This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft File: 2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft (raw, json) Hash identifier: RfrSxmWs73EhLflljJKA6bhjoothyel79j/SisMyS4c= Subject key identifier: 54:BC:A5:46:97:60:75:BD:08:DC:A7:64:38:E5:D7:EC:B5:FB:39:AE Authority key identifier: D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C Certificate issuer: /CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c Certificate serial: 019BF7D15E3F5AAB458D0DF01CC5458003ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft Manifest number: 053B Signing time: Mon 26 Jan 2026 01:00:52 +0000 Manifest this update: Mon 26 Jan 2026 01:00:52 +0000 Manifest next update: Tue 27 Jan 2026 01:00:52 +0000 Files and hashes: 1: 2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl (hash: xXRZPi89VrxT2uhQuybeyhfeSXyJGwbLbbtOK8icwCo=) 2: DvIctBZSmJLEtaUcD7bCK6NQCY0.roa (hash: oCuijjXHgGm50a2aRFIYkyg82b9NCKAQLaPxn1yaYag=) 3: boj2I10q-Vtxm1mDxVZdZ8e5Bl8.roa (hash: DUZK7UDn7wM47XNLA1A7zjQp12qeza+x17ykgXtiqyU=) 4: ndIFovkOM59q_GrNUdf0rAGkzdk.roa (hash: IjeHyVSgVr9enrcMavU9+Zitjl1p4kguwLZr/wm0Fuk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:d1:5e:3f:5a:ab:45:8d:0d:f0:1c:c5:45:80:03:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c Validity Not Before: Jan 26 01:00:52 2026 GMT Not After : Jan 27 01:00:52 2026 GMT Subject: CN=54bca546976075bd08dca76438e5d7ecb5fb39ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c6:06:31:e2:69:a0:a6:31:2d:e9:49:b4:e9: a9:d7:12:22:2c:d0:04:76:0e:75:f4:f6:f4:5f:c6: 15:81:39:36:a7:ce:a7:e7:87:e3:7c:ab:86:0c:3e: 02:25:16:95:9b:b5:bb:26:47:08:dd:58:de:2a:3f: 40:43:47:96:58:c0:5b:42:62:8b:73:8e:3a:91:c9: dc:42:e6:52:25:69:c7:59:22:59:1b:e0:f0:fd:58: fe:74:1b:2f:62:80:6b:a1:68:dc:3f:dd:28:f0:08: e7:5d:27:9a:77:32:55:e6:26:91:a7:6e:c2:ac:bc: 46:74:9d:0d:cc:87:b0:df:37:3d:39:1e:ef:b3:91: ea:81:24:3d:b8:f9:86:20:e3:92:4e:96:6a:40:b4: 9f:2b:52:f6:17:c2:63:47:f5:64:ee:d9:91:3d:d1: d4:d5:d6:e8:7c:fa:54:89:bf:24:c1:87:72:52:9f: 28:e4:9c:86:77:1a:54:d9:67:1f:ef:d4:84:81:52: 59:24:03:10:94:f0:33:14:23:bf:c8:fd:dd:55:d2: 3d:a5:f2:7c:91:82:a4:74:56:bb:42:72:eb:a3:da: 8e:db:5b:52:a4:e9:e4:f3:cc:d1:71:bb:d3:20:fb: cb:76:2e:48:fe:16:cd:f7:39:b7:13:9e:60:af:37: 27:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:BC:A5:46:97:60:75:BD:08:DC:A7:64:38:E5:D7:EC:B5:FB:39:AE X509v3 Authority Key Identifier: keyid:D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:26:86:2d:c7:17:1a:60:33:f7:88:a5:12:31:e0:86:05:4e: c7:f1:23:3f:02:ad:aa:2e:72:e0:7e:bf:bb:01:9f:7b:f3:14: 2a:10:c4:c0:4d:81:d8:77:46:c7:ac:8b:c6:16:b6:e1:f1:b9: 1f:56:5d:b9:d3:c4:0c:ac:97:de:54:3e:32:9a:69:b0:8b:3c: ec:b3:1f:2b:23:b9:d2:da:71:4a:c6:f7:04:69:fc:2a:c9:0b: b5:b6:59:61:19:50:12:8a:eb:6e:2b:b8:fd:88:d6:2d:a4:3d: 03:c7:ab:10:31:e0:63:4a:c5:c0:07:4e:89:a9:8b:fa:09:6e: 07:16:ee:b0:54:ab:d1:c0:dd:98:5b:18:9c:14:e1:2e:e3:e5: e9:bd:94:97:eb:72:f0:d4:f4:54:82:f3:68:52:95:16:ba:3a: 07:e5:17:f2:63:6c:4a:7c:d1:5b:4e:17:de:22:c9:c1:19:c0: 84:12:d4:b4:87:0d:45:e2:2d:b4:9d:d0:5c:2b:1b:e7:ec:89: 37:e3:e1:60:e3:a1:91:7c:c0:2d:cc:d5:3b:b4:eb:39:7b:2d: b2:51:7f:3d:45:c2:73:26:e7:f0:8f:f0:92:54:10:79:8d:78: 9e:ac:54:5d:4e:ba:d6:92:50:8e:f8:0d:4f:c4:78:a0:95:e9: 1e:4d:9b:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv30V4/WqtFjQ3wHMVFgAPtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ODJhMTk3MzQwZDM1ODRlNmFjMTdjMWZiMmE5OTAwYWU0 ZjYwM2MwHhcNMjYwMTI2MDEwMDUyWhcNMjYwMTI3MDEwMDUyWjAzMTEwLwYDVQQD Eyg1NGJjYTU0Njk3NjA3NWJkMDhkY2E3NjQzOGU1ZDdlY2I1ZmIzOWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssYGMeJpoKYxLelJtOmp1xIiLNAE dg519Pb0X8YVgTk2p86n54fjfKuGDD4CJRaVm7W7JkcI3VjeKj9AQ0eWWMBbQmKL c446kcncQuZSJWnHWSJZG+Dw/Vj+dBsvYoBroWjcP90o8AjnXSeadzJV5iaRp27C rLxGdJ0NzIew3zc9OR7vs5HqgSQ9uPmGIOOSTpZqQLSfK1L2F8JjR/Vk7tmRPdHU 1dbofPpUib8kwYdyUp8o5JyGdxpU2Wcf79SEgVJZJAMQlPAzFCO/yP3dVdI9pfJ8 kYKkdFa7QnLro9qO21tSpOnk88zRcbvTIPvLdi5I/hbN9zm3E55grzcn7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFS8pUaXYHW9CNynZDjl1+y1+zmuMB8GA1UdIwQY MBaAFNiCoZc0DTWE5qwXwfsqmQCuT2A8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMklLaGx6UU5OWVRtckJmQi15cVpBSzVQWUR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS84NDFjNDMtMDI2OS00Mjg5LThmYTUt YjA1YWU1Y2EyZDVlLzEvMklLaGx6UU5OWVRtckJmQi15cVpBSzVQWUR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS84NDFjNDMtMDI2OS00Mjg5LThmYTUtYjA1YWU1Y2EyZDVl LzEvMklLaGx6UU5OWVRtckJmQi15cVpBSzVQWUR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALSaGLccX GmAz94ilEjHghgVOx/EjPwKtqi5y4H6/uwGfe/MUKhDEwE2B2HdGx6yLxha24fG5 H1ZdudPEDKyX3lQ+MpppsIs87LMfKyO50tpxSsb3BGn8KskLtbZZYRlQEorrbiu4 /YjWLaQ9A8erEDHgY0rFwAdOiamL+gluBxbusFSr0cDdmFsYnBThLuPl6b2Ul+ty 8NT0VILzaFKVFro6B+UX8mNsSnzRW04X3iLJwRnAhBLUtIcNReIttJ3QXCsb5+yJ N+PhYOOhkXzALczVO7TrOXstslF/PUXCcybn8I/wklQQeY14nqxUXU661pJQjvgN T8R4oJXpHk2b8w== -----END CERTIFICATE-----Generated at Mon Jan 26 04:00:56 2026 by rpki-client