This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft File: stLBGv8HK-w3pYJiEU4cBr7bSUI.mft (raw, json) Hash identifier: WZbEYSkSS6+Taczr6jAxa8yx/r241pnqNeWx81FF6e0= Subject key identifier: C6:FB:A5:98:4D:4E:33:B4:AF:A5:55:12:85:64:92:E0:7A:FE:68:5F Authority key identifier: B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42 Certificate issuer: /CN=b2d2c11aff072bec37a58262114e1c06bedb4942 Certificate serial: 019BF4D004AD2942D79C776DA009BCB95E7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft Manifest number: 0183 Signing time: Sun 25 Jan 2026 11:00:31 +0000 Manifest this update: Sun 25 Jan 2026 11:00:31 +0000 Manifest next update: Mon 26 Jan 2026 11:00:31 +0000 Files and hashes: 1: 9a5ary6iFvpPhI3-VZwXzEYUNS4.roa (hash: bUunzrEWYSDdnUyB7OzOajjtkOR72CIasRBys0Yz5Bg=) 2: stLBGv8HK-w3pYJiEU4cBr7bSUI.crl (hash: eX4E/JLopDcgbMltWM6LtfzWgIXgSlGpWoYiBEjMZ+Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:04:ad:29:42:d7:9c:77:6d:a0:09:bc:b9:5e:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2d2c11aff072bec37a58262114e1c06bedb4942 Validity Not Before: Jan 25 11:00:31 2026 GMT Not After : Jan 26 11:00:31 2026 GMT Subject: CN=c6fba5984d4e33b4afa55512856492e07afe685f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:31:5e:92:e3:c4:62:cc:9e:4f:e7:b6:72:f8: c4:17:32:a7:b9:c7:42:26:76:f0:5f:39:3c:49:26: b3:d6:c4:3f:ea:d2:e3:7a:3e:ae:70:5c:70:32:16: 8a:c1:bb:71:45:62:d0:09:67:be:8f:0c:15:11:9a: cb:50:dc:20:1a:be:22:8b:e3:aa:e6:10:40:93:f5: d8:23:8f:b3:38:63:90:74:09:d8:16:69:04:9c:0c: 7d:bb:5a:65:92:c7:8f:cb:75:47:8a:b1:f7:67:5d: 15:11:52:c2:69:4d:b1:78:07:51:17:d4:7d:0b:4e: 33:46:34:ba:fd:6e:db:78:05:7a:ef:9d:a0:5b:b7: 7e:e9:44:70:b4:34:22:c2:0d:c0:8f:aa:a8:99:de: 8f:d9:8d:49:54:cd:32:eb:66:35:36:c1:86:83:5e: f2:a0:cd:57:47:09:ab:4f:d8:10:e3:96:34:5d:e3: 4e:78:eb:85:97:68:ff:1e:05:a5:bc:4a:8a:b0:5b: 0e:5b:44:a0:d3:88:0a:0f:d2:2e:26:32:99:19:3a: 4b:52:84:92:ae:c3:0c:27:c1:0e:b8:6b:90:9a:55: 73:4b:b1:bb:ea:e8:07:66:9f:d0:83:56:39:b6:0c: 9a:82:f8:d1:d3:a6:de:29:8a:09:80:ea:8c:49:f0: f1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:FB:A5:98:4D:4E:33:B4:AF:A5:55:12:85:64:92:E0:7A:FE:68:5F X509v3 Authority Key Identifier: keyid:B2:D2:C1:1A:FF:07:2B:EC:37:A5:82:62:11:4E:1C:06:BE:DB:49:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stLBGv8HK-w3pYJiEU4cBr7bSUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/283d32-380a-4e6e-a957-c5baea3f1729/1/stLBGv8HK-w3pYJiEU4cBr7bSUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:29:f0:38:ef:97:e2:d0:7d:e0:6f:28:50:ab:e1:e1:7f:b8: 94:b1:a5:18:1f:a8:0d:8f:60:75:8e:4f:9e:06:20:a8:4c:12: 34:60:e8:ad:d4:ac:71:4c:10:20:5f:bc:d5:31:e7:90:c8:c9: e7:06:7e:52:a7:b7:b7:ba:8e:38:50:43:f5:e4:ca:5b:48:d6: 4a:1e:48:92:34:16:5f:46:38:24:13:7d:1f:fd:80:b6:52:7c: f9:66:9a:24:a6:ca:ec:5e:1a:89:0d:95:f7:46:e7:26:6e:2f: bc:19:ac:e7:c5:e5:7a:09:58:9a:c7:ac:5c:59:61:a1:49:a4: 28:b5:9a:da:e0:77:7d:ec:06:7c:39:a0:10:a6:c0:f2:d3:d6: a9:88:6a:c0:80:2a:c8:a8:cd:30:2e:23:b9:2f:ac:b9:53:1e: 82:12:b8:f4:20:40:72:80:cc:00:61:27:3b:11:5f:8f:0a:a8: 47:41:a0:eb:2e:dc:c5:40:55:b7:63:c0:9c:a5:5b:fb:d7:4e: a7:ab:33:7a:5c:01:0d:56:b4:f0:cc:9a:1e:72:83:6a:7d:9e: 92:10:0f:15:2c:cd:20:8c:89:44:55:51:77:13:d9:78:1d:55: a5:c6:8c:37:e9:94:4b:c1:aa:89:b7:fd:72:98:77:63:6f:7b: 4a:db:bc:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00AStKULXnHdtoAm8uV57MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZDJjMTFhZmYwNzJiZWMzN2E1ODI2MjExNGUxYzA2YmVk YjQ5NDIwHhcNMjYwMTI1MTEwMDMxWhcNMjYwMTI2MTEwMDMxWjAzMTEwLwYDVQQD EyhjNmZiYTU5ODRkNGUzM2I0YWZhNTU1MTI4NTY0OTJlMDdhZmU2ODVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTFekuPEYsyeT+e2cvjEFzKnucdC JnbwXzk8SSaz1sQ/6tLjej6ucFxwMhaKwbtxRWLQCWe+jwwVEZrLUNwgGr4ii+Oq 5hBAk/XYI4+zOGOQdAnYFmkEnAx9u1plksePy3VHirH3Z10VEVLCaU2xeAdRF9R9 C04zRjS6/W7beAV6752gW7d+6URwtDQiwg3Aj6qomd6P2Y1JVM0y62Y1NsGGg17y oM1XRwmrT9gQ45Y0XeNOeOuFl2j/HgWlvEqKsFsOW0Sg04gKD9IuJjKZGTpLUoSS rsMMJ8EOuGuQmlVzS7G76ugHZp/Qg1Y5tgyagvjR06beKYoJgOqMSfDxmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMb7pZhNTjO0r6VVEoVkkuB6/mhfMB8GA1UdIwQY MBaAFLLSwRr/ByvsN6WCYhFOHAa+20lCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTct YzViYWVhM2YxNzI5LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yODNkMzItMzgwYS00ZTZlLWE5NTctYzViYWVhM2YxNzI5 LzEvc3RMQkd2OEhLLXczcFlKaUVVNGNCcjdiU1VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFCnwOO+X 4tB94G8oUKvh4X+4lLGlGB+oDY9gdY5PngYgqEwSNGDordSscUwQIF+81THnkMjJ 5wZ+Uqe3t7qOOFBD9eTKW0jWSh5IkjQWX0Y4JBN9H/2AtlJ8+WaaJKbK7F4aiQ2V 90bnJm4vvBms58XleglYmsesXFlhoUmkKLWa2uB3fewGfDmgEKbA8tPWqYhqwIAq yKjNMC4juS+suVMeghK49CBAcoDMAGEnOxFfjwqoR0Gg6y7cxUBVt2PAnKVb+9dO p6szelwBDVa08MyaHnKDan2ekhAPFSzNIIyJRFVRdxPZeB1VpcaMN+mUS8Gqibf9 cph3Y297Stu8nw== -----END CERTIFICATE-----Generated at Sun Jan 25 22:00:36 2026 by rpki-client