This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft File: I9FK_odQITwoDltovvsYhm95SX8.mft (raw, json) Hash identifier: pSYBUItqXd2ct2MOyXwU8JJif3FyRkG+mqJgJSVHozs= Subject key identifier: DC:3A:94:D1:92:AC:63:69:51:2C:77:43:04:80:7E:45:7A:F5:89:33 Authority key identifier: 23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F Certificate issuer: /CN=23d14afe8750213c280e5b68befb18866f79497f Certificate serial: 019BF9F6A49E40BCA1E3522F3D8AABE004C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft Manifest number: 046C Signing time: Mon 26 Jan 2026 11:00:48 +0000 Manifest this update: Mon 26 Jan 2026 11:00:48 +0000 Manifest next update: Tue 27 Jan 2026 11:00:48 +0000 Files and hashes: 1: I9FK_odQITwoDltovvsYhm95SX8.crl (hash: 6eUi0WAGGkxbM8nbQGqMjG62EmH8aI//fhTfFZahUYs=) 2: RIbu27-D1A3-MonubZ_zZNoyyNM.roa (hash: /mnXw1tu71r9fbtUEEZDR8gD0rD8atHLNSZPRm849T8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:f6:a4:9e:40:bc:a1:e3:52:2f:3d:8a:ab:e0:04:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23d14afe8750213c280e5b68befb18866f79497f Validity Not Before: Jan 26 11:00:48 2026 GMT Not After : Jan 27 11:00:48 2026 GMT Subject: CN=dc3a94d192ac6369512c774304807e457af58933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:eb:e4:18:4a:85:34:3e:e0:bf:33:64:0c:4e: 11:e7:b9:21:a3:0e:9a:83:dd:ad:a9:61:42:9d:59: 98:2b:1f:d7:6a:d9:03:a8:59:e1:bd:9c:84:38:ab: 37:fe:fb:66:55:f7:81:f4:a1:46:9d:29:e5:18:3b: 72:03:8b:6c:0e:c7:6e:70:bf:96:35:4f:16:3e:de: d4:c4:f5:d0:33:6a:5e:d8:e0:32:e2:00:c5:15:fe: d7:f6:1b:3d:09:7b:3a:79:93:17:1e:d2:94:68:78: 61:76:0b:b5:7f:19:cb:62:70:86:40:fc:05:29:1d: 24:cf:58:d4:dc:64:00:c3:f4:24:f9:03:cd:f9:c9: 89:98:e1:23:09:4e:2f:86:29:ad:bc:d5:64:97:45: 72:c2:6e:9f:2f:4e:55:52:c5:32:47:25:af:ee:41: bc:de:8f:e1:29:6b:e3:14:c1:f2:ae:27:3b:ba:4a: ec:7b:49:66:31:59:76:8f:6a:03:a4:78:29:16:6c: 75:bd:f3:ac:80:45:f3:c2:de:3a:a7:b0:31:8e:f6: 34:ce:c4:ef:e4:57:fe:3c:4f:7d:0f:71:1d:cd:ce: c8:21:09:d3:84:10:23:19:99:5d:51:b3:17:fe:b1: ae:e8:a0:13:96:25:8d:24:ba:75:d0:6f:a8:a6:65: 99:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:3A:94:D1:92:AC:63:69:51:2C:77:43:04:80:7E:45:7A:F5:89:33 X509v3 Authority Key Identifier: keyid:23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:fd:00:5f:cb:e7:a0:c0:c2:93:29:d3:36:84:38:ad:9a:a9: 0b:14:8d:8d:2c:35:11:83:74:c5:0d:ac:ef:ba:db:b6:43:d3: 1f:76:7c:96:23:d4:75:85:be:23:b4:d9:4c:3a:83:29:2e:33: ba:c6:32:42:e5:cd:a4:00:04:e6:d6:d4:1c:4d:77:09:71:02: 33:50:3c:7e:bd:9c:10:8a:06:1a:3f:9c:56:68:bb:26:ed:8a: 7f:76:18:35:bf:6f:ee:ce:b5:01:a9:42:0d:1c:93:25:ac:b9: d0:41:e9:f6:71:6d:4f:18:c8:7e:ef:0b:52:c4:52:75:34:6e: 39:a1:57:7f:8f:03:e4:d3:fd:fb:66:cd:31:f2:13:48:25:93: 71:91:77:e2:cb:6d:c4:65:73:47:a3:17:11:f1:d7:0c:4f:08: cd:f4:38:21:df:15:b1:cf:1c:12:6a:4f:d4:9d:17:0f:a8:fd: b5:12:6d:14:64:2a:b9:20:f3:33:6e:11:9a:52:ad:a2:c3:31: df:a1:e6:c2:a1:6b:46:29:72:40:61:b3:4e:cc:d4:32:ec:1c: b9:42:72:01:3a:4d:f8:17:89:a5:8a:29:bd:8f:87:26:b2:7e: 05:63:b9:a9:e2:fd:12:6c:62:eb:a0:3a:f6:8e:da:a9:c0:3e: 0e:0c:d3:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv59qSeQLyh41IvPYqr4ATJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZDE0YWZlODc1MDIxM2MyODBlNWI2OGJlZmIxODg2NmY3 OTQ5N2YwHhcNMjYwMTI2MTEwMDQ4WhcNMjYwMTI3MTEwMDQ4WjAzMTEwLwYDVQQD EyhkYzNhOTRkMTkyYWM2MzY5NTEyYzc3NDMwNDgwN2U0NTdhZjU4OTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjuvkGEqFND7gvzNkDE4R57khow6a g92tqWFCnVmYKx/XatkDqFnhvZyEOKs3/vtmVfeB9KFGnSnlGDtyA4tsDsducL+W NU8WPt7UxPXQM2pe2OAy4gDFFf7X9hs9CXs6eZMXHtKUaHhhdgu1fxnLYnCGQPwF KR0kz1jU3GQAw/Qk+QPN+cmJmOEjCU4vhimtvNVkl0Vywm6fL05VUsUyRyWv7kG8 3o/hKWvjFMHyric7ukrse0lmMVl2j2oDpHgpFmx1vfOsgEXzwt46p7AxjvY0zsTv 5Ff+PE99D3Edzc7IIQnThBAjGZldUbMX/rGu6KATliWNJLp10G+opmWZaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNw6lNGSrGNpUSx3QwSAfkV69YkzMB8GA1UdIwQY MBaAFCPRSv6HUCE8KA5baL77GIZveUl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS84OWY4NDUtNTc2NS00YzExLTkyY2Qt ODQ3MmNhNDBmN2E3LzEvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS84OWY4NDUtNTc2NS00YzExLTkyY2QtODQ3MmNhNDBmN2E3 LzEvSTlGS19vZFFJVHdvRGx0b3Z2c1lobTk1U1g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKv0AX8vn oMDCkynTNoQ4rZqpCxSNjSw1EYN0xQ2s77rbtkPTH3Z8liPUdYW+I7TZTDqDKS4z usYyQuXNpAAE5tbUHE13CXECM1A8fr2cEIoGGj+cVmi7Ju2Kf3YYNb9v7s61AalC DRyTJay50EHp9nFtTxjIfu8LUsRSdTRuOaFXf48D5NP9+2bNMfITSCWTcZF34stt xGVzR6MXEfHXDE8IzfQ4Id8Vsc8cEmpP1J0XD6j9tRJtFGQquSDzM24RmlKtosMx 36HmwqFrRilyQGGzTszUMuwcuUJyATpN+BeJpYopvY+HJrJ+BWO5qeL9Emxi66A6 9o7aqcA+DgzTyA== -----END CERTIFICATE-----Generated at Mon Jan 26 14:26:02 2026 by rpki-client