This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft File: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json) Hash identifier: XIbQdg0WoPHvGYMr6SjbDSkjun9+HKdvJorjHDptfMU= Subject key identifier: 1D:E2:24:05:8A:4C:08:96:C2:4E:1F:69:9B:EF:59:49:0F:BF:2E:59 Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32 Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932 Certificate serial: 019BFCF81B0B9C74B03584A0646606E12496 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft Manifest number: 16C1 Signing time: Tue 27 Jan 2026 01:01:16 +0000 Manifest this update: Tue 27 Jan 2026 01:01:16 +0000 Manifest next update: Wed 28 Jan 2026 01:01:16 +0000 Files and hashes: 1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: LeuWPTJWs+xIG2rYg6QTxEprJiTrPjdq/xIL8lZ5HQU=) 2: gDJ4Lp76yXybVk_hOXjmjT2yA0Y.roa (hash: TNUN3ffkTS+jn16rGNGRBs19tZhvUdCtK4/zEyf8nb4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:f8:1b:0b:9c:74:b0:35:84:a0:64:66:06:e1:24:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932 Validity Not Before: Jan 27 01:01:16 2026 GMT Not After : Jan 28 01:01:16 2026 GMT Subject: CN=1de224058a4c0896c24e1f699bef59490fbf2e59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5c:24:d7:e9:41:34:a2:80:54:d2:35:92:cf: b1:8c:c6:7c:a9:e3:3d:99:69:5a:7f:ba:46:97:4a: 54:55:e7:29:f8:82:3f:09:a2:ce:9f:27:7b:d1:d2: 2d:4f:c3:24:97:0f:6c:62:30:91:e1:88:25:0d:54: 48:a2:3d:93:ef:19:93:10:cf:15:7a:70:82:86:4c: 10:6f:f5:b4:19:cb:14:5c:ca:25:8e:d5:37:ea:a7: 9e:75:05:a3:79:45:8a:d2:32:4a:64:73:48:95:1b: 5d:f8:86:d9:31:b0:b3:26:2f:2d:4f:eb:af:d8:43: 73:05:69:32:1c:3d:6c:be:20:e2:85:43:35:e7:52: b6:2e:cc:1b:ea:3c:e3:fe:bf:66:d4:aa:67:42:ca: 4a:72:b3:24:5e:33:ee:df:ab:4b:a5:fe:f3:ab:9b: 7c:58:d1:3e:63:96:f7:ca:66:c0:80:15:39:5c:89: 9c:c6:77:43:b7:6f:0b:e7:67:b1:51:a4:b1:5a:13: 7d:55:96:d8:42:9c:8b:ad:62:a0:82:d3:04:fb:1f: da:25:7b:b6:f8:57:05:75:de:ab:52:aa:99:c6:61: 73:e1:38:89:56:6a:0a:1c:ac:c5:18:38:35:60:f9: d5:d0:2b:e9:e2:ab:1b:dd:c7:05:71:b6:e7:d4:f8: f9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E2:24:05:8A:4C:08:96:C2:4E:1F:69:9B:EF:59:49:0F:BF:2E:59 X509v3 Authority Key Identifier: keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:9c:60:9f:55:53:51:d3:d8:be:48:49:db:5b:c7:d4:19:81: d4:a4:40:8b:12:80:3e:d5:3c:f9:6b:d0:c1:23:88:fc:72:9d: 8e:d2:53:6b:ea:40:22:9f:84:74:1a:30:48:9e:a9:bf:c8:30: 24:03:40:3c:ea:40:4c:ec:3e:2a:9c:86:7d:97:ef:26:47:75: d3:2b:02:41:fd:e9:0e:39:8f:65:e3:98:d3:3c:1f:82:36:62: 3b:ce:11:71:ca:b4:cb:2e:48:82:44:74:21:8f:75:90:b9:65: 04:1b:87:8f:b6:84:95:1f:5c:e5:f3:88:0c:49:fc:1c:ae:54: 15:22:5c:60:81:bd:50:64:39:c6:c3:33:89:be:ea:78:69:ae: b4:ee:20:36:71:9a:59:fc:a0:4a:04:20:59:c3:3f:ab:4d:05: 5f:5c:18:b3:ba:75:fa:30:95:8a:63:7a:42:36:f4:56:d2:b8: 92:0d:66:29:57:9b:1b:37:7c:8f:ac:98:ff:a2:11:d4:18:d7: ae:b8:69:34:ee:90:dc:d9:b3:84:71:72:ba:04:6f:b4:39:5e: 72:56:50:7b:d6:07:ed:fb:9d:60:92:5c:97:ff:dc:94:61:9f: d2:18:15:ab:fb:f2:e5:41:a0:db:0e:33:51:ce:0c:eb:5d:37: ed:bb:4f:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8+BsLnHSwNYSgZGYG4SSWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyNWNmMGQzMTcwNGI1OWQ3ZWViMDE4NTQ4MjAyZDNhNTcw ZGE5MzIwHhcNMjYwMTI3MDEwMTE2WhcNMjYwMTI4MDEwMTE2WjAzMTEwLwYDVQQD EygxZGUyMjQwNThhNGMwODk2YzI0ZTFmNjk5YmVmNTk0OTBmYmYyZTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVwk1+lBNKKAVNI1ks+xjMZ8qeM9 mWlaf7pGl0pUVecp+II/CaLOnyd70dItT8Mklw9sYjCR4YglDVRIoj2T7xmTEM8V enCChkwQb/W0GcsUXMoljtU36qeedQWjeUWK0jJKZHNIlRtd+IbZMbCzJi8tT+uv 2ENzBWkyHD1sviDihUM151K2Lswb6jzj/r9m1KpnQspKcrMkXjPu36tLpf7zq5t8 WNE+Y5b3ymbAgBU5XImcxndDt28L52exUaSxWhN9VZbYQpyLrWKggtME+x/aJXu2 +FcFdd6rUqqZxmFz4TiJVmoKHKzFGDg1YPnV0Cvp4qsb3ccFcbbn1Pj57wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB3iJAWKTAiWwk4faZvvWUkPvy5ZMB8GA1UdIwQY MBaAFCJc8NMXBLWdfusBhUggLTpXDakyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS80ZGY0MjktZjc3Ni00ZmQzLThkZTQt MDBiYzkwM2QyNjIxLzEvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS80ZGY0MjktZjc3Ni00ZmQzLThkZTQtMDBiYzkwM2QyNjIx LzEvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApJxgn1VT UdPYvkhJ21vH1BmB1KRAixKAPtU8+WvQwSOI/HKdjtJTa+pAIp+EdBowSJ6pv8gw JANAPOpATOw+KpyGfZfvJkd10ysCQf3pDjmPZeOY0zwfgjZiO84Rccq0yy5IgkR0 IY91kLllBBuHj7aElR9c5fOIDEn8HK5UFSJcYIG9UGQ5xsMzib7qeGmutO4gNnGa WfygSgQgWcM/q00FX1wYs7p1+jCVimN6Qjb0VtK4kg1mKVebGzd8j6yY/6IR1BjX rrhpNO6Q3NmzhHFyugRvtDleclZQe9YH7fudYJJcl//clGGf0hgVq/vy5UGg2w4z Uc4M61037btP7g== -----END CERTIFICATE-----Generated at Tue Jan 27 03:55:43 2026 by rpki-client