This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft File: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft (raw, json) Hash identifier: 6kLJyFMQKXBpwl65O82gDsC+xgMZxnCB+f2MN40Zxn4= Subject key identifier: 48:8F:4A:AF:8D:03:95:2E:51:DF:C9:34:13:E9:D0:D8:5B:10:01:EF Authority key identifier: 89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28 Certificate issuer: /CN=89939ff1293b7e22779fc55b4c83f13e52e94428 Certificate serial: 019BF79ACB72002985E92116BC4C85B8F293 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft Manifest number: 17C0 Signing time: Mon 26 Jan 2026 00:01:15 +0000 Manifest this update: Mon 26 Jan 2026 00:01:15 +0000 Manifest next update: Tue 27 Jan 2026 00:01:15 +0000 Files and hashes: 1: bze-DpbDaFlTujNEYrBpzXK9-lM.roa (hash: ooe09J/1o8+6+gKFLqTffzTatPXG8lw2mIe4kZHRs+0=) 2: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl (hash: 2zKL5TSxQ9/RguwvIhGLoQ3R14UjGg8z4zUNnzKN2S0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:cb:72:00:29:85:e9:21:16:bc:4c:85:b8:f2:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89939ff1293b7e22779fc55b4c83f13e52e94428 Validity Not Before: Jan 26 00:01:15 2026 GMT Not After : Jan 27 00:01:15 2026 GMT Subject: CN=488f4aaf8d03952e51dfc93413e9d0d85b1001ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:95:2f:3e:67:58:53:28:c4:fd:49:1f:d1:39: 63:a4:b3:d0:54:16:2d:8f:3f:b8:38:93:51:7e:32: fc:5e:f5:89:fb:73:1c:73:7f:d6:45:c3:5b:ee:53: ae:07:3e:1e:83:cf:9f:f0:a4:b7:76:37:2d:06:50: 0e:49:d6:3b:53:7a:bc:1f:c8:96:d6:7a:7c:3f:35: 21:9e:57:3d:87:8c:d8:b6:c5:92:f2:62:ef:fa:84: 04:eb:8a:32:61:e3:9b:e7:fc:2d:70:62:e0:c4:f4: 29:a9:76:96:bc:e7:da:a4:47:76:a0:6e:08:8a:7e: ea:39:e6:ec:4e:34:79:c2:ea:57:be:3a:da:09:ba: e7:54:b7:aa:4a:75:36:78:10:3c:34:a9:95:05:18: 80:15:95:1a:ee:da:e4:05:3f:6f:7d:a3:d3:4f:ce: 77:52:54:50:c1:3e:1d:ad:c0:8b:01:f3:60:ce:b9: 29:11:31:9c:14:fb:3e:d5:82:66:ed:8c:75:c8:0a: 11:72:09:f2:ea:bd:7d:b1:68:18:4c:f8:1c:ed:d4: dd:b2:26:08:4c:fe:28:bf:7b:31:eb:bb:c3:12:1a: d8:2a:83:89:5d:84:4f:33:28:66:d3:d9:ef:23:59: 6e:c3:7e:5f:15:dd:0f:4a:50:7b:cf:d1:54:74:ca: 7a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:8F:4A:AF:8D:03:95:2E:51:DF:C9:34:13:E9:D0:D8:5B:10:01:EF X509v3 Authority Key Identifier: keyid:89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:0e:7c:40:60:5a:b8:7d:ca:13:91:3f:2a:7c:ee:c1:e5:f9: 3e:dd:d5:46:7f:3d:70:ea:ec:82:71:06:f5:77:e9:50:c6:4f: 4c:23:4f:66:8b:7e:94:fa:a0:5c:d6:9e:bd:7c:1a:51:65:83: 73:3d:56:bd:c7:23:1d:4a:f8:15:df:92:92:c2:5a:46:d5:40: 84:f9:7f:e7:13:e3:99:1e:32:b3:55:4d:63:17:d0:ed:1c:c9: d7:66:e0:e9:4f:7a:fc:69:63:2d:db:0e:24:f3:68:a9:48:19: be:5a:ca:50:82:3f:19:c9:8e:67:19:80:09:e4:f2:f5:21:93: 95:8f:9c:30:0e:0f:22:77:31:e7:ad:18:f1:92:5c:3a:74:46: ba:a9:a3:db:18:8e:43:80:c6:01:99:f7:8c:24:1d:68:4e:84: 82:4b:4a:7b:97:83:0d:22:bf:c2:82:a4:6b:67:57:ab:fa:37: da:49:6c:b6:2b:04:c2:5a:e1:14:96:ac:df:a0:85:04:eb:e8: 6d:dd:8a:e9:e8:f1:da:4d:32:63:b9:51:65:3f:bf:7d:ed:3e: ea:98:85:29:f9:e0:67:81:53:ee:ed:b9:60:32:5f:d7:e5:18: bb:f5:35:0b:a7:98:cb:18:64:fe:49:68:e0:43:a7:6c:de:f3: 51:c5:a6:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mstyACmF6SEWvEyFuPKTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5OTM5ZmYxMjkzYjdlMjI3NzlmYzU1YjRjODNmMTNlNTJl OTQ0MjgwHhcNMjYwMTI2MDAwMTE1WhcNMjYwMTI3MDAwMTE1WjAzMTEwLwYDVQQD Eyg0ODhmNGFhZjhkMDM5NTJlNTFkZmM5MzQxM2U5ZDBkODViMTAwMWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJUvPmdYUyjE/Ukf0TljpLPQVBYt jz+4OJNRfjL8XvWJ+3Mcc3/WRcNb7lOuBz4eg8+f8KS3djctBlAOSdY7U3q8H8iW 1np8PzUhnlc9h4zYtsWS8mLv+oQE64oyYeOb5/wtcGLgxPQpqXaWvOfapEd2oG4I in7qOebsTjR5wupXvjraCbrnVLeqSnU2eBA8NKmVBRiAFZUa7trkBT9vfaPTT853 UlRQwT4drcCLAfNgzrkpETGcFPs+1YJm7Yx1yAoRcgny6r19sWgYTPgc7dTdsiYI TP4ov3sx67vDEhrYKoOJXYRPMyhm09nvI1luw35fFd0PSlB7z9FUdMp6/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEiPSq+NA5UuUd/JNBPp0NhbEAHvMB8GA1UdIwQY MBaAFImTn/EpO34id5/FW0yD8T5S6UQoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVpPZjhTazdmaUozbjhWYlRJUHhQbExwUkNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9hMTBkZGYtYmI2ZS00YmIwLWJlZmYt MGU2ODAwMGIzNTM3LzEvaVpPZjhTazdmaUozbjhWYlRJUHhQbExwUkNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9hMTBkZGYtYmI2ZS00YmIwLWJlZmYtMGU2ODAwMGIzNTM3 LzEvaVpPZjhTazdmaUozbjhWYlRJUHhQbExwUkNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKA58QGBa uH3KE5E/KnzuweX5Pt3VRn89cOrsgnEG9XfpUMZPTCNPZot+lPqgXNaevXwaUWWD cz1WvccjHUr4Fd+SksJaRtVAhPl/5xPjmR4ys1VNYxfQ7RzJ12bg6U96/GljLdsO JPNoqUgZvlrKUII/GcmOZxmACeTy9SGTlY+cMA4PIncx560Y8ZJcOnRGuqmj2xiO Q4DGAZn3jCQdaE6EgktKe5eDDSK/woKka2dXq/o32klstisEwlrhFJas36CFBOvo bd2K6ejx2k0yY7lRZT+/fe0+6piFKfngZ4FT7u25YDJf1+UYu/U1C6eYyxhk/klo 4EOnbN7zUcWmKg== -----END CERTIFICATE-----Generated at Mon Jan 26 07:12:24 2026 by rpki-client