This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft File: ilUt2GldSD1Hzkz4RbkGsXUnalw.mft (raw, json) Hash identifier: mc70IIKE9DIZRsZq3TthiFKw5I68WbVY+SJICenL058= Subject key identifier: 4E:1A:80:0A:81:0D:44:01:6E:DE:4F:2E:5F:3A:6F:90:34:03:64:80 Authority key identifier: 8A:55:2D:D8:69:5D:48:3D:47:CE:4C:F8:45:B9:06:B1:75:27:6A:5C Certificate issuer: /CN=8a552dd8695d483d47ce4cf845b906b175276a5c Certificate serial: 019BF5E3E77D98C28BAF16096C75261D1B00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft Manifest number: 0184 Signing time: Sun 25 Jan 2026 16:01:52 +0000 Manifest this update: Sun 25 Jan 2026 16:01:52 +0000 Manifest next update: Mon 26 Jan 2026 16:01:52 +0000 Files and hashes: 1: 3d8cRCvZgk2jZJwzRqwjJ7kOG9Q.roa (hash: Sh3IYzZ1zQ9r12wJte75WaIR+93O150+ToROD8zLC3s=) 2: ilUt2GldSD1Hzkz4RbkGsXUnalw.crl (hash: 5MKzU5Kx7XFx8C9Rbc5fDbzphyOtKBjLdtjPH2ucwfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:e7:7d:98:c2:8b:af:16:09:6c:75:26:1d:1b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a552dd8695d483d47ce4cf845b906b175276a5c Validity Not Before: Jan 25 16:01:52 2026 GMT Not After : Jan 26 16:01:52 2026 GMT Subject: CN=4e1a800a810d44016ede4f2e5f3a6f9034036480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9d:d0:b5:b1:7d:1b:6e:c4:0f:e2:a1:43:91: 4e:02:cd:23:47:e7:0f:ba:16:2d:fc:00:17:f9:0c: 20:a9:11:88:27:33:30:dc:25:41:46:57:6a:7c:bd: 72:c3:7a:47:71:c3:f0:1d:51:4b:9e:5c:18:86:4f: 64:39:b8:2f:55:b0:a4:e0:dc:18:e4:20:78:ff:6d: b6:77:48:fc:13:19:16:4f:76:96:bb:ef:1e:e3:5f: 70:6c:bc:70:05:24:30:0d:76:3e:57:e1:1a:a9:71: 51:37:e4:52:8f:20:58:90:54:24:bd:f7:81:14:57: e7:f0:b8:82:0f:fb:62:e7:ff:be:d6:8c:ad:6c:e8: e7:21:aa:9d:eb:6c:22:4e:af:bc:b4:41:69:9b:4a: a4:45:a0:80:6c:b3:19:01:4e:d2:cb:f4:c1:ca:62: c8:6d:b0:da:26:74:1e:1d:ae:6f:81:61:3d:90:4e: 0c:be:dc:9e:17:d0:47:a5:da:61:6f:1f:7c:39:d9: 6f:a3:66:fa:7e:9a:43:87:ad:06:b5:91:43:9f:e1: fa:04:6c:b3:9c:84:07:95:24:21:29:31:48:08:8c: ac:04:12:61:98:c9:79:93:38:2f:ee:9a:61:43:4a: 83:9f:24:11:53:b0:f6:04:59:aa:ea:c4:6c:34:ec: 9c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1A:80:0A:81:0D:44:01:6E:DE:4F:2E:5F:3A:6F:90:34:03:64:80 X509v3 Authority Key Identifier: keyid:8A:55:2D:D8:69:5D:48:3D:47:CE:4C:F8:45:B9:06:B1:75:27:6A:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:30:6e:b2:6b:e2:83:56:10:0f:c4:29:af:30:b4:b0:7f:34: 4f:14:ab:84:53:ef:43:81:6e:5d:92:3b:44:a2:83:83:24:8c: bd:9c:82:8b:16:cd:74:2b:41:99:51:30:1b:da:2f:48:88:59: da:31:95:1e:09:3e:7a:1d:be:f2:76:d3:c4:8b:ca:5e:96:61: 97:a9:4c:44:cd:36:8b:b8:d1:16:31:d1:5a:c3:c3:64:2a:87: 8d:75:b3:21:9e:63:a9:4f:ef:f0:26:c8:f9:92:83:09:0a:9a: a0:8a:34:5b:a9:5e:66:53:62:84:1f:21:73:c1:2d:bc:8d:0a: eb:80:c9:f7:33:78:77:8e:8f:f6:cd:19:64:a3:f3:74:5c:8b: 76:3c:30:98:78:7e:50:d4:aa:18:eb:34:da:eb:c5:2f:1f:19: 35:44:91:f4:95:2c:ed:bb:f9:17:36:cc:9f:cf:c9:1b:9d:6b: ee:f7:21:de:8e:a7:41:96:20:03:be:2f:54:2b:f7:f1:f1:ef: 4a:28:e8:e1:57:b5:af:e1:95:2c:4f:b1:7d:e2:1e:b6:62:9c: 15:3e:84:75:a3:dd:e9:eb:3a:fe:79:06:55:ab:3a:3e:30:0f: ab:08:be:a0:8f:4e:20:da:42:72:32:0e:4b:70:02:4d:0b:e4: 04:52:af:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv14+d9mMKLrxYJbHUmHRsAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhNTUyZGQ4Njk1ZDQ4M2Q0N2NlNGNmODQ1YjkwNmIxNzUy NzZhNWMwHhcNMjYwMTI1MTYwMTUyWhcNMjYwMTI2MTYwMTUyWjAzMTEwLwYDVQQD Eyg0ZTFhODAwYTgxMGQ0NDAxNmVkZTRmMmU1ZjNhNmY5MDM0MDM2NDgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZ3QtbF9G27ED+KhQ5FOAs0jR+cP uhYt/AAX+QwgqRGIJzMw3CVBRldqfL1yw3pHccPwHVFLnlwYhk9kObgvVbCk4NwY 5CB4/222d0j8ExkWT3aWu+8e419wbLxwBSQwDXY+V+EaqXFRN+RSjyBYkFQkvfeB FFfn8LiCD/ti5/++1oytbOjnIaqd62wiTq+8tEFpm0qkRaCAbLMZAU7Sy/TBymLI bbDaJnQeHa5vgWE9kE4MvtyeF9BHpdphbx98Odlvo2b6fppDh60GtZFDn+H6BGyz nIQHlSQhKTFICIysBBJhmMl5kzgv7pphQ0qDnyQRU7D2BFmq6sRsNOycIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE4agAqBDUQBbt5PLl86b5A0A2SAMB8GA1UdIwQY MBaAFIpVLdhpXUg9R85M+EW5BrF1J2pcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80MjA2MjEtOThiOS00OTYxLWEyMzAt MjliM2YwMjcyYjlmLzEvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS80MjA2MjEtOThiOS00OTYxLWEyMzAtMjliM2YwMjcyYjlm LzEvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHTBusmvi g1YQD8QprzC0sH80TxSrhFPvQ4FuXZI7RKKDgySMvZyCixbNdCtBmVEwG9ovSIhZ 2jGVHgk+eh2+8nbTxIvKXpZhl6lMRM02i7jRFjHRWsPDZCqHjXWzIZ5jqU/v8CbI +ZKDCQqaoIo0W6leZlNihB8hc8EtvI0K64DJ9zN4d46P9s0ZZKPzdFyLdjwwmHh+ UNSqGOs02uvFLx8ZNUSR9JUs7bv5FzbMn8/JG51r7vch3o6nQZYgA74vVCv38fHv Sijo4Ve1r+GVLE+xfeIetmKcFT6EdaPd6es6/nkGVas6PjAPqwi+oI9OINpCcjIO S3ACTQvkBFKvWQ== -----END CERTIFICATE-----Generated at Sun Jan 25 18:30:23 2026 by rpki-client