This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft File: iaBBZwABZgo3ILd9dk2DaFIZATg.mft (raw, json) Hash identifier: 7lf1ss65Er5QSxLWJ797pgs7Fnz6VVDWSvzoSsfBebg= Subject key identifier: D9:15:1E:85:11:A5:41:46:1D:85:54:95:63:9A:A3:AE:8C:2E:D3:B2 Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38 Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138 Certificate serial: 019BF2AB64573A968084E6FD4B107C8ECB2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft Manifest number: 05EE Signing time: Sun 25 Jan 2026 01:01:17 +0000 Manifest this update: Sun 25 Jan 2026 01:01:17 +0000 Manifest next update: Mon 26 Jan 2026 01:01:17 +0000 Files and hashes: 1: YYlR0VhASW-c1FKU9zzl7csrdhQ.roa (hash: L8Cgn7blv4wmGFxmaxB9nE0adWzGkvnaCFP3mMVQv7g=) 2: iaBBZwABZgo3ILd9dk2DaFIZATg.crl (hash: 2+ljl3QofnAxpX+qlvV/nGOdnenm9tCxd200P/oqygk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f2:ab:64:57:3a:96:80:84:e6:fd:4b:10:7c:8e:cb:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89a041670001660a3720b77d764d836852190138 Validity Not Before: Jan 25 01:01:17 2026 GMT Not After : Jan 26 01:01:17 2026 GMT Subject: CN=d9151e8511a541461d855495639aa3ae8c2ed3b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:19:56:7a:28:cf:2e:58:7b:81:ca:5a:a3:2d: 80:72:2e:ef:8c:d0:ec:db:48:1a:cb:34:c0:ca:09: 02:5d:e2:65:a7:5d:27:e1:44:a1:c4:83:ae:85:04: e6:ea:d4:84:8b:20:a3:96:ae:b9:df:1e:28:31:4c: 17:4a:9b:de:63:af:18:4a:10:60:5c:56:52:59:b6: 1b:ec:c4:a8:a0:f7:60:bb:fc:76:b3:76:ff:46:56: 84:29:87:68:05:fe:f5:a5:72:b0:62:27:69:72:96: c4:6e:bb:8f:d7:3a:52:66:80:d1:5e:f3:e6:a0:54: bb:fa:e2:3f:60:81:92:f5:a2:26:3e:64:c3:81:43: 27:40:6e:00:c7:3b:19:a3:ca:48:7e:df:74:f3:2c: 1f:b0:2a:7a:20:06:2f:ba:b4:40:af:91:2d:97:26: 5b:7c:7d:d1:36:13:64:92:81:5c:10:e0:4a:e4:1f: c6:64:09:8b:e8:75:0f:ac:38:f3:9c:55:37:17:78: 8f:e5:94:f1:4a:33:20:d4:8a:63:b7:91:cf:45:7a: ef:b1:38:90:28:d0:fb:f8:1c:64:a2:03:8f:91:57: dd:87:30:f9:c5:9c:ec:b3:93:6a:a8:a4:54:22:12: e4:c3:c1:b0:cf:38:51:d4:a6:b9:5c:79:e3:3c:ba: bc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:15:1E:85:11:A5:41:46:1D:85:54:95:63:9A:A3:AE:8C:2E:D3:B2 X509v3 Authority Key Identifier: keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:66:03:32:f3:8d:86:b5:6a:75:e6:3f:6a:4a:f2:2d:f6:20: 4b:99:be:b4:ca:85:47:d1:06:70:e3:f0:7a:65:20:04:25:93: 27:12:35:0e:74:4a:25:07:60:6f:84:5d:79:88:97:e5:a5:75: 34:26:40:ad:22:a9:62:11:e9:eb:db:11:de:69:72:75:f1:a3: 45:b5:89:f0:35:89:89:d5:33:51:73:7c:f3:8f:39:b7:1d:36: 24:bd:b1:69:c4:dc:d4:f3:4d:7c:7f:6b:49:c1:50:88:a4:ba: 36:0e:b8:f7:c5:76:7c:68:9e:73:34:9c:da:8a:61:43:31:e3: 25:5e:33:66:76:32:6c:d6:4c:66:17:44:75:ff:3f:e0:17:bb: 2a:2b:90:1c:32:aa:d3:43:b5:08:ce:b2:84:46:21:3a:27:9a: f8:23:b9:fa:b3:f6:65:8e:ca:c1:cc:da:06:5d:2f:e3:d4:b2: 26:e4:98:41:4a:9a:19:9f:7a:c6:3d:c7:18:23:f8:72:b6:4e: a2:64:0b:46:bc:e9:73:04:89:50:41:ad:41:6d:0c:39:3b:e7: 21:53:2f:1d:81:f8:b9:27:b6:05:68:3f:7a:c4:5b:c1:fc:f5: 34:f7:a5:32:23:53:f9:8f:db:16:2f:03:49:81:1e:1e:82:f4: 85:32:14:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvyq2RXOpaAhOb9SxB8jsssMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YTA0MTY3MDAwMTY2MGEzNzIwYjc3ZDc2NGQ4MzY4NTIx OTAxMzgwHhcNMjYwMTI1MDEwMTE3WhcNMjYwMTI2MDEwMTE3WjAzMTEwLwYDVQQD EyhkOTE1MWU4NTExYTU0MTQ2MWQ4NTU0OTU2MzlhYTNhZThjMmVkM2IyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRlWeijPLlh7gcpaoy2Aci7vjNDs 20gayzTAygkCXeJlp10n4UShxIOuhQTm6tSEiyCjlq653x4oMUwXSpveY68YShBg XFZSWbYb7MSooPdgu/x2s3b/RlaEKYdoBf71pXKwYidpcpbEbruP1zpSZoDRXvPm oFS7+uI/YIGS9aImPmTDgUMnQG4AxzsZo8pIft908ywfsCp6IAYvurRAr5EtlyZb fH3RNhNkkoFcEOBK5B/GZAmL6HUPrDjznFU3F3iP5ZTxSjMg1Ipjt5HPRXrvsTiQ KND7+BxkogOPkVfdhzD5xZzss5NqqKRUIhLkw8GwzzhR1Ka5XHnjPLq8AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkVHoURpUFGHYVUlWOao66MLtOyMB8GA1UdIwQY MBaAFImgQWcAAWYKNyC3fXZNg2hSGQE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYt NGJiNDE0NjIzYTE0LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYtNGJiNDE0NjIzYTE0 LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIWYDMvON hrVqdeY/akryLfYgS5m+tMqFR9EGcOPwemUgBCWTJxI1DnRKJQdgb4RdeYiX5aV1 NCZArSKpYhHp69sR3mlydfGjRbWJ8DWJidUzUXN88485tx02JL2xacTc1PNNfH9r ScFQiKS6Ng6498V2fGieczSc2ophQzHjJV4zZnYybNZMZhdEdf8/4Be7KiuQHDKq 00O1CM6yhEYhOiea+CO5+rP2ZY7KwczaBl0v49SyJuSYQUqaGZ96xj3HGCP4crZO omQLRrzpcwSJUEGtQW0MOTvnIVMvHYH4uSe2BWg/esRbwfz1NPelMiNT+Y/bFi8D SYEeHoL0hTIUGA== -----END CERTIFICATE-----Generated at Sun Jan 25 05:40:43 2026 by rpki-client