This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
File:                     KCyT0maFJ4jkmYLZ96Yg222fWI0.mft (raw, json)
Hash identifier:          Ei7ey4vhXK+Uxw+AMj5/gOz4oc7j8knGbd1AWRSzzsQ=
Subject key identifier:   AC:EF:EC:99:F0:D9:4E:B5:17:DD:D4:EA:42:3B:F1:C3:80:62:3C:13
Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
Certificate issuer:       /CN=282c93d266852788e49982d9f7a620db6d9f588d
Certificate serial:       019BF198C8F3F43D056CFA6965ABC39C721B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
Manifest number:          0D03
Signing time:             Sat 24 Jan 2026 20:01:20 +0000
Manifest this update:     Sat 24 Jan 2026 20:01:20 +0000
Manifest next update:     Sun 25 Jan 2026 20:01:20 +0000
Files and hashes:         1: 1ObfCdLE7dKk-d-Joasz4Il0A1o.roa (hash: p/QxJngDf+aUBVUX1Y9rupN0VdWFzSbmnVUDpsP2Y34=)
                          2: KCyT0maFJ4jkmYLZ96Yg222fWI0.crl (hash: XrAoF7uHtwD4S4jz3ctbg+J8H2+PRl6lvB7v2SlrzMM=)
                          3: h28P9psTB0BJCTdOtSuL769CZEY.roa (hash: WnzE0ULZO+Ns9cDIOM8A2gQx3rSBVndAJ664fi5lHZY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 25 Jan 2026 20:01:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:f1:98:c8:f3:f4:3d:05:6c:fa:69:65:ab:c3:9c:72:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d
        Validity
            Not Before: Jan 24 20:01:20 2026 GMT
            Not After : Jan 25 20:01:20 2026 GMT
        Subject: CN=acefec99f0d94eb517ddd4ea423bf1c380623c13
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:d0:89:de:2c:38:45:ec:12:9e:b0:bb:89:de:
                    a6:76:60:66:77:24:2d:63:31:14:47:a7:40:93:cb:
                    3a:4d:46:f3:ae:06:ef:6f:f8:03:72:f1:8f:b8:14:
                    ef:23:04:af:50:fa:cb:58:9b:8c:a1:f0:a5:90:06:
                    bc:00:57:e1:6d:cc:e3:b5:47:03:bc:37:5f:e3:57:
                    e6:93:e7:94:39:b6:ea:26:dc:08:63:ac:db:68:65:
                    d3:d4:f9:1d:94:37:11:e8:ec:2c:95:36:c6:55:9f:
                    52:4e:6c:f0:59:ba:09:14:02:83:6b:16:41:9b:58:
                    44:6d:d1:13:6b:35:26:71:66:38:e5:24:19:5f:22:
                    46:b4:6b:f4:fe:ed:0f:b0:be:00:0e:25:0e:2f:f0:
                    55:4c:72:16:27:9b:7d:2d:b2:da:3d:52:69:fa:76:
                    45:4b:45:38:3f:87:13:72:12:d9:8e:4e:8a:ca:04:
                    ce:b8:95:c9:a0:a8:59:24:56:ef:12:f6:b0:5d:32:
                    61:bf:6d:03:e4:d1:75:85:ab:1d:ee:bb:a1:ac:de:
                    38:d9:ba:19:dd:de:1b:b5:4b:74:05:78:5f:c3:eb:
                    51:5e:e6:db:72:fc:bb:28:59:e0:13:d9:da:98:46:
                    e4:17:a6:28:ec:1c:ee:fc:62:9c:2e:74:01:4f:fb:
                    d7:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:EF:EC:99:F0:D9:4E:B5:17:DD:D4:EA:42:3B:F1:C3:80:62:3C:13
            X509v3 Authority Key Identifier:
                keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:a8:8c:2a:dc:87:a2:a5:a9:76:c1:70:58:1e:30:80:5e:4f:
         4f:0d:46:0c:65:f3:8a:31:92:0d:e0:ce:b5:b9:2c:4f:62:33:
         fa:28:03:4f:26:89:73:e0:2f:29:e4:62:29:be:5e:48:4a:27:
         0c:ca:2c:c9:17:8f:f7:83:75:d5:6c:b1:a2:0f:93:2b:bd:e3:
         17:5a:f2:e4:06:06:37:79:1c:8b:6f:97:35:59:eb:6b:ab:a7:
         ed:cd:29:29:f2:03:f6:a7:ea:2e:34:8d:69:78:73:a7:37:7a:
         c1:5e:c6:c6:3f:78:74:49:17:21:65:e3:6c:e2:e7:ee:20:91:
         f8:7c:4d:12:65:fd:1e:e8:a5:a8:4a:8a:94:0e:71:c6:55:c4:
         72:09:5e:a6:77:e8:d3:a4:27:65:8a:12:4f:32:6c:52:9b:b7:
         e6:ae:89:d2:f6:1c:5a:5f:43:97:6b:71:d0:3e:1d:0f:7c:6a:
         08:9f:b8:48:75:54:cf:d5:19:28:0d:cd:02:3f:2b:2d:ab:50:
         02:c1:ad:c9:43:6b:02:1a:a2:d4:57:91:3a:eb:5d:5a:67:1a:
         12:4d:fe:db:15:d3:80:20:bd:33:98:3f:0a:5c:0c:62:af:7c:
         de:b6:5a:30:9d:50:52:db:99:2c:b1:84:88:4c:4d:c5:28:d6:
         d6:a8:4e:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 25 06:04:41 2026 by rpki-client