This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json) Hash identifier: pyV7XcYLCDyI8RRl4hqGYKTgNHcQQUq07tzbIqKYrws= Subject key identifier: EE:75:7E:8B:69:67:AF:BB:94:34:9B:8F:39:CB:F2:C5:F6:08:F4:64 Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08 Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608 Certificate serial: 019BF72C973DB3B123F16DD935857C86558C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft Manifest number: 1778 Signing time: Sun 25 Jan 2026 22:00:53 +0000 Manifest this update: Sun 25 Jan 2026 22:00:53 +0000 Manifest next update: Mon 26 Jan 2026 22:00:53 +0000 Files and hashes: 1: 4eGQ-UBGNs_4XAP1phxy5eDsOEU.roa (hash: NGm7oj0oNNHffCOXmAY3fJHH7vgq8EjhCAsgIYkz9sk=) 2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: aSkbyzPnfOzQQJjnhXpXwz19Uh6umCak9Bqf+FB0MTg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:97:3d:b3:b1:23:f1:6d:d9:35:85:7c:86:55:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608 Validity Not Before: Jan 25 22:00:53 2026 GMT Not After : Jan 26 22:00:53 2026 GMT Subject: CN=ee757e8b6967afbb94349b8f39cbf2c5f608f464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1b:2d:85:95:64:f3:79:90:f8:7e:6f:94:2b: 21:6d:5c:38:63:81:e5:d5:c1:93:ba:b7:5d:49:26: 1a:83:60:50:b2:dc:44:58:ed:39:35:84:52:e8:67: f2:78:3b:46:63:11:80:0f:e7:7f:04:7b:21:c3:ec: eb:b9:83:de:65:95:1a:27:cd:ae:0d:e6:1c:93:7b: 11:d6:50:13:0a:42:28:4b:7c:5c:a4:cd:82:6a:30: 10:f8:33:9b:47:dd:0d:0a:49:73:e7:40:49:ce:7d: 7d:7f:26:02:ef:d2:ef:0a:9e:d6:e4:43:f0:aa:8f: 6f:68:c3:f6:8d:79:a0:88:47:0e:95:09:0d:d2:3b: de:1e:a2:b8:75:28:29:34:a9:ee:f4:9f:ae:55:e1: 4e:67:10:75:b2:c1:53:c7:5c:96:c8:d5:7e:05:62: 94:be:18:48:ba:9b:b4:12:23:ae:7a:02:2a:b8:6c: 0d:e6:23:96:a5:25:2a:e2:e4:51:88:e5:2d:4b:31: 96:04:ce:ab:55:ca:62:ae:aa:92:05:2d:c5:cd:95: 84:0a:25:c3:f7:78:af:c5:cf:57:00:90:3b:60:d2: 34:41:1d:e4:45:98:d4:90:b0:7c:89:0e:1f:aa:66: 36:02:0f:18:27:46:d2:12:f3:e7:7a:bc:9d:22:9b: 59:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:75:7E:8B:69:67:AF:BB:94:34:9B:8F:39:CB:F2:C5:F6:08:F4:64 X509v3 Authority Key Identifier: keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:62:11:77:39:4c:d9:9d:08:73:41:2d:60:f2:ce:17:70:f6: fd:f9:34:fe:ca:5f:c2:76:16:21:53:09:01:f6:6d:b7:73:7d: bb:a4:c3:09:19:0c:95:6f:d7:d2:02:0d:47:6d:5c:71:67:8d: 4b:18:f1:78:91:c0:91:a7:0c:96:96:ac:f2:e3:a1:ff:b5:6a: c5:31:11:e3:d9:b0:30:e0:bf:82:93:28:ed:e2:60:e7:f6:49: f5:b5:2d:2c:7a:a6:b4:ab:02:e5:eb:d6:37:96:67:48:73:17: a6:03:f1:de:e9:28:c9:3d:00:d0:83:1d:a4:ed:9c:42:9e:9c: eb:7d:eb:c2:c3:34:cb:96:1a:ba:01:c3:70:df:51:e7:1f:8e: db:b9:72:8c:8b:fd:68:74:4a:7d:37:b5:7f:9e:f9:ee:f3:7a: bf:92:d7:39:6a:79:5d:22:45:b8:6a:10:21:8c:e3:4f:e9:1d: 3d:8e:4e:dd:5b:67:8f:7f:9d:8b:94:16:eb:47:bc:5a:d0:60: b3:76:ae:eb:16:e0:34:5c:47:a5:17:67:3f:2d:3f:2e:79:91: 13:34:75:fb:e4:ff:e4:e9:30:c4:b5:43:9e:41:b8:3c:19:67: 4b:94:01:a4:6d:c0:b4:69:3d:34:12:cb:92:58:fe:d0:d0:9f: b7:34:f2:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LJc9s7Ej8W3ZNYV8hlWMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZDBhMGM2OGEyMDM5ZmYwY2E1MTQwMjQxMTUyNzFjOGEw NDY2MDgwHhcNMjYwMTI1MjIwMDUzWhcNMjYwMTI2MjIwMDUzWjAzMTEwLwYDVQQD EyhlZTc1N2U4YjY5NjdhZmJiOTQzNDliOGYzOWNiZjJjNWY2MDhmNDY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3BsthZVk83mQ+H5vlCshbVw4Y4Hl 1cGTurddSSYag2BQstxEWO05NYRS6GfyeDtGYxGAD+d/BHshw+zruYPeZZUaJ82u DeYck3sR1lATCkIoS3xcpM2CajAQ+DObR90NCklz50BJzn19fyYC79LvCp7W5EPw qo9vaMP2jXmgiEcOlQkN0jveHqK4dSgpNKnu9J+uVeFOZxB1ssFTx1yWyNV+BWKU vhhIupu0EiOuegIquGwN5iOWpSUq4uRRiOUtSzGWBM6rVcpirqqSBS3FzZWECiXD 93ivxc9XAJA7YNI0QR3kRZjUkLB8iQ4fqmY2Ag8YJ0bSEvPnerydIptZAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO51fotpZ6+7lDSbjznL8sX2CPRkMB8GA1UdIwQY MBaAFLLQoMaKIDn/DKUUAkEVJxyKBGYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQt NDFhYjdjODcyZmVhLzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQtNDFhYjdjODcyZmVh LzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmWIRdzlM 2Z0Ic0EtYPLOF3D2/fk0/spfwnYWIVMJAfZtt3N9u6TDCRkMlW/X0gINR21ccWeN SxjxeJHAkacMlpas8uOh/7VqxTER49mwMOC/gpMo7eJg5/ZJ9bUtLHqmtKsC5evW N5ZnSHMXpgPx3ukoyT0A0IMdpO2cQp6c633rwsM0y5YaugHDcN9R5x+O27lyjIv9 aHRKfTe1f5757vN6v5LXOWp5XSJFuGoQIYzjT+kdPY5O3Vtnj3+di5QW60e8WtBg s3au6xbgNFxHpRdnPy0/LnmREzR1++T/5OkwxLVDnkG4PBlnS5QBpG3AtGk9NBLL klj+0NCftzTycg== -----END CERTIFICATE-----Generated at Mon Jan 26 04:01:28 2026 by rpki-client