26:32:db:e5:bf:24:2e: 14:4c:97:72:5c:d0:b8:60:1f:cb:9f:c9:2b:be:de: 1b:ca:76:ff:47:81:18:ba:76:c7:ce:31:2f:ad:4c: 41:fd:dd:be:d6:ae:35:f0:89:90:92:d4:de:e0:94: 3b:0e:a5:b1:e9:94:9d:7a:b2:d5:57:6d:4f:fd:44: 83:b8:54:bd:8a:25:2a:0a:d1:d9:f2:8e:5d:49:d2: b1:d0:e6:01:f8:31:2e:44:bf:86:e5:e4:b4:0e:74: 2a:86:5b:42:e4:04:82:fb:1b:43:c1:2b:b6:7f:4c: cd:ab:74:be:71:11:0c:51:72:fc:d2:80:51:54:7a: 84:da:ff:4c:c3:4f:a9:d0:ee:84:7b:22:24:5d:01: dd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B9:F2:2E:45:8E:F2:FE:84:6F:1F:F2:07:47:9C:41:22:25:C3:DF X509v3 Authority Key Identifier: keyid:DB:23:96:85:40:9F:64:BA:1C:3A:54:A8:EF:14:1C:92:4E:71:D8:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yOWhUCfZLocOlSo7xQckk5x2JI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/8d6fd7-1cb3-413c-a32b-2ef447e1b08c/1/2yOWhUCfZLocOlSo7xQckk5x2JI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:a1:1e:e8:98:a7:7d:e8:2e:ff:a6:7c:ff:a0:73:cb:02:80: 9d:c9:11:bd:78:62:c2:c8:a5:5b:4b:92:53:99:0a:63:12:d2: ea:76:55:00:bf:12:bc:91:8a:3f:ab:a0:19:ef:45:a7:f1:95: 63:70:6e:67:53:c4:33:c2:e1:7a:40:f3:f1:a0:33:3b:c8:b2: 57:da:91:35:fc:e5:96:dd:48:0c:a6:2f:c0:ef:28:37:15:54: b7:00:34:3e:c0:b0:97:2f:a5:26:a4:13:f4:0b:f3:f6:65:a6: 6f:1a:25:2c:0c:1f:21:ca:3f:d1:1b:6a:f0:39:cb:aa:70:ca: 24:6c:07:4d:03:a2:56:cf:8f:5d:e1:79:80:62:ae:7a:41:ac: 87:22:27:68:14:97:ba:d9:69:fa:8f:72:49:10:94:0d:1b:e8: 75:92:99:c0:10:59:75:88:a0:5d:11:ea:19:27:f8:a2:70:66: 1b:56:59:e5:1e:2a:5f:b9:4f:dd:c9:5a:81:c3:aa:d4:0b:1c: ba:6f:72:0f:78:90:19:6a:56:fd:15:e6:3f:dc:1f:8e:e1:43: 60:31:ed:45:83:5b:dd:0e:52:ae:ba:a8:70:a6:3a:7f:88:a8: 05:3b:22:85:f8:c3:bb:ff:33:f8:54:5f:71:be:6e:90:5e:c1: e5:f7:3a:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv+5l+sInVST8BIJLmj1rFBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMjM5Njg1NDA5ZjY0YmExYzNhNTRhOGVmMTQxYzkyNGU3 MWQ4OTIwHhcNMjYwMTI3MTAwMTA5WhcNMjYwMTI4MTAwMTA5WjAzMTEwLwYDVQQD Eyg5M2I5ZjIyZTQ1OGVmMmZlODQ2ZjFmZjIwNzQ3OWM0MTIyMjVjM2RmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkvj8oJY5tqXe8jSIj6qYYp5X9CVd 7IwiVKSo8vZfXo+ICpPac3Ai7pPSfLbpw+yWtQwCqKCePRaNIfec3GvcXxF3i40V uGVytYbA+G8lFSPGLaIApsGtPq9dhxOFY94/LSevsc8uqa//pNA6ACLOYCYy2+W/ JC4UTJdyXNC4YB/Ln8krvt4bynb/R4EYunbHzjEvrUxB/d2+1q418ImQktTe4JQ7 DqWx6ZSderLVV21P/USDuFS9iiUqCtHZ8o5dSdKx0OYB+DEuRL+G5eS0DnQqhltC 5ASC+xtDwSu2f0zNq3S+cREMUXL80oBRVHqE2v9Mw0+p0O6EeyIkXQHdkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJO58i5FjvL+hG8f8gdHnEEiJcPfMB8GA1UdIwQY MBaAFNsjloVAn2S6HDpUqO8UHJJOcdiSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC84ZDZmZDctMWNiMy00MTNjLWEzMmIt MmVmNDQ3ZTFiMDhjLzEvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC84ZDZmZDctMWNiMy00MTNjLWEzMmItMmVmNDQ3ZTFiMDhj LzEvMnlPV2hVQ2ZaTG9jT2xTbzd4UWNrazV4MkpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPaEe6Jin fegu/6Z8/6BzywKAnckRvXhiwsilW0uSU5kKYxLS6nZVAL8SvJGKP6ugGe9Fp/GV Y3BuZ1PEM8LhekDz8aAzO8iyV9qRNfzllt1IDKYvwO8oNxVUtwA0PsCwly+lJqQT 9Avz9mWmbxolLAwfIco/0Rtq8DnLqnDKJGwHTQOiVs+PXeF5gGKuekGshyInaBSX utlp+o9ySRCUDRvodZKZwBBZdYigXRHqGSf4onBmG1ZZ5R4qX7lP3clagcOq1Asc um9yD3iQGWpW/RXmP9wfjuFDYDHtRYNb3Q5SrrqocKY6f4ioBTsihfjDu/8z+FRf cb5ukF7B5fc6Vg== -----END CERTIFICATE-----Generated at Tue Jan 27 16:21:09 2026 by rpki-client