This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft File: 2huf6PGjORf-5-Tb6fq5JeuGJak.mft (raw, json) Hash identifier: agaYmiIMZLlAH8s7ciQTvjmzbygkYf+lueNsL7Pe/8k= Subject key identifier: 32:AE:9E:24:9E:FB:93:55:1E:0E:AE:72:C7:C0:1A:3D:85:82:EF:A5 Authority key identifier: DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9 Certificate issuer: /CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9 Certificate serial: 019BF6BF5F43A59DCC65727501B63139BC0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft Manifest number: 089A Signing time: Sun 25 Jan 2026 20:01:35 +0000 Manifest this update: Sun 25 Jan 2026 20:01:35 +0000 Manifest next update: Mon 26 Jan 2026 20:01:35 +0000 Files and hashes: 1: 2huf6PGjORf-5-Tb6fq5JeuGJak.crl (hash: mcMNNZhDcE2Jz/Ciydil55+Cp7IxP6h6OCuCrPmS99Q=) 2: lEdgyLdP8h_0PnTyGx915-RyS6g.roa (hash: tVEhNOEOaWiBJykoJU0Gzu7c+ZGByjMKsOzSEHCMGFs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:bf:5f:43:a5:9d:cc:65:72:75:01:b6:31:39:bc:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9 Validity Not Before: Jan 25 20:01:35 2026 GMT Not After : Jan 26 20:01:35 2026 GMT Subject: CN=32ae9e249efb93551e0eae72c7c01a3d8582efa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0a:39:24:e5:dc:9b:c6:65:72:3e:5e:45:a0: c4:03:d7:d8:b4:14:52:f4:af:1c:c2:7e:03:0d:3c: da:97:4e:5e:3a:2d:24:d3:15:47:5a:1b:3a:1e:6d: a6:a7:08:e5:1a:ef:a0:96:fd:c1:91:a1:04:53:f3: 02:14:68:c8:29:a9:78:ad:99:04:8c:ca:7a:a7:27: c7:ee:76:f9:2d:1e:c3:74:c8:48:02:d7:27:fe:b8: 3d:3c:10:79:cb:f3:47:7a:52:a4:5f:41:f6:b9:c2: c8:ab:41:98:ce:a6:65:42:18:ed:52:d1:80:cf:be: 13:2a:1c:a1:93:d4:6c:36:f1:8e:ae:35:06:66:c8: a3:2f:d1:99:63:d3:c9:ab:29:2d:0d:d4:63:c3:47: 10:71:7a:34:5b:9a:c4:6f:03:25:41:f9:20:6d:9b: 35:33:ce:d0:27:00:c1:ab:80:44:5b:8b:6e:a0:34: 25:62:ca:bd:3c:c2:99:42:34:b4:2d:ae:60:10:31: b9:a7:75:68:f2:0e:68:00:e8:05:ac:63:af:fc:9b: 1c:38:53:df:56:0e:d4:03:85:08:36:cd:95:68:f2: dd:c8:c1:82:c8:42:dc:85:05:cc:d6:ce:3e:ca:e8: 19:f2:a1:e9:26:26:a2:7d:22:b0:40:40:cf:a4:ce: a8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:AE:9E:24:9E:FB:93:55:1E:0E:AE:72:C7:C0:1A:3D:85:82:EF:A5 X509v3 Authority Key Identifier: keyid:DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:ac:db:00:10:70:da:c1:29:55:68:c7:04:c1:45:df:4d:21: b4:f2:00:7b:3d:59:85:3c:71:f5:e0:9b:cf:42:69:ed:22:1f: 10:68:1e:87:a0:54:8b:77:b0:44:74:d6:b7:2b:bc:18:ad:d5: 58:b5:a3:fd:52:06:1d:cc:22:36:7c:f7:0d:00:94:97:e6:8d: 22:38:c8:fa:1a:17:c8:1c:46:55:12:45:cc:ce:69:27:cc:5d: 15:0e:b8:10:a3:54:85:95:8f:f8:29:e2:12:f8:ee:0f:4b:8e: dd:64:bd:36:76:3d:08:6c:a3:97:e7:d7:fe:78:82:2a:e9:ce: d9:78:fd:e6:76:6a:d4:54:29:dd:4b:ad:24:aa:0f:54:04:3a: 24:c1:5a:0d:36:1e:31:ba:4c:a2:9d:6b:51:f3:cf:e2:54:97: 38:12:1d:7b:d8:fd:1e:f7:2e:4c:be:e4:80:a6:7f:4c:a8:6d: c0:08:81:38:32:4b:a2:d0:d9:66:a6:75:63:cf:47:85:33:47: 79:64:d1:99:49:b5:41:72:62:58:e7:60:a9:49:c9:8e:60:31: 44:81:dd:21:b0:15:d0:ac:44:f4:5a:dd:b6:96:e7:2b:00:f0: dc:b7:d9:bd:c4:25:d4:e4:b6:9e:fb:bb:cb:b0:b5:99:71:14: 59:6e:bd:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2v19DpZ3MZXJ1AbYxObwOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMWI5ZmU4ZjFhMzM5MTdmZWU3ZTRkYmU5ZmFiOTI1ZWI4 NjI1YTkwHhcNMjYwMTI1MjAwMTM1WhcNMjYwMTI2MjAwMTM1WjAzMTEwLwYDVQQD EygzMmFlOWUyNDllZmI5MzU1MWUwZWFlNzJjN2MwMWEzZDg1ODJlZmE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAo5JOXcm8Zlcj5eRaDEA9fYtBRS 9K8cwn4DDTzal05eOi0k0xVHWhs6Hm2mpwjlGu+glv3BkaEEU/MCFGjIKal4rZkE jMp6pyfH7nb5LR7DdMhIAtcn/rg9PBB5y/NHelKkX0H2ucLIq0GYzqZlQhjtUtGA z74TKhyhk9RsNvGOrjUGZsijL9GZY9PJqyktDdRjw0cQcXo0W5rEbwMlQfkgbZs1 M87QJwDBq4BEW4tuoDQlYsq9PMKZQjS0La5gEDG5p3Vo8g5oAOgFrGOv/JscOFPf Vg7UA4UINs2VaPLdyMGCyELchQXM1s4+yugZ8qHpJiaifSKwQEDPpM6oqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDKuniSe+5NVHg6ucsfAGj2Fgu+lMB8GA1UdIwQY MBaAFNobn+jxozkX/ufk2+n6uSXrhiWpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmh1ZjZQR2pPUmYtNS1UYjZmcTVKZXVHSmFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy80MmExNjYtOGE4Ni00OGRhLWJiOTYt NzlmZDUwMjNkZTM2LzEvMmh1ZjZQR2pPUmYtNS1UYjZmcTVKZXVHSmFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy80MmExNjYtOGE4Ni00OGRhLWJiOTYtNzlmZDUwMjNkZTM2 LzEvMmh1ZjZQR2pPUmYtNS1UYjZmcTVKZXVHSmFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXqzbABBw 2sEpVWjHBMFF300htPIAez1ZhTxx9eCbz0Jp7SIfEGgeh6BUi3ewRHTWtyu8GK3V WLWj/VIGHcwiNnz3DQCUl+aNIjjI+hoXyBxGVRJFzM5pJ8xdFQ64EKNUhZWP+Cni EvjuD0uO3WS9NnY9CGyjl+fX/niCKunO2Xj95nZq1FQp3UutJKoPVAQ6JMFaDTYe MbpMop1rUfPP4lSXOBIde9j9HvcuTL7kgKZ/TKhtwAiBODJLotDZZqZ1Y89HhTNH eWTRmUm1QXJiWOdgqUnJjmAxRIHdIbAV0KxE9FrdtpbnKwDw3LfZvcQl1OS2nvu7 y7C1mXEUWW69wA== -----END CERTIFICATE-----Generated at Mon Jan 26 01:03:20 2026 by rpki-client