This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft File: 2qM7UIN5nEnPntwAhit8nCGMZhM.mft (raw, json) Hash identifier: ZSTL+9m/Y+Y1hneOfsX6fGay54EOySuC6m+6ndDGQOU= Subject key identifier: 9A:A8:50:8D:83:E6:1D:F9:A0:EF:83:E2:74:C5:1F:27:55:44:DE:0A Authority key identifier: DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13 Certificate issuer: /CN=daa33b5083799c49cf9edc00862b7c9c218c6613 Certificate serial: 019BF5AC1C1C6A90529CC87FE0E7947A3074 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft Manifest number: 0571 Signing time: Sun 25 Jan 2026 15:00:55 +0000 Manifest this update: Sun 25 Jan 2026 15:00:55 +0000 Manifest next update: Mon 26 Jan 2026 15:00:55 +0000 Files and hashes: 1: 2qM7UIN5nEnPntwAhit8nCGMZhM.crl (hash: OW9mSJi8bU8o5+f6vKVVug8Nyfu+rwh3BNtXvfW1KNw=) 2: S_RLG-qdyAaQjiZGgL5sIfI-AYY.roa (hash: yQu9ZmP/q7jsTu4yw/AuWtFPXstyX5q6aeR1beEfVWY=) 3: U6As8UUX9Mg8l6zjGbZFCAxy-Pk.roa (hash: RA50m9VAkp/7GXmqEXtG2sTYJiK0WAUeyva3ilsrFA0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ac:1c:1c:6a:90:52:9c:c8:7f:e0:e7:94:7a:30:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa33b5083799c49cf9edc00862b7c9c218c6613 Validity Not Before: Jan 25 15:00:55 2026 GMT Not After : Jan 26 15:00:55 2026 GMT Subject: CN=9aa8508d83e61df9a0ef83e274c51f275544de0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:03:11:b0:0c:08:3a:93:b6:fc:3b:61:4a:58: 6d:29:a3:9b:2a:7a:17:99:c6:b6:ee:44:1d:f6:97: 3d:ce:36:80:cd:a3:8d:98:5a:cf:8c:60:a0:ba:62: 89:ed:6d:39:80:18:64:2e:2f:b3:86:ab:a5:23:6b: 5b:da:f4:cd:dc:ff:58:75:00:8b:83:77:30:aa:e0: 3a:1f:e7:96:de:af:f5:d2:ef:51:30:87:57:5f:42: f9:6f:05:47:7d:24:b2:e6:1b:75:02:f4:b8:80:13: e1:d5:bc:fa:ec:75:4b:f8:d7:17:6b:96:24:85:35: 11:7a:46:8f:1a:c5:4b:e7:12:eb:75:1f:c9:d3:97: 81:8e:3b:0d:aa:7a:d2:3c:bd:3a:77:7b:3c:45:c1: f8:89:63:9d:5b:8c:87:c4:54:ed:d3:f7:b4:44:29: 7e:a7:e0:5a:5c:c9:34:5c:d6:22:0b:6e:5e:aa:79: 8b:9f:ab:85:ab:4e:db:15:94:2a:01:4b:1d:62:58: 68:bd:64:27:41:02:5e:96:53:65:7f:31:3b:77:ef: dc:0d:7c:65:f8:b6:2a:b0:ef:ef:72:ea:88:1a:af: 96:57:fe:13:e3:e9:44:5a:ee:5f:d4:26:78:44:a8: cc:1a:14:4a:05:bf:9b:b3:40:2d:d3:03:b0:27:7f: db:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A8:50:8D:83:E6:1D:F9:A0:EF:83:E2:74:C5:1F:27:55:44:DE:0A X509v3 Authority Key Identifier: keyid:DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:94:8c:5e:0b:0e:43:68:f4:cb:93:5d:7d:1a:95:de:93:74: 64:9a:eb:bc:56:37:80:39:6f:ca:00:d5:d5:72:cc:e3:53:4c: 62:67:a3:4e:c8:e3:90:20:0a:c1:04:e2:01:53:84:4d:90:8c: 4d:88:95:db:60:94:83:66:21:0f:29:d4:ed:c6:89:0b:43:52: 75:b6:d0:90:79:4a:c7:17:2d:e8:2b:2e:19:7a:51:18:52:7b: f8:fb:63:0a:a7:48:49:c8:32:4d:df:a4:56:94:d7:d7:5c:ed: 65:70:6f:19:d2:a5:7b:41:a6:6c:91:80:ce:be:4a:c6:26:60: 98:77:39:47:f5:7d:3b:13:2e:c8:06:42:e0:ef:87:97:98:cc: 97:e3:7c:ff:19:b7:8c:bd:ad:14:78:90:9e:51:0e:6b:63:80: 14:29:78:01:0d:f3:98:df:3e:91:58:9f:08:52:92:f2:9d:83: 07:b9:79:8e:8f:bd:cd:3a:d5:62:93:66:16:cc:f5:7a:67:8f: bc:5e:49:e0:9e:20:5b:da:60:3d:87:aa:c4:14:62:7b:3d:e1: e9:c2:d4:d1:97:a7:f2:30:3d:c0:21:b0:e9:47:38:32:cc:e3: 79:82:16:44:7c:cd:54:19:b8:78:c1:c3:73:a6:43:94:cd:ae: 8b:8e:a5:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1rBwcapBSnMh/4OeUejB0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYTMzYjUwODM3OTljNDljZjllZGMwMDg2MmI3YzljMjE4 YzY2MTMwHhcNMjYwMTI1MTUwMDU1WhcNMjYwMTI2MTUwMDU1WjAzMTEwLwYDVQQD Eyg5YWE4NTA4ZDgzZTYxZGY5YTBlZjgzZTI3NGM1MWYyNzU1NDRkZTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAMRsAwIOpO2/DthSlhtKaObKnoX mca27kQd9pc9zjaAzaONmFrPjGCgumKJ7W05gBhkLi+zhqulI2tb2vTN3P9YdQCL g3cwquA6H+eW3q/10u9RMIdXX0L5bwVHfSSy5ht1AvS4gBPh1bz67HVL+NcXa5Yk hTURekaPGsVL5xLrdR/J05eBjjsNqnrSPL06d3s8RcH4iWOdW4yHxFTt0/e0RCl+ p+BaXMk0XNYiC25eqnmLn6uFq07bFZQqAUsdYlhovWQnQQJellNlfzE7d+/cDXxl +LYqsO/vcuqIGq+WV/4T4+lEWu5f1CZ4RKjMGhRKBb+bs0At0wOwJ3/bawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJqoUI2D5h35oO+D4nTFHydVRN4KMB8GA1UdIwQY MBaAFNqjO1CDeZxJz57cAIYrfJwhjGYTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnFNN1VJTjVuRW5QbnR3QWhpdDhuQ0dNWmhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9jZjMxOGUtODk1MS00ZTFlLWJiZTMt MTZmNDNkYmEyYWJjLzEvMnFNN1VJTjVuRW5QbnR3QWhpdDhuQ0dNWmhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS9jZjMxOGUtODk1MS00ZTFlLWJiZTMtMTZmNDNkYmEyYWJj LzEvMnFNN1VJTjVuRW5QbnR3QWhpdDhuQ0dNWmhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWZSMXgsO Q2j0y5NdfRqV3pN0ZJrrvFY3gDlvygDV1XLM41NMYmejTsjjkCAKwQTiAVOETZCM TYiV22CUg2YhDynU7caJC0NSdbbQkHlKxxct6CsuGXpRGFJ7+PtjCqdIScgyTd+k VpTX11ztZXBvGdKle0GmbJGAzr5KxiZgmHc5R/V9OxMuyAZC4O+Hl5jMl+N8/xm3 jL2tFHiQnlEOa2OAFCl4AQ3zmN8+kVifCFKS8p2DB7l5jo+9zTrVYpNmFsz1emeP vF5J4J4gW9pgPYeqxBRiez3h6cLU0Zen8jA9wCGw6Uc4MszjeYIWRHzNVBm4eMHD c6ZDlM2ui46ljg== -----END CERTIFICATE-----Generated at Sun Jan 25 20:08:12 2026 by rpki-client