This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json) Hash identifier: iWuJcfoh2Un/Y01sdr1ZubA5Di7qBak86yfhhol1wMw= Subject key identifier: 3A:0C:53:26:9F:FB:69:B1:99:F0:CE:D5:AD:9F:54:E6:92:A7:5D:66 Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df Certificate serial: 019BF6509D1E479CE63D580AC1E3B02B81BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft Manifest number: 0497 Signing time: Sun 25 Jan 2026 18:00:36 +0000 Manifest this update: Sun 25 Jan 2026 18:00:36 +0000 Manifest next update: Mon 26 Jan 2026 18:00:36 +0000 Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: feEGYPiblu8vszOb+nF4ayzh7NfU1oG4VV4P3e8/giM=) 2: 4vjv7ETAasx0tRKIpHxecSePkHs.roa (hash: 2AsMwZr9rbOc2Qfm0AhPalnC6K6xXB1YyB0oF7P/lrY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:50:9d:1e:47:9c:e6:3d:58:0a:c1:e3:b0:2b:81:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df Validity Not Before: Jan 25 18:00:36 2026 GMT Not After : Jan 26 18:00:36 2026 GMT Subject: CN=3a0c53269ffb69b199f0ced5ad9f54e692a75d66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:13:8f:3e:c7:f3:ea:81:b1:10:e8:94:ba:be: c9:17:c4:81:7f:b6:95:30:f5:91:fc:4f:dd:6b:fb: d8:53:ef:e7:aa:51:79:d2:f0:fd:5f:69:e0:66:5d: 36:fc:91:fa:bb:ea:00:35:eb:b6:65:71:c2:72:87: 4c:36:59:da:6f:58:d8:f8:49:d5:fa:b8:96:61:c6: 70:1b:10:c1:50:14:7b:16:4c:56:00:81:31:36:78: 88:4e:2c:87:e5:ab:7c:e6:41:53:40:92:4f:48:32: 11:d7:fd:56:8b:31:69:db:b1:b0:4b:29:17:10:cc: dd:fe:5f:ab:78:63:91:33:5f:47:58:b8:8f:67:f7: 2f:5a:91:42:6f:f2:2b:d2:e4:7d:a3:70:10:0a:cb: d1:4c:19:82:d4:3d:fa:cf:98:0d:6f:78:91:f0:67: bb:33:37:e9:88:d8:06:0f:d5:ba:58:e6:f7:a4:6c: 42:b2:ed:fc:d8:b9:8c:9f:b4:ab:da:08:30:eb:cb: ff:46:c3:4d:03:79:f9:33:aa:88:7d:a1:fe:01:8c: 11:87:4c:ae:73:8e:b5:5b:93:65:52:9c:7c:9b:6d: ac:45:d0:f8:bd:02:d4:b5:41:79:f0:7d:0c:81:48: 58:c6:ff:fa:b4:91:32:7e:bf:8b:b8:d4:0f:6d:4d: 38:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0C:53:26:9F:FB:69:B1:99:F0:CE:D5:AD:9F:54:E6:92:A7:5D:66 X509v3 Authority Key Identifier: keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:67:a6:3e:38:66:f4:77:b9:ea:9b:26:4b:42:b7:fd:52:28: d8:56:f5:bd:4a:ec:b5:ef:0e:a7:bd:98:23:02:25:f5:e4:f1: fe:6c:56:91:80:fa:a7:de:1b:7b:bd:eb:7a:84:6b:78:b0:31: 7d:43:06:20:f9:c5:82:b0:55:92:72:ad:ba:0c:9e:e2:53:b7: 10:a1:bb:99:9d:ec:fa:00:e4:48:d9:44:c8:f2:ca:17:4e:e3: 95:33:d3:b3:2b:de:a3:5f:bb:d3:49:5c:72:11:ab:a0:4f:30: df:24:15:11:72:ae:52:f2:82:ff:34:04:d9:93:55:15:02:76: 9a:a1:01:12:58:38:3a:4b:9c:db:23:8e:02:95:2a:39:c7:c3: 83:63:f3:26:1c:3a:9e:8b:04:d2:5c:ba:ab:0f:fc:b3:5d:00: 04:b4:68:4e:8b:82:26:d0:2a:79:3b:5a:6c:04:a2:2d:65:23: 54:f6:c1:87:8c:90:ac:c4:28:12:e0:cf:f1:0c:bb:e7:bc:80: be:65:d9:2f:d9:c7:a4:6c:a4:71:57:eb:16:2e:ec:5d:49:1a: f0:be:95:44:ea:94:94:59:91:1a:4d:c2:c4:df:a0:cd:8a:cd: 60:eb:fb:f4:7f:c4:1b:5b:8d:63:41:9f:d7:13:9e:08:77:7e: a3:fa:5b:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UJ0eR5zmPVgKweOwK4G8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4OWYxNmY1NzQ5MjQzMzc4ZjgxNGM5NGIyNDAzNGQ3NGIz OTI3ZGYwHhcNMjYwMTI1MTgwMDM2WhcNMjYwMTI2MTgwMDM2WjAzMTEwLwYDVQQD EygzYTBjNTMyNjlmZmI2OWIxOTlmMGNlZDVhZDlmNTRlNjkyYTc1ZDY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxOPPsfz6oGxEOiUur7JF8SBf7aV MPWR/E/da/vYU+/nqlF50vD9X2ngZl02/JH6u+oANeu2ZXHCcodMNlnab1jY+EnV +riWYcZwGxDBUBR7FkxWAIExNniITiyH5at85kFTQJJPSDIR1/1WizFp27GwSykX EMzd/l+reGORM19HWLiPZ/cvWpFCb/Ir0uR9o3AQCsvRTBmC1D36z5gNb3iR8Ge7 MzfpiNgGD9W6WOb3pGxCsu382LmMn7Sr2ggw68v/RsNNA3n5M6qIfaH+AYwRh0yu c461W5NlUpx8m22sRdD4vQLUtUF58H0MgUhYxv/6tJEyfr+LuNQPbU04rwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDoMUyaf+2mxmfDO1a2fVOaSp11mMB8GA1UdIwQY MBaAFNifFvV0kkM3j4FMlLJANNdLOSffMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83OTdlNjUtM2RhMC00ZDZlLWI2OTUt MzQ2YmQ5NzNjODQzLzEvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi83OTdlNjUtM2RhMC00ZDZlLWI2OTUtMzQ2YmQ5NzNjODQz LzEvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgmemPjhm 9He56psmS0K3/VIo2Fb1vUrste8Op72YIwIl9eTx/mxWkYD6p94be73reoRreLAx fUMGIPnFgrBVknKtugye4lO3EKG7mZ3s+gDkSNlEyPLKF07jlTPTsyveo1+700lc chGroE8w3yQVEXKuUvKC/zQE2ZNVFQJ2mqEBElg4Okuc2yOOApUqOcfDg2PzJhw6 nosE0ly6qw/8s10ABLRoTouCJtAqeTtabASiLWUjVPbBh4yQrMQoEuDP8Qy757yA vmXZL9nHpGykcVfrFi7sXUka8L6VROqUlFmRGk3CxN+gzYrNYOv79H/EG1uNY0Gf 1xOeCHd+o/pbRA== -----END CERTIFICATE-----Generated at Mon Jan 26 03:12:07 2026 by rpki-client