This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json) Hash identifier: Fz6guKS+FUABEk9LdzXOcfk+L+9yxqaylrsL5Npz+vc= Subject key identifier: 50:96:6A:0C:97:56:08:D0:47:B5:2B:6D:57:CE:4C:C7:D4:23:9C:7E Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72 Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672 Certificate serial: 019BF5E34A021A2ABE8518F0FE2D5AC5781C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft Manifest number: 05B4 Signing time: Sun 25 Jan 2026 16:01:12 +0000 Manifest this update: Sun 25 Jan 2026 16:01:12 +0000 Manifest next update: Mon 26 Jan 2026 16:01:12 +0000 Files and hashes: 1: ClXL4dT4GSld8lEfAWyCYr5cI3Y.roa (hash: gOfRKf6V+xV3ZsFtbBW86oarsiPBo5VFvmb0v2OnPU0=) 2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: UeQwCxf2zBl3ERpxscLngZ9IXTQQIcxIEIJQv2ZndzE=) 3: vT00UMTKIHLp4hINXZvd81w31H4.roa (hash: QI91nZrYvdKW6PkjSidpqTabE42DmbX4YNbp5QsN850=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:4a:02:1a:2a:be:85:18:f0:fe:2d:5a:c5:78:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672 Validity Not Before: Jan 25 16:01:12 2026 GMT Not After : Jan 26 16:01:12 2026 GMT Subject: CN=50966a0c975608d047b52b6d57ce4cc7d4239c7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:93:5a:03:c7:5f:27:4f:6b:27:c9:f6:78:7d: 34:7d:21:a2:cc:de:2c:ac:6c:13:83:24:84:dd:4c: 48:5c:bf:94:e0:ed:90:e0:02:99:fb:bd:40:81:93: 68:00:22:9d:b2:c8:c8:7c:8b:b2:c9:77:2b:4a:3c: ef:f3:d5:75:da:6f:1e:b6:f4:90:2c:72:7f:35:78: 33:00:9d:ef:c7:5c:bd:50:d3:4d:ec:64:23:26:1d: 96:d6:24:0b:54:6f:ae:85:0f:aa:84:61:b4:ce:f7: 9a:9f:2d:cf:ec:38:31:f0:c1:b1:77:f4:5d:3c:8d: 98:15:ef:b1:44:81:b2:2c:4f:55:0a:46:19:57:f6: 54:cc:b7:fe:7c:19:4a:1e:9c:73:af:11:62:34:6b: 4c:a0:1c:43:eb:4b:a6:d2:f5:16:04:bc:f3:8b:00: 6b:b3:47:bb:c8:34:d6:e8:8d:1e:69:2e:0b:8a:3c: 9e:0e:e2:63:bf:72:65:21:c3:86:20:92:fb:aa:fa: 84:25:01:8a:4a:97:f8:59:48:b0:6e:d4:e7:18:34: bb:d7:d5:c2:4e:70:85:79:00:66:d9:70:67:4c:b4: 90:91:15:24:a5:5b:40:0c:eb:4e:07:1e:eb:d6:27: 64:ac:cc:82:b3:54:e4:ef:60:6d:11:eb:df:d2:7f: fd:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:96:6A:0C:97:56:08:D0:47:B5:2B:6D:57:CE:4C:C7:D4:23:9C:7E X509v3 Authority Key Identifier: keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:51:26:1c:f2:a5:8b:d7:44:91:2c:c2:5e:ad:57:27:b7:47: 2c:8b:0e:f0:90:13:86:62:65:bb:5f:56:b6:17:6d:7d:72:88: 20:e1:42:83:38:fc:7d:e2:7b:cc:83:31:e4:f4:8e:c4:aa:0f: 55:33:da:c7:2e:b2:e5:a0:cf:96:8c:04:96:9a:c4:0f:66:03: 87:e4:59:8a:75:2d:07:84:12:48:77:ab:fb:7e:f2:cb:07:d9: da:f5:c8:37:f5:25:73:0b:29:3a:51:2c:b7:46:a6:ea:21:83: 65:f4:84:29:07:ae:df:b1:b7:ab:ae:fd:97:3c:24:e5:66:fc: b7:f1:67:a3:e4:fd:8c:45:4c:c0:9b:6f:38:fa:cc:84:9e:6f: fc:4f:80:33:ba:8d:91:6f:fe:30:ee:02:60:72:97:5a:f2:25: 85:af:00:14:c4:33:da:cd:d3:c1:69:8e:59:72:16:ed:f2:23: 43:f0:79:ca:e6:e9:16:d2:ec:dd:54:5a:d5:58:b9:55:a5:87: 89:26:a2:b2:ed:b2:a6:00:72:1f:77:fd:0b:11:6d:ec:64:3a: ec:11:de:e8:10:4e:7a:b8:62:d3:6f:00:3c:8c:09:b5:fc:84: b1:d6:42:33:dd:fc:15:5a:02:e7:df:ed:71:2f:a0:4d:0e:a4: 97:6a:8e:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv140oCGiq+hRjw/i1axXgcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZWQ5Y2I4MzQwYWMyMDk1YTRjYjA1MjhlNWVhMmY3Mzhj ZWE2NzIwHhcNMjYwMTI1MTYwMTEyWhcNMjYwMTI2MTYwMTEyWjAzMTEwLwYDVQQD Eyg1MDk2NmEwYzk3NTYwOGQwNDdiNTJiNmQ1N2NlNGNjN2Q0MjM5YzdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZNaA8dfJ09rJ8n2eH00fSGizN4s rGwTgySE3UxIXL+U4O2Q4AKZ+71AgZNoACKdssjIfIuyyXcrSjzv89V12m8etvSQ LHJ/NXgzAJ3vx1y9UNNN7GQjJh2W1iQLVG+uhQ+qhGG0zveany3P7Dgx8MGxd/Rd PI2YFe+xRIGyLE9VCkYZV/ZUzLf+fBlKHpxzrxFiNGtMoBxD60um0vUWBLzziwBr s0e7yDTW6I0eaS4LijyeDuJjv3JlIcOGIJL7qvqEJQGKSpf4WUiwbtTnGDS719XC TnCFeQBm2XBnTLSQkRUkpVtADOtOBx7r1idkrMyCs1Tk72BtEevf0n/9yQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFCWagyXVgjQR7UrbVfOTMfUI5x+MB8GA1UdIwQY MBaAFIftnLg0CsIJWkywUo5eovc4zqZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDct N2IyMWJmMzAzY2NjLzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDctN2IyMWJmMzAzY2Nj LzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL1EmHPKl i9dEkSzCXq1XJ7dHLIsO8JAThmJlu19WthdtfXKIIOFCgzj8feJ7zIMx5PSOxKoP VTPaxy6y5aDPlowElprED2YDh+RZinUtB4QSSHer+37yywfZ2vXIN/UlcwspOlEs t0am6iGDZfSEKQeu37G3q679lzwk5Wb8t/Fno+T9jEVMwJtvOPrMhJ5v/E+AM7qN kW/+MO4CYHKXWvIlha8AFMQz2s3TwWmOWXIW7fIjQ/B5yubpFtLs3VRa1Vi5VaWH iSaisu2ypgByH3f9CxFt7GQ67BHe6BBOerhi028APIwJtfyEsdZCM938FVoC59/t cS+gTQ6kl2qOgA== -----END CERTIFICATE-----Generated at Sun Jan 25 21:09:59 2026 by rpki-client