This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json) Hash identifier: fUWNI/9d65ADqIfM1hwqi26K3LZ6PlWYPUA5lUWYtR0= Subject key identifier: FE:38:D8:E0:D9:EE:AB:22:0A:FD:17:2A:32:BD:BE:B1:19:08:43:33 Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3 Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3 Certificate serial: 019BD5B42482E539B8470A2B2D1298C25E43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft Manifest number: 04D7 Signing time: Mon 19 Jan 2026 10:01:51 +0000 Manifest this update: Mon 19 Jan 2026 10:01:51 +0000 Manifest next update: Tue 20 Jan 2026 10:01:51 +0000 Files and hashes: 1: H8UNN8H7VPAPeU8HfY2pZ9baom8.roa (hash: aa3mwH6a5yy6jaHkG9FnSEuRMRDZi+0YDMCMC7O4/3M=) 2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: Fk1GqoWR4qf4Fw3NPvJSrmnBrOKhsQuNyzgsq9w0RZw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d5:b4:24:82:e5:39:b8:47:0a:2b:2d:12:98:c2:5e:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3 Validity Not Before: Jan 19 10:01:51 2026 GMT Not After : Jan 20 10:01:51 2026 GMT Subject: CN=fe38d8e0d9eeab220afd172a32bdbeb119084333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e9:4a:a7:4d:21:db:20:d2:15:2e:f9:88:73: 97:5f:e7:45:41:8c:2b:cd:db:e2:f8:37:12:01:27: e5:6f:25:3d:33:fd:d0:8a:ab:37:93:05:f2:f6:6f: 6c:c0:b1:d3:16:1c:0b:cf:19:94:87:6d:93:3c:18: 30:8a:d9:88:63:04:cf:01:ca:a9:48:74:b5:f5:18: 68:78:11:0e:b5:85:9b:3a:04:13:44:a2:fa:6f:6d: 29:a7:5b:01:8e:99:c6:11:81:b6:91:19:e8:8d:f5: 0d:51:23:c9:bb:e1:04:51:6a:df:c0:47:46:41:25: 5e:72:42:19:e5:11:26:77:cb:ae:f8:fa:eb:06:a1: 21:3f:33:33:4b:69:d8:d2:55:c8:68:dd:ae:cf:a9: 4b:ad:3a:d9:05:c6:be:d8:cd:7b:53:84:c8:3f:ad: 29:93:04:ba:86:e8:95:4c:59:92:83:e5:70:b2:e7: f2:69:be:aa:46:e0:64:c0:6a:17:4e:73:83:29:95: 90:51:a1:23:79:0c:cf:0b:76:89:2d:eb:2d:51:b9: 40:32:cd:08:00:20:c6:cf:8e:83:cd:d0:68:cd:f0: 1c:e0:bb:4d:e7:bb:8e:85:18:c9:d5:16:1f:82:1b: e0:87:6c:33:87:b2:d0:16:25:a1:e5:f2:aa:d3:10: c8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:38:D8:E0:D9:EE:AB:22:0A:FD:17:2A:32:BD:BE:B1:19:08:43:33 X509v3 Authority Key Identifier: keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:a3:41:9b:3f:52:77:83:70:55:23:e7:de:75:6d:ee:c3:dd: 08:57:f1:b0:58:b7:ee:f8:b4:8c:49:91:a7:15:46:65:5e:0a: 1d:92:68:19:1c:10:f1:03:96:0a:e1:4d:79:8c:4d:f2:55:7e: 8e:cd:1e:6f:ed:bd:ca:b7:cd:c4:a3:c9:ad:4b:37:f6:f5:49: 80:c5:5f:28:0b:7c:57:f7:46:0a:e5:44:9e:6b:dc:a7:cf:41: b0:66:9b:d8:f2:65:61:3b:6f:0e:9c:bd:66:6e:87:81:f2:c9: dd:38:87:0f:04:d2:5e:28:42:a2:d2:54:37:a0:39:5b:88:77: 0d:af:bc:86:ab:d0:3c:22:7a:7f:de:03:2d:c6:a9:0e:8c:f6: 1f:26:fd:9d:7c:ab:82:30:f9:fa:a0:59:f3:76:f4:b6:22:6c: 55:c6:a3:75:0f:be:6d:91:c6:ab:d1:ad:b6:ef:80:65:88:54: 89:8b:98:73:12:10:81:ee:3c:8c:d1:24:f6:19:70:12:d2:ee: bf:d2:cc:59:18:fd:99:48:34:9f:23:72:f4:23:d4:c8:79:93: 91:25:47:f5:81:73:98:8c:b2:51:62:c4:a7:af:24:58:7b:e4: c0:34:57:6d:25:fd:fa:66:35:83:11:a6:20:a7:4b:71:3c:c0: b8:50:c0:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvVtCSC5Tm4RworLRKYwl5DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzN2ZlNjRkNjg0OGY4MDEyMGFiZTY5NWUzMWZhYzQ5Y2E1 ZDA3ZjMwHhcNMjYwMTE5MTAwMTUxWhcNMjYwMTIwMTAwMTUxWjAzMTEwLwYDVQQD EyhmZTM4ZDhlMGQ5ZWVhYjIyMGFmZDE3MmEzMmJkYmViMTE5MDg0MzMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+lKp00h2yDSFS75iHOXX+dFQYwr zdvi+DcSASflbyU9M/3Qiqs3kwXy9m9swLHTFhwLzxmUh22TPBgwitmIYwTPAcqp SHS19RhoeBEOtYWbOgQTRKL6b20pp1sBjpnGEYG2kRnojfUNUSPJu+EEUWrfwEdG QSVeckIZ5REmd8uu+PrrBqEhPzMzS2nY0lXIaN2uz6lLrTrZBca+2M17U4TIP60p kwS6huiVTFmSg+Vwsufyab6qRuBkwGoXTnODKZWQUaEjeQzPC3aJLestUblAMs0I ACDGz46DzdBozfAc4LtN57uOhRjJ1RYfghvgh2wzh7LQFiWh5fKq0xDIXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP442ODZ7qsiCv0XKjK9vrEZCEMzMB8GA1UdIwQY MBaAFCN/5k1oSPgBIKvmleMfrEnKXQfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMt ZmQyMTM3MjJiZmY5LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMtZmQyMTM3MjJiZmY5 LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgaNBmz9S d4NwVSPn3nVt7sPdCFfxsFi37vi0jEmRpxVGZV4KHZJoGRwQ8QOWCuFNeYxN8lV+ js0eb+29yrfNxKPJrUs39vVJgMVfKAt8V/dGCuVEnmvcp89BsGab2PJlYTtvDpy9 Zm6HgfLJ3TiHDwTSXihCotJUN6A5W4h3Da+8hqvQPCJ6f94DLcapDoz2Hyb9nXyr gjD5+qBZ83b0tiJsVcajdQ++bZHGq9Gttu+AZYhUiYuYcxIQge48jNEk9hlwEtLu v9LMWRj9mUg0nyNy9CPUyHmTkSVH9YFzmIyyUWLEp68kWHvkwDRXbSX9+mY1gxGm IKdLcTzAuFDAOA== -----END CERTIFICATE-----Generated at Mon Jan 19 19:02:21 2026 by rpki-client