This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft File: I7GUMIfOaWI-drIUWzR5rCBLock.mft (raw, json) Hash identifier: uxit9CwT2nOcDNdC3aEO1vaZu5twpK45PolEEaPmY0I= Subject key identifier: D9:DA:E2:79:85:D6:9B:D2:A1:7B:6A:A4:3A:7E:06:C1:D1:8A:E4:73 Authority key identifier: 23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9 Certificate issuer: /CN=23b1943087ce69623e76b2145b3479ac204ba1c9 Certificate serial: 019BF6BF408D10183D06679CAD8FD588D98E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft Manifest number: 1727 Signing time: Sun 25 Jan 2026 20:01:27 +0000 Manifest this update: Sun 25 Jan 2026 20:01:27 +0000 Manifest next update: Mon 26 Jan 2026 20:01:27 +0000 Files and hashes: 1: 78v4VJEfw5PVOd7xHPXoIyfNp48.roa (hash: 6qQ8BW5L0oi0uF4TdnOMiqJXcCMSoxgt26+h+J3CUsI=) 2: Di79UbTmbpFxSYwbXsMn-pZLrV8.roa (hash: tV65sDjzx9UVZdR97H6FDEjyFBVEvZi4/CVnig4SJ08=) 3: I7GUMIfOaWI-drIUWzR5rCBLock.crl (hash: 4XuYBIeqCchC3Qu8sFUDxef7P919sVe5OMbIQERNhz0=) 4: Xy9KAo8RgHqzd9LCgtHpYYSq1Ws.roa (hash: pkyeg5y/UqA2MwW/DbnlFyqNjdMeUTSbZh1g/kjVAXE=) 5: fMLivNYCuxdhHtX3Ga7hVSkjoJM.roa (hash: 9AwEnRwEhqte/EFdOWwlxFhd4JAdP6+asha44+p++gg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:bf:40:8d:10:18:3d:06:67:9c:ad:8f:d5:88:d9:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23b1943087ce69623e76b2145b3479ac204ba1c9 Validity Not Before: Jan 25 20:01:27 2026 GMT Not After : Jan 26 20:01:27 2026 GMT Subject: CN=d9dae27985d69bd2a17b6aa43a7e06c1d18ae473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b6:e0:29:6b:d5:3d:93:6b:e7:78:09:66:e5: 85:61:a5:1b:dc:06:57:26:cd:d1:4d:8f:40:af:c2: 17:03:73:45:ed:d1:1b:e9:d8:fb:fe:40:82:89:20: b3:f6:cb:af:94:0c:3f:6c:d3:79:f6:2c:60:6c:d9: cc:f9:91:b8:af:e8:bf:9e:46:6e:4c:38:4f:79:80: e1:c7:40:56:b8:4c:66:3a:a4:95:eb:a5:6d:2b:eb: dd:d8:13:37:60:b8:f4:3d:58:e2:f4:4a:00:19:60: 74:8b:83:95:9a:45:6f:cb:77:9c:a0:a2:7f:4c:d6: 54:1b:ef:74:76:57:0a:37:a9:74:9e:6b:d8:30:10: d9:03:99:41:29:8c:3d:1b:d8:d2:d7:08:c6:4f:2c: b3:3e:d3:5a:8a:02:13:a3:7a:b5:ab:84:e3:4f:ea: ba:69:e0:6b:c1:0c:ba:fe:3c:ea:68:56:2b:5d:38: b0:95:71:c8:d6:e2:a6:60:69:78:5c:85:1f:b0:db: 6e:12:77:c0:39:9e:42:fb:b4:f7:4f:95:ef:31:00: be:e5:ba:51:0c:2b:c9:27:70:de:43:22:4e:ea:dd: d0:51:cd:6b:89:0c:c8:85:7d:95:88:8d:c0:2a:5c: 7f:3c:d0:52:c7:10:eb:23:fe:ae:7a:03:ff:2e:53: bb:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:DA:E2:79:85:D6:9B:D2:A1:7B:6A:A4:3A:7E:06:C1:D1:8A:E4:73 X509v3 Authority Key Identifier: keyid:23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:f5:ca:b4:ce:e3:21:b4:58:74:5a:cc:e4:27:7d:3e:8e:a2: 9c:58:6e:0e:5f:91:2e:e6:e8:8b:59:8d:34:4b:37:47:83:e9: ff:ed:5a:f2:cb:35:84:ec:13:ce:57:a0:95:5c:b8:77:83:27: fd:be:3c:70:f7:c8:83:c3:80:6b:a8:d2:0d:bb:b7:36:77:d1: ea:2e:20:5b:81:f7:01:14:ef:bb:91:e3:7d:30:c6:1d:57:6c: 7a:09:28:03:50:fa:d1:00:0b:78:97:25:6b:3d:7b:02:3d:9c: 9c:45:f5:77:c9:88:1b:4e:fc:7d:2c:76:87:3d:5a:94:6e:dc: 19:64:88:42:d5:4f:be:75:f1:c7:ec:fb:4d:3c:95:18:9d:bc: 23:63:13:2f:f3:2e:12:70:bf:d3:da:f6:aa:ea:f2:53:e2:30: f7:18:4f:53:e4:cf:54:80:28:d3:50:59:80:b2:f1:af:77:49: 1e:1f:9f:43:a1:f6:a1:2f:6f:60:69:e1:45:2e:b2:8a:8d:04: f5:8a:d7:14:5c:1c:43:7a:f9:1c:43:25:c1:67:54:d5:23:0d: 10:b6:ee:c8:fb:bc:b2:d0:09:e5:9a:db:9b:0b:ed:a1:35:f1: 3d:a6:21:6f:17:ec:8b:64:6e:f0:b7:72:3f:60:b0:4c:ab:4d: e9:40:19:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2v0CNEBg9BmecrY/ViNmOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzYjE5NDMwODdjZTY5NjIzZTc2YjIxNDViMzQ3OWFjMjA0 YmExYzkwHhcNMjYwMTI1MjAwMTI3WhcNMjYwMTI2MjAwMTI3WjAzMTEwLwYDVQQD EyhkOWRhZTI3OTg1ZDY5YmQyYTE3YjZhYTQzYTdlMDZjMWQxOGFlNDczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7bgKWvVPZNr53gJZuWFYaUb3AZX Js3RTY9Ar8IXA3NF7dEb6dj7/kCCiSCz9suvlAw/bNN59ixgbNnM+ZG4r+i/nkZu TDhPeYDhx0BWuExmOqSV66VtK+vd2BM3YLj0PVji9EoAGWB0i4OVmkVvy3ecoKJ/ TNZUG+90dlcKN6l0nmvYMBDZA5lBKYw9G9jS1wjGTyyzPtNaigITo3q1q4TjT+q6 aeBrwQy6/jzqaFYrXTiwlXHI1uKmYGl4XIUfsNtuEnfAOZ5C+7T3T5XvMQC+5bpR DCvJJ3DeQyJO6t3QUc1riQzIhX2ViI3AKlx/PNBSxxDrI/6uegP/LlO7tQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNna4nmF1pvSoXtqpDp+BsHRiuRzMB8GA1UdIwQY MBaAFCOxlDCHzmliPnayFFs0eawgS6HJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTdHVU1JZk9hV0ktZHJJVVd6UjVyQ0JMb2NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83M2YxYzktODJiMC00ZWRlLWI4OTkt Zjc0MmYzOTVhYWY5LzEvSTdHVU1JZk9hV0ktZHJJVVd6UjVyQ0JMb2NrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC83M2YxYzktODJiMC00ZWRlLWI4OTktZjc0MmYzOTVhYWY5 LzEvSTdHVU1JZk9hV0ktZHJJVVd6UjVyQ0JMb2NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASPXKtM7j IbRYdFrM5Cd9Po6inFhuDl+RLuboi1mNNEs3R4Pp/+1a8ss1hOwTzleglVy4d4Mn /b48cPfIg8OAa6jSDbu3NnfR6i4gW4H3ARTvu5HjfTDGHVdsegkoA1D60QALeJcl az17Aj2cnEX1d8mIG078fSx2hz1alG7cGWSIQtVPvnXxx+z7TTyVGJ28I2MTL/Mu EnC/09r2quryU+Iw9xhPU+TPVIAo01BZgLLxr3dJHh+fQ6H2oS9vYGnhRS6yio0E 9YrXFFwcQ3r5HEMlwWdU1SMNELbuyPu8stAJ5ZrbmwvtoTXxPaYhbxfsi2Ru8Ldy P2CwTKtN6UAZNA== -----END CERTIFICATE-----Generated at Sun Jan 25 22:56:48 2026 by rpki-client