This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft File: IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft (raw, json) Hash identifier: xscVjrNP76bY8jxfK42aUelC6wQJQU34cooPyAubw20= Subject key identifier: 83:CC:AE:4E:74:01:D8:A5:DC:57:9F:A0:72:3E:1A:11:2D:A4:A5:38 Authority key identifier: 20:82:0F:79:64:81:AC:0E:96:37:C9:62:41:45:97:B1:FE:22:7C:24 Certificate issuer: /CN=20820f796481ac0e9637c962414597b1fe227c24 Certificate serial: 019BF6F5DF9C00D44EF19E898A41534193A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft Manifest number: 02FD Signing time: Sun 25 Jan 2026 21:01:07 +0000 Manifest this update: Sun 25 Jan 2026 21:01:07 +0000 Manifest next update: Mon 26 Jan 2026 21:01:07 +0000 Files and hashes: 1: IAWiQMEI7lBYE-yiLrq0N4vd600.roa (hash: 7MWeCmwerIQVPacLYiQfFeLxjpHdbEK+iRaLdCOlJtE=) 2: IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl (hash: ext4kkk379W6dEK5iUVg6gXX7xherBqclYHatBNCaBQ=) 3: jcJ1FEJq00hankjZHcjsw8w2u-s.roa (hash: Qo2AdracuK7vyRKsDuRBiYGss9rpdhbei/opc826d7Y=) 4: yZlYavUaF5ZkpQPJOyNlBAVw7XY.roa (hash: Mu3AswMCG2U7NEViX0UJQTVg05J0CMB40dFTF5KkWro=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:df:9c:00:d4:4e:f1:9e:89:8a:41:53:41:93:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20820f796481ac0e9637c962414597b1fe227c24 Validity Not Before: Jan 25 21:01:07 2026 GMT Not After : Jan 26 21:01:07 2026 GMT Subject: CN=83ccae4e7401d8a5dc579fa0723e1a112da4a538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:02:28:31:0f:0a:1a:81:77:5c:c7:a3:58:b0: 1f:68:f6:b6:3c:ed:74:da:45:fd:eb:ea:ed:19:2c: ae:80:1e:d2:e3:e9:ba:89:30:c8:f4:3b:a6:01:bf: c5:06:5f:e3:c7:24:6b:f6:41:e1:5c:85:05:da:59: f2:74:c0:9a:16:b4:9f:4e:e2:71:fe:b4:b2:19:15: b2:52:0f:bb:cb:4e:8e:72:2b:23:c9:aa:78:d2:a5: 6e:4f:7a:6e:03:7b:d4:10:7f:1a:b7:6d:a6:a9:9f: 73:22:43:8e:32:93:dd:7c:2d:4c:79:dc:be:d3:c7: b8:2b:2e:5b:9d:8f:37:41:38:3a:e7:9b:b5:87:66: ce:34:29:15:47:a9:23:32:18:09:02:ef:7f:51:47: f7:24:63:ed:59:bf:a8:30:60:da:73:ba:ec:8e:4a: e3:fe:29:55:d4:dd:d3:1a:05:b4:07:d1:3c:c8:76: 70:60:e6:36:4f:8f:1d:d0:89:3c:13:68:04:96:ae: 06:ee:b6:c8:1d:b4:ab:37:8d:77:b1:4c:9d:34:00: 91:e2:7b:28:2e:c9:f0:c5:43:bd:e1:f4:7d:32:7f: b1:96:39:31:5a:d0:f2:6a:84:ee:71:e5:b2:2c:94: 56:c5:f2:ac:e8:af:b1:91:9c:5b:b3:d9:1f:1c:7d: b1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CC:AE:4E:74:01:D8:A5:DC:57:9F:A0:72:3E:1A:11:2D:A4:A5:38 X509v3 Authority Key Identifier: keyid:20:82:0F:79:64:81:AC:0E:96:37:C9:62:41:45:97:B1:FE:22:7C:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIIPeWSBrA6WN8liQUWXsf4ifCQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b98b9f-b581-4e3e-ae8a-987d869566f6/1/IIIPeWSBrA6WN8liQUWXsf4ifCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:1e:13:ea:19:d2:48:d3:31:62:86:30:70:49:04:42:1e:c3: 57:a9:50:e5:40:d7:b8:c7:f5:3a:3c:86:b0:ab:28:4f:bb:d4: b9:18:15:4f:bd:43:68:ac:4c:0f:5f:f6:2b:20:a0:68:81:bf: 22:b8:39:3e:9f:58:75:f1:d1:8a:ca:9d:14:de:56:11:c5:e6: 5c:06:01:06:85:4b:ba:10:80:ec:51:a9:f9:89:0b:e2:74:0a: 9a:cb:c7:e7:c4:3e:e5:61:d1:da:7a:e7:34:2c:f8:a2:0a:f5: 07:70:a4:d7:d9:b8:16:1f:67:19:6c:92:d1:ff:48:b0:30:5f: 66:6c:8d:07:4d:91:e3:40:37:c0:81:fd:fb:93:b7:bf:b1:d1: 63:18:39:c0:37:d0:57:9e:c9:31:4f:4b:f0:38:46:09:40:7d: b3:5d:e8:84:30:a0:a4:96:a0:5c:02:5a:db:ba:1c:0f:39:3f: 1e:4d:80:99:11:c8:dd:59:03:82:4e:d8:9e:07:14:a2:26:ce: 7f:26:20:02:b0:ef:65:3a:fd:13:60:26:d0:b9:57:6b:13:66: 68:c2:4a:34:72:99:55:69:d7:26:ec:41:43:08:d2:6f:30:38: 91:8b:66:bd:9f:3b:6b:54:7b:e3:ca:6d:5a:13:be:03:91:be: 3f:21:c1:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29d+cANRO8Z6JikFTQZOmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwODIwZjc5NjQ4MWFjMGU5NjM3Yzk2MjQxNDU5N2IxZmUy MjdjMjQwHhcNMjYwMTI1MjEwMTA3WhcNMjYwMTI2MjEwMTA3WjAzMTEwLwYDVQQD Eyg4M2NjYWU0ZTc0MDFkOGE1ZGM1NzlmYTA3MjNlMWExMTJkYTRhNTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQIoMQ8KGoF3XMejWLAfaPa2PO10 2kX96+rtGSyugB7S4+m6iTDI9DumAb/FBl/jxyRr9kHhXIUF2lnydMCaFrSfTuJx /rSyGRWyUg+7y06Ocisjyap40qVuT3puA3vUEH8at22mqZ9zIkOOMpPdfC1Medy+ 08e4Ky5bnY83QTg655u1h2bONCkVR6kjMhgJAu9/UUf3JGPtWb+oMGDac7rsjkrj /ilV1N3TGgW0B9E8yHZwYOY2T48d0Ik8E2gElq4G7rbIHbSrN413sUydNACR4nso LsnwxUO94fR9Mn+xljkxWtDyaoTuceWyLJRWxfKs6K+xkZxbs9kfHH2xAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIPMrk50Adil3FefoHI+GhEtpKU4MB8GA1UdIwQY MBaAFCCCD3lkgawOljfJYkFFl7H+InwkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUlJUGVXU0JyQTZXTjhsaVFVV1hzZjRpZkNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9iOThiOWYtYjU4MS00ZTNlLWFlOGEt OTg3ZDg2OTU2NmY2LzEvSUlJUGVXU0JyQTZXTjhsaVFVV1hzZjRpZkNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9iOThiOWYtYjU4MS00ZTNlLWFlOGEtOTg3ZDg2OTU2NmY2 LzEvSUlJUGVXU0JyQTZXTjhsaVFVV1hzZjRpZkNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZx4T6hnS SNMxYoYwcEkEQh7DV6lQ5UDXuMf1OjyGsKsoT7vUuRgVT71DaKxMD1/2KyCgaIG/ Irg5Pp9YdfHRisqdFN5WEcXmXAYBBoVLuhCA7FGp+YkL4nQKmsvH58Q+5WHR2nrn NCz4ogr1B3Ck19m4Fh9nGWyS0f9IsDBfZmyNB02R40A3wIH9+5O3v7HRYxg5wDfQ V57JMU9L8DhGCUB9s13ohDCgpJagXAJa27ocDzk/Hk2AmRHI3VkDgk7YngcUoibO fyYgArDvZTr9E2Am0LlXaxNmaMJKNHKZVWnXJuxBQwjSbzA4kYtmvZ87a1R748pt WhO+A5G+PyHB0w== -----END CERTIFICATE-----Generated at Mon Jan 26 02:14:41 2026 by rpki-client