This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft File: itkoGq_vyDda2LS35gSJlVWVIjc.mft (raw, json) Hash identifier: fRAO2rR4VoWA9IRicB5mlmzG0kNR2JwcDZzTqk13PSs= Subject key identifier: 95:6A:9C:15:9B:B9:65:A0:C8:E8:12:71:DC:21:3B:E5:B3:80:56:C3 Authority key identifier: 8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37 Certificate issuer: /CN=8ad9281aafefc8375ad8b4b7e604899555952237 Certificate serial: 019BFA9B6FB5300E69D281398AE468DA6589 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft Manifest number: 17EB Signing time: Mon 26 Jan 2026 14:00:49 +0000 Manifest this update: Mon 26 Jan 2026 14:00:49 +0000 Manifest next update: Tue 27 Jan 2026 14:00:49 +0000 Files and hashes: 1: 3ysBshLGfFUkO4R9WFntyTKDLJg.roa (hash: o/4zJLtevorj8ig3Iu9MQ3MlmidPOIfdoU+Dc49NbUo=) 2: JS2489mFlOi4G0Iaxj0mdnNLk0A.roa (hash: yqQYhDx3bWMCxWl1C8xz31VqFsDsZivemXD/7Ay6NE4=) 3: KrSk2jRU2oEHfGvgx800e5GKxhA.roa (hash: Kyx+62+FYOcUJqo2tHJtaKxWwFEQu2NCl98mkWMufAs=) 4: RMVjby5XmGEGFEWAsZ-rMJCgUuI.roa (hash: 8V+ZY4rClYbDacZGSf5P4gTGWDrq9UPHV6tcofi/O1Q=) 5: TQRQUvnH1PO5qcuLM2kiPL408f4.roa (hash: 1Z+GYULrtYzOcdfSIr9RZ1XILJVYjGdvmENAEPPng/M=) 6: itkoGq_vyDda2LS35gSJlVWVIjc.crl (hash: XOSKz0arYg5bUV1psS7CwofGIFAxUADx96k515aPijk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.crl rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:9b:6f:b5:30:0e:69:d2:81:39:8a:e4:68:da:65:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ad9281aafefc8375ad8b4b7e604899555952237 Validity Not Before: Jan 26 14:00:49 2026 GMT Not After : Jan 27 14:00:49 2026 GMT Subject: CN=956a9c159bb965a0c8e81271dc213be5b38056c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:45:12:d7:dc:3d:c2:5b:44:6a:db:56:0d:53: f9:99:a5:92:84:74:15:9f:a8:13:01:2c:c5:e0:28: 00:23:34:5f:e1:6c:34:72:18:9d:d3:cb:24:f5:35: 23:d1:07:77:af:3e:d7:fc:99:ae:50:0a:ff:40:27: ac:4f:4a:20:44:d7:d8:36:d0:83:06:d7:7d:01:45: ee:a2:9e:f7:66:ba:e5:94:22:ff:d1:ec:f6:a7:03: 9e:67:c0:b5:ff:62:66:52:b6:42:df:d7:66:8e:d8: 6a:41:e6:a4:09:9b:5a:1e:df:13:de:98:a6:0b:c9: 90:d1:3e:fa:85:7d:a4:a4:02:68:f0:1c:77:f6:cd: 7d:b5:f6:68:8b:9b:83:54:69:22:d5:ca:9e:a3:e6: 38:2b:f4:11:1f:6f:ce:f3:31:57:ef:48:44:80:76: fc:b3:d2:f0:75:98:cb:b9:c1:79:89:d9:76:d0:6f: e1:3d:ff:f4:46:88:dc:34:9d:32:59:bf:f5:62:d5: ba:00:f2:21:3b:fa:44:5d:63:e4:1d:55:27:5f:64: 5c:4c:29:a2:6c:99:d9:1f:c9:79:d8:5d:d0:26:7f: 76:ac:ba:1c:ad:e1:5b:0c:87:ab:72:c1:18:7b:54: a8:a8:a0:00:90:5a:2e:ba:2c:40:d7:b5:48:a9:85: 35:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:6A:9C:15:9B:B9:65:A0:C8:E8:12:71:DC:21:3B:E5:B3:80:56:C3 X509v3 Authority Key Identifier: keyid:8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:3b:b9:62:0b:65:21:c1:2b:89:53:14:df:ef:91:49:55:44: 22:34:3b:8c:59:66:0b:05:4f:3c:9f:6e:23:c7:51:04:d2:04: e4:e1:70:ca:5a:91:80:82:71:d5:d8:c2:25:21:c8:97:97:2c: 93:a0:c5:56:c1:81:0f:51:b2:2d:ad:d4:ec:d6:48:1e:05:7c: 71:4d:66:aa:18:75:3e:57:1e:a8:76:e2:9b:e2:96:57:0c:ea: 4b:31:f1:9d:ca:bf:02:d7:c2:62:5a:b7:ed:94:c7:6d:2c:b4: 6e:b8:b8:71:b5:a2:e8:8a:aa:76:42:14:89:e6:cf:c8:3b:e8: 3a:06:e4:35:2b:3a:23:0e:87:2c:20:0c:73:8f:25:54:9d:a8: ba:4a:bc:a0:cc:7f:70:23:77:2b:cc:33:52:bb:b7:a9:de:e0: aa:88:de:47:69:c5:69:94:16:f1:e0:66:c2:dc:ce:33:b7:8c: a4:aa:92:00:2a:62:b9:e3:b2:dc:7b:9e:c1:8b:a2:8d:bd:cf: fa:72:19:dc:0a:d0:16:f6:f7:68:3d:ea:15:0d:90:7a:0d:1b: 58:a4:eb:4f:d8:44:34:cd:43:14:33:12:97:34:99:08:6f:03: d1:54:d8:21:77:16:e1:c9:d3:09:7c:3a:b0:3c:2c:4c:4c:5f: ff:1b:c3:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6m2+1MA5p0oE5iuRo2mWJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZDkyODFhYWZlZmM4Mzc1YWQ4YjRiN2U2MDQ4OTk1NTU5 NTIyMzcwHhcNMjYwMTI2MTQwMDQ5WhcNMjYwMTI3MTQwMDQ5WjAzMTEwLwYDVQQD Eyg5NTZhOWMxNTliYjk2NWEwYzhlODEyNzFkYzIxM2JlNWIzODA1NmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UUS19w9wltEattWDVP5maWShHQV n6gTASzF4CgAIzRf4Ww0chid08sk9TUj0Qd3rz7X/JmuUAr/QCesT0ogRNfYNtCD Btd9AUXuop73ZrrllCL/0ez2pwOeZ8C1/2JmUrZC39dmjthqQeakCZtaHt8T3pim C8mQ0T76hX2kpAJo8Bx39s19tfZoi5uDVGki1cqeo+Y4K/QRH2/O8zFX70hEgHb8 s9LwdZjLucF5idl20G/hPf/0RojcNJ0yWb/1YtW6APIhO/pEXWPkHVUnX2RcTCmi bJnZH8l52F3QJn92rLocreFbDIercsEYe1SoqKAAkFouuixA17VIqYU1MQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJVqnBWbuWWgyOgScdwhO+WzgFbDMB8GA1UdIwQY MBaAFIrZKBqv78g3Wti0t+YEiZVVlSI3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXRrb0dxX3Z5RGRhMkxTMzVnU0psVldWSWpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8wNTg1MDktMmZlNy00ODZiLWI0YWQt OGM3NGY5ZGQ2N2ZjLzEvaXRrb0dxX3Z5RGRhMkxTMzVnU0psVldWSWpjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8wNTg1MDktMmZlNy00ODZiLWI0YWQtOGM3NGY5ZGQ2N2Zj LzEvaXRrb0dxX3Z5RGRhMkxTMzVnU0psVldWSWpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmTu5Ygtl IcEriVMU3++RSVVEIjQ7jFlmCwVPPJ9uI8dRBNIE5OFwylqRgIJx1djCJSHIl5cs k6DFVsGBD1GyLa3U7NZIHgV8cU1mqhh1PlceqHbim+KWVwzqSzHxncq/AtfCYlq3 7ZTHbSy0bri4cbWi6IqqdkIUiebPyDvoOgbkNSs6Iw6HLCAMc48lVJ2oukq8oMx/ cCN3K8wzUru3qd7gqojeR2nFaZQW8eBmwtzOM7eMpKqSACpiueOy3HuewYuijb3P +nIZ3ArQFvb3aD3qFQ2Qeg0bWKTrT9hENM1DFDMSlzSZCG8D0VTYIXcW4cnTCXw6 sDwsTExf/xvDIw== -----END CERTIFICATE-----Generated at Mon Jan 26 21:11:42 2026 by rpki-client