This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft File: 2wU2Dphzgl911nHa8WJKUumFOQw.mft (raw, json) Hash identifier: fJhJFMiywpXoI1PB2h3pOHbZgWmbfB+VvuKNqBdSCSQ= Subject key identifier: D8:8B:D1:EB:81:F7:D5:8E:6B:16:96:49:47:43:8A:95:DD:BC:1B:A0 Authority key identifier: DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C Certificate issuer: /CN=db05360e9873825f75d671daf1624a52e985390c Certificate serial: 019BF72D52C7359E45AE99E6A59A270C869C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft Manifest number: 0271 Signing time: Sun 25 Jan 2026 22:01:41 +0000 Manifest this update: Sun 25 Jan 2026 22:01:41 +0000 Manifest next update: Mon 26 Jan 2026 22:01:41 +0000 Files and hashes: 1: 2wU2Dphzgl911nHa8WJKUumFOQw.crl (hash: 43E1u8oaahAtGjdKFtBidF/IQLYr2d/z9Se87ZeLzpw=) 2: qIEvRyug51NtPOqrvZlLTZ5-EIQ.roa (hash: BsW/+9betY20XfYjkexlN+8vCvy84YAaJnRdNAcmTYE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:52:c7:35:9e:45:ae:99:e6:a5:9a:27:0c:86:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db05360e9873825f75d671daf1624a52e985390c Validity Not Before: Jan 25 22:01:41 2026 GMT Not After : Jan 26 22:01:41 2026 GMT Subject: CN=d88bd1eb81f7d58e6b16964947438a95ddbc1ba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:eb:f1:6a:1f:7a:30:cb:ed:ea:1f:77:af:dd: 1a:65:79:7b:ec:98:1b:08:85:cd:d7:dd:ce:8d:80: 31:0d:11:1c:fb:5f:05:33:6f:11:21:ed:4b:1f:cc: 60:c7:65:36:45:41:a0:2e:dc:6d:76:09:fc:c4:ed: 3e:09:2a:ae:a8:51:71:ad:99:12:20:fe:d8:86:68: b9:13:8e:ff:6e:f7:b6:4e:c4:0f:90:48:a7:c7:e6: c8:13:aa:cc:fe:a5:85:9b:a6:50:bd:3a:5a:5d:07: 9a:9b:d9:4d:e3:f3:8d:7b:32:10:2c:c5:4d:24:9a: 0c:bb:96:42:3b:96:d4:cd:77:46:43:94:3d:a2:a8: fb:2d:38:ea:f7:cc:d4:ef:07:f4:4d:b9:ee:e8:b8: 75:d4:fc:2f:e7:c1:44:70:50:f0:a8:27:ee:3d:c0: 43:c3:21:8e:e1:2b:76:48:b8:c8:65:d4:ae:46:cc: a3:05:6d:47:40:f0:b8:e5:d5:ea:f8:23:f6:cb:6d: 08:d4:94:94:26:1a:24:ef:bd:30:80:0d:7f:87:d6: dd:d8:9e:69:d7:9e:85:9b:d8:20:a8:cb:c7:33:77: ee:f8:07:8f:c3:af:06:9e:1d:82:00:b1:8b:b0:47: c4:b8:4d:3b:b6:00:b8:8d:e3:b3:33:4a:5a:4a:8d: 86:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8B:D1:EB:81:F7:D5:8E:6B:16:96:49:47:43:8A:95:DD:BC:1B:A0 X509v3 Authority Key Identifier: keyid:DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:a6:1d:9b:93:ae:82:43:9b:41:c9:9e:03:c6:91:52:d8:e1: 2b:80:9c:d8:07:32:66:00:db:65:dc:10:97:ed:8a:20:48:51: 1c:66:ac:9b:89:eb:01:1d:17:68:da:4a:ae:f1:33:91:60:7c: c8:02:30:ed:2e:0e:86:43:ec:e9:64:0f:a2:ac:21:92:ca:43: 58:40:ec:96:23:ee:3c:c5:f0:86:c2:29:bb:67:6b:1e:4c:f0: dc:71:bd:b5:70:e1:59:6d:ab:ef:b5:ce:ec:4c:4c:05:f4:02: ca:d1:50:e4:81:f4:d5:be:53:01:96:dd:79:e9:14:b1:11:86: 8a:5c:4b:56:fd:31:b2:f0:80:cf:17:82:1b:d6:b7:e8:dc:07: 41:82:f1:55:05:9a:8a:23:ea:77:32:fa:74:a7:94:18:a8:b9: fb:ec:0c:bf:86:2d:35:71:3e:07:6b:2e:92:2c:42:09:70:56: d2:0b:e1:b9:d6:e1:e0:70:69:c1:b8:e8:0f:90:72:59:65:62: b1:ce:0b:f6:dc:d3:73:02:77:cb:fb:e1:8b:3b:75:25:a1:56: f8:42:23:39:8f:b2:67:3a:cf:7e:b6:64:69:5d:39:e2:81:c7: 1d:41:c9:49:04:0e:13:bc:d1:e2:a5:2a:d8:9e:73:ce:77:70: 4e:84:ad:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LVLHNZ5FrpnmpZonDIacMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiMDUzNjBlOTg3MzgyNWY3NWQ2NzFkYWYxNjI0YTUyZTk4 NTM5MGMwHhcNMjYwMTI1MjIwMTQxWhcNMjYwMTI2MjIwMTQxWjAzMTEwLwYDVQQD EyhkODhiZDFlYjgxZjdkNThlNmIxNjk2NDk0NzQzOGE5NWRkYmMxYmEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2uvxah96MMvt6h93r90aZXl77Jgb CIXN193OjYAxDREc+18FM28RIe1LH8xgx2U2RUGgLtxtdgn8xO0+CSquqFFxrZkS IP7Yhmi5E47/bve2TsQPkEinx+bIE6rM/qWFm6ZQvTpaXQeam9lN4/ONezIQLMVN JJoMu5ZCO5bUzXdGQ5Q9oqj7LTjq98zU7wf0Tbnu6Lh11Pwv58FEcFDwqCfuPcBD wyGO4St2SLjIZdSuRsyjBW1HQPC45dXq+CP2y20I1JSUJhok770wgA1/h9bd2J5p 156Fm9ggqMvHM3fu+AePw68Gnh2CALGLsEfEuE07tgC4jeOzM0paSo2GWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNiL0euB99WOaxaWSUdDipXdvBugMB8GA1UdIwQY MBaAFNsFNg6Yc4JfddZx2vFiSlLphTkMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS84ZmMxZTItNDFkNy00ZjM1LWExM2Ut ZDYyZDIyNGUzY2FmLzEvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS84ZmMxZTItNDFkNy00ZjM1LWExM2UtZDYyZDIyNGUzY2Fm LzEvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh6Ydm5Ou gkObQcmeA8aRUtjhK4Cc2AcyZgDbZdwQl+2KIEhRHGasm4nrAR0XaNpKrvEzkWB8 yAIw7S4OhkPs6WQPoqwhkspDWEDsliPuPMXwhsIpu2drHkzw3HG9tXDhWW2r77XO 7ExMBfQCytFQ5IH01b5TAZbdeekUsRGGilxLVv0xsvCAzxeCG9a36NwHQYLxVQWa iiPqdzL6dKeUGKi5++wMv4YtNXE+B2sukixCCXBW0gvhudbh4HBpwbjoD5ByWWVi sc4L9tzTcwJ3y/vhizt1JaFW+EIjOY+yZzrPfrZkaV054oHHHUHJSQQOE7zR4qUq 2J5zzndwToSttg== -----END CERTIFICATE-----Generated at Mon Jan 26 01:03:24 2026 by rpki-client