This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json) Hash identifier: NC9C0QAqKDjmIhdq5ddyWbHZfK0zRX23cxE3znvpEm8= Subject key identifier: FA:5E:DE:55:74:22:0D:17:8C:84:ED:5E:03:CD:8D:EF:AF:32:E6:88 Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca Certificate serial: 019BF83F24C82ED2F890924CC27D6468D936 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft Manifest number: 0BD1 Signing time: Mon 26 Jan 2026 03:00:46 +0000 Manifest this update: Mon 26 Jan 2026 03:00:46 +0000 Manifest next update: Tue 27 Jan 2026 03:00:46 +0000 Files and hashes: 1: 1gk0sLtkOinOBhMkUiRN6708AVA.roa (hash: qx4BeBMu/olO2Xz1c+ij7UE+dLcw4YvlNY6rUOImv/o=) 2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: 00lthVLfrhBmsaK5mz+unALxHjpVLJXAaQCC4qpvJdY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:3f:24:c8:2e:d2:f8:90:92:4c:c2:7d:64:68:d9:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca Validity Not Before: Jan 26 03:00:46 2026 GMT Not After : Jan 27 03:00:46 2026 GMT Subject: CN=fa5ede5574220d178c84ed5e03cd8defaf32e688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:63:a9:e5:24:47:39:43:b8:aa:a3:fc:2d:da: 50:9f:ca:f7:23:e1:df:50:c3:45:e8:32:98:45:30: 7f:b8:6e:ea:64:f5:21:8c:91:94:f5:37:2a:67:f4: 48:01:42:45:a7:0e:4c:64:70:53:11:7b:d2:cd:a5: ac:28:0b:d7:24:b8:d2:07:1c:d3:97:58:67:03:22: a1:18:55:dc:47:59:ee:72:ea:be:bd:f5:c2:bb:a7: 5b:9b:db:d7:03:ea:c6:28:ca:a7:48:d0:2f:f7:1f: e2:c2:00:b1:da:5f:8a:00:1f:43:60:1a:0a:fc:f5: aa:84:ae:48:5e:d0:d6:8b:fc:27:a6:03:8c:64:67: 8b:31:d6:60:35:e5:9d:eb:2c:42:bb:91:bf:07:7e: 66:09:34:b1:59:2d:56:3b:f9:3f:df:8d:31:92:cf: 2b:c1:d1:fe:4b:dc:88:cb:33:7f:3e:de:b9:c8:dc: b0:e7:e2:94:0f:bc:12:1d:c9:32:1c:c8:ed:ce:99: c4:1e:79:3e:d1:a6:b6:24:c4:cb:3d:45:a7:c7:81: 51:db:ca:75:17:76:49:ff:ae:a2:0e:f8:43:e4:97: b5:97:87:33:2f:d5:01:68:b5:f7:11:46:57:f2:94: c4:da:5a:14:05:66:60:21:81:81:18:e3:92:04:ed: 87:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:5E:DE:55:74:22:0D:17:8C:84:ED:5E:03:CD:8D:EF:AF:32:E6:88 X509v3 Authority Key Identifier: keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:99:cf:96:c7:e2:1d:57:e9:4a:84:40:a0:3a:ca:fc:21:12: ce:ca:7f:48:3b:1e:e7:81:c2:72:81:a1:85:d4:62:e4:74:2d: 1f:28:ac:25:d3:34:5a:a6:93:74:32:51:df:ad:47:61:d7:66: a0:da:81:a1:c7:9d:8f:1b:49:f2:4e:53:29:1f:e4:f8:42:3c: e3:51:4f:7c:d2:18:ee:cb:87:ca:65:fb:25:49:4e:ec:65:46: 48:b1:14:c6:9c:60:bf:02:f4:d7:6b:8f:ef:40:2f:c8:78:b7: 27:d4:30:70:72:d6:3e:db:df:ab:d2:45:1c:a4:97:1f:56:2b: a8:8e:2f:a9:0f:fa:b4:22:ae:61:1e:df:a9:98:c0:75:b7:4c: a5:6b:19:b9:53:a5:85:00:66:aa:ca:31:29:3b:b2:2c:50:6b: 90:ba:3e:76:9f:5a:bb:99:a9:55:fd:e2:87:a4:6f:ed:fe:18: 21:83:1e:51:ba:c2:2a:66:ff:d5:23:2d:37:29:4e:37:4b:04: c3:51:d9:3d:5c:a7:54:65:2f:1e:15:9e:f8:3c:be:b4:00:8b: fa:da:f5:23:2f:54:ab:dd:e2:61:13:fc:8d:af:5d:a5:39:7d: 76:74:f9:5c:74:db:2e:8c:f9:a0:af:0b:29:e8:c4:f6:34:94: 1f:f5:1b:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4PyTILtL4kJJMwn1kaNk2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZjdmMzJkMzNmNjY0Njc3OWE1MWZiMjMyMDFjNjQ0MmQx NDUxY2EwHhcNMjYwMTI2MDMwMDQ2WhcNMjYwMTI3MDMwMDQ2WjAzMTEwLwYDVQQD EyhmYTVlZGU1NTc0MjIwZDE3OGM4NGVkNWUwM2NkOGRlZmFmMzJlNjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2Op5SRHOUO4qqP8LdpQn8r3I+Hf UMNF6DKYRTB/uG7qZPUhjJGU9TcqZ/RIAUJFpw5MZHBTEXvSzaWsKAvXJLjSBxzT l1hnAyKhGFXcR1nucuq+vfXCu6dbm9vXA+rGKMqnSNAv9x/iwgCx2l+KAB9DYBoK /PWqhK5IXtDWi/wnpgOMZGeLMdZgNeWd6yxCu5G/B35mCTSxWS1WO/k/340xks8r wdH+S9yIyzN/Pt65yNyw5+KUD7wSHckyHMjtzpnEHnk+0aa2JMTLPUWnx4FR28p1 F3ZJ/66iDvhD5Je1l4czL9UBaLX3EUZX8pTE2loUBWZgIYGBGOOSBO2HjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPpe3lV0Ig0XjITtXgPNje+vMuaIMB8GA1UdIwQY MBaAFIr38y0z9mRneaUfsjIBxkQtFFHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMt NWI3MmZiOTI3ZDFjLzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMtNWI3MmZiOTI3ZDFj LzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANZnPlsfi HVfpSoRAoDrK/CESzsp/SDse54HCcoGhhdRi5HQtHyisJdM0WqaTdDJR361HYddm oNqBocedjxtJ8k5TKR/k+EI841FPfNIY7suHymX7JUlO7GVGSLEUxpxgvwL012uP 70AvyHi3J9QwcHLWPtvfq9JFHKSXH1YrqI4vqQ/6tCKuYR7fqZjAdbdMpWsZuVOl hQBmqsoxKTuyLFBrkLo+dp9au5mpVf3ih6Rv7f4YIYMeUbrCKmb/1SMtNylON0sE w1HZPVynVGUvHhWe+Dy+tACL+tr1Iy9Uq93iYRP8ja9dpTl9dnT5XHTbLoz5oK8L KejE9jSUH/UbtA== -----END CERTIFICATE-----Generated at Mon Jan 26 07:11:41 2026 by rpki-client