This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft File: iwVEhe5ixvGTlhPLogZp7vRQT3k.mft (raw, json) Hash identifier: iYCaC5uaFnBaawuVwOhrpwRZB7rOQkVMPzfTKbVc3j4= Subject key identifier: B3:10:71:50:17:09:1B:51:97:51:31:0D:F3:35:1A:4A:00:7F:BA:65 Authority key identifier: 8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79 Certificate issuer: /CN=8b054485ee62c6f1939613cba20669eef4504f79 Certificate serial: 019BF6BF5BCE1D0D5E92381AA8E8565BE3D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft Manifest number: 0DDA Signing time: Sun 25 Jan 2026 20:01:34 +0000 Manifest this update: Sun 25 Jan 2026 20:01:34 +0000 Manifest next update: Mon 26 Jan 2026 20:01:34 +0000 Files and hashes: 1: MPdIoBhSamsoceGH97ZrbeY-7Y4.roa (hash: xk+VO+lT2ZL0Nzt8GYWzkONFJ8wXFr2d45kNV/RsFNQ=) 2: iwVEhe5ixvGTlhPLogZp7vRQT3k.crl (hash: Nj3U30c7LaInLna9NfVDCiukAZNk/aAwcDUGVsh5IVA=) 3: lYJDRXWPAACOBIGtN5SoMpmELk8.roa (hash: +/i7PrD75ms6DLzi7NKAcmr/vu2swer4LejKpfAFxnA=) 4: uUrDuBilHzuoCgA80rJqPJxqSNQ.roa (hash: 77BWKMeC9pAnIWkDSdffjc6huYPIszzufpj7ouuEVAY=) 5: vl57Hdk_U8b9_Y2PxCQcURRvrQw.roa (hash: LDklYITUv8QycRGMLTw4zqVIBgqTAfoD6STDQphVOWc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:bf:5b:ce:1d:0d:5e:92:38:1a:a8:e8:56:5b:e3:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b054485ee62c6f1939613cba20669eef4504f79 Validity Not Before: Jan 25 20:01:34 2026 GMT Not After : Jan 26 20:01:34 2026 GMT Subject: CN=b310715017091b519751310df3351a4a007fba65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c0:b8:44:b9:23:37:08:e9:15:e4:77:0e:52: 43:15:45:17:da:0f:49:d2:09:a9:83:af:58:85:30: b0:b0:bd:39:b2:a5:ec:a5:d7:85:14:3c:3e:8c:b8: 74:12:53:d0:7e:ae:e1:01:79:76:3f:1e:23:6a:81: 7c:d2:47:af:d6:05:45:b8:c2:4b:b7:6d:8f:5a:5a: 46:51:8d:7a:16:67:7a:69:bf:55:91:dd:4a:16:08: 09:f8:f8:56:6a:d4:71:b9:6e:5b:56:d5:1e:b0:ae: ea:b7:63:31:0d:2e:d7:75:fa:26:21:62:69:0b:ca: 46:cc:47:9e:a7:b4:87:33:20:81:4e:67:15:62:15: 43:25:82:53:ae:dc:39:20:2e:47:f8:88:3c:1f:55: a4:04:53:c5:01:1f:9d:76:23:d0:9d:fc:f8:f4:cc: 9b:98:5d:e3:c1:03:31:6e:4b:78:16:5e:15:70:eb: 46:e7:cc:cb:b8:23:89:6b:00:bf:72:e1:66:ad:db: 49:56:a7:0e:74:8e:87:45:a0:08:e2:1e:1e:cb:9a: 80:ca:d6:e4:06:40:c4:c9:35:af:f9:f9:1e:5e:b9: 80:54:d3:aa:0d:e3:fd:3f:4f:29:26:47:ba:f9:3a: 68:40:e0:7f:a9:f8:7e:f9:96:e8:01:60:e5:e0:cf: 6f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:10:71:50:17:09:1B:51:97:51:31:0D:F3:35:1A:4A:00:7F:BA:65 X509v3 Authority Key Identifier: keyid:8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:4a:db:d5:c0:92:b3:6d:df:a6:f8:ef:72:25:6c:98:b3:32: 92:2a:45:22:79:8e:28:2f:18:d3:9f:da:7f:1c:8d:66:26:55: 78:75:d5:f9:7b:34:3b:81:54:88:74:9b:eb:3e:4e:75:ea:84: 7a:79:02:77:0e:05:8e:e1:45:3f:a6:3c:15:18:51:1c:9e:da: 57:f9:9f:df:91:98:cd:e1:01:4d:4a:88:41:dc:c9:c7:62:15: 7f:3f:d4:4e:8c:7e:81:28:13:cf:01:64:89:3a:51:d9:b9:a3: c7:84:e1:cc:de:5c:77:e1:ec:1e:ec:6b:01:9f:96:4a:b9:a8: 71:4d:a6:af:f9:46:da:16:76:76:08:c1:c6:75:c5:e0:d0:4f: 5c:6c:cc:12:21:e2:6a:41:c0:a9:33:3e:ca:ba:4a:e5:58:fe: 87:2e:8c:59:bb:ba:19:d2:a4:aa:f6:d3:42:7d:ca:bc:32:73: 47:0b:8f:12:47:26:bf:15:11:57:9d:78:b5:b7:41:59:24:94: 55:a1:d2:bb:07:70:38:8c:7b:b8:2b:27:4d:bc:87:35:f7:18: 53:8f:46:cf:ab:e4:84:f5:38:42:ce:f2:06:54:ee:5e:2a:9c: b4:03:fa:9d:ab:f5:60:70:aa:e7:56:26:02:6e:ec:fe:21:4d: fc:7b:78:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2v1vOHQ1ekjgaqOhWW+PZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiMDU0NDg1ZWU2MmM2ZjE5Mzk2MTNjYmEyMDY2OWVlZjQ1 MDRmNzkwHhcNMjYwMTI1MjAwMTM0WhcNMjYwMTI2MjAwMTM0WjAzMTEwLwYDVQQD EyhiMzEwNzE1MDE3MDkxYjUxOTc1MTMxMGRmMzM1MWE0YTAwN2ZiYTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosC4RLkjNwjpFeR3DlJDFUUX2g9J 0gmpg69YhTCwsL05sqXspdeFFDw+jLh0ElPQfq7hAXl2Px4jaoF80kev1gVFuMJL t22PWlpGUY16Fmd6ab9Vkd1KFggJ+PhWatRxuW5bVtUesK7qt2MxDS7XdfomIWJp C8pGzEeep7SHMyCBTmcVYhVDJYJTrtw5IC5H+Ig8H1WkBFPFAR+ddiPQnfz49Myb mF3jwQMxbkt4Fl4VcOtG58zLuCOJawC/cuFmrdtJVqcOdI6HRaAI4h4ey5qAytbk BkDEyTWv+fkeXrmAVNOqDeP9P08pJke6+TpoQOB/qfh++ZboAWDl4M9v8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLMQcVAXCRtRl1ExDfM1GkoAf7plMB8GA1UdIwQY MBaAFIsFRIXuYsbxk5YTy6IGae70UE95MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83NzljMDktZjQ5YS00YjM4LWE3Nzgt NmJjMzkwOTk1Y2FiLzEvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC83NzljMDktZjQ5YS00YjM4LWE3NzgtNmJjMzkwOTk1Y2Fi LzEvaXdWRWhlNWl4dkdUbGhQTG9nWnA3dlJRVDNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATErb1cCS s23fpvjvciVsmLMykipFInmOKC8Y05/afxyNZiZVeHXV+Xs0O4FUiHSb6z5OdeqE enkCdw4FjuFFP6Y8FRhRHJ7aV/mf35GYzeEBTUqIQdzJx2IVfz/UTox+gSgTzwFk iTpR2bmjx4ThzN5cd+HsHuxrAZ+WSrmocU2mr/lG2hZ2dgjBxnXF4NBPXGzMEiHi akHAqTM+yrpK5Vj+hy6MWbu6GdKkqvbTQn3KvDJzRwuPEkcmvxURV514tbdBWSSU VaHSuwdwOIx7uCsnTbyHNfcYU49Gz6vkhPU4Qs7yBlTuXiqctAP6nav1YHCq51Ym Am7s/iFN/Ht46A== -----END CERTIFICATE-----Generated at Mon Jan 26 03:11:33 2026 by rpki-client