This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json) Hash identifier: EUMDlro7VeQA12EuTiAQFeehRLMCgjbmnLSEdqFNv3U= Subject key identifier: BE:FE:09:70:48:FC:AF:66:14:38:39:96:04:D8:D2:3B:14:3A:43:95 Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1 Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1 Certificate serial: 019B7835CB8CCF7F1E545DE9ED2593B22A0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft Manifest number: 17A8 Signing time: Thu 01 Jan 2026 06:19:09 +0000 Manifest this update: Thu 01 Jan 2026 06:19:09 +0000 Manifest next update: Fri 02 Jan 2026 06:19:09 +0000 Files and hashes: 1: 1-BTuYEiDE2mEIP2dyXdE1PSMv3c.roa (hash: tBxS565NzZV2f/vbdXm3F39V84JJovJ6zXMOf+itJ6Q=) 2: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: 7ejw9nfEpD4A154nKrQXRbwVnjfr9VMlfmByh07nFk4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 06:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:cb:8c:cf:7f:1e:54:5d:e9:ed:25:93:b2:2a:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1 Validity Not Before: Jan 1 06:19:09 2026 GMT Not After : Jan 2 06:19:09 2026 GMT Subject: CN=befe097048fcaf661438399604d8d23b143a4395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c9:45:7f:5f:c7:87:2b:fb:e6:a8:ca:83:35: 3b:af:38:4d:3e:72:51:6b:84:1f:47:2e:41:b6:50: c7:7c:4f:3f:f5:71:df:f1:da:cd:be:a1:d3:44:5b: 95:d3:d3:f3:6b:0a:36:90:bd:22:3a:f8:ef:44:98: 42:04:21:72:d8:2c:f7:9b:41:ac:10:a4:64:65:6b: 4c:9f:27:c3:50:e7:9f:cf:71:e8:51:6f:89:9b:e2: 0a:0a:60:66:a1:6a:3a:c7:58:b9:71:aa:81:b3:60: 73:dd:fd:cf:05:63:89:a1:25:5f:14:df:b6:f7:16: 7f:50:b2:89:62:44:5c:fa:1d:79:92:63:37:c4:e2: e3:63:f6:da:c3:08:e9:3b:96:09:4f:98:8d:78:74: e6:4b:7f:3f:3d:b8:1d:4b:b0:8b:f6:05:1b:91:e2: c1:ec:7c:6d:a7:77:35:b7:20:37:2e:e1:7b:f7:6e: da:36:8c:37:22:d3:49:ea:63:61:2e:7a:68:8b:6c: 1e:86:48:30:98:be:53:68:3d:6b:29:66:b7:59:bf: de:39:a7:b7:82:74:ef:be:a4:02:34:a3:9e:ba:dc: 8e:99:65:be:8d:b1:87:0c:02:e3:d2:33:87:f7:dc: 16:c4:53:16:cb:17:4e:2f:83:c8:8a:6b:6c:fe:6d: bc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:FE:09:70:48:FC:AF:66:14:38:39:96:04:D8:D2:3B:14:3A:43:95 X509v3 Authority Key Identifier: keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:8e:6a:a2:1a:d6:c8:47:2d:71:03:ef:e1:98:8f:8e:69:5d: c8:d7:77:59:ea:c5:74:22:b6:46:de:f7:41:6d:68:8b:5c:6f: 8c:1c:53:f6:a9:43:4f:ed:76:bf:ac:7a:e9:d6:26:3f:0c:aa: ad:66:bb:3a:f8:1b:62:c1:fc:46:37:e0:82:ad:a3:35:43:e7: 0f:60:3a:2e:ef:4d:49:4c:84:1a:9e:4f:d6:ee:01:92:d4:87: d1:e6:66:4e:21:86:fb:6c:0f:9b:94:ce:bc:06:c3:83:a2:d7: 96:b1:6c:c9:b8:a6:47:01:04:79:8a:c8:32:f1:61:7b:e0:2e: e7:00:f4:af:e8:32:d2:da:f3:17:64:12:33:2e:4c:ea:73:7f: c5:0c:d5:8b:da:c9:bf:3e:fd:f1:e8:37:0d:54:f4:40:d4:5a: 41:97:58:98:ec:01:45:79:74:1a:13:fe:1c:0b:e7:b8:bb:e7: ac:52:58:c8:b6:c8:48:4f:fa:bc:80:13:99:f8:c0:1f:be:d1: dc:ce:12:f5:08:a8:68:98:5c:b6:7b:1c:a7:07:23:22:10:af: 5e:71:89:0c:50:22:42:ae:f6:9e:04:bd:40:8e:d1:54:d1:af: bc:97:b8:00:ff:34:99:f2:4c:f4:cd:ab:c5:35:03:22:f5:93: ca:45:ff:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt4NcuMz38eVF3p7SWTsioOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4NDNmMWFhMDQ5OGQ4NGY3OTUzMjNjMWZmNmJhZTNhZjQw MjA2ZDEwHhcNMjYwMTAxMDYxOTA5WhcNMjYwMTAyMDYxOTA5WjAzMTEwLwYDVQQD EyhiZWZlMDk3MDQ4ZmNhZjY2MTQzODM5OTYwNGQ4ZDIzYjE0M2E0Mzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8lFf1/Hhyv75qjKgzU7rzhNPnJR a4QfRy5BtlDHfE8/9XHf8drNvqHTRFuV09Pzawo2kL0iOvjvRJhCBCFy2Cz3m0Gs EKRkZWtMnyfDUOefz3HoUW+Jm+IKCmBmoWo6x1i5caqBs2Bz3f3PBWOJoSVfFN+2 9xZ/ULKJYkRc+h15kmM3xOLjY/bawwjpO5YJT5iNeHTmS38/PbgdS7CL9gUbkeLB 7Hxtp3c1tyA3LuF7927aNow3ItNJ6mNhLnpoi2wehkgwmL5TaD1rKWa3Wb/eOae3 gnTvvqQCNKOeutyOmWW+jbGHDALj0jOH99wWxFMWyxdOL4PIimts/m28rwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL7+CXBI/K9mFDg5lgTY0jsUOkOVMB8GA1UdIwQY MBaAFNhD8aoEmNhPeVMjwf9rrjr0AgbRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEt NzZhMTk0NTU0YjA1LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEtNzZhMTk0NTU0YjA1 LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf45qohrW yEctcQPv4ZiPjmldyNd3WerFdCK2Rt73QW1oi1xvjBxT9qlDT+12v6x66dYmPwyq rWa7OvgbYsH8Rjfggq2jNUPnD2A6Lu9NSUyEGp5P1u4BktSH0eZmTiGG+2wPm5TO vAbDg6LXlrFsybimRwEEeYrIMvFhe+Au5wD0r+gy0trzF2QSMy5M6nN/xQzVi9rJ vz798eg3DVT0QNRaQZdYmOwBRXl0GhP+HAvnuLvnrFJYyLbISE/6vIATmfjAH77R 3M4S9QioaJhctnscpwcjIhCvXnGJDFAiQq72ngS9QI7RVNGvvJe4AP80mfJM9M2r xTUDIvWTykX/cw== -----END CERTIFICATE-----Generated at Thu Jan 1 12:33:01 2026 by rpki-client