This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft File: 2fwL7GDQus4YiWd72buQGQzE_SI.mft (raw, json) Hash identifier: Ui2bZNAdGmdCMlPpYjUhkanKv7XZVbUrQO4rj51rrJg= Subject key identifier: 63:37:42:FF:76:C4:1C:48:6D:AA:93:6F:7E:7E:94:F2:41:FB:6F:70 Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22 Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22 Certificate serial: 019BA6111727DD5B4218AFADC90A596AE357 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft Manifest number: 17C4 Signing time: Sat 10 Jan 2026 04:01:36 +0000 Manifest this update: Sat 10 Jan 2026 04:01:36 +0000 Manifest next update: Sun 11 Jan 2026 04:01:36 +0000 Files and hashes: 1: 2fwL7GDQus4YiWd72buQGQzE_SI.crl (hash: UUa6Ac1OqO22VoesugLQ7BxYOKNANdDDO1XYTEMpc10=) 2: W9lGuLlyK3oCTZXvmQuqTo4C2yg.roa (hash: G4w7b1CN5DpM/EZuMWQLQvxT+EVuYLv3nYfxDAbKhDk=) 3: XWoz44Lafn-1hFijUO_aObSbpjw.roa (hash: rjl0nqRCSMtFPNQNlRhD0nFxNFVKQtrG5CQqV0qlWww=) 4: jUElcf1JFP10uCVqAsvtMStO4o0.roa (hash: xrxSdpsBwKaZISPc2IK2Gw1lDuUsBX/PpqeA4Z3a8cs=) 5: myleLf1fsMQEEVnfJUJb4pVTSBw.roa (hash: VGwR9NC4S70xB/QiD1nHld4LxBm7JzS0iHeGl9Ny2W4=) 6: o09lL4OudMDTh_jmHHeTIRn2L5s.roa (hash: ctwy00D7K53oO1gqUQQpnsVurkNSXddz4U1vX79+KpM=) 7: yn6euPUsjq8bRXFpjTNGPdRM13Y.roa (hash: IGe548/q8hO5ei6AedK5a51FhkUkqFo8BXPppwB9Vlw=) 8: znNyesTwbEHb5GdVovxJsLLM9KQ.roa (hash: WbfDTvPg/i+BiVxKsZsH5gFpX+Sz+6FiIPk4KG/O+AA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a6:11:17:27:dd:5b:42:18:af:ad:c9:0a:59:6a:e3:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22 Validity Not Before: Jan 10 04:01:36 2026 GMT Not After : Jan 11 04:01:36 2026 GMT Subject: CN=633742ff76c41c486daa936f7e7e94f241fb6f70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8d:86:f0:89:35:27:76:98:1c:ff:89:4f:0c: f9:ce:af:70:8d:32:a8:e4:44:a0:6b:64:21:96:10: e3:96:81:0c:af:c0:80:54:6e:44:ed:39:17:72:79: c3:f1:90:fa:d0:61:71:25:c7:8c:e0:85:e8:03:df: 9a:52:42:ad:cc:9d:ce:2b:bc:e8:23:a7:ad:fe:1d: 14:3b:22:ad:9d:5e:9b:72:2c:da:e8:bf:23:54:4a: fb:4a:f7:d0:67:8a:92:d8:0e:e8:9c:1f:f6:b0:e2: c4:3b:9f:7b:84:d1:dc:ac:e3:dc:3f:3a:1c:05:d7: 00:a7:22:fd:76:34:9d:6b:dd:08:64:61:6a:0c:f4: 7b:6f:c6:0d:aa:25:bb:19:f5:67:30:0d:39:01:d2: 1d:a5:01:8b:bf:f8:b8:55:6b:48:84:31:2d:a5:82: 90:33:06:9d:f7:41:22:72:e4:eb:47:c2:de:0f:13: 0a:c7:7c:25:6d:b1:c7:3e:a8:7c:a4:6a:97:72:71: 61:fc:89:02:4b:5a:ae:bf:10:09:99:6e:b5:e9:59: 29:4a:00:44:73:18:8e:71:c3:07:0e:65:99:e6:b5: 3e:73:37:c0:29:34:5f:e9:43:73:61:c2:ac:79:56: 36:e5:44:56:ee:de:06:b3:83:58:5c:63:b4:16:61: 7d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:37:42:FF:76:C4:1C:48:6D:AA:93:6F:7E:7E:94:F2:41:FB:6F:70 X509v3 Authority Key Identifier: keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:cb:42:15:d4:0a:69:0a:b6:29:a0:1b:94:02:6d:43:cf:d7: f4:1f:87:f0:7f:77:32:6f:93:54:a0:ea:1d:eb:0f:d1:5c:37: 8a:7e:2e:1d:a4:e5:9e:6a:6c:3f:04:03:4a:99:ae:f0:89:2e: 86:bd:3c:0d:c7:1e:3d:cd:ea:55:60:2c:89:70:4a:17:7f:b1: 4c:d2:fa:5e:9e:dc:48:01:d8:39:30:92:00:ed:50:cf:76:d5: 06:e4:88:38:06:11:eb:70:9c:c0:91:7e:f7:70:ec:b2:b5:ce: 3a:6c:ad:c0:6f:a9:9b:f2:7f:d1:6e:11:3e:b9:0d:89:f3:d3: 0a:35:bc:ab:1c:90:90:ba:53:ef:92:fb:79:59:e0:11:b5:1e: bb:d8:db:25:04:b1:e8:e5:95:ef:b5:ee:49:bd:6d:5e:69:e7: f6:2c:04:35:f3:3c:9d:14:61:6f:37:4a:0f:c6:ae:e3:4b:c0: 87:f4:77:7d:12:18:25:9b:4b:09:19:36:b6:df:2d:8a:05:92: ef:41:77:e8:9f:bb:28:b8:5e:95:65:ff:bd:7d:23:7d:c9:6a: 36:b1:5a:e5:fa:5b:dc:6b:f1:81:66:db:63:3a:0e:1f:5b:3f: b3:4f:19:8e:86:28:a7:c0:ec:01:88:cd:4f:5f:3c:00:63:96: ef:a0:84:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZumERcn3VtCGK+tyQpZauNXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZmMwYmVjNjBkMGJhY2UxODg5Njc3YmQ5YmI5MDE5MGNj NGZkMjIwHhcNMjYwMTEwMDQwMTM2WhcNMjYwMTExMDQwMTM2WjAzMTEwLwYDVQQD Eyg2MzM3NDJmZjc2YzQxYzQ4NmRhYTkzNmY3ZTdlOTRmMjQxZmI2ZjcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA342G8Ik1J3aYHP+JTwz5zq9wjTKo 5ESga2QhlhDjloEMr8CAVG5E7TkXcnnD8ZD60GFxJceM4IXoA9+aUkKtzJ3OK7zo I6et/h0UOyKtnV6bciza6L8jVEr7SvfQZ4qS2A7onB/2sOLEO597hNHcrOPcPzoc BdcApyL9djSda90IZGFqDPR7b8YNqiW7GfVnMA05AdIdpQGLv/i4VWtIhDEtpYKQ Mwad90EicuTrR8LeDxMKx3wlbbHHPqh8pGqXcnFh/IkCS1quvxAJmW616VkpSgBE cxiOccMHDmWZ5rU+czfAKTRf6UNzYcKseVY25URW7t4Gs4NYXGO0FmF9lwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGM3Qv92xBxIbaqTb35+lPJB+29wMB8GA1UdIwQY MBaAFNn8C+xg0LrOGIlne9m7kBkMxP0iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmZ3TDdHRFF1czRZaVdkNzJidVFHUXpFX1NJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9iMGQ2ZTYtMmVkNy00OTI4LWFkNjkt MzQ2OTAzNGZhNDQxLzEvMmZ3TDdHRFF1czRZaVdkNzJidVFHUXpFX1NJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9iMGQ2ZTYtMmVkNy00OTI4LWFkNjktMzQ2OTAzNGZhNDQx LzEvMmZ3TDdHRFF1czRZaVdkNzJidVFHUXpFX1NJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXMtCFdQK aQq2KaAblAJtQ8/X9B+H8H93Mm+TVKDqHesP0Vw3in4uHaTlnmpsPwQDSpmu8Iku hr08DccePc3qVWAsiXBKF3+xTNL6Xp7cSAHYOTCSAO1Qz3bVBuSIOAYR63CcwJF+ 93DssrXOOmytwG+pm/J/0W4RPrkNifPTCjW8qxyQkLpT75L7eVngEbUeu9jbJQSx 6OWV77XuSb1tXmnn9iwENfM8nRRhbzdKD8au40vAh/R3fRIYJZtLCRk2tt8tigWS 70F36J+7KLhelWX/vX0jfclqNrFa5fpb3GvxgWbbYzoOH1s/s08ZjoYop8DsAYjN T188AGOW76CEiA== -----END CERTIFICATE-----Generated at Sat Jan 10 06:56:17 2026 by rpki-client