This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft File: iqtMDPIcGj1upBBoy-kIvjiORQo.mft (raw, json) Hash identifier: NadSfHElgDeXqr65nxIbx/n+W1f16zKvtE4ky6HhSsc= Subject key identifier: 80:FD:DD:B8:D1:CD:83:EE:C0:B3:AE:04:FB:1F:F7:D5:CA:90:EA:F3 Authority key identifier: 8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A Certificate issuer: /CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a Certificate serial: 019BF61A0E740CB7EFBD40F8C43C25E1DAD2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft Manifest number: 052C Signing time: Sun 25 Jan 2026 17:01:01 +0000 Manifest this update: Sun 25 Jan 2026 17:01:01 +0000 Manifest next update: Mon 26 Jan 2026 17:01:01 +0000 Files and hashes: 1: 4GRqDQUSb-zxr8Uio1ztz9ttwpQ.roa (hash: ATHhAZBwTjYGOPvU16akA/fsoKv3w9kmqPeuvaUthH0=) 2: EdRGRNAOunRYG7-_JByQf_-npzI.roa (hash: hCZ1ruXMfJaNp5NsNXemKDBnVae+viS5ZTIr51GpNRQ=) 3: On2nk-aByUGs4ZA6emj31XEJdso.roa (hash: DD3HadfYy5dPFXQsNsDN3ezTTc4+paMyIyZQDpChk8M=) 4: QmnB2CMIfe5umcxczxRujV0wYEk.roa (hash: lwZAzq1D6hmN+6U+dqklR1EjzUoOQPeBNTMLHAdXkGQ=) 5: iqtMDPIcGj1upBBoy-kIvjiORQo.crl (hash: mBcfxHi7Jsm7aGwyqmwIou/RWzmEGSLDe/deYDH6GrA=) 6: tsHmi25vrKfns5kPGhl6myHWaVw.roa (hash: 8MIMAYAM0/jsI9v0uOOSYvki5uUrLoYRmY+NS2ZIDRg=) 7: vX_8fXaxigdlWpe1tG-xpUdtIoQ.roa (hash: XxkJj1YMXQmGGy2zQBCP59NASJ3xuWotiNT/aTYNmvw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:0e:74:0c:b7:ef:bd:40:f8:c4:3c:25:e1:da:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a Validity Not Before: Jan 25 17:01:01 2026 GMT Not After : Jan 26 17:01:01 2026 GMT Subject: CN=80fdddb8d1cd83eec0b3ae04fb1ff7d5ca90eaf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9a:48:9e:13:28:63:c7:3d:06:dd:cf:44:22: 57:27:70:59:3b:05:63:18:4a:e5:df:70:f6:f4:67: f7:64:66:46:60:fc:a8:4a:da:8e:91:65:fd:b5:6b: 89:74:00:ec:fa:56:c4:29:f8:37:ad:50:04:64:5b: 2f:79:0a:b8:fc:c4:95:20:de:1c:e3:1a:1d:9a:e5: 8b:80:70:13:05:bc:e1:cf:a3:51:d6:de:4a:36:c8: 60:13:b1:2c:88:1f:ef:7c:d8:4f:c4:0f:6a:f9:7b: b4:57:f5:b8:dc:19:49:8b:f3:93:8c:b7:42:32:15: bc:63:c7:e5:37:43:66:e2:f5:77:e0:2b:8d:8d:31: 89:30:d7:c7:b3:1a:2c:5b:70:c9:17:3b:d8:a8:86: e8:a4:d3:62:d2:8b:08:ee:6a:bb:de:d5:05:4d:f2: 04:18:7e:3f:f5:57:06:00:0f:52:c9:a6:f2:14:9e: 5a:59:52:bd:60:8e:4f:d9:7a:be:2b:00:5a:34:25: 18:2a:d4:7a:fc:95:e6:4f:2f:32:d4:01:cf:ad:e6: 3e:91:40:21:b8:e3:24:52:57:14:46:fe:f9:d5:5e: 2a:db:bc:53:6a:e1:84:01:09:56:3b:9b:42:56:30: 11:7c:d4:a3:78:f3:ad:60:66:52:23:b3:77:77:c3: bf:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:FD:DD:B8:D1:CD:83:EE:C0:B3:AE:04:FB:1F:F7:D5:CA:90:EA:F3 X509v3 Authority Key Identifier: keyid:8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:45:7b:20:7b:59:1e:6a:0f:25:5d:00:a3:74:2d:6e:c9:eb: b4:49:4f:a1:e0:4d:f7:64:aa:dd:f3:f6:66:82:04:cc:5d:b5: 5a:cc:bb:95:98:8e:d7:c8:d1:7e:39:30:32:a3:65:79:c6:75: d7:f8:5a:7a:33:b0:bd:f6:f8:f3:ae:50:4d:fd:0a:fd:22:ad: 81:a7:3a:12:78:e6:6c:c4:7d:e9:fb:f3:8b:bc:6f:f3:0d:68: a3:da:7a:53:3c:83:5e:91:89:15:ed:ec:6d:79:bf:c7:fc:5c: 75:6e:96:dd:c5:12:3b:fa:50:b3:b4:32:0b:44:b0:ca:68:e8: a4:16:b7:98:47:ff:87:30:d9:dc:95:42:43:58:36:fd:be:ba: 23:80:25:0e:90:e1:f9:5c:38:27:d4:78:b6:5e:09:d1:b4:39: 76:2a:07:6d:85:7a:f0:29:d9:39:a0:17:23:8a:0f:89:ec:33: 81:00:81:29:e5:67:0c:ce:4a:5a:c4:05:4d:1f:6b:76:95:18: 0f:25:33:0e:7e:8d:bc:a2:17:a7:e3:6c:39:32:82:67:3c:49: b5:00:6a:b2:74:9e:09:ad:e1:9e:fa:c5:99:8c:0f:d0:2c:99: bf:f5:10:af:0b:50:02:43:a5:33:3d:27:a8:85:be:f6:e6:60: 0a:4d:f0:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2Gg50DLfvvUD4xDwl4drSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWI0YzBjZjIxYzFhM2Q2ZWE0MTA2OGNiZTkwOGJlMzg4 ZTQ1MGEwHhcNMjYwMTI1MTcwMTAxWhcNMjYwMTI2MTcwMTAxWjAzMTEwLwYDVQQD Eyg4MGZkZGRiOGQxY2Q4M2VlYzBiM2FlMDRmYjFmZjdkNWNhOTBlYWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsppInhMoY8c9Bt3PRCJXJ3BZOwVj GErl33D29Gf3ZGZGYPyoStqOkWX9tWuJdADs+lbEKfg3rVAEZFsveQq4/MSVIN4c 4xodmuWLgHATBbzhz6NR1t5KNshgE7EsiB/vfNhPxA9q+Xu0V/W43BlJi/OTjLdC MhW8Y8flN0Nm4vV34CuNjTGJMNfHsxosW3DJFzvYqIbopNNi0osI7mq73tUFTfIE GH4/9VcGAA9SyabyFJ5aWVK9YI5P2Xq+KwBaNCUYKtR6/JXmTy8y1AHPreY+kUAh uOMkUlcURv751V4q27xTauGEAQlWO5tCVjARfNSjePOtYGZSI7N3d8O/hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFID93bjRzYPuwLOuBPsf99XKkOrzMB8GA1UdIwQY MBaAFIqrTAzyHBo9bqQQaMvpCL44jkUKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMt NTM3YjFiNDlkZmU3LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMtNTM3YjFiNDlkZmU3 LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJUV7IHtZ HmoPJV0Ao3QtbsnrtElPoeBN92Sq3fP2ZoIEzF21Wsy7lZiO18jRfjkwMqNlecZ1 1/haejOwvfb4865QTf0K/SKtgac6EnjmbMR96fvzi7xv8w1oo9p6UzyDXpGJFe3s bXm/x/xcdW6W3cUSO/pQs7QyC0SwymjopBa3mEf/hzDZ3JVCQ1g2/b66I4AlDpDh +Vw4J9R4tl4J0bQ5dioHbYV68CnZOaAXI4oPiewzgQCBKeVnDM5KWsQFTR9rdpUY DyUzDn6NvKIXp+NsOTKCZzxJtQBqsnSeCa3hnvrFmYwP0CyZv/UQrwtQAkOlMz0n qIW+9uZgCk3wZQ== -----END CERTIFICATE-----Generated at Sun Jan 25 22:52:38 2026 by rpki-client