This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft File: sho_SvlKWA6557WFQqAISyHCsJs.mft (raw, json) Hash identifier: wUwRhVYevMq7SzPZDaHo2fD3yZiuHDQJn8KJlmhM+6o= Subject key identifier: 8F:22:AA:78:8C:0B:13:ED:48:D6:41:9C:32:7F:E0:81:3A:63:1B:2A Authority key identifier: B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B Certificate issuer: /CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b Certificate serial: 019BF7D1C8A62ED118BC169C2C2F2D9D51E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft Manifest number: 08CB Signing time: Mon 26 Jan 2026 01:01:19 +0000 Manifest this update: Mon 26 Jan 2026 01:01:19 +0000 Manifest next update: Tue 27 Jan 2026 01:01:19 +0000 Files and hashes: 1: MwiX1sWT4L9Sd2jLdKK-is1cuoU.roa (hash: oswXbOPtoGvOkQD2v1oxYSwYp3lw3uvemjQYUy0pcbU=) 2: qzh2vh62kqjCq_kquaQFKN2dkjk.roa (hash: z2SqtvBA5B+Uxlu9McSqz/3+lS4dmqsulgYELWekW6s=) 3: sho_SvlKWA6557WFQqAISyHCsJs.crl (hash: BMM4IMrmzvKLZp/ByZ3hJ5I0MEkI3Mm2aA+h5xzUmiU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:d1:c8:a6:2e:d1:18:bc:16:9c:2c:2f:2d:9d:51:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b21a3f4af94a580eb9e7b58542a0084b21c2b09b Validity Not Before: Jan 26 01:01:19 2026 GMT Not After : Jan 27 01:01:19 2026 GMT Subject: CN=8f22aa788c0b13ed48d6419c327fe0813a631b2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e0:81:0a:c1:bd:b6:69:91:73:57:fe:6d:54: a5:8a:27:da:03:5a:89:a7:c1:ce:da:97:60:40:60: e7:ca:d3:61:d2:1f:fb:ea:26:78:0e:b6:20:32:c0: 56:64:be:3a:fa:f8:17:00:f7:17:07:74:ae:62:c9: cb:52:3c:a9:71:e0:68:ac:5b:65:fc:c2:b7:b1:22: b0:63:fd:31:4e:da:4f:5c:5f:db:77:94:06:ee:80: 21:72:87:2f:05:1c:8a:ba:c7:82:63:7c:03:3e:8e: db:8b:a8:d4:76:a9:db:2b:6d:e8:11:13:f5:56:92: b3:86:7d:1a:dd:01:fb:08:52:d1:3e:b5:5f:17:e8: e9:fc:cc:c1:41:a7:be:20:0b:c8:1a:68:c2:78:e5: a8:18:1f:f4:bd:24:61:80:a5:87:52:82:e3:75:7a: 0d:a4:9c:97:1c:8b:66:63:fc:da:bb:41:ba:ae:59: dc:43:a6:13:19:f1:a0:38:44:db:8f:07:d8:b2:ab: 83:ae:6e:78:2f:01:55:31:e8:8e:49:76:2a:53:58: 4d:9c:2f:a5:d5:24:25:c4:aa:a8:65:9c:47:0a:80: 0e:b9:41:2b:ca:6f:2f:a3:18:43:db:d1:9e:68:bf: dd:80:20:19:24:0c:ce:e5:30:e7:c2:09:fb:30:10: 3f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:22:AA:78:8C:0B:13:ED:48:D6:41:9C:32:7F:E0:81:3A:63:1B:2A X509v3 Authority Key Identifier: keyid:B2:1A:3F:4A:F9:4A:58:0E:B9:E7:B5:85:42:A0:08:4B:21:C2:B0:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sho_SvlKWA6557WFQqAISyHCsJs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/991f1c-999b-4f75-b0bf-5129172b6966/1/sho_SvlKWA6557WFQqAISyHCsJs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:46:72:a0:e1:1f:5d:fa:7f:b9:2f:4c:55:43:3d:d7:d6:bd: 7f:2e:fa:f5:7b:52:c8:30:f3:97:bc:54:f2:b1:57:70:c3:12: 9f:25:20:1e:86:15:be:f2:8d:7a:c4:48:f8:4a:49:e4:bb:b5: 01:ee:94:2f:4c:dc:76:f2:1d:61:79:af:c4:05:65:e4:a9:a9: 1a:24:4b:e3:cc:b8:9c:59:b0:91:54:a5:b1:de:30:15:8a:71: ed:6d:04:d5:d8:f1:84:2c:bc:bf:6c:0b:5d:4d:66:fa:36:bc: 1a:e1:4b:06:6e:e9:4b:2a:ea:32:a5:82:7c:ca:09:49:a8:b0: 48:4e:ab:e4:81:6a:2d:45:2a:5e:85:11:a2:e9:28:cc:85:69: 0d:cc:b6:77:09:ea:b0:60:6d:e2:39:44:54:fa:d0:aa:04:ee: ef:5d:e0:47:f6:af:19:8e:0e:ab:41:ad:28:9e:ad:88:af:43: 06:2d:22:ce:c5:3a:9c:f3:d9:77:8a:ed:2c:15:aa:2e:88:80: 32:20:f7:57:73:9e:59:db:f5:28:7a:d0:01:53:86:b1:e3:aa: 0d:ec:06:2a:9e:e3:6e:cb:4b:d0:27:a4:5c:30:cf:aa:14:a4: 8e:23:5d:af:de:9b:e9:7d:33:24:52:ac:de:72:20:5b:37:84: f2:d3:c0:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv30cimLtEYvBacLC8tnVHmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMWEzZjRhZjk0YTU4MGViOWU3YjU4NTQyYTAwODRiMjFj MmIwOWIwHhcNMjYwMTI2MDEwMTE5WhcNMjYwMTI3MDEwMTE5WjAzMTEwLwYDVQQD Eyg4ZjIyYWE3ODhjMGIxM2VkNDhkNjQxOWMzMjdmZTA4MTNhNjMxYjJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveCBCsG9tmmRc1f+bVSliifaA1qJ p8HO2pdgQGDnytNh0h/76iZ4DrYgMsBWZL46+vgXAPcXB3SuYsnLUjypceBorFtl /MK3sSKwY/0xTtpPXF/bd5QG7oAhcocvBRyKuseCY3wDPo7bi6jUdqnbK23oERP1 VpKzhn0a3QH7CFLRPrVfF+jp/MzBQae+IAvIGmjCeOWoGB/0vSRhgKWHUoLjdXoN pJyXHItmY/zau0G6rlncQ6YTGfGgOETbjwfYsquDrm54LwFVMeiOSXYqU1hNnC+l 1SQlxKqoZZxHCoAOuUErym8voxhD29GeaL/dgCAZJAzO5TDnwgn7MBA/awIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI8iqniMCxPtSNZBnDJ/4IE6YxsqMB8GA1UdIwQY MBaAFLIaP0r5SlgOuee1hUKgCEshwrCbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2hvX1N2bEtXQTY1NTdXRlFxQUlTeUhDc0pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS85OTFmMWMtOTk5Yi00Zjc1LWIwYmYt NTEyOTE3MmI2OTY2LzEvc2hvX1N2bEtXQTY1NTdXRlFxQUlTeUhDc0pzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS85OTFmMWMtOTk5Yi00Zjc1LWIwYmYtNTEyOTE3MmI2OTY2 LzEvc2hvX1N2bEtXQTY1NTdXRlFxQUlTeUhDc0pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFUZyoOEf Xfp/uS9MVUM919a9fy769XtSyDDzl7xU8rFXcMMSnyUgHoYVvvKNesRI+EpJ5Lu1 Ae6UL0zcdvIdYXmvxAVl5KmpGiRL48y4nFmwkVSlsd4wFYpx7W0E1djxhCy8v2wL XU1m+ja8GuFLBm7pSyrqMqWCfMoJSaiwSE6r5IFqLUUqXoURoukozIVpDcy2dwnq sGBt4jlEVPrQqgTu713gR/avGY4Oq0GtKJ6tiK9DBi0izsU6nPPZd4rtLBWqLoiA MiD3V3OeWdv1KHrQAVOGseOqDewGKp7jbstL0CekXDDPqhSkjiNdr96b6X0zJFKs 3nIgWzeE8tPAWA== -----END CERTIFICATE-----Generated at Mon Jan 26 10:57:31 2026 by rpki-client