This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json) Hash identifier: 8SSZviHgjAJAjrg3lceLr8V+qV1cPsZ+LIfl+CVQ8FE= Subject key identifier: AA:A1:B6:D9:62:73:DC:AE:6B:61:5F:F9:FF:E8:3C:20:E0:D2:0D:BE Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0 Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0 Certificate serial: 019BF91B216F6CC52E4A06B1FF7D837968CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft Manifest number: 17E9 Signing time: Mon 26 Jan 2026 07:01:03 +0000 Manifest this update: Mon 26 Jan 2026 07:01:03 +0000 Manifest next update: Tue 27 Jan 2026 07:01:03 +0000 Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: gGnd7SIxRIa3kMNqR6DzYg3fZJN3AKIjerhdwM0AP7w=) 2: z_fYCrrGSV54cj1knb3xBk4SK5U.roa (hash: EFlql6uKuI4YQL66OtBnNw+c0chssYW8DVC7ieJRlbY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:21:6f:6c:c5:2e:4a:06:b1:ff:7d:83:79:68:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0 Validity Not Before: Jan 26 07:01:03 2026 GMT Not After : Jan 27 07:01:03 2026 GMT Subject: CN=aaa1b6d96273dcae6b615ff9ffe83c20e0d20dbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8c:04:6d:c8:56:eb:b5:2b:eb:b2:ef:0a:29: 3e:d6:60:0d:ab:d6:fd:6c:5d:2c:fd:f9:21:0c:72: 2b:be:4a:a5:14:3e:45:e8:95:14:6d:df:1a:41:0d: a9:60:ab:3b:40:df:4b:49:57:4d:61:a4:bb:65:69: e1:e6:73:28:c4:77:59:34:25:34:c6:e3:38:51:80: 8b:0c:3b:c6:1a:1c:9d:af:b7:bc:4c:63:b5:47:dc: 76:18:f8:1c:81:ac:b3:d9:6d:fc:5d:bd:f4:ee:4a: c8:ca:73:d5:b3:dc:da:da:5e:58:29:5e:2e:b0:d2: dd:a4:7a:4a:9d:c0:17:80:80:ba:9b:95:c8:23:cb: 8b:e4:b2:68:d8:5f:63:56:c9:90:71:a5:16:92:71: e1:8e:d4:f1:da:86:30:3a:fe:21:1b:8f:ee:4c:75: 19:2e:f7:73:57:1a:2f:ae:d8:50:9e:93:b9:6a:79: c3:9a:2e:b5:28:ac:88:81:4c:2b:86:7a:4c:c8:91: 4a:5a:4e:03:e1:49:66:e8:97:14:9c:b1:e9:60:32: b1:c8:c2:81:8e:82:7a:52:59:5c:c7:8a:12:d6:3c: 69:b4:0c:17:e8:39:c7:c2:9e:88:5e:8d:3c:30:10: 14:57:64:72:85:b1:bc:7c:0e:15:8d:90:13:6e:72: 74:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A1:B6:D9:62:73:DC:AE:6B:61:5F:F9:FF:E8:3C:20:E0:D2:0D:BE X509v3 Authority Key Identifier: keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:fe:05:f9:f9:87:f1:4a:a1:79:7a:d2:4f:c4:46:54:55:cc: 2d:54:ce:00:77:33:cd:a4:17:f3:7e:3e:31:29:39:5b:28:f1: 65:9c:58:ba:a9:00:ad:6a:cb:b1:10:28:d3:be:fe:a9:f6:8e: 00:38:39:c4:55:c6:31:57:9a:c5:9e:92:3e:e2:37:d4:de:a7: 49:c6:b7:78:46:36:ac:91:f8:36:c5:0a:2b:86:81:9f:f1:bf: 93:75:e1:e2:0c:b6:91:ab:ad:76:d1:1b:e3:93:53:8d:8e:05: bc:9f:59:1e:89:36:a7:81:e3:50:8f:9a:53:7f:ac:b6:4d:a7: 24:48:6a:44:d4:6a:e6:d1:eb:f4:56:e9:29:40:86:46:06:fc: 7d:e9:da:5e:bc:b9:7a:89:ea:2e:13:69:15:ee:bd:02:82:8b: f5:c4:d3:92:fb:03:3d:a1:29:cb:79:00:52:96:b8:22:1c:7f: f3:22:d7:51:ab:2a:51:66:40:79:dd:35:b6:df:4c:7a:2c:fd: 72:6c:b9:c2:aa:e6:3e:8a:c7:da:ee:8d:6e:71:1a:b3:96:eb: 7f:b8:51:ef:70:ac:32:cc:b5:02:c1:1c:f1:ce:d2:cd:b5:25: 8d:45:c8:a4:02:00:0b:60:50:6d:b0:31:80:10:78:0e:3a:56: ff:8a:c8:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5GyFvbMUuSgax/32DeWjPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0OTIwMjEzY2IyMzBiZmU1MTEyMWNlNWZiNGRlY2UyODAx OGJlZDAwHhcNMjYwMTI2MDcwMTAzWhcNMjYwMTI3MDcwMTAzWjAzMTEwLwYDVQQD EyhhYWExYjZkOTYyNzNkY2FlNmI2MTVmZjlmZmU4M2MyMGUwZDIwZGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4wEbchW67Ur67LvCik+1mANq9b9 bF0s/fkhDHIrvkqlFD5F6JUUbd8aQQ2pYKs7QN9LSVdNYaS7ZWnh5nMoxHdZNCU0 xuM4UYCLDDvGGhydr7e8TGO1R9x2GPgcgayz2W38Xb307krIynPVs9za2l5YKV4u sNLdpHpKncAXgIC6m5XII8uL5LJo2F9jVsmQcaUWknHhjtTx2oYwOv4hG4/uTHUZ LvdzVxovrthQnpO5annDmi61KKyIgUwrhnpMyJFKWk4D4Ulm6JcUnLHpYDKxyMKB joJ6Ullcx4oS1jxptAwX6DnHwp6IXo08MBAUV2RyhbG8fA4VjZATbnJ0IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKqhttlic9yua2Ff+f/oPCDg0g2+MB8GA1UdIwQY MBaAFISSAhPLIwv+URIc5ftN7OKAGL7QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9hOGEwOWMtMGY4NC00YTg5LThhMTYt YjA0YjRkMDQzZjlmLzEvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9hOGEwOWMtMGY4NC00YTg5LThhMTYtYjA0YjRkMDQzZjlm LzEvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfP4F+fmH 8UqheXrST8RGVFXMLVTOAHczzaQX834+MSk5WyjxZZxYuqkArWrLsRAo077+qfaO ADg5xFXGMVeaxZ6SPuI31N6nSca3eEY2rJH4NsUKK4aBn/G/k3Xh4gy2kautdtEb 45NTjY4FvJ9ZHok2p4HjUI+aU3+stk2nJEhqRNRq5tHr9FbpKUCGRgb8fenaXry5 eonqLhNpFe69AoKL9cTTkvsDPaEpy3kAUpa4Ihx/8yLXUasqUWZAed01tt9Meiz9 cmy5wqrmPorH2u6NbnEas5brf7hR73CsMsy1AsEc8c7SzbUljUXIpAIAC2BQbbAx gBB4DjpW/4rIwg== -----END CERTIFICATE-----Generated at Mon Jan 26 09:28:43 2026 by rpki-client