This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft File: i5HgoQS1s93x9dCOessreeDVZvk.mft (raw, json) Hash identifier: GodqUI2UKsYbDuLqajp9jEu/FXydM7xwgbwGPKmKNXg= Subject key identifier: 19:FE:66:13:75:F6:38:41:D7:BC:05:A3:5B:86:13:7C:3D:44:E1:0D Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9 Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9 Certificate serial: 019BF3504F0F26092AC0591293BEDD9253A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft Manifest number: 11F6 Signing time: Sun 25 Jan 2026 04:01:25 +0000 Manifest this update: Sun 25 Jan 2026 04:01:25 +0000 Manifest next update: Mon 26 Jan 2026 04:01:25 +0000 Files and hashes: 1: FLemcIiElnlySDQ8j4MbhOGXKNY.roa (hash: +hFqqy7o9aLIrhPQ+Vl9O2F3JN7zKRwx0wl2/DYV2As=) 2: i5HgoQS1s93x9dCOessreeDVZvk.crl (hash: 81H9B0mdQo06qPVqriMqzkEnfGpRPswE5x5tx1Fsn4w=) 3: zL0BeH3r9AkOxhITJlCW5Ja8LGo.roa (hash: oLz5pL1eqyWTu6AOPoAU4vUbkw5hVQwpWZe1I3Dg04k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:50:4f:0f:26:09:2a:c0:59:12:93:be:dd:92:53:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9 Validity Not Before: Jan 25 04:01:25 2026 GMT Not After : Jan 26 04:01:25 2026 GMT Subject: CN=19fe661375f63841d7bc05a35b86137c3d44e10d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:30:77:9e:17:47:f3:c0:0a:81:89:5b:11:9b: f2:7b:7d:63:34:6a:83:61:41:02:6a:1b:ae:f3:69: 1d:91:14:41:01:88:99:4d:a2:9e:0e:1b:db:2a:4c: 3c:db:99:49:1c:ec:a9:e0:58:f8:d0:92:1d:ab:9f: a3:c0:47:f3:9b:75:5e:db:ef:3d:e0:82:de:e7:39: 16:8e:ce:63:95:ee:49:a7:5b:1a:49:4c:b7:86:aa: ce:98:88:ca:18:05:d6:d0:14:06:47:19:99:fc:4b: b2:2c:86:79:ad:95:16:b1:3e:b3:6f:24:bf:02:37: e3:2f:0e:51:3a:5b:ff:ca:43:73:a2:d8:55:ff:23: f6:6d:18:6f:87:fa:03:71:6c:84:5e:08:5d:67:a0: 11:22:0d:c1:27:0b:cc:6d:a0:15:4b:99:0e:d6:b0: fa:ef:d9:a8:20:b3:63:9e:ce:c9:d0:6e:63:ee:b8: 8b:e9:11:2f:70:24:9a:26:af:16:90:6b:fa:40:e0: 49:5b:0a:c9:a3:e2:88:2f:8f:7a:4b:a2:87:01:8f: 28:02:ce:5d:da:d0:ff:ca:80:57:92:91:d6:f3:aa: 02:c2:65:e9:c8:5c:75:a9:09:46:a4:72:87:cd:9e: 1d:27:c3:13:16:a2:e5:86:eb:6a:78:29:be:14:c9: f5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FE:66:13:75:F6:38:41:D7:BC:05:A3:5B:86:13:7C:3D:44:E1:0D X509v3 Authority Key Identifier: keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d6:37:ca:8e:e6:a4:45:0e:30:42:ef:bd:14:a5:d3:08:6b:99: 64:43:d7:48:8c:30:4b:2f:97:d0:71:5a:6a:d0:e7:c6:44:b2: f2:bb:48:94:c9:5a:dd:ec:86:64:b0:b0:e4:41:aa:a4:0c:64: 47:bb:77:7e:ac:28:6d:51:cc:a3:6e:26:06:b6:11:f2:d3:f1: ac:5e:7b:b5:ff:39:cd:e3:96:12:e3:58:ac:af:e4:d4:5c:89: 65:a3:67:32:75:1d:f8:8d:93:d3:c8:d4:c9:09:f2:52:7a:64: 64:21:9f:8f:f7:17:6d:bb:66:77:aa:38:22:cb:fc:4a:0e:ba: 56:fc:6a:40:e2:bb:1d:6d:9f:54:69:7f:30:9e:7d:9a:38:17: 01:6b:85:7f:fd:c9:2f:30:52:70:0e:6f:1f:1d:76:a6:e3:87: 27:ec:45:68:50:ea:0f:db:0d:58:95:70:8c:50:f0:70:57:2e: 10:9e:3a:be:df:6b:be:0f:aa:e6:cc:df:8e:4f:69:b8:92:83: ea:91:8b:2c:36:55:4b:a8:0d:47:b3:a5:39:18:3f:5f:b5:6e: 4f:ef:0c:78:2b:f2:ec:09:e5:96:db:4f:2e:70:6e:d0:8d:75: 56:d6:39:eb:4a:6c:0b:12:b0:53:eb:8f:4f:5a:c4:68:44:91: 7c:c4:4d:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzUE8PJgkqwFkSk77dklOlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiOTFlMGExMDRiNWIzZGRmMWY1ZDA4ZTdhY2IyYjc5ZTBk NTY2ZjkwHhcNMjYwMTI1MDQwMTI1WhcNMjYwMTI2MDQwMTI1WjAzMTEwLwYDVQQD EygxOWZlNjYxMzc1ZjYzODQxZDdiYzA1YTM1Yjg2MTM3YzNkNDRlMTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszB3nhdH88AKgYlbEZvye31jNGqD YUECahuu82kdkRRBAYiZTaKeDhvbKkw825lJHOyp4Fj40JIdq5+jwEfzm3Ve2+89 4ILe5zkWjs5jle5Jp1saSUy3hqrOmIjKGAXW0BQGRxmZ/EuyLIZ5rZUWsT6zbyS/ AjfjLw5ROlv/ykNzothV/yP2bRhvh/oDcWyEXghdZ6ARIg3BJwvMbaAVS5kO1rD6 79moILNjns7J0G5j7riL6REvcCSaJq8WkGv6QOBJWwrJo+KIL496S6KHAY8oAs5d 2tD/yoBXkpHW86oCwmXpyFx1qQlGpHKHzZ4dJ8MTFqLlhutqeCm+FMn1aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBn+ZhN19jhB17wFo1uGE3w9ROENMB8GA1UdIwQY MBaAFIuR4KEEtbPd8fXQjnrLK3ng1Wb5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9kZmJmYzQtY2MzZi00NzdjLThkNzYt YThjNTc2MjI0YmEyLzEvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9kZmJmYzQtY2MzZi00NzdjLThkNzYtYThjNTc2MjI0YmEy LzEvaTVIZ29RUzFzOTN4OWRDT2Vzc3JlZURWWnZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1jfKjuak RQ4wQu+9FKXTCGuZZEPXSIwwSy+X0HFaatDnxkSy8rtIlMla3eyGZLCw5EGqpAxk R7t3fqwobVHMo24mBrYR8tPxrF57tf85zeOWEuNYrK/k1FyJZaNnMnUd+I2T08jU yQnyUnpkZCGfj/cXbbtmd6o4Isv8Sg66VvxqQOK7HW2fVGl/MJ59mjgXAWuFf/3J LzBScA5vHx12puOHJ+xFaFDqD9sNWJVwjFDwcFcuEJ46vt9rvg+q5szfjk9puJKD 6pGLLDZVS6gNR7OlORg/X7VuT+8MeCvy7AnllttPLnBu0I11VtY560psCxKwU+uP T1rEaESRfMRNFA== -----END CERTIFICATE-----Generated at Sun Jan 25 09:09:31 2026 by rpki-client