This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json) Hash identifier: jUqGSdD2415fbJ3wKCh7qsUVBvpvT7u6iM0WDH1NaSg= Subject key identifier: 6E:C4:BD:A4:9B:A1:2E:29:F2:4B:C8:4F:DD:08:2D:AF:09:BD:EC:2A Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44 Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044 Certificate serial: 019BF8088FECC6A39EF5DD07C91EB3B3AA95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft Manifest number: 174C Signing time: Mon 26 Jan 2026 02:01:09 +0000 Manifest this update: Mon 26 Jan 2026 02:01:09 +0000 Manifest next update: Tue 27 Jan 2026 02:01:09 +0000 Files and hashes: 1: PZ_gBS2JDBR5UR9Zyi6R_A5y1vM.roa (hash: oUnwI/hWFydpEOEqwC9HOMZdSyF2a1xfxAbzlwQhdS8=) 2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: E4Q3y8he+xQa3Q3a1y7zc/+aPJTh7WlRnY5aLkMaMfE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:08:8f:ec:c6:a3:9e:f5:dd:07:c9:1e:b3:b3:aa:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044 Validity Not Before: Jan 26 02:01:09 2026 GMT Not After : Jan 27 02:01:09 2026 GMT Subject: CN=6ec4bda49ba12e29f24bc84fdd082daf09bdec2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:50:f2:8a:3a:88:cf:23:8f:ff:0a:72:f1:3b: ae:b5:75:3c:fd:7c:42:63:16:c7:28:87:a5:6f:9a: fc:0d:ad:ad:c2:41:e6:4a:83:f3:8c:ce:ee:1b:e1: f4:d2:4f:46:ba:7d:c4:a3:d6:fc:01:18:e3:35:82: 2c:3a:44:c8:2d:60:81:4d:9a:d6:57:90:56:56:ff: de:0a:d3:d5:cd:19:5e:80:7e:48:30:92:79:6b:ce: 3f:4d:ca:e6:bc:e6:bb:0b:cd:e1:28:10:78:a0:33: c8:48:38:0c:cf:be:57:20:ce:64:b2:fd:ec:2f:62: 3b:98:27:58:b9:ab:4a:86:6c:73:61:9e:ed:8d:fe: f3:c3:d1:77:a6:62:b7:5d:7f:4d:89:90:37:b7:2e: d9:70:ea:e5:3c:46:eb:60:4a:07:d8:56:d3:05:8c: f5:3d:7b:50:44:56:69:16:dd:41:59:8b:ad:66:5a: 3f:b4:47:db:a6:3b:68:9c:e7:ea:de:bf:de:0e:0e: 61:db:f8:66:28:4e:47:db:e1:74:3a:3e:10:b1:4b: ac:98:55:d0:3d:76:72:3b:43:e4:54:53:a9:c3:e7: 82:3e:0d:01:76:9c:d2:85:fc:d8:37:07:09:48:23: e8:9c:ea:24:7a:4d:63:a1:93:5a:e7:2b:3b:f5:3f: 11:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C4:BD:A4:9B:A1:2E:29:F2:4B:C8:4F:DD:08:2D:AF:09:BD:EC:2A X509v3 Authority Key Identifier: keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:36:29:9e:73:10:b4:13:46:1e:6d:ed:b5:28:2e:46:e1:d0: 6f:6b:ae:5e:17:22:e9:79:11:7c:5a:1e:04:ab:8a:71:77:7d: 1d:5a:5b:7a:86:f2:aa:39:5a:fc:1c:a8:c0:bc:17:51:01:f5: bd:74:48:3c:ca:b7:99:aa:bd:48:58:6d:0b:48:7d:21:0b:fa: 13:7e:fd:d5:4a:9f:56:7a:e1:d8:2e:8b:73:22:f5:b2:3e:98: 5f:5e:6a:46:ee:56:52:c2:6f:8f:d7:28:ae:26:4a:f5:63:94: 86:ce:c9:27:9d:8c:af:34:9e:23:33:f1:2e:c5:ad:92:c6:f7: 83:93:a1:c5:ec:08:55:f0:11:f4:b0:66:81:54:ba:8b:e4:15: b7:09:14:11:c8:72:47:40:dd:5c:4d:0f:88:a0:d4:1f:ae:62: 7d:9f:46:2e:c1:3c:ae:23:fa:6c:c7:5e:10:cc:56:04:85:48: 13:f7:de:92:dd:06:d2:f4:52:13:43:00:ee:b6:1e:7e:5c:3e: d1:7c:51:d2:b9:26:ba:f0:f7:4d:a6:ec:0a:8a:34:26:49:60: 9c:86:2a:0a:de:4b:60:bf:85:8a:45:d2:a3:d3:23:96:c9:ac: c8:b9:54:d6:9d:62:a9:b1:4d:ea:b8:29:36:a7:01:18:c8:2b: 31:a3:04:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4CI/sxqOe9d0HyR6zs6qVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmNmIzMzYxYTFhMmEwMGRiY2UzMTkwMTk4MjdmZWJiNzE1 YmQwNDQwHhcNMjYwMTI2MDIwMTA5WhcNMjYwMTI3MDIwMTA5WjAzMTEwLwYDVQQD Eyg2ZWM0YmRhNDliYTEyZTI5ZjI0YmM4NGZkZDA4MmRhZjA5YmRlYzJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVDyijqIzyOP/wpy8TuutXU8/XxC YxbHKIelb5r8Da2twkHmSoPzjM7uG+H00k9Gun3Eo9b8ARjjNYIsOkTILWCBTZrW V5BWVv/eCtPVzRlegH5IMJJ5a84/TcrmvOa7C83hKBB4oDPISDgMz75XIM5ksv3s L2I7mCdYuatKhmxzYZ7tjf7zw9F3pmK3XX9NiZA3ty7ZcOrlPEbrYEoH2FbTBYz1 PXtQRFZpFt1BWYutZlo/tEfbpjtonOfq3r/eDg5h2/hmKE5H2+F0Oj4QsUusmFXQ PXZyO0PkVFOpw+eCPg0BdpzShfzYNwcJSCPonOokek1joZNa5ys79T8R4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG7EvaSboS4p8kvIT90ILa8JvewqMB8GA1UdIwQY MBaAFP9rM2GhoqANvOMZAZgn/rtxW9BEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS85NmY5YTAtODc0Ni00YjMyLTgzZWUt ZjYyMzIwOTUxYTM2LzEvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS85NmY5YTAtODc0Ni00YjMyLTgzZWUtZjYyMzIwOTUxYTM2 LzEvXzJzellhR2lvQTI4NHhrQm1DZi11M0ZiMEVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwjYpnnMQ tBNGHm3ttSguRuHQb2uuXhci6XkRfFoeBKuKcXd9HVpbeobyqjla/ByowLwXUQH1 vXRIPMq3maq9SFhtC0h9IQv6E3791UqfVnrh2C6LcyL1sj6YX15qRu5WUsJvj9co riZK9WOUhs7JJ52MrzSeIzPxLsWtksb3g5OhxewIVfAR9LBmgVS6i+QVtwkUEchy R0DdXE0PiKDUH65ifZ9GLsE8riP6bMdeEMxWBIVIE/fekt0G0vRSE0MA7rYeflw+ 0XxR0rkmuvD3TabsCoo0JklgnIYqCt5LYL+FikXSo9MjlsmsyLlU1p1iqbFN6rgp NqcBGMgrMaMEHg== -----END CERTIFICATE-----Generated at Mon Jan 26 10:18:43 2026 by rpki-client