This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft File: I3ikqcUjJahZIICboaTYniHALxc.mft (raw, json) Hash identifier: 0qgnLl1LnGwtHQCnHfF7iZmN3UJMkURQBlibZIeYHpA= Subject key identifier: 87:22:99:65:80:00:60:AE:5C:FA:A0:58:57:C5:3E:52:71:AD:31:62 Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17 Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17 Certificate serial: 019BF6BF4E13E541D1D76E29DD70EC339E0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft Manifest number: 1538 Signing time: Sun 25 Jan 2026 20:01:31 +0000 Manifest this update: Sun 25 Jan 2026 20:01:31 +0000 Manifest next update: Mon 26 Jan 2026 20:01:31 +0000 Files and hashes: 1: E6053yR1CqVaJr7LtSIy8wHoaGg.roa (hash: YpgpJxbI9F9bF2mcDpVeWkbBTRfl6cIoKyEc+QXfAaA=) 2: I3ikqcUjJahZIICboaTYniHALxc.crl (hash: JtGX3yup6LdaPAulz2c67vIKtEHbQXkszVn/W/jh6rc=) 3: VdgeZDIeVNPfFDruPnZ1hu3S9e0.roa (hash: Qq2NngHafLIvO2R0hWPLxLIlO+UaWWV0xfhSeKiG+84=) 4: WfRMYNgnDvdxhv_OgYStuN6FqCQ.roa (hash: uHLuQi8KJbVs5VqNtZkcp+fIJy6HLJbaJ1btjtIY4cM=) 5: XgZUWF_JY2HTJzbvU6Cnd5y6OTQ.roa (hash: xDb3dtwGlNAHcmXCM8UYUqhwZfzy/vemU3ULkTqFlkw=) 6: vfUbYO5TjUkdIqbIG77eYeU-n-U.roa (hash: 0e4c1Mw99PsTD71HBuC9Z/Vb3JqYveh6VUI81e17S8s=) 7: vvUMzJMS3YN2PdWIsXTg73pWUMU.roa (hash: jqHmBZCizBRZOJ6dgt21LSpJ/Vl6QvBloIY8Xls6yuc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:bf:4e:13:e5:41:d1:d7:6e:29:dd:70:ec:33:9e:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17 Validity Not Before: Jan 25 20:01:31 2026 GMT Not After : Jan 26 20:01:31 2026 GMT Subject: CN=87229965800060ae5cfaa05857c53e5271ad3162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ec:26:94:c3:72:ec:1e:a2:e7:3c:2e:93:3a: e0:29:0a:0b:ca:cb:73:0c:02:7c:1c:3c:c9:3f:85: 05:78:e8:e1:af:94:92:b7:1b:e1:f1:fb:65:f1:71: 67:22:5e:6d:48:97:43:55:7f:59:e8:6f:7a:b3:e7: 2c:5d:fb:21:a6:b6:ee:3c:10:02:a5:b5:f2:ab:70: c6:25:99:ea:ad:0c:2c:4e:46:2f:49:03:60:d0:80: 31:d3:8d:ac:ba:4f:c3:42:85:42:b1:19:e3:89:92: d7:a1:69:0e:2f:ae:34:89:8a:df:f2:8e:ea:35:d8: c6:55:48:97:c7:a7:2f:11:bf:ca:5c:41:0b:18:21: 4f:5e:e4:44:fd:cb:02:70:1e:95:f6:ce:32:8a:54: e7:6e:c3:1d:3a:27:a4:07:6b:f9:63:67:a6:ca:8f: 54:f7:6d:b4:20:fb:eb:7c:1f:8e:87:40:9c:22:2d: 1d:df:d8:7e:cf:6b:7e:3f:a4:57:92:af:7e:16:1a: f8:01:3b:f6:64:4d:96:a5:8a:09:8b:7c:81:f0:6a: d6:4f:23:41:aa:d1:06:4d:55:4b:59:95:ae:81:12: d2:7f:18:59:ef:d4:b8:c0:ac:9e:b6:0e:79:25:51: 19:02:67:b1:cb:bb:f2:17:b1:a4:8d:96:c2:ad:6b: 67:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:22:99:65:80:00:60:AE:5C:FA:A0:58:57:C5:3E:52:71:AD:31:62 X509v3 Authority Key Identifier: keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:f6:91:82:b9:83:f3:02:94:f5:06:ec:25:5e:53:17:f9:e4: a3:8f:15:38:3c:cb:91:4c:bc:eb:52:b8:c2:34:39:fe:69:3e: 04:56:c4:2e:ec:65:c9:40:98:bb:b9:a0:fb:30:b2:00:d7:3e: aa:03:dc:6e:5a:51:15:f9:86:a0:4c:bd:01:1e:63:a4:56:45: 33:0d:b0:f7:95:a4:23:8c:78:d3:bf:ac:73:52:fe:01:20:5b: a6:74:cc:ae:b4:1a:8a:99:56:71:be:2c:41:c5:80:ef:03:08: 34:1f:98:9a:46:6e:43:bc:df:3e:70:81:c5:e4:7a:85:5c:7d: b7:ac:a2:71:ed:e8:62:31:f5:67:b8:c1:be:6b:15:24:da:ad: 51:f4:74:a5:18:00:45:48:8b:71:ba:f2:bf:18:c2:49:63:b5: a7:a9:3b:81:74:4d:2f:86:6b:d8:8b:06:ae:71:3a:d1:b4:ce: 79:45:4f:77:7d:5f:ba:49:7c:35:6a:19:5d:36:e1:76:0d:bb: a8:c4:62:b6:1c:bc:71:6b:78:3d:cb:05:f8:d9:a8:26:39:7b: 9c:ed:3e:34:5e:6b:8c:88:07:45:b2:6f:b2:54:be:7b:ea:ab: fa:82:8a:b2:34:92:1e:83:98:43:f4:25:39:59:89:26:2f:49: 2b:14:40:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2v04T5UHR124p3XDsM54LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzNzhhNGE5YzUyMzI1YTg1OTIwODA5YmExYTRkODllMjFj MDJmMTcwHhcNMjYwMTI1MjAwMTMxWhcNMjYwMTI2MjAwMTMxWjAzMTEwLwYDVQQD Eyg4NzIyOTk2NTgwMDA2MGFlNWNmYWEwNTg1N2M1M2U1MjcxYWQzMTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoewmlMNy7B6i5zwukzrgKQoLystz DAJ8HDzJP4UFeOjhr5SStxvh8ftl8XFnIl5tSJdDVX9Z6G96s+csXfshprbuPBAC pbXyq3DGJZnqrQwsTkYvSQNg0IAx042suk/DQoVCsRnjiZLXoWkOL640iYrf8o7q NdjGVUiXx6cvEb/KXEELGCFPXuRE/csCcB6V9s4yilTnbsMdOiekB2v5Y2emyo9U 9220IPvrfB+Oh0CcIi0d39h+z2t+P6RXkq9+Fhr4ATv2ZE2WpYoJi3yB8GrWTyNB qtEGTVVLWZWugRLSfxhZ79S4wKyetg55JVEZAmexy7vyF7GkjZbCrWtnjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIcimWWAAGCuXPqgWFfFPlJxrTFiMB8GA1UdIwQY MBaAFCN4pKnFIyWoWSCAm6Gk2J4hwC8XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTNpa3FjVWpKYWhaSUlDYm9hVFluaUhBTHhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9kNjU0YmUtMTc0ZS00MWY3LTljZmIt OTM3ZTI3ZWUxYjViLzEvSTNpa3FjVWpKYWhaSUlDYm9hVFluaUhBTHhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9kNjU0YmUtMTc0ZS00MWY3LTljZmItOTM3ZTI3ZWUxYjVi LzEvSTNpa3FjVWpKYWhaSUlDYm9hVFluaUhBTHhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlPaRgrmD 8wKU9QbsJV5TF/nko48VODzLkUy861K4wjQ5/mk+BFbELuxlyUCYu7mg+zCyANc+ qgPcblpRFfmGoEy9AR5jpFZFMw2w95WkI4x407+sc1L+ASBbpnTMrrQaiplWcb4s QcWA7wMINB+YmkZuQ7zfPnCBxeR6hVx9t6yice3oYjH1Z7jBvmsVJNqtUfR0pRgA RUiLcbryvxjCSWO1p6k7gXRNL4Zr2IsGrnE60bTOeUVPd31fukl8NWoZXTbhdg27 qMRithy8cWt4PcsF+NmoJjl7nO0+NF5rjIgHRbJvslS+e+qr+oKKsjSSHoOYQ/Ql OVmJJi9JKxRAcw== -----END CERTIFICATE-----Generated at Mon Jan 26 00:18:35 2026 by rpki-client