This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft File: iyH_rekwvR_S4XiM_0B9nTQTThc.mft (raw, json) Hash identifier: 1T3x51YrYG5pssNk3yzYhoEkEatG3Y5BGWCn7KDLHUo= Subject key identifier: B5:55:BE:C7:41:32:CF:0E:DA:76:FA:45:5C:EF:B8:20:C9:23:87:60 Authority key identifier: 8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17 Certificate issuer: /CN=8b21ffade930bd1fd2e1788cff407d9d34134e17 Certificate serial: 019BF8E454E10F762859A21CA5C1AFA76112 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft Manifest number: 141E Signing time: Mon 26 Jan 2026 06:01:11 +0000 Manifest this update: Mon 26 Jan 2026 06:01:11 +0000 Manifest next update: Tue 27 Jan 2026 06:01:11 +0000 Files and hashes: 1: 0POn4eiSe4D7lLX8DICoyCNVffg.roa (hash: IuTOIfnYnKgQ1QMnujowbH+xUlcXahzENOK89qB7q6Y=) 2: iyH_rekwvR_S4XiM_0B9nTQTThc.crl (hash: bsYlrEJyUvdS6JOyxUw9QmYAcN6nf4BRzZhdqqdNlvo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:e4:54:e1:0f:76:28:59:a2:1c:a5:c1:af:a7:61:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b21ffade930bd1fd2e1788cff407d9d34134e17 Validity Not Before: Jan 26 06:01:11 2026 GMT Not After : Jan 27 06:01:11 2026 GMT Subject: CN=b555bec74132cf0eda76fa455cefb820c9238760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:22:9d:a1:72:0d:d6:76:d9:b1:ab:6a:ae:c0: c5:c0:f2:c8:7d:06:8c:f5:4d:ae:3a:ac:7b:e8:be: 42:27:2b:14:9a:c5:4b:f4:31:6f:e8:f6:58:78:53: 3c:5a:c0:ef:57:74:85:13:f6:1e:21:2d:e5:8f:9f: d1:61:3e:af:49:be:e4:01:31:69:f4:c1:7a:db:e0: fc:5f:29:3e:1b:8c:71:a7:70:95:93:a2:87:fe:6f: 39:06:ad:a1:3a:b5:3d:23:49:57:90:60:c9:fb:e0: 39:9d:7d:a8:a1:70:16:f2:01:14:7c:b8:d6:a6:fc: 44:c5:57:57:d4:f4:d7:06:61:53:b1:c4:8d:b1:c3: 03:54:2e:c9:94:5d:29:08:30:d2:af:86:9f:be:24: 60:e4:dc:ca:38:cf:f7:20:2e:0f:88:8f:18:2a:17: 47:6e:49:a5:f6:7a:56:09:cf:06:c5:fc:c6:a5:2a: bb:be:19:f2:1b:43:09:f5:46:e6:49:e7:79:5a:08: 79:15:4f:13:45:8c:78:c6:84:98:fb:75:79:a6:2d: ea:34:40:ac:53:1b:15:b4:08:a4:a7:b3:88:5d:53: b7:11:66:80:4a:2a:ed:86:14:5f:cf:34:e1:3b:7a: 47:49:a0:57:93:7f:2c:b6:1d:85:1f:36:28:25:04: ae:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:55:BE:C7:41:32:CF:0E:DA:76:FA:45:5C:EF:B8:20:C9:23:87:60 X509v3 Authority Key Identifier: keyid:8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:1c:f5:29:aa:19:40:bd:0e:f5:1b:06:3b:5c:d4:de:0c:90: 39:6a:b7:1c:a2:09:f7:c7:ae:3c:86:5e:5b:6e:40:2d:45:da: 82:bb:60:12:a9:95:9b:99:f0:f3:0f:31:b1:9b:4d:e7:d4:53: 73:51:95:68:6b:63:c7:80:ed:f3:11:b7:0a:3c:3f:a7:c3:43: 2f:c0:40:e4:2b:f8:5b:68:3a:09:48:7d:3e:30:84:44:28:b0: 04:aa:89:0e:30:06:27:77:97:6a:2c:0c:77:9c:2d:c5:e4:27: 29:3d:23:b2:87:30:79:ee:a3:69:37:57:02:56:fc:08:20:cf: aa:49:89:bf:81:84:d9:c7:68:59:dc:fb:41:ec:ac:42:4d:1f: 10:bd:70:a4:ba:4d:7e:64:65:12:c2:cc:fb:87:82:3e:28:d1: 5c:43:19:83:44:13:1d:2e:19:ae:62:42:05:54:94:59:4e:a6: 2c:d2:f8:4d:1e:2e:09:96:44:67:74:ef:fb:d0:29:69:d1:9e: 30:b7:10:cb:7b:d8:02:9d:0c:c7:e6:01:0d:3d:92:ff:78:0d: 3d:f9:c3:05:b9:40:9f:bc:8c:91:08:36:c2:42:85:4a:fe:14: e6:a7:1d:62:ab:41:71:23:33:e5:9b:78:09:1e:9c:3d:a8:d4: 83:42:a0:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv45FThD3YoWaIcpcGvp2ESMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiMjFmZmFkZTkzMGJkMWZkMmUxNzg4Y2ZmNDA3ZDlkMzQx MzRlMTcwHhcNMjYwMTI2MDYwMTExWhcNMjYwMTI3MDYwMTExWjAzMTEwLwYDVQQD EyhiNTU1YmVjNzQxMzJjZjBlZGE3NmZhNDU1Y2VmYjgyMGM5MjM4NzYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAySKdoXIN1nbZsatqrsDFwPLIfQaM 9U2uOqx76L5CJysUmsVL9DFv6PZYeFM8WsDvV3SFE/YeIS3lj5/RYT6vSb7kATFp 9MF62+D8Xyk+G4xxp3CVk6KH/m85Bq2hOrU9I0lXkGDJ++A5nX2ooXAW8gEUfLjW pvxExVdX1PTXBmFTscSNscMDVC7JlF0pCDDSr4afviRg5NzKOM/3IC4PiI8YKhdH bkml9npWCc8GxfzGpSq7vhnyG0MJ9UbmSed5Wgh5FU8TRYx4xoSY+3V5pi3qNECs UxsVtAikp7OIXVO3EWaASirthhRfzzThO3pHSaBXk38sth2FHzYoJQSu7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLVVvsdBMs8O2nb6RVzvuCDJI4dgMB8GA1UdIwQY MBaAFIsh/63pML0f0uF4jP9AfZ00E04XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXlIX3Jla3d2Ul9TNFhpTV8wQjluVFFUVGhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi85Y2UwZWItM2FiYS00YjM2LWI3YzQt NDI1YzUxZDc4ODhiLzEvaXlIX3Jla3d2Ul9TNFhpTV8wQjluVFFUVGhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi85Y2UwZWItM2FiYS00YjM2LWI3YzQtNDI1YzUxZDc4ODhi LzEvaXlIX3Jla3d2Ul9TNFhpTV8wQjluVFFUVGhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAchz1KaoZ QL0O9RsGO1zU3gyQOWq3HKIJ98euPIZeW25ALUXagrtgEqmVm5nw8w8xsZtN59RT c1GVaGtjx4Dt8xG3Cjw/p8NDL8BA5Cv4W2g6CUh9PjCERCiwBKqJDjAGJ3eXaiwM d5wtxeQnKT0jsocwee6jaTdXAlb8CCDPqkmJv4GE2cdoWdz7QeysQk0fEL1wpLpN fmRlEsLM+4eCPijRXEMZg0QTHS4ZrmJCBVSUWU6mLNL4TR4uCZZEZ3Tv+9ApadGe MLcQy3vYAp0Mx+YBDT2S/3gNPfnDBblAn7yMkQg2wkKFSv4U5qcdYqtBcSMz5Zt4 CR6cPajUg0KgVg== -----END CERTIFICATE-----Generated at Mon Jan 26 09:46:03 2026 by rpki-client