This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft File: zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft (raw, json) Hash identifier: SVGmwnYEg5CImyDpCrSlO8YTTWI4gqZBTfjr7GJ7v/Y= Subject key identifier: 2B:FB:CC:F8:5D:02:70:9E:AD:D5:18:5D:9E:F8:56:1E:81:45:45:A7 Authority key identifier: CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2 Certificate issuer: /CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2 Certificate serial: 019BF5AC637491B009A6BE557112AD834B34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft Manifest number: 17EA Signing time: Sun 25 Jan 2026 15:01:14 +0000 Manifest this update: Sun 25 Jan 2026 15:01:14 +0000 Manifest next update: Mon 26 Jan 2026 15:01:14 +0000 Files and hashes: 1: P2B766sld6YbwOxda85NHhDsjNc.roa (hash: Rh+n3/ugGLGil4AXCXWWDwwftkzN5fZJ5lMUe38d6gg=) 2: zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl (hash: hjM58v2tnxgINBbsiQVw1AMPn0uWDpfpQDolRsL8aek=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ac:63:74:91:b0:09:a6:be:55:71:12:ad:83:4b:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2 Validity Not Before: Jan 25 15:01:14 2026 GMT Not After : Jan 26 15:01:14 2026 GMT Subject: CN=2bfbccf85d02709eadd5185d9ef8561e814545a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2f:59:50:55:87:5e:42:a0:62:22:d2:5c:b2: 7e:cc:2b:a3:d4:04:4f:3c:7a:74:df:cf:b9:4c:87: 5d:25:c1:5f:13:7d:1c:df:8f:3a:0f:8d:9c:d9:4d: be:a6:47:86:a4:a2:ce:81:92:05:50:50:29:4b:2d: 15:5e:aa:2e:9f:54:9c:a6:25:35:8e:a4:84:2e:b1: 9e:21:7f:c7:a6:96:9d:d9:ae:6c:26:1b:22:69:7e: f8:5c:f7:25:5d:2a:39:e7:3c:af:a0:1d:a5:16:b4: a2:fb:67:37:ba:a5:76:2b:af:29:5c:40:0f:c5:82: 9f:32:d3:37:b5:b2:ab:04:28:69:14:ee:fc:84:a8: cb:06:b1:21:d5:b2:9c:9e:d9:e3:f7:b6:50:e8:86: 2f:d7:bd:11:b4:0a:3d:a0:a2:3c:fa:32:5c:7c:55: 70:d5:2c:b4:35:bd:19:a7:65:be:df:7c:82:d4:85: 43:82:ba:56:80:ba:b1:25:54:67:60:49:24:3b:16: 23:3f:dc:95:a8:28:8e:eb:04:e1:10:33:59:c6:3b: 0c:ab:bc:f7:4a:d4:30:2d:ab:21:be:b1:75:21:62: f2:cb:cb:e7:33:83:7c:dd:33:c7:52:39:b7:a5:77: 66:2f:16:55:60:d8:d8:e8:e0:87:e2:25:58:c3:27: f4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:FB:CC:F8:5D:02:70:9E:AD:D5:18:5D:9E:F8:56:1E:81:45:45:A7 X509v3 Authority Key Identifier: keyid:CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:45:0b:aa:ae:78:1e:9e:57:c7:e8:f0:89:c0:e0:1a:5c:7d: a7:45:d5:b0:e3:7c:1b:b9:b3:7b:3b:a0:a9:8e:28:3e:92:4c: 19:e3:17:b5:a7:d0:d7:6b:68:bd:ce:ea:ac:02:27:5b:06:ab: ac:d1:c6:94:01:57:4b:1f:9a:d3:6a:26:1b:8f:6e:fb:41:8f: 07:28:93:44:ca:da:f4:b0:0d:52:e4:cd:17:61:ac:d5:24:ad: e9:3f:f4:dc:fe:4f:f4:ed:e0:68:ec:90:5f:3a:73:fa:98:24: b6:fc:31:f3:e7:41:56:30:06:63:08:52:37:05:40:e4:70:c2: 6c:29:83:e2:b0:5c:a6:5b:ba:a0:5a:b8:c7:36:8a:22:0b:33: c7:09:82:6c:40:f8:4c:30:93:9e:94:19:ef:e0:ba:bc:7c:59: 2b:85:00:0e:40:2c:c6:a5:37:a3:1a:3d:80:e3:52:9c:77:51: 91:31:39:88:70:fe:b0:d8:ba:72:26:a0:cd:1c:db:ec:68:c4: ee:36:fe:90:74:61:8d:ab:cd:3d:6d:46:1b:3b:8b:bf:bc:62: 40:94:b5:9a:79:23:76:bc:e7:78:49:fb:dc:7b:58:ad:eb:3e: 17:84:9a:0c:89:56:0a:af:46:95:31:a5:16:21:43:f1:78:a4: 76:b8:d7:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1rGN0kbAJpr5VcRKtg0s0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNTZhYTBlMjE1NThjOTJhNDg2NTQyNDRlMDU5NjFhMWZj ZmEwZjIwHhcNMjYwMTI1MTUwMTE0WhcNMjYwMTI2MTUwMTE0WjAzMTEwLwYDVQQD EygyYmZiY2NmODVkMDI3MDllYWRkNTE4NWQ5ZWY4NTYxZTgxNDU0NWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArC9ZUFWHXkKgYiLSXLJ+zCuj1ARP PHp038+5TIddJcFfE30c3486D42c2U2+pkeGpKLOgZIFUFApSy0VXqoun1ScpiU1 jqSELrGeIX/Hppad2a5sJhsiaX74XPclXSo55zyvoB2lFrSi+2c3uqV2K68pXEAP xYKfMtM3tbKrBChpFO78hKjLBrEh1bKcntnj97ZQ6IYv170RtAo9oKI8+jJcfFVw 1Sy0Nb0Zp2W+33yC1IVDgrpWgLqxJVRnYEkkOxYjP9yVqCiO6wThEDNZxjsMq7z3 StQwLashvrF1IWLyy8vnM4N83TPHUjm3pXdmLxZVYNjY6OCH4iVYwyf01QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCv7zPhdAnCerdUYXZ74Vh6BRUWnMB8GA1UdIwQY MBaAFM5Wqg4hVYySpIZUJE4Flhofz6DyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemxhcURpRlZqSktraGxRa1RnV1dHaF9Qb1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8wNzQ3NmMtMmM1Yi00MGU5LWI1NjIt NTRmYTMwODY0YzIxLzEvemxhcURpRlZqSktraGxRa1RnV1dHaF9Qb1BJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8wNzQ3NmMtMmM1Yi00MGU5LWI1NjItNTRmYTMwODY0YzIx LzEvemxhcURpRlZqSktraGxRa1RnV1dHaF9Qb1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKkULqq54 Hp5Xx+jwicDgGlx9p0XVsON8G7mzezugqY4oPpJMGeMXtafQ12tovc7qrAInWwar rNHGlAFXSx+a02omG49u+0GPByiTRMra9LANUuTNF2Gs1SSt6T/03P5P9O3gaOyQ Xzpz+pgktvwx8+dBVjAGYwhSNwVA5HDCbCmD4rBcplu6oFq4xzaKIgszxwmCbED4 TDCTnpQZ7+C6vHxZK4UADkAsxqU3oxo9gONSnHdRkTE5iHD+sNi6ciagzRzb7GjE 7jb+kHRhjavNPW1GGzuLv7xiQJS1mnkjdrzneEn73HtYres+F4SaDIlWCq9GlTGl FiFD8XikdrjXNg== -----END CERTIFICATE-----Generated at Sun Jan 25 22:34:38 2026 by rpki-client