This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft File: IM1XQoSmAY5bA2Neml1lj99XNPA.mft (raw, json) Hash identifier: N+yphYMSJJ/wxHS7+7ucecaAOnf5khfVwhLVibLUm84= Subject key identifier: C8:CD:1C:AA:22:53:76:05:EA:12:FA:EA:1B:B0:FD:D6:74:74:2C:98 Authority key identifier: 20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0 Certificate issuer: /CN=20cd574284a6018e5b03635e9a5d658fdf5734f0 Certificate serial: 019BF83EFA46D2C2701F036864AB8EE44172 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft Manifest number: 152F Signing time: Mon 26 Jan 2026 03:00:35 +0000 Manifest this update: Mon 26 Jan 2026 03:00:35 +0000 Manifest next update: Tue 27 Jan 2026 03:00:35 +0000 Files and hashes: 1: IM1XQoSmAY5bA2Neml1lj99XNPA.crl (hash: OcHwa+uKPd73veO6sL8fi26BqFvn+vfU5R0bMq3Fi54=) 2: ImTLWt2g0cY7V35wRVv87mBniEg.roa (hash: VJYLeV7M13GLWx8pAqlJxHBxVDnSY7dG5v0w8WshUfs=) 3: xsbeeqBrYcrCh1XkX_yalGrpwlg.roa (hash: C6xVrKshvFw2VHF914TCAq+YdHSq0Ozgs9as5bzKGhE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:3e:fa:46:d2:c2:70:1f:03:68:64:ab:8e:e4:41:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20cd574284a6018e5b03635e9a5d658fdf5734f0 Validity Not Before: Jan 26 03:00:35 2026 GMT Not After : Jan 27 03:00:35 2026 GMT Subject: CN=c8cd1caa22537605ea12faea1bb0fdd674742c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2d:55:c1:89:b0:7f:fc:aa:d7:e2:2a:e2:5c: 7e:21:d7:a2:30:29:5f:49:34:26:2f:66:86:3b:23: f4:bc:83:e1:c9:28:40:22:e1:5b:95:2d:64:0c:7e: a3:1f:c7:a7:aa:20:b8:d3:ad:54:72:0d:37:e5:4a: b6:e2:1d:57:e6:c3:32:31:1c:1f:e4:97:25:4f:78: b5:ac:02:f3:89:4c:ad:4d:d2:f0:f5:4b:c2:fe:0b: 4c:53:3c:71:c1:ba:10:b9:6a:e7:3c:b8:07:90:2a: 5d:ea:44:80:94:88:2c:76:79:34:5a:9a:86:f4:8a: 0a:d0:5c:ca:4f:7d:99:c7:b5:87:a9:76:0f:5f:04: 3c:8b:2e:69:1c:a1:b7:4b:dc:04:4d:91:1c:1e:93: 92:2b:4f:f1:67:c8:bf:4d:1c:6b:aa:51:c6:16:44: 7e:63:0f:c7:2b:8f:c7:1c:36:93:81:81:c2:44:a4: 93:05:28:e9:45:97:0f:fd:62:94:21:6f:9c:eb:c5: 5e:2d:e0:2d:3c:5f:b4:8f:b1:80:45:18:bd:76:ea: df:30:e9:13:90:dc:60:2c:b7:28:d5:1a:fd:6d:01: 41:99:eb:4b:f5:7c:12:7c:96:fc:b2:6f:d1:63:39: f9:e1:d9:0e:84:8c:17:cf:d5:2e:e9:87:97:8e:f8: bb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CD:1C:AA:22:53:76:05:EA:12:FA:EA:1B:B0:FD:D6:74:74:2C:98 X509v3 Authority Key Identifier: keyid:20:CD:57:42:84:A6:01:8E:5B:03:63:5E:9A:5D:65:8F:DF:57:34:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM1XQoSmAY5bA2Neml1lj99XNPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c216ca-aa9d-4d21-841e-49b5687fee6d/1/IM1XQoSmAY5bA2Neml1lj99XNPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:be:c5:9f:4d:5e:97:fa:98:83:18:eb:33:55:ac:28:2e:17: f7:e0:8f:c5:d3:f9:9b:5b:b0:c9:f0:bc:c8:6f:6a:4a:4e:0a: 53:01:82:fd:4a:ce:e7:f7:f0:41:56:a3:ec:72:d4:14:6e:eb: 6c:44:dd:0b:b0:12:a1:e0:76:81:e8:87:27:38:3d:31:3d:5b: f0:af:b3:db:f5:aa:83:db:42:28:98:3b:a7:f5:14:e1:4d:0d: 2c:69:12:46:3f:c1:cb:90:d9:37:6a:db:a4:aa:70:0d:a7:de: 5e:06:5a:a5:d5:1f:60:50:cb:bc:21:83:6b:0a:4f:fe:87:ae: de:e3:f7:4f:ff:f8:b7:aa:11:b2:a5:07:f1:09:2e:11:ce:19: 10:b6:e0:e4:53:e5:f6:81:c8:26:33:ad:6a:1d:eb:2a:d1:c1: bf:d4:be:41:dd:a5:50:a6:89:fc:e0:bd:11:85:8e:9d:69:43: 9a:a9:7e:c0:a8:7e:07:f9:ff:df:5e:94:78:9a:38:d0:9d:17: f8:ac:2a:c6:17:0f:e0:4e:12:4f:cb:95:fa:c5:ce:82:96:6f: 29:17:78:2d:ff:8d:0a:fc:0b:c3:4c:b5:db:b7:4d:80:f7:f4: d8:af:98:49:69:4c:da:ed:86:6e:a9:fb:17:e9:ae:92:df:e6: fe:0e:a5:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4PvpG0sJwHwNoZKuO5EFyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwY2Q1NzQyODRhNjAxOGU1YjAzNjM1ZTlhNWQ2NThmZGY1 NzM0ZjAwHhcNMjYwMTI2MDMwMDM1WhcNMjYwMTI3MDMwMDM1WjAzMTEwLwYDVQQD EyhjOGNkMWNhYTIyNTM3NjA1ZWExMmZhZWExYmIwZmRkNjc0NzQyYzk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyS1VwYmwf/yq1+Iq4lx+IdeiMClf STQmL2aGOyP0vIPhyShAIuFblS1kDH6jH8enqiC4061Ucg035Uq24h1X5sMyMRwf 5JclT3i1rALziUytTdLw9UvC/gtMUzxxwboQuWrnPLgHkCpd6kSAlIgsdnk0WpqG 9IoK0FzKT32Zx7WHqXYPXwQ8iy5pHKG3S9wETZEcHpOSK0/xZ8i/TRxrqlHGFkR+ Yw/HK4/HHDaTgYHCRKSTBSjpRZcP/WKUIW+c68VeLeAtPF+0j7GARRi9durfMOkT kNxgLLco1Rr9bQFBmetL9XwSfJb8sm/RYzn54dkOhIwXz9Uu6YeXjvi7SQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMjNHKoiU3YF6hL66huw/dZ0dCyYMB8GA1UdIwQY MBaAFCDNV0KEpgGOWwNjXppdZY/fVzTwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUt NDliNTY4N2ZlZTZkLzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy9jMjE2Y2EtYWE5ZC00ZDIxLTg0MWUtNDliNTY4N2ZlZTZk LzEvSU0xWFFvU21BWTViQTJOZW1sMWxqOTlYTlBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASb7Fn01e l/qYgxjrM1WsKC4X9+CPxdP5m1uwyfC8yG9qSk4KUwGC/UrO5/fwQVaj7HLUFG7r bETdC7ASoeB2geiHJzg9MT1b8K+z2/Wqg9tCKJg7p/UU4U0NLGkSRj/By5DZN2rb pKpwDafeXgZapdUfYFDLvCGDawpP/oeu3uP3T//4t6oRsqUH8QkuEc4ZELbg5FPl 9oHIJjOtah3rKtHBv9S+Qd2lUKaJ/OC9EYWOnWlDmql+wKh+B/n/316UeJo40J0X +KwqxhcP4E4ST8uV+sXOgpZvKRd4Lf+NCvwLw0y127dNgPf02K+YSWlM2u2Gbqn7 F+mukt/m/g6lyw== -----END CERTIFICATE-----Generated at Mon Jan 26 10:18:43 2026 by rpki-client