This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json) Hash identifier: XbfI7pgyC7zIh/01E06wt6V9TZYFL92xjl+OTVeYgnc= Subject key identifier: 03:28:7B:A4:19:F7:F0:02:73:1A:D4:72:10:3E:EA:11:26:88:84:82 Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3 Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3 Certificate serial: 019BF4997D55379D01D9F2107EC0E42943CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft Manifest number: 04E7 Signing time: Sun 25 Jan 2026 10:00:58 +0000 Manifest this update: Sun 25 Jan 2026 10:00:58 +0000 Manifest next update: Mon 26 Jan 2026 10:00:58 +0000 Files and hashes: 1: H8UNN8H7VPAPeU8HfY2pZ9baom8.roa (hash: aa3mwH6a5yy6jaHkG9FnSEuRMRDZi+0YDMCMC7O4/3M=) 2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: OlATOsLXJhZ9exkOyEfEFG9LgofLKLXIuMnryNm10T0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:7d:55:37:9d:01:d9:f2:10:7e:c0:e4:29:43:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3 Validity Not Before: Jan 25 10:00:58 2026 GMT Not After : Jan 26 10:00:58 2026 GMT Subject: CN=03287ba419f7f002731ad472103eea1126888482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:bf:ff:87:48:1d:c7:88:b7:5e:a6:27:26: f2:2f:ac:34:ef:30:d3:6c:64:b3:8f:e0:a6:07:51: ec:6c:17:00:fc:4b:17:6c:2a:16:b0:ef:de:ae:59: 4f:f2:26:4c:29:bc:a4:a6:1e:5c:6f:33:e3:c7:95: 53:1e:41:58:b7:68:38:47:65:97:42:6e:e1:71:52: 3f:18:8c:dd:a0:54:41:64:d2:f0:10:ab:53:23:92: 48:b8:06:e9:42:4b:80:ca:2b:ad:14:46:7a:27:f5: 3b:da:b3:97:ad:31:14:6d:82:e1:37:4a:af:93:da: 6a:ae:c0:5f:b4:99:81:17:4f:de:96:cb:0f:11:50: 4d:05:b7:99:cb:5c:de:c8:53:c5:cf:b1:12:56:d2: e3:bd:69:5f:97:7c:94:0b:7f:1d:6f:39:31:d5:69: b0:c7:78:5a:5b:ff:1a:1e:c6:cb:7a:c7:1d:5e:3e: c9:49:07:76:ce:3b:cb:66:cd:56:51:1a:f5:ba:23: 68:b4:89:cb:4f:c9:27:4d:a4:b4:be:4a:75:52:40: fd:a2:94:1f:71:de:3d:19:b7:95:6d:ed:72:83:12: c7:07:09:77:e5:30:c2:08:38:11:53:68:b4:77:27: f0:d5:0d:0b:1a:26:79:b7:5c:ab:ed:df:fe:18:87: 04:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:28:7B:A4:19:F7:F0:02:73:1A:D4:72:10:3E:EA:11:26:88:84:82 X509v3 Authority Key Identifier: keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:51:c1:e8:b3:55:49:44:b1:d1:53:6c:d7:52:bd:4d:80:9c: d5:25:d5:5f:bc:c4:14:97:bd:84:41:a8:ef:5f:bb:28:fd:99: 13:eb:a6:e3:5e:c5:46:94:39:3f:01:be:62:6a:22:81:01:fb: 1a:1d:b1:3f:0d:87:ad:66:4b:c6:38:4d:8d:3c:56:ef:c9:af: b0:d7:0d:0f:0c:ea:9e:94:a0:4b:44:83:43:18:86:31:d0:4b: f1:1e:e2:da:93:a2:31:af:13:8b:e5:9c:05:92:66:04:ba:5c: 4a:c6:71:d0:8a:1f:c5:6f:7d:82:fb:7b:9a:d2:2f:2c:59:ce: 26:19:52:c2:ea:5d:9d:11:f8:3b:4d:1f:e3:e2:e0:01:a5:4f: 36:35:07:6a:4c:b5:78:90:9a:1a:bc:61:ba:fb:14:32:8e:63: 85:6b:c6:1d:7d:e6:76:8b:b1:ec:12:49:92:50:87:db:5b:09: 9a:61:53:42:7f:a6:3c:80:e8:fe:c6:fd:e7:71:0f:3c:ee:39: 51:64:c0:b5:c3:b1:37:85:1a:f3:c0:59:05:7a:04:63:52:e0: 0a:6a:d5:e2:e7:9c:5a:6b:25:9d:01:03:bf:62:41:9f:02:0a: 60:92:6a:68:3f:26:52:d3:67:90:8b:b4:88:df:38:91:44:03: ec:b7:9d:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mX1VN50B2fIQfsDkKUPKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzN2ZlNjRkNjg0OGY4MDEyMGFiZTY5NWUzMWZhYzQ5Y2E1 ZDA3ZjMwHhcNMjYwMTI1MTAwMDU4WhcNMjYwMTI2MTAwMDU4WjAzMTEwLwYDVQQD EygwMzI4N2JhNDE5ZjdmMDAyNzMxYWQ0NzIxMDNlZWExMTI2ODg4NDgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWO//4dIHceIt16mJybyL6w07zDT bGSzj+CmB1HsbBcA/EsXbCoWsO/erllP8iZMKbykph5cbzPjx5VTHkFYt2g4R2WX Qm7hcVI/GIzdoFRBZNLwEKtTI5JIuAbpQkuAyiutFEZ6J/U72rOXrTEUbYLhN0qv k9pqrsBftJmBF0/elssPEVBNBbeZy1zeyFPFz7ESVtLjvWlfl3yUC38dbzkx1Wmw x3haW/8aHsbLescdXj7JSQd2zjvLZs1WURr1uiNotInLT8knTaS0vkp1UkD9opQf cd49GbeVbe1ygxLHBwl35TDCCDgRU2i0dyfw1Q0LGiZ5t1yr7d/+GIcEIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAMoe6QZ9/ACcxrUchA+6hEmiISCMB8GA1UdIwQY MBaAFCN/5k1oSPgBIKvmleMfrEnKXQfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMt ZmQyMTM3MjJiZmY5LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMtZmQyMTM3MjJiZmY5 LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKVHB6LNV SUSx0VNs11K9TYCc1SXVX7zEFJe9hEGo71+7KP2ZE+um417FRpQ5PwG+YmoigQH7 Gh2xPw2HrWZLxjhNjTxW78mvsNcNDwzqnpSgS0SDQxiGMdBL8R7i2pOiMa8Ti+Wc BZJmBLpcSsZx0IofxW99gvt7mtIvLFnOJhlSwupdnRH4O00f4+LgAaVPNjUHaky1 eJCaGrxhuvsUMo5jhWvGHX3mdoux7BJJklCH21sJmmFTQn+mPIDo/sb953EPPO45 UWTAtcOxN4Ua88BZBXoEY1LgCmrV4uecWmslnQEDv2JBnwIKYJJqaD8mUtNnkIu0 iN84kUQD7LedZQ== -----END CERTIFICATE-----Generated at Sun Jan 25 19:15:05 2026 by rpki-client