This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft File: 2y7CKma1skmGOV_u1_tbkOKMm-Q.mft (raw, json) Hash identifier: knRmz5Foi7EkfqEowxDAVGwD4RQRYXDl1eE81wIj3PA= Subject key identifier: 4C:16:AD:9C:C4:43:FA:59:AB:8F:6E:8D:CE:57:D7:4D:BD:F3:B0:2C Authority key identifier: DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4 Certificate issuer: /CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4 Certificate serial: 019BF507881F782A07D6B74304E712127796 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft Manifest number: 15 Signing time: Sun 25 Jan 2026 12:01:10 +0000 Manifest this update: Sun 25 Jan 2026 12:01:10 +0000 Manifest next update: Mon 26 Jan 2026 12:01:10 +0000 Files and hashes: 1: 2y7CKma1skmGOV_u1_tbkOKMm-Q.crl (hash: r2OJFUlKR5BUVTWAEzkfUC81hW7gRFhc+ihU9MKoD68=) 2: 6RGkspdxkAWpYvFpm-8ta5s8IEs.asa (hash: SMkfixcVMM4K7Z6BHPlzlnNfBWBe+ZvLZ06HB1RuIn0=) 3: 8ZBdrFRJIh0YxKW2bFMDctXLyVQ.roa (hash: CTY1C1lk5dtltm5cBLtdER5DWsVLf/sfo1mRHFDWCFY=) 4: 9THKMpdhKPWxbXYdpErXi3_iU-Q.roa (hash: oYGp6JfEMDArlRyb2+6e34bfuaEMbLQs/CMwMB+TL+k=) 5: cV-6vnmpUBgH2wP5pNInv4Man5Y.roa (hash: ER4PzBd4pNFf1ThiL7/XmqmLPNjgQEv0ShK1Elukaj4=) 6: oLCvqkc2mvd1Uubh1jqgFHKgWY4.roa (hash: 851d7yUDOfGFVIsF/8n5AOnDnpNu7Amo5A1xKwGH5o8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:07:88:1f:78:2a:07:d6:b7:43:04:e7:12:12:77:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db2ec22a66b5b24986395feed7fb5b90e28c9be4 Validity Not Before: Jan 25 12:01:10 2026 GMT Not After : Jan 26 12:01:10 2026 GMT Subject: CN=4c16ad9cc443fa59ab8f6e8dce57d74dbdf3b02c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:41:05:85:12:a1:e9:35:ac:3e:a6:bc:41:35: 28:5e:46:2c:30:0d:71:51:74:c6:02:5f:93:25:b4: 31:f0:9e:4d:11:d6:dc:63:8a:c8:6d:f2:68:8e:21: 3e:01:27:ba:fc:53:0e:9f:56:fe:45:c3:9e:c1:93: 20:68:35:51:f5:0d:5d:7d:b8:e8:b5:2e:24:0e:e9: a4:29:e6:8b:31:2b:43:c4:ac:40:74:1a:ae:62:e8: fd:53:35:4b:cd:f9:3a:f2:df:70:6a:57:94:45:f1: b2:5b:cf:67:fc:1a:40:f3:05:c9:d1:f9:70:09:0a: 69:77:1c:6d:b1:f8:c0:ff:d5:6c:ce:73:81:d7:ec: 5e:a2:fb:2b:1d:68:eb:b3:d4:e3:4e:f8:9b:f9:9f: a4:54:f5:fc:98:30:68:32:5a:ef:9b:2a:0f:3c:a3: 19:09:4c:04:cd:34:f5:50:de:c2:d7:c2:d8:a3:20: 14:a7:e8:e0:35:6c:68:53:2a:b0:89:52:cb:21:63: f9:8c:b8:3c:4e:3c:eb:6c:b9:9f:6d:cc:45:26:a6: 2d:ef:8c:29:15:4e:ab:e8:7b:ce:c6:55:19:e2:1d: d4:cf:77:77:82:a5:2f:67:e6:93:67:65:6d:47:a6: 46:f2:0a:3f:8e:aa:38:8a:64:8d:36:a7:a3:1b:3d: 9e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:16:AD:9C:C4:43:FA:59:AB:8F:6E:8D:CE:57:D7:4D:BD:F3:B0:2C X509v3 Authority Key Identifier: keyid:DB:2E:C2:2A:66:B5:B2:49:86:39:5F:EE:D7:FB:5B:90:E2:8C:9B:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2y7CKma1skmGOV_u1_tbkOKMm-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/2fbcbf-358e-4928-9a84-ce78d4c0642f/1/2y7CKma1skmGOV_u1_tbkOKMm-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:47:f0:4f:9e:0c:bc:16:55:0d:32:50:57:b8:f1:de:02:99: 0a:4e:18:68:06:0b:13:c9:75:78:d8:a1:30:e0:e4:f4:4e:92: 2e:4e:d2:91:e6:d8:4e:aa:1f:23:c2:84:1a:c9:7d:cb:37:e3: 3b:14:92:73:1c:88:83:62:46:78:6f:bd:46:c8:18:88:83:cc: f6:2d:cd:1f:94:40:38:53:d1:cc:13:f8:e2:c5:87:d3:a6:ad: 12:11:b9:8c:e7:b1:98:78:d5:35:86:46:65:8a:f5:1f:4e:d0: c4:73:fe:ea:d3:e8:2c:ce:8d:a2:94:5a:10:14:a7:26:d0:f3: 32:f6:44:2c:74:d9:4c:89:b6:42:f1:08:85:d0:dc:74:88:f6: 59:02:33:6f:34:45:d4:ae:c4:1a:4d:40:cc:0f:a6:c7:53:5d: e8:04:6c:5c:f7:30:69:6d:8e:a4:2e:19:a5:b8:aa:bd:88:fe: 4b:6b:dd:4d:e4:9a:28:03:9a:67:47:8a:c0:b8:23:03:6f:24: 0c:7c:a4:03:e8:b0:8d:a8:eb:a4:ec:a1:87:2f:99:69:d3:c7: 55:c2:67:fd:c0:6a:bf:42:8b:36:09:c5:8d:5b:13:8a:16:b2: a8:36:c5:af:bd:21:9e:c0:0f:bb:8e:3b:a8:0f:bb:e5:de:7f: d6:79:40:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1B4gfeCoH1rdDBOcSEneWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMmVjMjJhNjZiNWIyNDk4NjM5NWZlZWQ3ZmI1YjkwZTI4 YzliZTQwHhcNMjYwMTI1MTIwMTEwWhcNMjYwMTI2MTIwMTEwWjAzMTEwLwYDVQQD Eyg0YzE2YWQ5Y2M0NDNmYTU5YWI4ZjZlOGRjZTU3ZDc0ZGJkZjNiMDJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAykEFhRKh6TWsPqa8QTUoXkYsMA1x UXTGAl+TJbQx8J5NEdbcY4rIbfJojiE+ASe6/FMOn1b+RcOewZMgaDVR9Q1dfbjo tS4kDumkKeaLMStDxKxAdBquYuj9UzVLzfk68t9waleURfGyW89n/BpA8wXJ0flw CQppdxxtsfjA/9VsznOB1+xeovsrHWjrs9TjTvib+Z+kVPX8mDBoMlrvmyoPPKMZ CUwEzTT1UN7C18LYoyAUp+jgNWxoUyqwiVLLIWP5jLg8TjzrbLmfbcxFJqYt74wp FU6r6HvOxlUZ4h3Uz3d3gqUvZ+aTZ2VtR6ZG8go/jqo4imSNNqejGz2eqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEwWrZzEQ/pZq49ujc5X102987AsMB8GA1UdIwQY MBaAFNsuwipmtbJJhjlf7tf7W5DijJvkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8yZmJjYmYtMzU4ZS00OTI4LTlhODQt Y2U3OGQ0YzA2NDJmLzEvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8yZmJjYmYtMzU4ZS00OTI4LTlhODQtY2U3OGQ0YzA2NDJm LzEvMnk3Q0ttYTFza21HT1ZfdTFfdGJrT0tNbS1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ0fwT54M vBZVDTJQV7jx3gKZCk4YaAYLE8l1eNihMODk9E6SLk7SkebYTqofI8KEGsl9yzfj OxSScxyIg2JGeG+9RsgYiIPM9i3NH5RAOFPRzBP44sWH06atEhG5jOexmHjVNYZG ZYr1H07QxHP+6tPoLM6NopRaEBSnJtDzMvZELHTZTIm2QvEIhdDcdIj2WQIzbzRF 1K7EGk1AzA+mx1Nd6ARsXPcwaW2OpC4ZpbiqvYj+S2vdTeSaKAOaZ0eKwLgjA28k DHykA+iwjajrpOyhhy+ZadPHVcJn/cBqv0KLNgnFjVsTihayqDbFr70hnsAPu447 qA+75d5/1nlAgg== -----END CERTIFICATE-----Generated at Sun Jan 25 16:38:07 2026 by rpki-client