This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json) Hash identifier: 7m5H6VNZQHe8R4Qoswsra70hIAdX+Ztbh+zayAeA4uE= Subject key identifier: F4:BD:EE:8B:D7:F3:BE:5B:2A:03:11:A5:97:C9:CE:B5:F9:89:95:2F Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3 Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3 Certificate serial: 019BFB774795AC16C18522C7CAE3C339E5CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft Manifest number: 0FE6 Signing time: Mon 26 Jan 2026 18:00:56 +0000 Manifest this update: Mon 26 Jan 2026 18:00:56 +0000 Manifest next update: Tue 27 Jan 2026 18:00:56 +0000 Files and hashes: 1: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: gTn1Ej5sZRgrJlnVQjT/qZD3Qir0WCN62VWRK7lakaE=) 2: f7qLZUl_FwNxE3w_k0K8MDDnPE4.roa (hash: iT3SrQGihsPU4xD+7248AXf2sfstLnnSHt1kFE/x28E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:77:47:95:ac:16:c1:85:22:c7:ca:e3:c3:39:e5:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3 Validity Not Before: Jan 26 18:00:56 2026 GMT Not After : Jan 27 18:00:56 2026 GMT Subject: CN=f4bdee8bd7f3be5b2a0311a597c9ceb5f989952f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:95:78:0a:92:af:c3:61:59:22:ca:9d:91:73: 0a:1f:a8:dc:0f:35:94:25:11:01:ce:ce:33:80:7b: c2:6c:e0:15:ba:ad:5a:e1:c3:82:ea:e4:23:4c:53: 44:cd:47:46:ff:ce:2e:27:e1:cb:1d:98:fc:77:c6: eb:7c:f9:60:47:91:d7:f4:e8:d3:62:36:f9:ce:25: 1e:28:f8:bb:7e:26:4e:09:16:75:ad:50:8f:65:b1: b4:eb:85:13:5e:b2:91:94:a4:bf:54:b0:49:e5:4d: 44:40:d7:57:59:15:0c:ee:d8:c7:94:d2:79:38:f3: 8a:96:f1:27:94:51:ab:bf:a0:ec:67:c2:4c:5a:55: 77:36:5e:2c:b3:91:62:12:22:74:e0:32:74:ac:40: 7c:05:a8:90:4d:e1:45:f6:53:be:42:18:da:c4:41: 77:f7:62:62:77:28:fc:3b:b9:9a:06:02:b5:d6:c6: b2:4a:82:3a:bd:c6:98:75:df:49:f7:80:d1:00:60: fd:db:5c:f3:50:c1:88:25:f5:cf:56:86:0a:23:94: 1f:a9:78:42:2a:43:f6:67:5c:96:fb:63:7b:29:06: 87:fd:2f:03:18:0b:21:54:a6:1d:50:53:18:95:03: ea:1c:40:61:9d:c1:20:a2:5d:c1:67:cf:7e:6e:76: a9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BD:EE:8B:D7:F3:BE:5B:2A:03:11:A5:97:C9:CE:B5:F9:89:95:2F X509v3 Authority Key Identifier: keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:0a:3d:4c:0d:df:17:30:f5:c8:de:f2:30:20:f5:02:91:28: 4f:48:cf:a3:ce:5f:ff:94:3b:32:43:e0:c8:8b:19:ad:8f:c2: ad:af:8e:d8:ea:d4:ad:39:4a:e6:58:9b:bd:f3:39:42:f1:ba: 99:0d:07:aa:df:f9:b3:31:4b:68:69:80:c4:a2:d1:19:b2:3d: 13:19:d6:f3:4c:b2:27:f2:ae:80:7d:3b:61:da:ba:87:b5:df: bb:87:7c:5f:0a:ba:a3:da:d8:03:03:a8:2b:ab:f0:c5:45:75: f0:be:29:12:9d:46:92:27:4a:a6:12:75:f6:ca:39:80:fc:c2: 60:00:43:fd:7e:b4:ef:45:f1:8a:9a:00:bf:f6:ee:18:52:98: 93:36:f3:aa:a3:28:d2:48:75:28:f5:66:81:4a:2b:8a:80:bb: b8:23:09:a3:34:b5:cf:ea:d6:7a:5c:ff:ab:d5:c1:2e:5a:e1: df:1f:c2:79:8d:3c:b3:4c:40:f4:b6:3d:0c:a0:b0:5c:dc:b8: 08:6e:ff:0e:cc:29:e0:b7:76:3f:37:ba:46:33:24:62:f7:08: 64:cc:05:d1:49:a9:85:39:67:50:c7:95:eb:3d:c4:88:8c:c7: 05:2f:17:bf:bc:c5:14:32:97:0c:7d:75:0b:22:cd:6c:4e:41: c2:20:27:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7d0eVrBbBhSLHyuPDOeXPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx M2VhZjMwHhcNMjYwMTI2MTgwMDU2WhcNMjYwMTI3MTgwMDU2WjAzMTEwLwYDVQQD EyhmNGJkZWU4YmQ3ZjNiZTViMmEwMzExYTU5N2M5Y2ViNWY5ODk5NTJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZV4CpKvw2FZIsqdkXMKH6jcDzWU JREBzs4zgHvCbOAVuq1a4cOC6uQjTFNEzUdG/84uJ+HLHZj8d8brfPlgR5HX9OjT Yjb5ziUeKPi7fiZOCRZ1rVCPZbG064UTXrKRlKS/VLBJ5U1EQNdXWRUM7tjHlNJ5 OPOKlvEnlFGrv6DsZ8JMWlV3Nl4ss5FiEiJ04DJ0rEB8BaiQTeFF9lO+QhjaxEF3 92Jidyj8O7maBgK11saySoI6vcaYdd9J94DRAGD921zzUMGIJfXPVoYKI5QfqXhC KkP2Z1yW+2N7KQaH/S8DGAshVKYdUFMYlQPqHEBhncEgol3BZ89+bnapjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPS97ovX875bKgMRpZfJzrX5iZUvMB8GA1UdIwQY MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4 LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAowo9TA3f FzD1yN7yMCD1ApEoT0jPo85f/5Q7MkPgyIsZrY/Cra+O2OrUrTlK5libvfM5QvG6 mQ0Hqt/5szFLaGmAxKLRGbI9ExnW80yyJ/KugH07Ydq6h7Xfu4d8Xwq6o9rYAwOo K6vwxUV18L4pEp1GkidKphJ19so5gPzCYABD/X6070XxipoAv/buGFKYkzbzqqMo 0kh1KPVmgUorioC7uCMJozS1z+rWelz/q9XBLlrh3x/CeY08s0xA9LY9DKCwXNy4 CG7/Dswp4Ld2Pze6RjMkYvcIZMwF0UmphTlnUMeV6z3EiIzHBS8Xv7zFFDKXDH11 CyLNbE5BwiAnqg== -----END CERTIFICATE-----Generated at Mon Jan 26 22:40:53 2026 by rpki-client