This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.mft File: sSZ6Uay2bymRvqUkP-OIBolxofE.mft (raw, json) Hash identifier: fxK9Roj8pEAx2jQginZ8dPzrcjeAQWIRgDqZw+OQf1s= Subject key identifier: A3:FE:FA:6B:2A:18:E3:3F:A2:46:70:B2:B6:87:BC:D3:2B:70:EF:D2 Authority key identifier: B1:26:7A:51:AC:B6:6F:29:91:BE:A5:24:3F:E3:88:06:89:71:A1:F1 Certificate issuer: /CN=b1267a51acb66f2991bea5243fe388068971a1f1 Certificate serial: 019BF9893B75389EAD68984AA19C5EEA7597 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sSZ6Uay2bymRvqUkP-OIBolxofE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.mft Manifest number: 17F2 Signing time: Mon 26 Jan 2026 09:01:18 +0000 Manifest this update: Mon 26 Jan 2026 09:01:18 +0000 Manifest next update: Tue 27 Jan 2026 09:01:18 +0000 Files and hashes: 1: 7tRxzOjQ9HlU-8n_YoQ9S2kmRLc.roa (hash: VZLOnCAersGhWtsmb7R0s5AlGZFScIm4sdJlK/A7tN8=) 2: adzoREFInhl8FjmgvHTz0qVeVfY.roa (hash: F2EQINWN8W6q9+2DD+3oTE1LSrvuSuwcoWJxaeRkHIk=) 3: dHldAtNYV4t048YemeLaddoxAKM.roa (hash: tEMIhM30IigRqNGpU/NdvDlUsc/epVuY00PjM4/BZEw=) 4: kORyH1zk4kpVVZcN-RFEOaPpCYQ.roa (hash: eM3a4CHDiPxCoPRiTlT4LzKEhGGZUAXh/d8bAjKFKxA=) 5: sP8B78WvrO-I9FMOKnP4eLOTxh8.roa (hash: j0/QkDqzGm9cKi69XdtrTTNVhk9moQxAiYICzefknS8=) 6: sSZ6Uay2bymRvqUkP-OIBolxofE.crl (hash: zY89A/IxynZDRyWOhySBQOXYjgJNvPxqazOnT62vm0s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.mft rsync://rpki.ripe.net/repository/DEFAULT/sSZ6Uay2bymRvqUkP-OIBolxofE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:89:3b:75:38:9e:ad:68:98:4a:a1:9c:5e:ea:75:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1267a51acb66f2991bea5243fe388068971a1f1 Validity Not Before: Jan 26 09:01:18 2026 GMT Not After : Jan 27 09:01:18 2026 GMT Subject: CN=a3fefa6b2a18e33fa24670b2b687bcd32b70efd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ad:d5:59:8f:a3:3f:99:a2:f2:42:cd:36:32: 53:a6:4c:0c:75:92:c9:9a:94:16:9b:44:4e:a0:59: a2:e2:4a:e9:81:8e:1e:55:c2:f8:5b:25:83:ee:72: d6:5a:c9:54:86:dc:1e:1f:7f:c2:14:4c:7d:6f:a9: 0c:2e:9e:c5:60:53:af:89:d8:92:e2:08:9e:09:fe: 7a:b0:72:b6:38:4d:72:5d:d8:80:4a:43:c1:64:ff: 61:f9:3e:47:c2:24:ff:73:2d:6a:6e:d6:d6:33:94: d9:be:bc:b7:29:b2:bc:c2:f8:fb:a8:34:9d:65:c6: d6:c6:9d:e8:61:1e:b7:5e:cf:ff:28:f3:52:b8:ae: 16:35:cf:76:12:c7:59:76:85:12:a7:bd:c3:c0:10: 32:0a:fe:7b:66:5d:0f:0a:2b:b0:81:86:6b:ba:18: 6e:a0:8c:63:ea:16:2c:3b:e6:0a:c9:14:e0:e7:62: e1:4e:19:ba:30:3f:83:97:d1:36:30:8f:17:32:64: ee:1b:34:8c:1f:d0:bd:2f:45:96:69:3d:b3:84:64: 51:fa:2b:f3:25:6f:cd:1a:2f:48:cc:7f:4d:2c:32: 45:af:cd:9a:1d:f2:69:c7:4b:95:0e:70:d2:03:42: 75:a7:e6:78:c9:22:95:5e:7b:e7:0b:b7:87:fb:82: d7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:FE:FA:6B:2A:18:E3:3F:A2:46:70:B2:B6:87:BC:D3:2B:70:EF:D2 X509v3 Authority Key Identifier: keyid:B1:26:7A:51:AC:B6:6F:29:91:BE:A5:24:3F:E3:88:06:89:71:A1:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sSZ6Uay2bymRvqUkP-OIBolxofE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d74ca2-3de6-4b69-a000-94d1b89f8cb2/1/sSZ6Uay2bymRvqUkP-OIBolxofE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:69:2d:b9:19:32:7f:5f:38:e2:68:7a:2b:5a:c0:69:07:61: f5:ea:59:18:29:d0:3d:01:99:70:85:91:68:de:d9:59:27:93: 52:7e:c2:78:99:b6:1d:d9:33:72:17:df:45:cc:28:3e:0e:2b: e0:43:a7:15:e4:bb:89:18:a4:e6:04:19:90:ac:4d:b1:17:53: 9a:b4:ca:86:8b:56:4d:1b:69:8a:d1:47:76:41:70:63:b2:87: 4a:71:b9:94:c8:0d:a4:ba:bf:48:a3:d4:21:82:ee:6c:f0:c8: dc:24:05:98:6d:17:77:a8:b3:d6:68:db:e7:40:71:32:28:81: 2a:ec:50:b5:97:ce:73:51:9a:52:f1:19:cf:f0:56:91:89:80: 29:db:48:3a:85:57:3a:a7:a1:33:95:22:58:71:f9:2d:9b:41: 69:e5:a5:81:53:65:8a:9c:c8:fd:33:31:34:e4:e5:de:ff:fd: a0:d9:a2:c2:e8:85:81:46:37:a0:31:e1:f0:ba:c0:fe:f1:10: 9d:7a:fe:3a:a9:86:2f:7c:1c:a3:d8:44:50:fa:36:a0:c0:21: 0c:c2:1e:08:93:35:ca:0e:47:0a:10:df:ee:a0:e4:39:be:15: da:19:b0:db:32:ee:71:28:42:12:cc:1f:ce:3e:c0:af:69:0d: 41:df:66:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5iTt1OJ6taJhKoZxe6nWXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxMjY3YTUxYWNiNjZmMjk5MWJlYTUyNDNmZTM4ODA2ODk3 MWExZjEwHhcNMjYwMTI2MDkwMTE4WhcNMjYwMTI3MDkwMTE4WjAzMTEwLwYDVQQD EyhhM2ZlZmE2YjJhMThlMzNmYTI0NjcwYjJiNjg3YmNkMzJiNzBlZmQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqa3VWY+jP5mi8kLNNjJTpkwMdZLJ mpQWm0ROoFmi4krpgY4eVcL4WyWD7nLWWslUhtweH3/CFEx9b6kMLp7FYFOvidiS 4gieCf56sHK2OE1yXdiASkPBZP9h+T5HwiT/cy1qbtbWM5TZvry3KbK8wvj7qDSd ZcbWxp3oYR63Xs//KPNSuK4WNc92EsdZdoUSp73DwBAyCv57Zl0PCiuwgYZruhhu oIxj6hYsO+YKyRTg52LhThm6MD+Dl9E2MI8XMmTuGzSMH9C9L0WWaT2zhGRR+ivz JW/NGi9IzH9NLDJFr82aHfJpx0uVDnDSA0J1p+Z4ySKVXnvnC7eH+4LXmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKP++msqGOM/okZwsraHvNMrcO/SMB8GA1UdIwQY MBaAFLEmelGstm8pkb6lJD/jiAaJcaHxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1NaNlVheTJieW1SdnFVa1AtT0lCb2x4b2ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9kNzRjYTItM2RlNi00YjY5LWEwMDAt OTRkMWI4OWY4Y2IyLzEvc1NaNlVheTJieW1SdnFVa1AtT0lCb2x4b2ZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9kNzRjYTItM2RlNi00YjY5LWEwMDAtOTRkMWI4OWY4Y2Iy LzEvc1NaNlVheTJieW1SdnFVa1AtT0lCb2x4b2ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkmktuRky f1844mh6K1rAaQdh9epZGCnQPQGZcIWRaN7ZWSeTUn7CeJm2HdkzchffRcwoPg4r 4EOnFeS7iRik5gQZkKxNsRdTmrTKhotWTRtpitFHdkFwY7KHSnG5lMgNpLq/SKPU IYLubPDI3CQFmG0Xd6iz1mjb50BxMiiBKuxQtZfOc1GaUvEZz/BWkYmAKdtIOoVX OqehM5UiWHH5LZtBaeWlgVNlipzI/TMxNOTl3v/9oNmiwuiFgUY3oDHh8LrA/vEQ nXr+OqmGL3wco9hEUPo2oMAhDMIeCJM1yg5HChDf7qDkOb4V2hmw2zLucShCEswf zj7Ar2kNQd9mXw== -----END CERTIFICATE-----Generated at Mon Jan 26 11:35:24 2026 by rpki-client