This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json) Hash identifier: U2PTfILTMb8wJaN6Jc9YS6fcZq2m5HPKg4+LDA5dZzg= Subject key identifier: 11:FE:E6:21:06:CE:22:C1:8E:5C:BB:BF:38:48:8F:89:E2:92:33:40 Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df Certificate serial: 019BF91BBAD81FA017C87DADC09F5A67CBCD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft Manifest number: 0FCC Signing time: Mon 26 Jan 2026 07:01:42 +0000 Manifest this update: Mon 26 Jan 2026 07:01:42 +0000 Manifest next update: Tue 27 Jan 2026 07:01:42 +0000 Files and hashes: 1: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: 5hEqVbXiDCDt8MQ+m3hy8Fb0UcyvAFQ1gLe8vI4NATY=) 2: tl9JmYqZuc8rnWm5B3tF-CPUxEg.roa (hash: ti/VYS4hognsUWtb/PVfBo1Uhz2rYc5vy7DleprVf/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:ba:d8:1f:a0:17:c8:7d:ad:c0:9f:5a:67:cb:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df Validity Not Before: Jan 26 07:01:42 2026 GMT Not After : Jan 27 07:01:42 2026 GMT Subject: CN=11fee62106ce22c18e5cbbbf38488f89e2923340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a9:81:a0:99:73:5b:75:2a:f3:05:3b:80:ce: af:96:92:6b:a1:60:cf:71:09:86:f1:bd:e4:78:3e: d1:4b:81:fb:29:c0:37:5e:dc:2d:2b:98:71:91:3c: 2a:52:d8:a7:03:3c:c5:b2:4a:4b:07:cd:f4:da:09: 05:18:65:eb:a0:4e:84:af:0c:8e:ab:f8:be:fb:f5: b7:e6:a3:61:29:e6:e5:77:0b:97:62:15:20:d9:99: 54:ac:94:41:51:91:ae:43:fc:fe:49:e9:85:9f:28: 78:91:00:85:96:f3:7b:2c:e6:9a:c8:cc:99:b7:63: 9d:08:23:39:6a:a6:7e:4a:b9:b5:10:9b:1a:ce:c1: 3b:e7:6c:ca:e5:5d:fc:b0:27:43:67:9d:f1:88:df: a0:8c:56:b5:2d:c1:90:38:ee:9f:c2:40:d5:9e:2f: 98:3a:c2:54:da:2a:c1:39:32:a7:cf:4b:bb:2c:2c: 00:05:1e:04:91:38:43:cc:c0:0a:0c:de:8e:77:60: fe:d6:97:8c:e0:57:ba:4a:7b:da:51:99:a8:e1:2e: 90:16:d7:87:1e:ce:f9:5a:25:b6:73:ac:ae:e6:c6: 6d:2c:40:09:1d:63:1b:fa:28:a8:7a:07:2a:8e:39: 78:00:3a:33:3e:e3:f4:89:19:4a:cf:40:4d:1a:73: 67:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FE:E6:21:06:CE:22:C1:8E:5C:BB:BF:38:48:8F:89:E2:92:33:40 X509v3 Authority Key Identifier: keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:49:74:c1:12:29:c9:e2:d2:a9:36:76:6d:4f:11:87:4f:37: eb:c1:7f:f0:9f:5b:0c:e1:f2:ea:98:2f:0f:c3:77:e7:14:6e: 37:03:9b:74:04:c8:46:54:c9:06:03:99:c7:45:f5:c3:4f:95: e0:17:70:64:ef:b0:cd:2f:6c:19:a2:8c:69:98:e0:f1:44:83: db:37:7c:27:92:1d:c4:a8:c4:d4:01:1b:fc:a6:ec:b9:6d:77: 8f:2f:ec:ab:aa:53:d1:2e:3f:90:b9:ef:53:7b:e0:91:e8:c0: 01:7e:af:a4:33:de:04:cc:c1:ba:ad:30:2a:4a:30:2c:9e:82: a8:df:47:41:bf:99:6c:6b:24:c8:19:74:39:d9:cc:05:9c:b7: a7:48:76:21:39:5f:c9:df:c5:e2:04:19:f9:c3:8e:39:40:ac: eb:64:50:e7:2d:41:89:ad:b5:30:d7:77:f9:2d:2e:80:83:c6: c9:44:1f:1b:71:3c:af:61:ea:83:fd:90:78:9a:97:e6:80:78: d8:27:ec:d2:a9:8b:8e:7c:ab:d7:9c:86:97:40:c5:7e:4a:23: 44:6d:e5:b1:69:21:39:f3:a2:a0:3b:da:91:c8:26:df:61:ac: 20:96:5b:12:08:6b:96:91:0d:da:81:a6:9d:c3:cb:db:83:87: d6:38:bd:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5G7rYH6AXyH2twJ9aZ8vNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MGQ4YWI2YWEyYzcyZjA3OTc1NWY3NmNmMDEyMGFhNWRk ZGM3ZGYwHhcNMjYwMTI2MDcwMTQyWhcNMjYwMTI3MDcwMTQyWjAzMTEwLwYDVQQD EygxMWZlZTYyMTA2Y2UyMmMxOGU1Y2JiYmYzODQ4OGY4OWUyOTIzMzQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxamBoJlzW3Uq8wU7gM6vlpJroWDP cQmG8b3keD7RS4H7KcA3XtwtK5hxkTwqUtinAzzFskpLB8302gkFGGXroE6ErwyO q/i++/W35qNhKebldwuXYhUg2ZlUrJRBUZGuQ/z+SemFnyh4kQCFlvN7LOaayMyZ t2OdCCM5aqZ+Srm1EJsazsE752zK5V38sCdDZ53xiN+gjFa1LcGQOO6fwkDVni+Y OsJU2irBOTKnz0u7LCwABR4EkThDzMAKDN6Od2D+1peM4Fe6SnvaUZmo4S6QFteH Hs75WiW2c6yu5sZtLEAJHWMb+iioegcqjjl4ADozPuP0iRlKz0BNGnNnZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBH+5iEGziLBjly7vzhIj4nikjNAMB8GA1UdIwQY MBaAFIgNiraqLHLweXVfds8BIKpd3cffMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC9jODRjZDMtNjcyYi00NGIyLThjZTAt NDAyODk0NzlhYzA1LzEvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC9jODRjZDMtNjcyYi00NGIyLThjZTAtNDAyODk0NzlhYzA1 LzEvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKUl0wRIp yeLSqTZ2bU8Rh08368F/8J9bDOHy6pgvD8N35xRuNwObdATIRlTJBgOZx0X1w0+V 4BdwZO+wzS9sGaKMaZjg8USD2zd8J5IdxKjE1AEb/KbsuW13jy/sq6pT0S4/kLnv U3vgkejAAX6vpDPeBMzBuq0wKkowLJ6CqN9HQb+ZbGskyBl0OdnMBZy3p0h2ITlf yd/F4gQZ+cOOOUCs62RQ5y1Bia21MNd3+S0ugIPGyUQfG3E8r2Hqg/2QeJqX5oB4 2Cfs0qmLjnyr15yGl0DFfkojRG3lsWkhOfOioDvakcgm32GsIJZbEghrlpEN2oGm ncPL24OH1ji9CQ== -----END CERTIFICATE-----Generated at Mon Jan 26 12:36:39 2026 by rpki-client