This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft File: IxMMmax6pAhscXVxFKQWP4AJAUI.mft (raw, json) Hash identifier: KCn/76mHrb+WnRwoeyjSP1k7pkSgLEA87RtUNn2V+W0= Subject key identifier: 8F:DC:24:EB:75:DE:D4:4D:58:28:B7:47:B7:9F:F7:45:5A:77:75:3A Authority key identifier: 23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42 Certificate issuer: /CN=23130c99ac7aa4086c71757114a4163f80090142 Certificate serial: 019BF53DE85469E0CFF34887697D2D65772A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft Manifest number: 0B31 Signing time: Sun 25 Jan 2026 13:00:33 +0000 Manifest this update: Sun 25 Jan 2026 13:00:33 +0000 Manifest next update: Mon 26 Jan 2026 13:00:33 +0000 Files and hashes: 1: IxMMmax6pAhscXVxFKQWP4AJAUI.crl (hash: MiFZVTl77qgpOzet9QpfAx4LNsjLOEfiMbPE+2vD9N0=) 2: M7AsOPJRuDvyqpdVNAPIyt4dy4E.roa (hash: VA2KwTkb4NGqo/O9WoJ31YAHnrH27JkWDC9odiYJKyE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3d:e8:54:69:e0:cf:f3:48:87:69:7d:2d:65:77:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23130c99ac7aa4086c71757114a4163f80090142 Validity Not Before: Jan 25 13:00:33 2026 GMT Not After : Jan 26 13:00:33 2026 GMT Subject: CN=8fdc24eb75ded44d5828b747b79ff7455a77753a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3e:93:2c:d9:91:ff:e1:da:45:9c:4d:51:d8: ce:e6:78:60:f7:d9:08:9d:b4:b8:18:82:d9:8b:98: 93:4d:81:0c:81:2f:a6:2e:91:f3:2e:76:31:23:9e: 96:c8:9c:57:6f:51:6e:ca:43:92:d0:98:ad:ff:a6: fb:f3:e7:de:03:e2:f8:0b:cf:db:15:ae:07:cf:a7: 09:3b:cd:8b:96:fb:b6:00:52:b4:5e:7a:59:ce:6b: 81:e6:fa:34:c3:4f:3c:62:94:bc:19:d4:90:a9:cb: 70:c1:05:bd:5b:b2:a8:2a:5f:ab:1d:4d:bf:2b:f6: b4:99:a3:ba:8a:97:a4:5b:69:39:09:2e:99:09:80: f3:6b:fc:2f:ac:01:36:b9:14:be:c2:f1:df:4f:2d: 53:ab:d6:c7:9f:13:86:d7:67:57:5d:39:29:1d:a7: fc:b5:4f:b8:21:bf:03:26:cb:ba:6e:45:ea:b0:4a: e0:bd:1d:d9:aa:f8:49:2f:7d:5f:5d:53:d7:12:5b: b1:43:e1:89:c4:27:14:ef:db:6e:45:1f:98:4a:05: 2f:53:b9:ea:c8:31:28:82:cb:83:18:27:f3:c6:31: c9:a7:36:62:4c:75:8b:bb:aa:f9:66:36:45:d7:51: eb:11:96:fe:8b:39:bd:f1:cf:6c:18:17:76:31:da: 9c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:DC:24:EB:75:DE:D4:4D:58:28:B7:47:B7:9F:F7:45:5A:77:75:3A X509v3 Authority Key Identifier: keyid:23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:b9:a3:36:69:d9:02:41:88:5e:d5:57:b5:c0:73:79:38:68: e9:79:df:27:48:d6:40:a1:2b:20:6c:dc:d6:19:43:16:6d:a2: cb:75:fe:fc:24:71:d4:40:02:0e:c0:00:92:91:eb:9c:65:1e: 1e:a0:7c:22:01:7c:3b:19:c0:12:44:c7:e2:09:c5:49:b2:79: 00:d2:55:69:69:40:18:42:97:ba:6f:a1:c4:ee:80:8f:cf:1f: 94:74:29:b3:92:a3:53:3f:4d:5a:a9:de:9c:67:b4:f2:02:1f: 37:6e:05:a8:18:90:ef:07:37:01:fd:68:a5:bc:9b:e9:99:c9: 3c:6d:35:81:e7:54:54:82:14:2b:21:73:61:21:9a:d3:ff:aa: a0:cc:37:f5:fe:25:56:64:c2:7a:c8:1d:c4:be:5f:7f:14:bc: 04:d0:20:ca:92:30:bd:12:35:61:74:f6:22:ee:a3:1a:c0:13: 4c:0e:6b:e2:1c:45:ac:03:d4:fd:ab:e2:92:c5:ff:ec:95:51: 92:69:4d:cb:e6:24:c3:63:67:14:7f:1c:cb:7e:8e:36:50:da: ed:0a:1c:cc:ad:1e:c2:b9:2a:f4:86:ff:87:90:60:f7:13:df: 96:10:f1:c3:7e:f3:44:a5:19:7d:0b:68:59:87:d7:b3:e9:24: 8b:0e:a6:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PehUaeDP80iHaX0tZXcqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMTMwYzk5YWM3YWE0MDg2YzcxNzU3MTE0YTQxNjNmODAw OTAxNDIwHhcNMjYwMTI1MTMwMDMzWhcNMjYwMTI2MTMwMDMzWjAzMTEwLwYDVQQD Eyg4ZmRjMjRlYjc1ZGVkNDRkNTgyOGI3NDdiNzlmZjc0NTVhNzc3NTNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3j6TLNmR/+HaRZxNUdjO5nhg99kI nbS4GILZi5iTTYEMgS+mLpHzLnYxI56WyJxXb1FuykOS0Jit/6b78+feA+L4C8/b Fa4Hz6cJO82Llvu2AFK0XnpZzmuB5vo0w088YpS8GdSQqctwwQW9W7KoKl+rHU2/ K/a0maO6ipekW2k5CS6ZCYDza/wvrAE2uRS+wvHfTy1Tq9bHnxOG12dXXTkpHaf8 tU+4Ib8DJsu6bkXqsErgvR3ZqvhJL31fXVPXEluxQ+GJxCcU79tuRR+YSgUvU7nq yDEogsuDGCfzxjHJpzZiTHWLu6r5ZjZF11HrEZb+izm98c9sGBd2MdqcSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI/cJOt13tRNWCi3R7ef90Vad3U6MB8GA1UdIwQY MBaAFCMTDJmseqQIbHF1cRSkFj+ACQFCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXhNTW1heDZwQWhzY1hWeEZLUVdQNEFKQVVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy81YzNhZTYtMjkzNC00NzllLThjMmQt OGU4ZDViM2U1NTg2LzEvSXhNTW1heDZwQWhzY1hWeEZLUVdQNEFKQVVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy81YzNhZTYtMjkzNC00NzllLThjMmQtOGU4ZDViM2U1NTg2 LzEvSXhNTW1heDZwQWhzY1hWeEZLUVdQNEFKQVVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADrmjNmnZ AkGIXtVXtcBzeTho6XnfJ0jWQKErIGzc1hlDFm2iy3X+/CRx1EACDsAAkpHrnGUe HqB8IgF8OxnAEkTH4gnFSbJ5ANJVaWlAGEKXum+hxO6Aj88flHQps5KjUz9NWqne nGe08gIfN24FqBiQ7wc3Af1opbyb6ZnJPG01gedUVIIUKyFzYSGa0/+qoMw39f4l VmTCesgdxL5ffxS8BNAgypIwvRI1YXT2Iu6jGsATTA5r4hxFrAPU/aviksX/7JVR kmlNy+Ykw2NnFH8cy36ONlDa7QoczK0ewrkq9Ib/h5Bg9xPflhDxw37zRKUZfQto WYfXs+kkiw6mAQ== -----END CERTIFICATE-----Generated at Sun Jan 25 18:53:33 2026 by rpki-client