This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft File: iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft (raw, json) Hash identifier: 22LmMz4JKYKzFa6DXf6w5Q9xBz78Lrj7ez1oPldkACE= Subject key identifier: 19:12:C2:BA:38:13:13:E2:1B:72:E8:BA:71:5D:81:FC:E8:54:44:82 Authority key identifier: 88:7F:A3:73:71:D7:D4:59:3B:A2:90:EF:45:66:9E:A0:DE:29:37:82 Certificate issuer: /CN=887fa37371d7d4593ba290ef45669ea0de293782 Certificate serial: 019BF79A36B6F8242331EFC44C38860214BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft Manifest number: 090B Signing time: Mon 26 Jan 2026 00:00:37 +0000 Manifest this update: Mon 26 Jan 2026 00:00:37 +0000 Manifest next update: Tue 27 Jan 2026 00:00:37 +0000 Files and hashes: 1: iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl (hash: mVGIbOBEnZ300FjshFKbPo33SMMHoM+NW2Kv2BTZPh0=) 2: tFxvsrCqJ_cpCZ3yrGcf9YiNSVg.roa (hash: he9pYZaiWZg80bEFSYp2yYFaMXPObGV75JnhpVutWqo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:36:b6:f8:24:23:31:ef:c4:4c:38:86:02:14:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=887fa37371d7d4593ba290ef45669ea0de293782 Validity Not Before: Jan 26 00:00:37 2026 GMT Not After : Jan 27 00:00:37 2026 GMT Subject: CN=1912c2ba381313e21b72e8ba715d81fce8544482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bc:6e:01:3f:e6:c4:d0:be:0e:64:d0:de:0e: fb:8b:7c:a7:7b:a7:5e:ae:f5:61:45:8b:9f:e9:1a: 85:58:b9:75:7b:36:ad:16:6f:d9:ce:04:e4:b1:70: 42:8a:81:55:fd:f5:3b:6e:13:04:92:33:18:90:49: 03:a3:62:9d:74:ee:fc:c4:e3:fb:97:43:ee:5b:38: 54:eb:a1:28:0e:65:e8:f5:59:aa:d7:9d:27:92:1b: 82:8f:4a:68:7e:02:54:cc:fe:64:7b:96:da:b6:9a: fa:d2:11:01:95:27:7c:a8:43:65:52:47:7a:3c:d1: c0:1b:c9:53:12:59:8d:9e:6d:3f:57:48:91:be:68: ef:4c:ea:08:79:ef:a4:8f:92:f5:eb:db:fc:a7:c1: b4:02:18:73:cb:b3:00:bd:8a:c3:7b:2b:9d:ba:8b: 66:55:cc:d7:04:9c:53:5c:81:ec:ad:32:79:99:56: fc:33:8b:7b:a4:50:bf:a4:57:fd:20:3f:55:59:20: c7:64:a3:11:6a:f2:f9:12:c7:dc:59:11:17:d5:38: 5c:8c:16:49:e1:65:2e:57:c1:e8:01:58:b3:fd:98: 95:25:10:f6:ad:8d:26:4d:46:b3:f4:d9:f7:0d:ba: ea:e2:49:6a:d1:02:93:66:05:5b:b7:96:fa:7c:72: ed:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:12:C2:BA:38:13:13:E2:1B:72:E8:BA:71:5D:81:FC:E8:54:44:82 X509v3 Authority Key Identifier: keyid:88:7F:A3:73:71:D7:D4:59:3B:A2:90:EF:45:66:9E:A0:DE:29:37:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:9e:a9:ed:a4:ad:82:49:b2:eb:fa:f6:96:04:32:71:b0:13: 25:74:a5:cc:81:01:49:a8:b5:be:a5:ea:67:33:a4:92:a4:9f: 4f:86:a2:00:d9:b5:af:50:e2:f0:02:d3:5b:59:ee:f6:4f:36: 99:07:ae:18:ac:3c:91:49:c0:5b:0f:5a:af:87:c0:67:ff:e1: b0:f0:23:01:25:e2:fc:6d:a3:4c:34:0a:f6:10:4a:6e:24:8d: fb:0e:5f:41:3d:f7:b3:1c:e4:b8:56:12:19:dd:fc:b2:bf:da: 00:dc:5e:23:b3:6a:43:ad:de:f3:97:05:d3:15:e4:86:f2:c6: ab:bc:b4:d3:fa:fa:15:3e:da:10:0b:ca:53:2a:13:26:8e:ce: bf:cd:ca:32:b5:3c:76:5e:c6:ea:b7:16:9a:9c:77:9a:95:48: 90:d8:1d:f1:1c:6e:ca:5a:d3:04:d4:98:36:9b:9f:fa:3a:51: 64:c4:12:a2:d6:d6:5d:d3:58:be:4a:91:13:dd:c7:36:9a:ea: 80:97:76:a7:3a:79:38:72:c2:4a:48:ac:a2:77:19:a4:a1:1f: 92:43:72:92:a9:ce:c0:58:e7:01:9a:5b:6c:45:10:46:9e:10: 61:d4:a0:c8:98:25:f5:ca:4e:7c:3f:c9:99:53:a5:f3:79:0b: 05:9c:41:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mja2+CQjMe/ETDiGAhS6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4N2ZhMzczNzFkN2Q0NTkzYmEyOTBlZjQ1NjY5ZWEwZGUy OTM3ODIwHhcNMjYwMTI2MDAwMDM3WhcNMjYwMTI3MDAwMDM3WjAzMTEwLwYDVQQD EygxOTEyYzJiYTM4MTMxM2UyMWI3MmU4YmE3MTVkODFmY2U4NTQ0NDgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LxuAT/mxNC+DmTQ3g77i3yne6de rvVhRYuf6RqFWLl1ezatFm/ZzgTksXBCioFV/fU7bhMEkjMYkEkDo2KddO78xOP7 l0PuWzhU66EoDmXo9Vmq150nkhuCj0pofgJUzP5ke5batpr60hEBlSd8qENlUkd6 PNHAG8lTElmNnm0/V0iRvmjvTOoIee+kj5L169v8p8G0Ahhzy7MAvYrDeyuduotm VczXBJxTXIHsrTJ5mVb8M4t7pFC/pFf9ID9VWSDHZKMRavL5EsfcWREX1ThcjBZJ 4WUuV8HoAViz/ZiVJRD2rY0mTUaz9Nn3Dbrq4klq0QKTZgVbt5b6fHLtnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBkSwro4ExPiG3LounFdgfzoVESCMB8GA1UdIwQY MBaAFIh/o3Nx19RZO6KQ70VmnqDeKTeCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUgtamMzSFgxRms3b3BEdlJXYWVvTjRwTjRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8wOWRiOGMtNmRmMC00Y2VlLWFlMDct YTFlMjRhYWY2MTBmLzEvaUgtamMzSFgxRms3b3BEdlJXYWVvTjRwTjRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8wOWRiOGMtNmRmMC00Y2VlLWFlMDctYTFlMjRhYWY2MTBm LzEvaUgtamMzSFgxRms3b3BEdlJXYWVvTjRwTjRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdJ6p7aSt gkmy6/r2lgQycbATJXSlzIEBSai1vqXqZzOkkqSfT4aiANm1r1Di8ALTW1nu9k82 mQeuGKw8kUnAWw9ar4fAZ//hsPAjASXi/G2jTDQK9hBKbiSN+w5fQT33sxzkuFYS Gd38sr/aANxeI7NqQ63e85cF0xXkhvLGq7y00/r6FT7aEAvKUyoTJo7Ov83KMrU8 dl7G6rcWmpx3mpVIkNgd8RxuylrTBNSYNpuf+jpRZMQSotbWXdNYvkqRE93HNprq gJd2pzp5OHLCSkisoncZpKEfkkNykqnOwFjnAZpbbEUQRp4QYdSgyJgl9cpOfD/J mVOl83kLBZxBLQ== -----END CERTIFICATE-----Generated at Mon Jan 26 03:12:07 2026 by rpki-client