This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft File: S2T4wOGznYqO-OjItaD_7itTtYc.mft (raw, json) Hash identifier: xzmpysSBdGkraqaaT96S1CfyOJqawyuzOHS8dpeaA10= Subject key identifier: 81:26:0D:70:B8:68:F0:F3:2F:01:07:51:6A:3B:5F:A8:72:8B:DB:92 Authority key identifier: 4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87 Certificate issuer: /CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587 Certificate serial: 019BF61A30868F922F98A7B300507E71772F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft Manifest number: 0914 Signing time: Sun 25 Jan 2026 17:01:10 +0000 Manifest this update: Sun 25 Jan 2026 17:01:10 +0000 Manifest next update: Mon 26 Jan 2026 17:01:10 +0000 Files and hashes: 1: 76Y2-HUPTiLdTCSIpYCkR2ZgGcQ.roa (hash: aIEXIJxpvH5c1txE7w8Ef9ChmAewpEGy4MTuP+uMjCA=) 2: S2T4wOGznYqO-OjItaD_7itTtYc.crl (hash: qYUjojGak9ZVi40QHQQv+syxwmD6iYQcDmTHxcGAzGc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:30:86:8f:92:2f:98:a7:b3:00:50:7e:71:77:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587 Validity Not Before: Jan 25 17:01:10 2026 GMT Not After : Jan 26 17:01:10 2026 GMT Subject: CN=81260d70b868f0f32f0107516a3b5fa8728bdb92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0f:e2:52:95:3c:e2:d6:71:be:04:ae:f9:d5: e4:57:1b:43:be:92:3d:7c:78:ad:87:98:16:04:d3: 91:c5:3d:65:57:c1:f9:10:d7:1c:51:1a:6a:1e:20: 80:de:41:89:3c:01:c6:66:c6:9c:fa:9b:6e:12:5e: ca:79:16:b2:5c:1f:e8:11:65:46:96:b8:16:67:cf: 21:f3:95:d9:62:3a:53:05:37:8f:07:93:93:e5:0e: d0:76:d2:f9:86:92:11:ce:f5:3b:fa:ba:3c:92:25: 5e:2d:4f:49:ae:f7:81:e2:fd:a9:b8:81:ae:54:93: 12:cb:4c:b0:9b:1d:26:1c:00:de:86:d1:f0:8e:03: 3f:90:d6:25:46:d4:d9:fc:ed:7f:5b:2d:70:bf:47: 3b:20:fe:ec:2c:ba:cd:53:56:6c:73:72:b0:67:b2: a5:e3:f4:d0:04:58:10:91:a6:da:f0:f6:d0:f6:7f: ed:4e:66:84:31:05:72:78:7e:a0:ee:d0:f8:8b:5c: 88:40:d8:ea:4a:25:c4:a9:8f:0a:e5:20:4b:14:51: 29:04:66:35:aa:ec:1e:7c:6b:8b:76:2f:d4:62:8a: 9c:70:32:14:b9:22:6a:3f:47:80:25:5d:fb:5f:52: fb:ac:b6:23:4f:ad:3f:c4:a1:2f:69:2f:c7:31:8e: 08:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:26:0D:70:B8:68:F0:F3:2F:01:07:51:6A:3B:5F:A8:72:8B:DB:92 X509v3 Authority Key Identifier: keyid:4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:f7:da:52:58:0f:30:7b:1b:e8:46:7b:32:13:f3:9d:a2:3f: 72:78:7b:6f:9c:41:ec:ed:fb:0a:bd:0a:ea:3a:b9:01:f5:fb: b3:68:7e:b1:54:da:ac:b1:44:bb:f6:0d:25:76:b8:cb:76:b1: 33:bb:98:81:1a:fc:87:6f:0e:db:36:d5:e5:0f:dc:ce:60:5c: 22:15:2a:57:7a:a5:a1:c2:85:79:bc:06:14:c1:df:43:df:9b: e6:69:0a:65:32:5d:7b:b4:b6:b0:7e:c5:4a:d4:0c:90:8d:56: 3d:2d:5c:c6:a0:a9:34:6b:9c:56:a9:2f:6d:8a:b2:a5:3e:71: a9:6c:04:c3:c1:b2:5c:6c:e0:71:6d:bd:f1:84:6d:ef:0f:25: 73:04:ea:dc:d1:59:fc:5f:04:1b:4a:12:4b:95:fb:49:80:d2: 63:e8:c3:ee:86:4b:1a:38:0b:2a:19:91:e1:60:ef:8c:d8:2d: 35:02:9e:b5:bc:e6:54:7e:9e:6d:13:1f:87:dd:30:5f:c6:45: 0d:a1:f4:b4:3e:31:78:71:b9:8a:59:f6:dd:85:9f:4d:76:3a: 59:24:cc:fa:22:c9:81:a6:3f:43:5e:9a:18:49:4f:3f:e5:4d: 20:b0:f5:fe:b7:eb:ff:d2:f8:a3:3d:e0:4e:82:1a:cb:a0:1c: e1:ed:51:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2GjCGj5IvmKezAFB+cXcvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNjRmOGMwZTFiMzlkOGE4ZWY4ZThjOGI1YTBmZmVlMmI1 M2I1ODcwHhcNMjYwMTI1MTcwMTEwWhcNMjYwMTI2MTcwMTEwWjAzMTEwLwYDVQQD Eyg4MTI2MGQ3MGI4NjhmMGYzMmYwMTA3NTE2YTNiNWZhODcyOGJkYjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQ/iUpU84tZxvgSu+dXkVxtDvpI9 fHith5gWBNORxT1lV8H5ENccURpqHiCA3kGJPAHGZsac+ptuEl7KeRayXB/oEWVG lrgWZ88h85XZYjpTBTePB5OT5Q7QdtL5hpIRzvU7+ro8kiVeLU9JrveB4v2puIGu VJMSy0ywmx0mHADehtHwjgM/kNYlRtTZ/O1/Wy1wv0c7IP7sLLrNU1Zsc3KwZ7Kl 4/TQBFgQkaba8PbQ9n/tTmaEMQVyeH6g7tD4i1yIQNjqSiXEqY8K5SBLFFEpBGY1 quwefGuLdi/UYoqccDIUuSJqP0eAJV37X1L7rLYjT60/xKEvaS/HMY4IoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIEmDXC4aPDzLwEHUWo7X6hyi9uSMB8GA1UdIwQY MBaAFEtk+MDhs52KjvjoyLWg/+4rU7WHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzJUNHdPR3puWXFPLU9qSXRhRF83aXRUdFljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9jNDk3YmUtZjNiMS00YzliLTg1OWUt OTVkNWUxNmNkZGVmLzEvUzJUNHdPR3puWXFPLU9qSXRhRF83aXRUdFljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi9jNDk3YmUtZjNiMS00YzliLTg1OWUtOTVkNWUxNmNkZGVm LzEvUzJUNHdPR3puWXFPLU9qSXRhRF83aXRUdFljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApPfaUlgP MHsb6EZ7MhPznaI/cnh7b5xB7O37Cr0K6jq5AfX7s2h+sVTarLFEu/YNJXa4y3ax M7uYgRr8h28O2zbV5Q/czmBcIhUqV3qlocKFebwGFMHfQ9+b5mkKZTJde7S2sH7F StQMkI1WPS1cxqCpNGucVqkvbYqypT5xqWwEw8GyXGzgcW298YRt7w8lcwTq3NFZ /F8EG0oSS5X7SYDSY+jD7oZLGjgLKhmR4WDvjNgtNQKetbzmVH6ebRMfh90wX8ZF DaH0tD4xeHG5iln23YWfTXY6WSTM+iLJgaY/Q16aGElPP+VNILD1/rfr/9L4oz3g ToIay6Ac4e1R5g== -----END CERTIFICATE-----Generated at Mon Jan 26 00:20:28 2026 by rpki-client