This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft File: rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft (raw, json) Hash identifier: ZUu3hdz+aMwl9Rr2Co5bbuX93FMwhUpAPxbK8GY9Ueo= Subject key identifier: 88:30:C7:34:9A:21:30:DF:FB:89:19:CD:1D:89:2B:A0:6F:C8:F6:BC Authority key identifier: AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5 Certificate issuer: /CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5 Certificate serial: 019BF7635C94ACC30D6519760B1560EF09E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft Manifest number: 17F1 Signing time: Sun 25 Jan 2026 23:00:42 +0000 Manifest this update: Sun 25 Jan 2026 23:00:42 +0000 Manifest next update: Mon 26 Jan 2026 23:00:42 +0000 Files and hashes: 1: gux-IxdkibcThQl39PWiMsakK0g.roa (hash: xADBPDkQYtVHScAVn2k1rTwtjm/TxC5Y/n4oo7GBk1E=) 2: j2oU6HUcGyqWuziuZf7B0ic6Sjg.roa (hash: 9fcFEJQrReh9PGtwsr/lc94aRL+YhT093KUUSLavpPE=) 3: rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl (hash: 1cbrlOM+PUr0fe65blcu4m4S1R2B65kJX6WLK2aWpW4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:63:5c:94:ac:c3:0d:65:19:76:0b:15:60:ef:09:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac8a0e0b1b21f093333c0748145b1628418cf2b5 Validity Not Before: Jan 25 23:00:42 2026 GMT Not After : Jan 26 23:00:42 2026 GMT Subject: CN=8830c7349a2130dffb8919cd1d892ba06fc8f6bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e4:98:76:86:3c:c3:aa:8e:9c:5a:28:7b:fe: ac:08:a2:c6:50:f0:f2:74:61:24:f3:57:70:55:5d: 48:0b:e5:92:2a:19:0a:f7:c9:69:ca:77:16:ed:18: cb:c9:12:d0:11:9f:04:3f:f8:69:74:5a:ba:44:db: 11:c3:7d:62:3d:ae:43:d3:4e:9b:44:a5:d2:07:c2: 73:fe:12:75:c2:b9:f1:5e:34:f7:54:97:63:83:a1: bc:a7:54:18:de:38:c8:82:7a:e9:ea:35:83:9f:f2: f5:1b:ed:06:b4:16:02:64:9d:7b:88:63:a5:7b:fb: 76:8a:84:c2:40:b8:b9:61:d4:1e:19:50:2d:fc:19: 1b:11:95:c5:a0:52:b2:ba:1f:21:12:28:18:b5:08: 38:56:eb:9e:fe:8b:6a:62:81:6e:0e:76:80:38:dd: 2d:6f:f1:81:68:38:33:e9:9a:d1:3b:94:96:3d:41: a2:79:f5:75:bb:e8:bb:b3:61:8d:fe:d0:15:5f:d4: 08:8b:1f:78:e3:f8:fd:9f:45:bd:92:c7:96:a5:64: e0:ca:b0:5e:e3:3b:42:0f:fb:75:05:be:c9:dd:36: a3:0a:07:fe:3a:ca:47:8b:d4:2a:6b:08:61:76:88: d9:9e:c5:e9:4b:29:cf:30:27:d5:d4:8f:56:fa:89: 6c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:30:C7:34:9A:21:30:DF:FB:89:19:CD:1D:89:2B:A0:6F:C8:F6:BC X509v3 Authority Key Identifier: keyid:AC:8A:0E:0B:1B:21:F0:93:33:3C:07:48:14:5B:16:28:41:8C:F2:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIoOCxsh8JMzPAdIFFsWKEGM8rU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8ce6a1-130c-480e-a903-db8eff1b11a0/1/rIoOCxsh8JMzPAdIFFsWKEGM8rU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:1d:ed:93:9c:fb:73:12:20:20:74:b7:9e:60:e6:24:7b:bd: ae:f8:13:28:b2:9a:c3:24:66:19:9a:dc:86:58:af:45:b3:95: 87:48:8e:bc:bd:72:7f:62:c1:b5:b5:de:37:4d:9d:a5:07:d0: ab:6b:90:12:ab:0d:4f:a5:d0:ec:96:ec:bb:e4:8e:af:f3:32: 73:2b:91:ad:06:8b:a7:72:51:3e:ec:ed:4b:cc:8b:69:59:ad: f4:f1:cc:8d:80:ac:3d:62:66:83:13:27:e2:b5:96:9c:99:df: 4d:f1:a2:b0:a1:ad:c3:45:f3:a5:ef:1a:b6:27:92:0f:e7:ab: 0b:51:02:7e:04:b6:6a:4c:a5:14:7b:8b:9a:2b:86:13:09:dd: dd:16:65:16:cf:3d:2d:57:a3:8b:78:11:c5:8e:81:95:8a:2e: 7b:92:c9:8a:fb:c7:50:50:67:a1:aa:6b:d6:ef:ad:0a:1f:7b: 5e:03:58:87:c5:cc:db:a9:74:4e:2b:c3:47:87:b5:ae:67:9e: 67:ab:48:7c:b4:0b:93:9e:98:b8:55:e4:97:57:ce:30:84:ee: a3:7c:ea:68:d0:c4:5d:ac:92:7d:fc:bc:6c:43:d2:93:45:ec: d3:9d:a5:3f:2f:a6:b4:32:b3:a5:1f:05:3c:f1:a1:06:73:99: bb:11:8d:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3Y1yUrMMNZRl2CxVg7wnhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjOGEwZTBiMWIyMWYwOTMzMzNjMDc0ODE0NWIxNjI4NDE4 Y2YyYjUwHhcNMjYwMTI1MjMwMDQyWhcNMjYwMTI2MjMwMDQyWjAzMTEwLwYDVQQD Eyg4ODMwYzczNDlhMjEzMGRmZmI4OTE5Y2QxZDg5MmJhMDZmYzhmNmJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxuSYdoY8w6qOnFooe/6sCKLGUPDy dGEk81dwVV1IC+WSKhkK98lpyncW7RjLyRLQEZ8EP/hpdFq6RNsRw31iPa5D006b RKXSB8Jz/hJ1wrnxXjT3VJdjg6G8p1QY3jjIgnrp6jWDn/L1G+0GtBYCZJ17iGOl e/t2ioTCQLi5YdQeGVAt/BkbEZXFoFKyuh8hEigYtQg4Vuue/otqYoFuDnaAON0t b/GBaDgz6ZrRO5SWPUGiefV1u+i7s2GN/tAVX9QIix944/j9n0W9kseWpWTgyrBe 4ztCD/t1Bb7J3TajCgf+OspHi9QqawhhdojZnsXpSynPMCfV1I9W+olszQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIgwxzSaITDf+4kZzR2JK6BvyPa8MB8GA1UdIwQY MBaAFKyKDgsbIfCTMzwHSBRbFihBjPK1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84Y2U2YTEtMTMwYy00ODBlLWE5MDMt ZGI4ZWZmMWIxMWEwLzEvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy84Y2U2YTEtMTMwYy00ODBlLWE5MDMtZGI4ZWZmMWIxMWEw LzEvcklvT0N4c2g4Sk16UEFkSUZGc1dLRUdNOHJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKB3tk5z7 cxIgIHS3nmDmJHu9rvgTKLKawyRmGZrchlivRbOVh0iOvL1yf2LBtbXeN02dpQfQ q2uQEqsNT6XQ7Jbsu+SOr/MycyuRrQaLp3JRPuztS8yLaVmt9PHMjYCsPWJmgxMn 4rWWnJnfTfGisKGtw0Xzpe8atieSD+erC1ECfgS2akylFHuLmiuGEwnd3RZlFs89 LVeji3gRxY6BlYoue5LJivvHUFBnoapr1u+tCh97XgNYh8XM26l0TivDR4e1rmee Z6tIfLQLk56YuFXkl1fOMITuo3zqaNDEXaySffy8bEPSk0Xs052lPy+mtDKzpR8F PPGhBnOZuxGNKA== -----END CERTIFICATE-----Generated at Mon Jan 26 01:32:02 2026 by rpki-client