This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft File: I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft (raw, json) Hash identifier: iSWRvOvRKWXRYspOkYugoxeJbD5W6YKHC6tMvn1Y+9s= Subject key identifier: 77:99:44:DE:30:EB:B3:F8:E8:AA:8C:C2:25:C4:8D:56:E3:2C:62:92 Authority key identifier: 23:F5:C2:58:53:82:08:47:92:F1:3A:D1:97:20:5E:FD:D2:75:2D:F2 Certificate issuer: /CN=23f5c2585382084792f13ad197205efdd2752df2 Certificate serial: 019BF5ABC3BC96BDF9E416E8E9BED0187700 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft Manifest number: 0196 Signing time: Sun 25 Jan 2026 15:00:33 +0000 Manifest this update: Sun 25 Jan 2026 15:00:33 +0000 Manifest next update: Mon 26 Jan 2026 15:00:33 +0000 Files and hashes: 1: I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl (hash: 1Ha/q7iOa4bOuNPUGutR81mzJkK0NpDV5vP5pKQ10bA=) 2: ayEAcT6oCdclXkVG2FkLRzZ9mOw.roa (hash: 7P+K2VYLnbm0w74/RJLkFBdqeqXQaGd7I3w+dIasZpw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ab:c3:bc:96:bd:f9:e4:16:e8:e9:be:d0:18:77:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23f5c2585382084792f13ad197205efdd2752df2 Validity Not Before: Jan 25 15:00:33 2026 GMT Not After : Jan 26 15:00:33 2026 GMT Subject: CN=779944de30ebb3f8e8aa8cc225c48d56e32c6292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1f:1b:20:c1:47:bb:d9:90:87:c5:20:f1:29: 04:53:88:44:c1:c3:59:da:bd:1f:38:d4:34:f8:06: 5d:23:00:35:3c:6d:ad:b5:de:fc:06:c1:5d:54:85: 09:db:8f:5d:d0:b3:52:6e:82:ef:39:bb:94:3b:67: f2:1a:06:bf:08:4a:e4:83:41:7d:80:9e:e4:31:f9: 57:b7:81:11:50:ec:41:8b:7c:ff:9f:ab:3f:3e:a6: 97:6c:ec:ee:18:60:92:43:19:52:34:fa:8d:14:87: 70:d5:ed:ae:de:0a:c8:bd:75:4a:53:4b:87:62:73: fc:73:5a:a8:12:10:23:24:0d:07:a4:ce:f8:f6:eb: 34:48:28:1e:28:1f:82:b8:ec:66:fd:ce:ad:51:e0: b0:52:30:28:d8:3c:f6:5b:13:a0:79:c6:97:0f:91: 83:c7:60:6a:be:10:9e:35:54:f6:a8:9b:de:3b:8e: 3e:d7:6d:eb:7e:ac:f8:3a:f9:0b:c2:65:cd:1a:30: 94:46:a9:ae:0c:ad:eb:da:15:9b:84:3e:e7:49:90: 69:3e:d2:44:56:b6:be:79:03:c1:10:85:11:d4:d7: 74:ba:f2:f7:50:b6:e9:ed:5d:f5:97:96:4a:e8:25: 09:32:76:56:6f:d2:ad:8f:cb:5b:5f:32:84:89:8c: b2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:99:44:DE:30:EB:B3:F8:E8:AA:8C:C2:25:C4:8D:56:E3:2C:62:92 X509v3 Authority Key Identifier: keyid:23:F5:C2:58:53:82:08:47:92:F1:3A:D1:97:20:5E:FD:D2:75:2D:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:55:18:b8:e2:71:a8:a9:71:3e:07:03:8b:85:8e:87:07:44: 88:0c:bb:db:f0:d5:a7:ad:5b:05:74:d6:ba:5c:f3:8d:3b:bb: 64:31:48:9a:24:b5:d7:70:c0:95:7d:05:cf:97:d6:54:f6:52: 5c:05:eb:ec:ad:2c:dc:ab:97:5b:0f:2a:a8:7f:51:a0:85:dc: 0e:4f:4a:d3:e8:b0:da:f3:a3:b8:43:e4:c1:f6:35:33:0a:10: b2:65:8e:0f:ce:60:81:41:a1:08:41:85:26:08:e1:a7:af:4c: 4e:28:dc:da:12:ad:ee:44:24:ed:c4:eb:84:dc:84:d9:c4:f8: 73:34:ca:30:c5:bc:f2:c9:66:a3:ef:47:da:aa:b4:da:45:4b: 4d:38:e3:7c:1a:f6:df:5f:90:54:09:00:dd:9f:5a:c2:72:b1: 09:d2:be:94:4f:a8:c8:31:2e:98:78:e6:4d:41:53:86:63:52: d5:f9:06:0f:4c:9c:1d:75:19:0f:dc:04:d1:da:64:ad:75:5e: 18:50:f5:27:54:62:88:23:b5:bb:0a:7c:08:79:71:31:05:d8: d5:3e:d0:96:35:cd:4a:a8:ef:44:f7:3d:ab:07:da:91:f6:a1: a2:74:9b:b6:0c:dc:c4:fb:b7:5c:3f:7c:77:54:7d:f3:8e:e8: 2d:36:b2:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1q8O8lr355Bbo6b7QGHcAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZjVjMjU4NTM4MjA4NDc5MmYxM2FkMTk3MjA1ZWZkZDI3 NTJkZjIwHhcNMjYwMTI1MTUwMDMzWhcNMjYwMTI2MTUwMDMzWjAzMTEwLwYDVQQD Eyg3Nzk5NDRkZTMwZWJiM2Y4ZThhYThjYzIyNWM0OGQ1NmUzMmM2MjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0x8bIMFHu9mQh8Ug8SkEU4hEwcNZ 2r0fONQ0+AZdIwA1PG2ttd78BsFdVIUJ249d0LNSboLvObuUO2fyGga/CErkg0F9 gJ7kMflXt4ERUOxBi3z/n6s/PqaXbOzuGGCSQxlSNPqNFIdw1e2u3grIvXVKU0uH YnP8c1qoEhAjJA0HpM749us0SCgeKB+CuOxm/c6tUeCwUjAo2Dz2WxOgecaXD5GD x2BqvhCeNVT2qJveO44+123rfqz4OvkLwmXNGjCURqmuDK3r2hWbhD7nSZBpPtJE Vra+eQPBEIUR1Nd0uvL3ULbp7V31l5ZK6CUJMnZWb9Ktj8tbXzKEiYyyOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHeZRN4w67P46KqMwiXEjVbjLGKSMB8GA1UdIwQY MBaAFCP1wlhTgghHkvE60ZcgXv3SdS3yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSV9YQ1dGT0NDRWVTOFRyUmx5QmVfZEoxTGZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9mODNkMDktMzQxMy00NjUxLTk2Y2Ut OGZiNTI0NGJjMjU2LzEvSV9YQ1dGT0NDRWVTOFRyUmx5QmVfZEoxTGZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9mODNkMDktMzQxMy00NjUxLTk2Y2UtOGZiNTI0NGJjMjU2 LzEvSV9YQ1dGT0NDRWVTOFRyUmx5QmVfZEoxTGZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPlUYuOJx qKlxPgcDi4WOhwdEiAy72/DVp61bBXTWulzzjTu7ZDFImiS113DAlX0Fz5fWVPZS XAXr7K0s3KuXWw8qqH9RoIXcDk9K0+iw2vOjuEPkwfY1MwoQsmWOD85ggUGhCEGF Jgjhp69MTijc2hKt7kQk7cTrhNyE2cT4czTKMMW88slmo+9H2qq02kVLTTjjfBr2 31+QVAkA3Z9awnKxCdK+lE+oyDEumHjmTUFThmNS1fkGD0ycHXUZD9wE0dpkrXVe GFD1J1RiiCO1uwp8CHlxMQXY1T7QljXNSqjvRPc9qwfakfahonSbtgzcxPu3XD98 d1R9847oLTayzQ== -----END CERTIFICATE-----Generated at Sun Jan 25 22:01:28 2026 by rpki-client