This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft File: zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft (raw, json) Hash identifier: IkWVED6p9vExj+UATiwgglfhOSlRaHjiZ5Wfh51TErk= Subject key identifier: F9:A1:D7:55:5B:F1:21:09:82:77:A9:EF:12:4C:AD:B5:F1:DE:E5:23 Authority key identifier: CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2 Certificate issuer: /CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2 Certificate serial: 019BF79A7819D62AB5B78349A3C7CC6B38CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft Manifest number: 17EB Signing time: Mon 26 Jan 2026 00:00:54 +0000 Manifest this update: Mon 26 Jan 2026 00:00:54 +0000 Manifest next update: Tue 27 Jan 2026 00:00:54 +0000 Files and hashes: 1: P2B766sld6YbwOxda85NHhDsjNc.roa (hash: Rh+n3/ugGLGil4AXCXWWDwwftkzN5fZJ5lMUe38d6gg=) 2: zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl (hash: 2w59CmwNkORdlVNMLKri868ARNs0ZDtQL28WpPsU6y0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:78:19:d6:2a:b5:b7:83:49:a3:c7:cc:6b:38:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2 Validity Not Before: Jan 26 00:00:54 2026 GMT Not After : Jan 27 00:00:54 2026 GMT Subject: CN=f9a1d7555bf121098277a9ef124cadb5f1dee523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ca:f5:ef:a8:bc:cb:ca:25:13:af:03:85:11: 40:90:15:e2:3a:59:61:d7:dc:81:db:50:17:68:bc: 29:06:21:fc:05:5d:8d:fd:4f:00:eb:33:ac:85:fc: 12:1b:f7:6d:ad:98:52:21:e9:23:f0:ad:f4:df:5d: 11:54:cd:6f:86:f6:1d:3e:49:c3:ef:9a:9f:d3:cd: 9b:bb:52:8c:d2:f4:31:27:30:f6:78:76:15:2b:c1: 05:58:22:95:a2:7a:8f:09:f1:aa:8f:46:c1:04:7c: b5:f8:d4:dd:d1:5d:88:1f:76:97:18:d4:46:b7:f1: 28:c7:1a:5a:39:cc:b1:f1:b5:f6:0b:c4:a7:ac:a5: f9:5d:c6:af:6b:db:8a:58:81:a2:2a:0f:a6:ca:56: b6:c5:7e:bc:0f:be:91:67:3a:31:e3:4b:00:9d:2c: 85:96:d4:23:48:b1:55:a3:25:b3:83:21:1f:e0:1a: 4d:41:a8:b0:ef:a2:6e:19:ca:69:69:a4:66:75:64: 21:a5:86:fa:ea:ad:93:f7:c8:03:a1:2d:c6:61:a3: 06:ee:fe:bc:5d:36:bf:96:52:e5:e0:04:f5:a9:65: 1b:cc:e4:d1:bc:b0:f3:22:76:f0:7a:98:66:32:88: 18:64:fe:46:48:87:d4:6b:dc:2d:f4:86:42:d3:b6: b6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:A1:D7:55:5B:F1:21:09:82:77:A9:EF:12:4C:AD:B5:F1:DE:E5:23 X509v3 Authority Key Identifier: keyid:CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:d4:fd:9f:aa:89:e5:94:02:03:1e:f3:06:b2:3e:ad:e3:3e: 5e:87:a1:29:bd:fe:e2:b0:86:d6:14:91:64:35:ec:b8:57:3c: 0f:bd:2d:27:36:2a:9f:be:d6:43:09:62:7a:06:83:bd:1c:3f: 3b:5f:c3:f8:ed:c9:8f:d4:47:7b:62:d3:a3:ea:96:f2:90:46: e8:ff:63:70:46:45:22:1d:b1:32:87:0f:ee:2c:cf:54:63:81: 0a:c6:e4:cc:20:5d:86:51:47:7c:68:ad:c9:34:2e:ca:0d:6c: 77:3a:93:b9:6d:f8:69:22:6b:78:1e:5a:17:58:01:d8:06:4d: 77:c3:b2:0a:29:d2:57:67:7a:93:e5:0f:44:a4:5c:74:77:9d: d5:b4:5a:2e:6d:54:b7:f0:05:93:5c:68:dd:92:d2:93:fc:fe: 80:a2:4a:75:31:0f:30:de:64:93:4a:5f:63:ae:7c:a7:97:38: b9:de:46:97:52:2a:cf:39:af:91:b8:ba:96:5b:aa:34:05:52: 52:1b:b5:60:5c:21:c8:da:aa:b4:6f:7f:b8:d7:82:34:7a:cc: 3f:08:ea:0f:d4:07:67:73:71:0e:6f:f4:f1:8d:79:fc:6f:5b: 9c:83:94:7e:0d:a9:2b:cf:31:bb:34:aa:2e:8d:f8:47:8f:30: ae:9c:00:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mngZ1iq1t4NJo8fMazjKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNTZhYTBlMjE1NThjOTJhNDg2NTQyNDRlMDU5NjFhMWZj ZmEwZjIwHhcNMjYwMTI2MDAwMDU0WhcNMjYwMTI3MDAwMDU0WjAzMTEwLwYDVQQD EyhmOWExZDc1NTViZjEyMTA5ODI3N2E5ZWYxMjRjYWRiNWYxZGVlNTIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAksr176i8y8olE68DhRFAkBXiOllh 19yB21AXaLwpBiH8BV2N/U8A6zOshfwSG/dtrZhSIekj8K30310RVM1vhvYdPknD 75qf082bu1KM0vQxJzD2eHYVK8EFWCKVonqPCfGqj0bBBHy1+NTd0V2IH3aXGNRG t/EoxxpaOcyx8bX2C8SnrKX5Xcava9uKWIGiKg+myla2xX68D76RZzox40sAnSyF ltQjSLFVoyWzgyEf4BpNQaiw76JuGcppaaRmdWQhpYb66q2T98gDoS3GYaMG7v68 XTa/llLl4AT1qWUbzOTRvLDzInbwephmMogYZP5GSIfUa9wt9IZC07a2GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPmh11Vb8SEJgnep7xJMrbXx3uUjMB8GA1UdIwQY MBaAFM5Wqg4hVYySpIZUJE4Flhofz6DyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemxhcURpRlZqSktraGxRa1RnV1dHaF9Qb1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8wNzQ3NmMtMmM1Yi00MGU5LWI1NjIt NTRmYTMwODY0YzIxLzEvemxhcURpRlZqSktraGxRa1RnV1dHaF9Qb1BJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8wNzQ3NmMtMmM1Yi00MGU5LWI1NjItNTRmYTMwODY0YzIx LzEvemxhcURpRlZqSktraGxRa1RnV1dHaF9Qb1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAedT9n6qJ 5ZQCAx7zBrI+reM+XoehKb3+4rCG1hSRZDXsuFc8D70tJzYqn77WQwliegaDvRw/ O1/D+O3Jj9RHe2LTo+qW8pBG6P9jcEZFIh2xMocP7izPVGOBCsbkzCBdhlFHfGit yTQuyg1sdzqTuW34aSJreB5aF1gB2AZNd8OyCinSV2d6k+UPRKRcdHed1bRaLm1U t/AFk1xo3ZLSk/z+gKJKdTEPMN5kk0pfY658p5c4ud5Gl1Iqzzmvkbi6lluqNAVS Uhu1YFwhyNqqtG9/uNeCNHrMPwjqD9QHZ3NxDm/08Y15/G9bnIOUfg2pK88xuzSq Lo34R48wrpwAFw== -----END CERTIFICATE-----Generated at Mon Jan 26 04:54:22 2026 by rpki-client