This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json) Hash identifier: m4ifWFeWpj7yGi2ofHfNhktFebDj6nDjdX9KmEm8Tcw= Subject key identifier: 0F:27:4D:33:5A:35:11:B2:48:E4:45:5B:F6:F1:7D:78:0C:50:FE:47 Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0 Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0 Certificate serial: 019BF72CF01354B0FCFDFF6DD7557B2056EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft Manifest number: 17E8 Signing time: Sun 25 Jan 2026 22:01:15 +0000 Manifest this update: Sun 25 Jan 2026 22:01:15 +0000 Manifest next update: Mon 26 Jan 2026 22:01:15 +0000 Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: t8MbicM0c6PtDdBfItXGkH/LRKZZrqhbqlgTY7SiIcc=) 2: z_fYCrrGSV54cj1knb3xBk4SK5U.roa (hash: EFlql6uKuI4YQL66OtBnNw+c0chssYW8DVC7ieJRlbY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:f0:13:54:b0:fc:fd:ff:6d:d7:55:7b:20:56:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0 Validity Not Before: Jan 25 22:01:15 2026 GMT Not After : Jan 26 22:01:15 2026 GMT Subject: CN=0f274d335a3511b248e4455bf6f17d780c50fe47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5d:8d:e8:65:c1:6e:bc:f7:0c:42:ef:74:9c: 90:64:ef:65:1a:a3:21:6c:8f:11:97:fc:de:14:34: 75:f5:51:b7:49:6b:ef:72:12:ca:65:6d:b4:be:12: 49:d4:a9:e7:80:f6:e9:14:45:79:1d:86:09:5b:67: b9:3f:6a:1c:3a:1c:6f:2f:e2:8e:c7:6d:38:b5:1c: fd:9b:92:2c:b3:b8:9c:2d:14:2d:da:c2:59:50:83: 86:6e:70:69:ad:d9:6e:3e:5a:6a:3a:6b:8f:62:05: 24:53:be:3f:ab:ca:39:c4:cd:ab:10:a5:f4:96:f8: 84:7e:b0:61:9b:6b:f0:0f:90:db:42:4c:ab:4f:68: cc:32:24:5c:24:01:96:6d:cc:aa:1c:43:3d:35:c8: ea:af:aa:ad:aa:56:aa:17:fd:97:c5:44:9a:d1:17: 70:c2:6e:50:9d:c1:3a:e3:71:9a:83:a7:69:ac:2f: 2c:44:d1:12:34:bd:8a:43:ba:f0:74:27:d0:a9:6b: 71:9b:fa:79:0c:c5:c8:bc:3a:65:4b:50:d5:66:4d: 09:a7:32:ac:29:f7:de:57:93:93:d6:cb:00:23:ad: 58:67:b8:86:e7:ca:a6:70:3c:a7:82:0b:b4:52:15: f6:c7:27:fc:52:ee:eb:54:a8:8b:69:c8:b9:f4:32: 1e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:27:4D:33:5A:35:11:B2:48:E4:45:5B:F6:F1:7D:78:0C:50:FE:47 X509v3 Authority Key Identifier: keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:0c:0d:ce:1a:bf:37:ba:fd:75:bf:e2:16:1c:56:87:ef:c9: c0:4e:a0:6e:57:4b:04:c7:9f:2a:ae:dc:27:ec:11:4f:13:e1: a3:1a:db:43:3f:d9:a0:1d:ee:4b:25:2f:57:1f:71:72:b2:a9: 4b:d7:6d:d2:af:ae:4a:b8:ae:e8:d1:2d:58:75:55:cc:8d:9b: 45:48:06:38:4f:fd:55:b4:32:ea:a9:2d:23:02:57:75:a2:b2: d7:36:7a:f1:3a:a3:d1:04:43:01:35:4c:2d:ab:96:ed:35:4e: 3e:8a:6e:22:e8:59:35:8e:67:09:8f:e1:f9:e9:d2:27:5d:8b: e3:fa:59:80:36:36:15:27:a7:da:97:c6:78:4a:4e:da:34:47: e3:78:c3:f6:38:e7:36:f5:23:63:2a:91:c4:ae:f2:80:ed:7e: 1f:3f:67:25:7e:97:9d:b8:85:9b:c6:76:b0:c7:40:c7:31:8b: 0e:f9:ca:18:00:eb:16:ac:37:1c:e0:85:36:d0:ce:f7:f3:f1: 33:e7:5c:30:54:b0:ea:2e:a5:6c:d1:ea:3d:b9:8c:2a:51:df: 52:a9:f4:cb:6b:fb:65:57:37:2d:59:54:9f:69:7e:4d:0f:a8: c6:c0:a7:00:f0:b4:da:f1:a1:19:0d:c1:cc:dc:3f:d4:23:54: 53:f0:17:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LPATVLD8/f9t11V7IFbuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0OTIwMjEzY2IyMzBiZmU1MTEyMWNlNWZiNGRlY2UyODAx OGJlZDAwHhcNMjYwMTI1MjIwMTE1WhcNMjYwMTI2MjIwMTE1WjAzMTEwLwYDVQQD EygwZjI3NGQzMzVhMzUxMWIyNDhlNDQ1NWJmNmYxN2Q3ODBjNTBmZTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqF2N6GXBbrz3DELvdJyQZO9lGqMh bI8Rl/zeFDR19VG3SWvvchLKZW20vhJJ1KnngPbpFEV5HYYJW2e5P2ocOhxvL+KO x204tRz9m5Iss7icLRQt2sJZUIOGbnBprdluPlpqOmuPYgUkU74/q8o5xM2rEKX0 lviEfrBhm2vwD5DbQkyrT2jMMiRcJAGWbcyqHEM9Ncjqr6qtqlaqF/2XxUSa0Rdw wm5QncE643Gag6dprC8sRNESNL2KQ7rwdCfQqWtxm/p5DMXIvDplS1DVZk0JpzKs KffeV5OT1ssAI61YZ7iG58qmcDynggu0UhX2xyf8Uu7rVKiLaci59DIeewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA8nTTNaNRGySORFW/bxfXgMUP5HMB8GA1UdIwQY MBaAFISSAhPLIwv+URIc5ftN7OKAGL7QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9hOGEwOWMtMGY4NC00YTg5LThhMTYt YjA0YjRkMDQzZjlmLzEvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9hOGEwOWMtMGY4NC00YTg5LThhMTYtYjA0YjRkMDQzZjlm LzEvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEAwNzhq/ N7r9db/iFhxWh+/JwE6gbldLBMefKq7cJ+wRTxPhoxrbQz/ZoB3uSyUvVx9xcrKp S9dt0q+uSriu6NEtWHVVzI2bRUgGOE/9VbQy6qktIwJXdaKy1zZ68Tqj0QRDATVM LauW7TVOPopuIuhZNY5nCY/h+enSJ12L4/pZgDY2FSen2pfGeEpO2jRH43jD9jjn NvUjYyqRxK7ygO1+Hz9nJX6XnbiFm8Z2sMdAxzGLDvnKGADrFqw3HOCFNtDO9/Px M+dcMFSw6i6lbNHqPbmMKlHfUqn0y2v7ZVc3LVlUn2l+TQ+oxsCnAPC02vGhGQ3B zNw/1CNUU/AX+Q== -----END CERTIFICATE-----Generated at Mon Jan 26 07:47:20 2026 by rpki-client