This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft File: iDg0C7z4K84GXO6zeMuqR7mjLN0.mft (raw, json) Hash identifier: eRNev8MaqVqVLkjuUTguZ/M3HbLpb0i2XGF8H+lroxg= Subject key identifier: 64:D7:82:77:22:03:32:B3:77:A6:AB:57:8A:24:8D:3E:E1:28:0D:CE Authority key identifier: 88:38:34:0B:BC:F8:2B:CE:06:5C:EE:B3:78:CB:AA:47:B9:A3:2C:DD Certificate issuer: /CN=8838340bbcf82bce065ceeb378cbaa47b9a32cdd Certificate serial: 019BF72D955CB90016E0669982825D864F2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDg0C7z4K84GXO6zeMuqR7mjLN0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft Manifest number: 35 Signing time: Sun 25 Jan 2026 22:01:58 +0000 Manifest this update: Sun 25 Jan 2026 22:01:58 +0000 Manifest next update: Mon 26 Jan 2026 22:01:58 +0000 Files and hashes: 1: 82yqy0aGJzKzR4R_K7jhO-MXZ48.asa (hash: QLpjtYyVJWNod7Hjm1qgZ6D0o3OhLnBCKHSjT6fQXEI=) 2: iDg0C7z4K84GXO6zeMuqR7mjLN0.crl (hash: wvpuqVV4/YRaNjWD6H5KN3vFtFS4XEVgWgQRBtvqbdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.crl rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft rsync://rpki.ripe.net/repository/DEFAULT/iDg0C7z4K84GXO6zeMuqR7mjLN0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:95:5c:b9:00:16:e0:66:99:82:82:5d:86:4f:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8838340bbcf82bce065ceeb378cbaa47b9a32cdd Validity Not Before: Jan 25 22:01:58 2026 GMT Not After : Jan 26 22:01:58 2026 GMT Subject: CN=64d78277220332b377a6ab578a248d3ee1280dce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fc:e9:09:82:d0:ab:21:f2:2b:ce:20:f8:11: 14:dd:27:53:f4:39:6d:3c:f8:90:e7:19:2d:d6:79: 1e:cc:84:67:62:76:e1:de:a5:ad:12:ba:8a:fd:4e: ff:e6:ed:ea:6c:b3:dd:0a:af:9e:07:c6:83:0a:2a: 43:eb:94:47:60:99:e9:ac:29:de:91:e9:5a:a5:46: 1e:d6:ea:46:17:96:64:98:c9:8e:c6:83:c0:fa:b4: 4a:5e:54:75:4f:25:a1:ab:68:64:48:2d:84:8a:c9: 5e:a9:69:ad:ec:3f:52:12:ea:d8:2c:bd:7b:69:e1: 7a:69:65:62:10:8c:ba:5a:05:ef:c3:f1:97:aa:ef: d8:5b:81:e6:64:82:7c:e9:d1:76:cf:10:c9:c4:62: 16:78:ab:23:6a:c7:e9:90:dc:93:93:22:e0:75:12: d7:71:bc:6f:5d:3b:32:34:29:72:0c:aa:ee:29:9c: 0a:01:7d:3f:bd:f0:14:60:64:e3:63:63:5f:8c:c4: 01:40:e8:4c:f7:40:42:f2:e4:15:64:4e:17:4c:9f: b0:da:79:73:ee:26:ff:db:aa:74:2f:da:6a:89:c2: a7:5a:e1:b3:b1:54:72:9a:8c:f4:3e:66:cb:c3:a9: dd:ce:47:59:47:df:62:53:70:00:9b:cd:5e:d4:67: 78:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D7:82:77:22:03:32:B3:77:A6:AB:57:8A:24:8D:3E:E1:28:0D:CE X509v3 Authority Key Identifier: keyid:88:38:34:0B:BC:F8:2B:CE:06:5C:EE:B3:78:CB:AA:47:B9:A3:2C:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDg0C7z4K84GXO6zeMuqR7mjLN0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/54af6c-dc5a-4316-9056-35e39964dfdc/1/iDg0C7z4K84GXO6zeMuqR7mjLN0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:6d:9b:28:f1:92:56:00:64:5e:e5:f8:d6:3f:e5:bd:cb:e9: 4e:fb:5d:f0:24:ed:cb:23:91:d3:91:c6:78:15:30:ba:0b:06: 38:1a:e1:dc:bc:04:3d:63:a2:27:45:ca:f4:a5:33:de:90:87: 7a:08:b6:8d:e2:56:0c:c6:9e:3a:51:2a:c3:8e:55:0a:5b:98: f5:81:be:95:91:0a:fc:fc:1e:b8:d7:83:ba:bd:a0:a4:60:dc: bf:d0:22:da:95:31:af:c4:e0:45:63:04:1e:30:24:f1:bc:a1: 04:f6:44:74:ca:2d:d8:5e:a7:8d:77:df:52:d1:15:91:ca:c7: 06:5e:89:15:92:c7:98:9f:03:c0:b8:25:fe:59:e5:67:cd:77: 78:51:7d:e9:fc:47:ed:bc:fd:37:c5:b2:28:27:c1:2b:4c:d9: 10:bc:7a:9a:bf:5d:fe:9d:98:36:a4:b1:0b:05:1b:a7:1e:0d: fb:e5:d2:cb:16:63:1e:a0:3c:f6:68:10:d2:ae:f7:93:ec:28: aa:66:fc:f9:1b:77:27:90:a6:3c:83:b8:66:8d:94:9a:c8:02: fe:5c:f8:16:50:78:f4:2a:2d:34:09:3b:bd:56:e4:7f:07:00: 75:36:bd:6a:51:3a:65:3d:5a:35:08:bc:5b:a7:63:82:1d:56: 2f:b7:3e:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LZVcuQAW4GaZgoJdhk8sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MzgzNDBiYmNmODJiY2UwNjVjZWViMzc4Y2JhYTQ3Yjlh MzJjZGQwHhcNMjYwMTI1MjIwMTU4WhcNMjYwMTI2MjIwMTU4WjAzMTEwLwYDVQQD Eyg2NGQ3ODI3NzIyMDMzMmIzNzdhNmFiNTc4YTI0OGQzZWUxMjgwZGNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmfzpCYLQqyHyK84g+BEU3SdT9Dlt PPiQ5xkt1nkezIRnYnbh3qWtErqK/U7/5u3qbLPdCq+eB8aDCipD65RHYJnprCne kelapUYe1upGF5ZkmMmOxoPA+rRKXlR1TyWhq2hkSC2EisleqWmt7D9SEurYLL17 aeF6aWViEIy6WgXvw/GXqu/YW4HmZIJ86dF2zxDJxGIWeKsjasfpkNyTkyLgdRLX cbxvXTsyNClyDKruKZwKAX0/vfAUYGTjY2NfjMQBQOhM90BC8uQVZE4XTJ+w2nlz 7ib/26p0L9pqicKnWuGzsVRymoz0PmbLw6ndzkdZR99iU3AAm81e1Gd40wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGTXgnciAzKzd6arV4okjT7hKA3OMB8GA1UdIwQY MBaAFIg4NAu8+CvOBlzus3jLqke5oyzdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaURnMEM3ejRLODRHWE82emVNdXFSN21qTE4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS81NGFmNmMtZGM1YS00MzE2LTkwNTYt MzVlMzk5NjRkZmRjLzEvaURnMEM3ejRLODRHWE82emVNdXFSN21qTE4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS81NGFmNmMtZGM1YS00MzE2LTkwNTYtMzVlMzk5NjRkZmRj LzEvaURnMEM3ejRLODRHWE82emVNdXFSN21qTE4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ22bKPGS VgBkXuX41j/lvcvpTvtd8CTtyyOR05HGeBUwugsGOBrh3LwEPWOiJ0XK9KUz3pCH egi2jeJWDMaeOlEqw45VCluY9YG+lZEK/PweuNeDur2gpGDcv9Ai2pUxr8TgRWME HjAk8byhBPZEdMot2F6njXffUtEVkcrHBl6JFZLHmJ8DwLgl/lnlZ813eFF96fxH 7bz9N8WyKCfBK0zZELx6mr9d/p2YNqSxCwUbpx4N++XSyxZjHqA89mgQ0q73k+wo qmb8+Rt3J5CmPIO4Zo2UmsgC/lz4FlB49CotNAk7vVbkfwcAdTa9alE6ZT1aNQi8 W6djgh1WL7c+zA== -----END CERTIFICATE-----Generated at Mon Jan 26 08:39:52 2026 by rpki-client