This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft
File:                     s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json)
Hash identifier:          +QcB0x+eGYLfRpotBITigRxi3Hl3b0fjxBGn8FGrzMw=
Subject key identifier:   89:33:F5:23:2D:15:68:DC:67:51:BF:AB:CE:DC:34:53:03:79:CB:CF
Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2
Certificate issuer:       /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2
Certificate serial:       019BF463484C422FB50A00F90C1100A34291
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft
Manifest number:          180A
Signing time:             Sun 25 Jan 2026 09:01:45 +0000
Manifest this update:     Sun 25 Jan 2026 09:01:45 +0000
Manifest next update:     Mon 26 Jan 2026 09:01:45 +0000
Files and hashes:         1: 3qg1KGc8omoslEG7jKlx4gx_LhQ.roa (hash: TnGs+EX2f9uQeebTem+/sfQFkc/zmqJQ5dURkVKi/n4=)
                          2: 6GTkHhvGaHh_ppvgJMPn5q-SDT4.roa (hash: zOLVYqNLZkRsHu25N50zDbPPg1XzLp1BrOsPiOu+9z8=)
                          3: 6JxXQsPP5HeOd-zrinJyzOvxbvk.roa (hash: avnYdM5iKLHNYRmn2VZGG+0Rulxb30BrgSNse/s1Stw=)
                          4: Lm2Fdw-4HY59cWTBR1AYmOLC0Mk.roa (hash: SNGqheW6LsNlSg4kHxkvmFfi6Fzh2bEiE379f5CYZNA=)
                          5: N18aROBQ19Wj6Kdi3-iQ5c6OfeA.roa (hash: ezUkbSC7P3mO/d4z+5YndvD9aLmtqZ6KOctd3R4dOws=)
                          6: OUOP2IJYsVbNI_PTNHQ12RVMoDI.roa (hash: BnGONzncD2wwl5KKt6nDn2hcjBqGU1Umy1qq2TndNLU=)
                          7: X5qhIZ7xGCMvKQfZQrbeuOZ9uf8.roa (hash: i3DUL5+61b/Yr3dFWew0V6gv0s7RuSUIeTUfltYEFJs=)
                          8: Zjh5y2Kd8cSRzdszQnign9Lz3l4.roa (hash: TMEeISdGQlH/KULrec6oWy2p2scTUrKdaSvlMRJx3eE=)
                          9: davP__FvqtFRD-X_NqiEFhhBbv0.roa (hash: 4RXC3pzMOtisG7APBmg+7ubBijArd9IpJUc7sUhKN2U=)
                          10: g-q-xyU0r6niX_HcUqMnHfOWVQg.roa (hash: 3EYAH+TPHIG5maEa02mmMDsDD6AUBoN3T8wtoxwbwEg=)
                          11: iO24D_W0B1UjBwRFlQ8CdPgIqgs.roa (hash: VKTFC+1OrvrVs+DP4mHHKFLGZKyqteGaSW/b1eEAqMs=)
                          12: jytqbvPB7p4L3yG-M73X311CEZM.roa (hash: OoChTy3t+Ypl0/yoHt/yN9OFfFbQL1CiSDqOkSSFy9Y=)
                          13: qzIbIOdweY6pocYgDw-BYpuwt2k.roa (hash: RCGDZNml0heHLSfAzhIyGN2imnWRjKRBHXZrfhyhHtA=)
                          14: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: MW8HPnf8B4SW9TCmCefIk1P3TnCRgocH/fgzQAVbDq0=)
                          15: x3SzmyzLt8OYyGIP7YYKzeSx1t0.roa (hash: aW1SwGzhZKDv9vTg+ztGzAN+MHGjx+qNx1xNIM7zvvM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 26 Jan 2026 07:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:f4:63:48:4c:42:2f:b5:0a:00:f9:0c:11:00:a3:42:91
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2
        Validity
            Not Before: Jan 25 09:01:45 2026 GMT
            Not After : Jan 26 09:01:45 2026 GMT
        Subject: CN=8933f5232d1568dc6751bfabcedc34530379cbcf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:d0:fe:57:98:6d:2a:d8:ef:b8:a7:63:fa:c4:
                    9d:6f:f9:eb:21:d8:cf:9c:9d:79:e8:b8:3c:f8:a7:
                    eb:1c:11:2a:72:29:81:2a:b9:fa:cc:7d:cd:3a:ec:
                    81:c7:b4:aa:8a:f3:23:70:fe:00:3b:06:d2:3e:89:
                    01:3d:1a:55:bb:9b:da:d1:d3:ee:6e:51:86:72:26:
                    ad:4a:dc:2e:09:62:0c:ef:dd:1f:13:e7:aa:06:94:
                    c5:ee:e1:df:4f:e0:2d:d6:53:c2:ef:51:91:02:c6:
                    6d:a0:8a:c6:33:98:51:55:cd:35:a5:5a:e2:db:2e:
                    ca:e8:66:28:1c:44:60:86:ee:cb:b1:92:d5:c9:02:
                    b6:01:1d:b3:33:e8:40:89:1d:78:15:f2:05:d0:b5:
                    78:d6:5c:59:8c:66:d7:50:ee:19:c0:86:a0:80:b2:
                    ca:b7:a9:7f:76:90:16:8e:4c:12:93:4d:30:42:43:
                    7c:1c:00:33:66:c5:b1:ff:75:14:09:8b:75:44:69:
                    f1:b4:13:4a:76:ca:00:c1:39:ad:5d:87:ed:42:91:
                    15:4c:d2:27:45:a1:64:7a:71:90:3b:ce:95:5f:4a:
                    8d:96:72:9c:14:c9:c3:51:24:11:0e:f3:34:f8:9c:
                    6d:ba:13:a0:9a:8f:c2:7b:60:9e:b9:64:02:02:a4:
                    01:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:33:F5:23:2D:15:68:DC:67:51:BF:AB:CE:DC:34:53:03:79:CB:CF
            X509v3 Authority Key Identifier:
                keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:c6:e6:1a:f8:02:b7:01:6c:1b:8c:10:b0:e0:15:4c:f3:0a:
         9a:ec:8e:71:98:de:6f:46:61:cf:6a:03:1c:f3:96:23:c8:98:
         e9:db:76:17:4b:cd:a7:bb:c2:e2:d2:43:1d:5a:b2:15:30:17:
         2f:e9:bc:9d:2b:a7:0a:0a:45:86:8b:ab:34:1b:7f:50:0f:cb:
         be:5e:1e:7f:22:24:d2:54:25:53:a6:25:03:51:1c:e1:6a:67:
         58:3f:b0:3c:a7:a8:39:e6:c4:32:af:47:13:b8:d2:d4:77:57:
         b0:79:f6:92:f6:c3:85:28:6b:a0:88:e7:f4:f0:90:9e:7d:5c:
         3d:51:ce:57:05:19:b0:59:d7:da:57:75:85:0b:23:e1:87:0c:
         d8:ca:28:ad:cc:44:8e:11:94:f8:e7:d2:82:37:ad:6d:b3:6b:
         c0:88:b9:89:b4:bc:52:57:92:8c:8d:db:c7:31:9d:e4:70:69:
         81:a3:38:81:0b:73:c1:f8:ce:5f:3b:13:52:ae:66:0c:72:1a:
         55:38:c4:80:74:bd:20:82:eb:66:3b:99:b8:51:34:89:ed:df:
         f9:7d:8e:f5:76:29:7c:ed:97:ee:bb:b7:5b:f3:fc:7c:ae:b4:
         11:d9:84:0d:ca:03:75:69:67:f9:56:a3:6a:0f:8b:20:59:35:
         df:ba:d4:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----