This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json) Hash identifier: 4EDnUdPEnu7Kn0KuRB/dS4cSTIh7mYdIHIjfAKmVg4g= Subject key identifier: 1B:C9:D4:AC:EF:F8:8A:9B:0C:28:69:F4:9C:30:9B:53:2D:7A:CE:CF Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6 Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6 Certificate serial: 019BF198B67DADE6343A09D261AF72600DB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft Manifest number: 1509 Signing time: Sat 24 Jan 2026 20:01:15 +0000 Manifest this update: Sat 24 Jan 2026 20:01:15 +0000 Manifest next update: Sun 25 Jan 2026 20:01:15 +0000 Files and hashes: 1: DoG1nIvAyF6Ofk7B7oBXD9fCbWY.roa (hash: 9biYSv6POYCwfleLHgkM4hjjkLE1P6h07qcPCt2vZ8Q=) 2: Ku186Y-Tu0woDCZbFinpqq7ZdFE.roa (hash: v4Tz8TXIdty6/ZjbJ1ivX2W0EU7wX33Cwf/C7mVCK74=) 3: _yFrTYVVOzem6SAvOPOzP_wE_MM.roa (hash: 5prdT05UIi7fhKfl8B0EiaHRzoodJuHLB7r7onONbos=) 4: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: 4xqjJ1905mfsA0fux1wXx0TCt+ZGpoGGUFZTnU7YHVI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f1:98:b6:7d:ad:e6:34:3a:09:d2:61:af:72:60:0d:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6 Validity Not Before: Jan 24 20:01:15 2026 GMT Not After : Jan 25 20:01:15 2026 GMT Subject: CN=1bc9d4aceff88a9b0c2869f49c309b532d7acecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:43:39:9c:dd:ce:58:40:82:0f:60:97:1b:3d: 49:89:23:d7:35:b1:0c:e0:f0:bb:2d:6a:b1:cb:ad: 74:c1:40:3a:f2:04:33:9f:8a:f7:bb:7f:fe:9f:ed: 84:87:4a:28:2a:f5:b1:74:39:d4:7e:03:c7:ba:cf: fb:53:db:ba:ad:7f:21:d7:57:b7:3a:87:5b:f6:83: 94:c6:fe:89:97:0a:e0:f4:4a:55:4d:b9:41:85:25: f2:88:bc:4d:80:ec:9d:6c:16:9d:29:44:d0:56:ed: 62:17:01:f7:be:79:45:0e:90:e5:e9:de:9c:2b:ff: e3:f5:6d:c3:05:4e:e8:e4:2b:2f:94:4c:b7:75:21: 27:8d:78:c2:98:69:af:99:98:84:a1:3d:f4:17:aa: e9:14:ca:f8:bb:1f:a1:aa:79:67:03:bf:78:62:97: 4f:76:3a:b5:11:47:97:7f:82:52:ae:06:47:01:1b: 03:6d:13:c8:ef:f9:9b:7b:cb:6c:3d:2f:52:d3:43: fa:a9:86:c0:25:23:f7:5b:b2:c5:5a:ad:4e:24:f4: 04:80:d6:53:75:4e:0d:ba:4a:ae:1d:01:9f:28:e4: fa:e2:52:64:87:e2:ff:ff:a4:d7:cb:8a:e4:5a:5f: fb:96:f9:58:25:68:e7:07:8c:85:fe:70:84:9d:07: c5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C9:D4:AC:EF:F8:8A:9B:0C:28:69:F4:9C:30:9B:53:2D:7A:CE:CF X509v3 Authority Key Identifier: keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:38:6d:40:b1:64:19:53:0c:6e:08:fc:26:d6:d1:06:a8:85: 1b:92:03:b4:a1:d9:75:37:58:1a:ff:03:40:a3:e8:6d:f3:db: 20:a4:8d:4d:78:cb:2e:18:c1:79:92:68:fc:10:97:cf:ee:ba: 7c:b3:1d:33:3c:44:8e:42:c1:f4:f5:26:34:9b:79:56:a9:ec: f4:b1:af:0b:b6:c8:26:bd:a0:6f:bc:2b:e3:b8:81:3a:d8:c8: b9:47:70:d0:25:02:a5:3c:46:e0:b5:52:66:db:b4:4f:07:e5: ec:9c:70:99:11:a6:b9:c7:b7:9f:e8:f6:9e:29:17:b8:cc:e5: f6:56:c2:48:2b:32:3a:39:09:76:a4:c5:44:e1:f9:65:dd:7a: de:22:52:0a:db:7a:a7:86:d0:d7:4a:b3:3f:78:2f:06:53:a9: 92:f9:0a:1a:ee:eb:81:e1:cf:bf:36:1a:98:d2:f4:c0:7c:7a: 1f:cd:e5:3c:64:f7:6f:f5:10:1a:0a:7d:16:18:c5:7f:12:4d: 1f:d1:af:e9:b5:48:4f:01:e0:ac:be:31:51:00:b2:fe:13:98: a3:fc:d8:fd:17:72:22:b0:ef:16:83:e5:f0:de:9c:1d:8a:41: e7:31:4d:ec:7a:73:c2:6e:2d:74:52:bf:df:9e:9f:c6:bd:54: cf:7c:17:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvxmLZ9reY0OgnSYa9yYA2wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MjFhMzlhZWQ5ZGE0ZWUzYWI2NjM5ZDI0NDUwOGZhMWU4 ZDIwZjYwHhcNMjYwMTI0MjAwMTE1WhcNMjYwMTI1MjAwMTE1WjAzMTEwLwYDVQQD EygxYmM5ZDRhY2VmZjg4YTliMGMyODY5ZjQ5YzMwOWI1MzJkN2FjZWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA60M5nN3OWECCD2CXGz1JiSPXNbEM 4PC7LWqxy610wUA68gQzn4r3u3/+n+2Eh0ooKvWxdDnUfgPHus/7U9u6rX8h11e3 Oodb9oOUxv6Jlwrg9EpVTblBhSXyiLxNgOydbBadKUTQVu1iFwH3vnlFDpDl6d6c K//j9W3DBU7o5CsvlEy3dSEnjXjCmGmvmZiEoT30F6rpFMr4ux+hqnlnA794YpdP djq1EUeXf4JSrgZHARsDbRPI7/mbe8tsPS9S00P6qYbAJSP3W7LFWq1OJPQEgNZT dU4NukquHQGfKOT64lJkh+L//6TXy4rkWl/7lvlYJWjnB4yF/nCEnQfFFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBvJ1Kzv+IqbDChp9Jwwm1Mtes7PMB8GA1UdIwQY MBaAFIgho5rtnaTuOrZjnSRFCPoejSD2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC80OTY3NzMtNTAxOC00OGRjLWEyNDAt ZjYwZDZmNzE4MmExLzEvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC80OTY3NzMtNTAxOC00OGRjLWEyNDAtZjYwZDZmNzE4MmEx LzEvaUNHam11MmRwTzQ2dG1PZEpFVUktaDZOSVBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJjhtQLFk GVMMbgj8JtbRBqiFG5IDtKHZdTdYGv8DQKPobfPbIKSNTXjLLhjBeZJo/BCXz+66 fLMdMzxEjkLB9PUmNJt5Vqns9LGvC7bIJr2gb7wr47iBOtjIuUdw0CUCpTxG4LVS Ztu0Twfl7JxwmRGmuce3n+j2nikXuMzl9lbCSCsyOjkJdqTFROH5Zd163iJSCtt6 p4bQ10qzP3gvBlOpkvkKGu7rgeHPvzYamNL0wHx6H83lPGT3b/UQGgp9FhjFfxJN H9Gv6bVITwHgrL4xUQCy/hOYo/zY/RdyIrDvFoPl8N6cHYpB5zFN7Hpzwm4tdFK/ 356fxr1Uz3wXjg== -----END CERTIFICATE-----Generated at Sun Jan 25 05:41:59 2026 by rpki-client