This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json) Hash identifier: 0pBdjkerkQSHcOH3oACRuQWi73RRtQ0jBfpaoVWZsgI= Subject key identifier: 0E:B2:46:D4:8E:57:17:A1:CC:3A:88:50:70:85:A7:84:59:30:11:39 Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f Certificate serial: 019BF875F595AF8798F070D6E7EEDDC08027 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft Manifest number: 17EB Signing time: Mon 26 Jan 2026 04:00:38 +0000 Manifest this update: Mon 26 Jan 2026 04:00:38 +0000 Manifest next update: Tue 27 Jan 2026 04:00:38 +0000 Files and hashes: 1: 6E64GXrgmXNa9YSBiY3OujAPTwo.roa (hash: yS+gCnb/d3MQ3vFkPLZAQVV6eBJuu9tDUWcxSfLgTIU=) 2: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: z0LFzTbLBotJGEJSLXsM/cZ5ZlN7O3OAg3vILKenV+A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 04:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:75:f5:95:af:87:98:f0:70:d6:e7:ee:dd:c0:80:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f Validity Not Before: Jan 26 04:00:38 2026 GMT Not After : Jan 27 04:00:38 2026 GMT Subject: CN=0eb246d48e5717a1cc3a88507085a78459301139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a7:dd:8f:79:1d:cd:53:8f:54:eb:29:67:f9: 7e:1f:03:fd:22:66:a6:85:bd:f8:8e:1f:01:4a:25: 07:ff:82:99:f8:a3:18:b5:51:5a:f7:c7:ae:ae:f7: 9b:8e:73:ae:ae:53:6b:13:81:fd:64:f7:8c:7e:cc: 8e:69:f5:3b:eb:70:9b:ed:d5:11:00:04:63:f9:59: ef:1a:42:ad:5e:f0:7c:65:ac:b5:d9:2a:37:87:62: f5:85:3c:10:b6:f4:f3:81:f7:0c:05:7b:20:27:f4: 9d:7b:2f:6e:5d:dc:88:5b:1a:12:64:0d:9a:26:a7: 26:20:8c:0b:5a:d9:4e:44:12:b1:d5:26:2d:55:1f: 70:3a:82:e5:2c:57:11:d1:78:07:ad:ca:6f:5e:91: b5:c6:90:26:53:11:e2:9f:da:9a:8f:3f:6b:ee:3a: 5e:b8:0d:8d:ec:f4:e1:0b:36:f7:19:68:43:bb:2b: 3a:d8:ae:6a:f0:bc:cd:e9:72:18:10:e6:5a:5e:86: 27:f5:05:83:3d:03:56:3b:e3:b8:46:05:af:19:4d: e9:26:95:14:93:12:46:ce:cc:15:28:d6:0b:9b:6a: f6:99:ba:5f:e0:22:0f:31:d5:6b:93:43:69:0f:37: b8:84:39:7c:3b:89:96:ca:c8:3c:7a:22:7f:6b:2c: 6a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B2:46:D4:8E:57:17:A1:CC:3A:88:50:70:85:A7:84:59:30:11:39 X509v3 Authority Key Identifier: keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:71:4d:79:52:9d:ad:ed:3c:ec:21:aa:5b:5e:40:dc:76:18: 14:ca:4b:9f:5f:16:11:3a:25:f8:47:68:b2:81:ab:99:bc:c3: 87:28:cc:d7:d6:7c:32:37:23:ec:55:49:7d:d2:78:50:d2:64: 43:3b:c4:c7:8f:19:39:7c:8a:f9:0e:82:89:4d:4e:22:98:19: 63:f9:9a:cf:7c:a9:10:c8:c3:4f:82:8c:b0:45:d7:ae:63:8f: dd:79:a1:36:b7:94:f0:df:86:ab:7a:a6:84:67:1d:e6:67:e3: 1f:cb:79:62:7e:24:65:03:b5:01:3f:45:2b:37:44:26:5a:f9: d6:8f:c0:19:11:81:38:e3:cb:10:4a:fa:f5:70:77:9a:9c:a2: 46:07:47:97:ac:8d:dd:de:92:2a:60:b3:40:bf:43:a4:3f:3f: c8:54:33:0b:6b:d2:25:a2:3b:23:8c:a2:f3:9d:1b:f8:3c:d4: 80:1a:82:e0:92:50:bf:eb:6f:ba:eb:8d:61:d8:ec:18:75:1d: 78:f4:6e:f2:ac:ac:5f:4c:c8:db:2b:36:2c:bc:db:e4:50:d2: 74:0d:a0:4f:ef:f4:0c:65:23:83:9c:1c:cd:65:ae:82:e0:de: 6c:59:fd:59:ea:08:bc:21:43:5a:36:24:fc:ff:c0:6c:19:2e: fa:52:29:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4dfWVr4eY8HDW5+7dwIAnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNjMyYTc1OGI1OTMwOWU4NjEwODlkNjU1M2FlZTA2N2E2 YjM1M2YwHhcNMjYwMTI2MDQwMDM4WhcNMjYwMTI3MDQwMDM4WjAzMTEwLwYDVQQD EygwZWIyNDZkNDhlNTcxN2ExY2MzYTg4NTA3MDg1YTc4NDU5MzAxMTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6fdj3kdzVOPVOspZ/l+HwP9Imam hb34jh8BSiUH/4KZ+KMYtVFa98eurvebjnOurlNrE4H9ZPeMfsyOafU763Cb7dUR AARj+VnvGkKtXvB8Zay12So3h2L1hTwQtvTzgfcMBXsgJ/Sdey9uXdyIWxoSZA2a JqcmIIwLWtlORBKx1SYtVR9wOoLlLFcR0XgHrcpvXpG1xpAmUxHin9qajz9r7jpe uA2N7PThCzb3GWhDuys62K5q8LzN6XIYEOZaXoYn9QWDPQNWO+O4RgWvGU3pJpUU kxJGzswVKNYLm2r2mbpf4CIPMdVrk0NpDze4hDl8O4mWysg8eiJ/ayxqZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA6yRtSOVxehzDqIUHCFp4RZMBE5MB8GA1UdIwQY MBaAFEtjKnWLWTCehhCJ1lU67gZ6azU/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzJNcWRZdFpNSjZHRUluV1ZUcnVCbnByTlQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8yMTNhOTUtYWFjZi00MGE5LTk3NTMt OTRjMGIwYjc2MDI5LzEvUzJNcWRZdFpNSjZHRUluV1ZUcnVCbnByTlQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS8yMTNhOTUtYWFjZi00MGE5LTk3NTMtOTRjMGIwYjc2MDI5 LzEvUzJNcWRZdFpNSjZHRUluV1ZUcnVCbnByTlQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqHFNeVKd re087CGqW15A3HYYFMpLn18WETol+EdosoGrmbzDhyjM19Z8Mjcj7FVJfdJ4UNJk QzvEx48ZOXyK+Q6CiU1OIpgZY/maz3ypEMjDT4KMsEXXrmOP3XmhNreU8N+Gq3qm hGcd5mfjH8t5Yn4kZQO1AT9FKzdEJlr51o/AGRGBOOPLEEr69XB3mpyiRgdHl6yN 3d6SKmCzQL9DpD8/yFQzC2vSJaI7I4yi850b+DzUgBqC4JJQv+tvuuuNYdjsGHUd ePRu8qysX0zI2ys2LLzb5FDSdA2gT+/0DGUjg5wczWWuguDebFn9WeoIvCFDWjYk /P/AbBku+lIp4Q== -----END CERTIFICATE-----Generated at Mon Jan 26 11:47:08 2026 by rpki-client