This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
File:                     NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json)
Hash identifier:          S6K+xvxvwM+Ni1dMWEJcgQdcUmazWLgnu6kLHPRvPz0=
Subject key identifier:   EA:D6:39:29:4F:30:C1:98:05:8D:2C:E9:9A:BE:C5:2B:DA:45:EA:39
Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06
Certificate issuer:       /CN=34832317d2544434b659e5692071d8e4c4938b06
Certificate serial:       019BF5AC63DBE4E61544120AC264424B8EA1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
Manifest number:          055D
Signing time:             Sun 25 Jan 2026 15:01:13 +0000
Manifest this update:     Sun 25 Jan 2026 15:01:13 +0000
Manifest next update:     Mon 26 Jan 2026 15:01:13 +0000
Files and hashes:         1: MtXK992XQ-M-hmv_KStvnyh-x5Q.roa (hash: M8VsnjB/uw1FiI9xmVKpQrIIX0KwLuaKoIKTTuviTH8=)
                          2: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: UcAnx4IdrQUPCwnkTOyqNIPNmYosCtXrBkzvTXAM6S4=)
                          3: S3-C960eDjtkhmLESJEggehwHME.roa (hash: eXKQYhtmCASg+7u8rDqDnt6Fk8AoSBqR8NO1VXIyQ3c=)
                          4: r5VTzB_D--LT6ft6QpgyIKkudbM.roa (hash: 3oNMl/b2gquyHJLZema+rIR0bUrcCM54+yp4fRS/DTg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 26 Jan 2026 15:01:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:f5:ac:63:db:e4:e6:15:44:12:0a:c2:64:42:4b:8e:a1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06
        Validity
            Not Before: Jan 25 15:01:13 2026 GMT
            Not After : Jan 26 15:01:13 2026 GMT
        Subject: CN=ead639294f30c198058d2ce99abec52bda45ea39
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:f5:c2:fd:93:65:0d:32:19:ca:b7:96:19:10:
                    ac:d9:bb:38:0e:81:1a:d5:b8:2b:e0:53:af:8a:a1:
                    4d:1d:3c:6c:97:e5:d6:57:64:20:81:75:4f:f2:37:
                    68:36:30:5d:e7:ca:39:69:be:4d:e3:03:33:db:3d:
                    90:e7:9e:b7:bc:ce:9a:09:36:b0:b2:00:7e:a3:3b:
                    93:a0:7c:b9:1e:0e:b2:69:aa:07:8e:b0:7d:c8:6b:
                    fd:1b:f8:69:b2:1e:70:57:b9:c0:a3:a7:c9:ed:db:
                    05:d6:ee:79:8a:85:b6:e5:f8:de:5b:8e:b3:83:7b:
                    79:bb:d6:ff:32:13:e2:f0:cb:8d:c3:3a:50:79:35:
                    e8:4e:ce:66:af:5b:c2:fc:28:ca:b3:07:a3:86:fc:
                    4b:6b:ef:47:3a:67:38:a8:46:d0:9e:a8:b9:e7:4f:
                    0d:74:5f:a7:1c:cd:a0:cd:6e:43:8b:63:dc:c2:3a:
                    0a:c3:77:8e:22:9e:f7:3c:9a:96:2b:b8:60:2f:5a:
                    a5:4c:ae:99:45:9a:6b:8e:c3:7e:b1:b7:91:fb:dc:
                    22:1c:b0:78:b1:33:aa:6e:fb:ab:a4:6d:81:47:31:
                    79:ed:50:2b:80:b9:a4:1d:58:34:87:aa:77:d4:e5:
                    2a:d9:7b:34:8e:cd:74:b2:ab:29:b6:1c:e2:b2:fc:
                    7a:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:D6:39:29:4F:30:C1:98:05:8D:2C:E9:9A:BE:C5:2B:DA:45:EA:39
            X509v3 Authority Key Identifier:
                keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:d5:b5:44:fa:03:82:66:8b:c6:26:84:6c:72:4c:94:d2:48:
         a6:d6:e3:76:e4:99:9b:97:78:d8:42:72:73:48:5f:b5:81:90:
         6d:42:f2:ca:7c:43:32:ea:fd:6e:30:58:cb:14:7b:dc:35:32:
         20:42:40:2b:97:20:05:f2:ed:c3:72:f7:c2:77:9e:48:39:19:
         ab:0a:a4:86:2d:30:0c:73:88:f7:29:4e:a1:eb:3f:b4:e3:1e:
         e2:89:1d:5c:6a:12:d2:0e:9d:13:01:d0:90:ba:97:2d:05:a8:
         2b:69:4a:ec:dd:0e:13:09:c9:d9:78:0d:cb:2a:f7:d3:8d:e6:
         d6:80:eb:63:10:80:db:f8:d5:17:3f:2e:e9:9e:e7:20:0f:c5:
         e0:47:e0:84:e9:e2:c7:14:06:aa:4c:98:3a:3b:6d:52:ef:dc:
         04:da:fc:03:f1:c0:8d:f8:18:69:4c:5c:06:cf:93:13:d6:cf:
         c5:6a:6c:2f:bc:f2:2f:d1:3d:e8:c3:ec:15:f7:dd:98:64:7b:
         1c:03:54:2c:aa:a6:4b:0a:f4:8d:c1:25:5a:44:d6:66:1e:ce:
         13:a9:25:3e:93:9e:f9:1b:07:e1:79:85:ab:8f:e7:9a:1a:ea:
         bb:ea:3b:19:1d:c8:a4:b1:3a:09:f4:24:f8:16:4b:6b:d4:06:
         60:6d:c1:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 26 01:48:50 2026 by rpki-client