This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft
File:                     71fC2dk6x8-bLxfKp4WbaYWzm50.mft (raw, json)
Hash identifier:          D5DOS7vYoDLKH47QlRJz+Lti3hWtpIQGft0IsPFuhCU=
Subject key identifier:   AC:B3:D1:55:E1:82:60:23:C0:54:3E:A0:D3:7F:3B:9E:43:B1:4E:AD
Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
Certificate issuer:       /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Certificate serial:       019BF3BDBEFDC907F105A4FF99C74EBF23D9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft
Manifest number:          142E
Signing time:             Sun 25 Jan 2026 06:00:57 +0000
Manifest this update:     Sun 25 Jan 2026 06:00:57 +0000
Manifest next update:     Mon 26 Jan 2026 06:00:57 +0000
Files and hashes:         1: 2ngTJwoTyX1Nz5fKPJKsViXxDHk.roa (hash: Ir7bv4VELFAPGwsqBM/ur+v9Fopro+iM13JltIh4cX4=)
                          2: 6rWzroD3N7hgAXbNo3yuEEQJsfI.roa (hash: E8YwvFkIVbhynhPsVej9fShdrkMGkyiT775U87D7jFU=)
                          3: 71fC2dk6x8-bLxfKp4WbaYWzm50.crl (hash: tSGfnaeo70YqU0/tkBkVj31ETKgXOhBVSexcUGHP1/U=)
                          4: 7G49o5z8bi7Lcd53h1h0bVLCJZ4.roa (hash: xDGbGchiaLKjcl8d608rUMISo9V9+y1tYFZNtiJzodk=)
                          5: LEPIREdkNINi3YsArD5Iqz6JZKw.roa (hash: u5xGsEDr0cKb/8SFVnNCp/maWigXZl2skRgwHSiizuc=)
                          6: MhN5MRvvgoofpuFJ5m4YLHyq3Nc.roa (hash: NsITOI3k4qxMk9t6uldTtNFi2z9FnXsMOLB/akZmaQE=)
                          7: OoWh-cPJxIo9-JnYWW14PlGkMmw.roa (hash: cwPQ8D+hZiBjw4HTvZt5RVfnCwIHlW6ts6eZs3ca5ro=)
                          8: SFT1d23h5s56wOshvucHEdfHMus.roa (hash: VF+VBV1f8xNTi+BzW8c6Ab0X5I99oWpbTy8oGRDDLo4=)
                          9: Y6USBv7EsN_hgdgW0uW5KbpmRN4.roa (hash: tv5XftYxR3URBlazOVai0U6SyL0OPoC8TTkoFI5KZuM=)
                          10: cJiubHQvHYR5Esd1XVcnoAH7nVc.roa (hash: FMFv+8H/z6shQKfY24LWmw315shSovkbNLpCdkTVVts=)
                          11: fxFIclzOclkDebowO2HCdBIp7JU.roa (hash: kKrwCtFqATS4Q0FX0wGNL2DdvolnBDZchK0yi2jbTGw=)
                          12: hOLoSAjKi_Ysduv-PJ2ejNql5Ok.roa (hash: lHppC78Yz/GWXK8KxKeoOvZZKZRlVzNZc6B6F5euHEc=)
                          13: lQ3OWX0myb8uFOtmBUqCeb2oHhA.roa (hash: bhpFnL+TI2NRedv8XMlX+BIC3gSuHb2XvhJF/GSwAJE=)
                          14: lfuF0jCiq554Dy69uuASsTOPZ58.roa (hash: 6OAF0vEeoAJWYtA3vCDPsWGl38QU6NBLN+OCMZmyOUQ=)
                          15: mOLu5yy1hfuAdimwt8EIDKecKDQ.roa (hash: 5YCmlSPstxquYrl1BiHwoJ0FV26JerY9NJHkI5lqyeU=)
                          16: xgcIl72OMRsTXzMLl7PIGrHb2sQ.roa (hash: 2SWmpy8UdVqECkthus0V0cF6NslAcNvMaIDq36UHafw=)
                          17: yJInE-fPhdu-ABKOdKIoShinhzo.roa (hash: skD34yjii/PhcEF3U0syiUJjraUYJpJM6Jt4QrA1zs8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 26 Jan 2026 06:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:f3:bd:be:fd:c9:07:f1:05:a4:ff:99:c7:4e:bf:23:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
        Validity
            Not Before: Jan 25 06:00:57 2026 GMT
            Not After : Jan 26 06:00:57 2026 GMT
        Subject: CN=acb3d155e1826023c0543ea0d37f3b9e43b14ead
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:37:a6:d6:45:1f:39:14:74:6a:d6:8a:11:78:
                    7f:43:37:6f:61:a8:23:21:1f:9b:d7:f6:01:43:07:
                    1e:09:bb:80:3d:d8:dc:0b:bc:0c:74:07:8b:84:87:
                    a7:d5:fa:b0:ef:ac:c9:93:57:e1:06:d8:59:64:71:
                    cb:a6:b9:62:bc:3d:e2:05:aa:6c:9f:cc:c1:cc:79:
                    a2:91:b6:93:64:e4:6d:79:a0:80:6e:3d:26:0c:57:
                    6f:54:55:23:aa:11:71:c7:2a:c4:c5:12:a0:5a:b8:
                    d2:c2:5b:4c:de:13:35:89:30:4e:66:21:a6:f2:5f:
                    52:73:2c:f7:5c:39:96:2d:7d:83:32:c4:92:90:0d:
                    5c:cd:54:67:29:ee:27:74:92:82:1a:d2:ce:3c:09:
                    f8:14:76:10:eb:e5:89:31:cd:32:e0:14:f8:ea:4d:
                    80:83:e0:37:aa:e5:ad:19:3e:2a:8d:ad:58:29:64:
                    39:61:4f:b4:7f:82:da:53:8e:82:85:b1:0e:08:82:
                    c0:15:d2:99:f3:81:4e:4e:37:5d:fd:36:54:6a:95:
                    27:6b:75:d5:64:d6:7b:89:b1:5a:c3:f8:16:79:06:
                    7e:de:c8:06:c6:c9:75:f5:a7:81:0f:33:e8:2e:12:
                    6c:28:85:45:6e:23:8e:45:9f:98:fb:ca:63:7f:cf:
                    80:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:B3:D1:55:E1:82:60:23:C0:54:3E:A0:D3:7F:3B:9E:43:B1:4E:AD
            X509v3 Authority Key Identifier:
                keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:c9:53:28:5a:0d:72:85:5d:ea:d2:f8:11:55:79:b1:95:06:
         4e:4f:65:c1:0b:da:4f:c1:74:87:fc:c3:95:23:a5:9b:ce:7c:
         4f:7b:16:ae:6c:73:36:a2:13:f9:6b:bf:71:03:6b:2a:bc:c8:
         3a:a7:4d:fd:9f:d9:ee:9f:75:35:e5:4a:4c:2e:28:93:28:15:
         0d:47:65:fb:7c:18:e5:94:58:5b:87:3f:6a:4f:33:3a:6b:98:
         3f:2e:62:fa:b9:fb:93:cc:70:8a:18:e5:d1:69:47:17:b5:f9:
         2d:24:04:ce:d3:a2:7e:93:2b:ac:a5:4f:8e:23:f3:b4:04:1a:
         13:78:29:41:40:f2:16:a9:60:9d:6f:0a:da:72:7e:e0:b3:34:
         88:36:ed:16:15:41:40:29:0d:96:67:35:1a:5b:eb:1c:50:dc:
         9c:ba:d6:ab:95:64:28:37:64:1c:13:40:e5:84:7f:91:c9:3c:
         f0:50:90:e0:2d:cb:ea:1f:41:0b:f1:7b:cf:c8:a9:a7:e1:9a:
         8d:31:47:93:a3:98:65:ce:63:c1:db:50:97:ae:78:9d:ca:9e:
         1a:84:0d:cb:c3:a2:0d:eb:cb:66:94:73:77:70:8b:7c:2a:ea:
         d6:92:bc:22:fe:6c:a3:83:29:d5:e0:18:7c:cc:29:5c:67:f1:
         28:f2:4b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----