This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft File: iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft (raw, json) Hash identifier: D9W9DRy8fahLuGz5dvejixd6wCAylVyA42hdKlSrsgU= Subject key identifier: 21:6F:9C:8E:67:C0:A7:CF:D9:69:73:99:4F:2D:05:6A:57:F5:C4:4F Authority key identifier: 88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73 Certificate issuer: /CN=88a780738b853acffbabdb23914c50e36421f773 Certificate serial: 019BFB404E09E2283FE2D0A9CFB9F37CD461 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft Manifest number: 17ED Signing time: Mon 26 Jan 2026 17:00:54 +0000 Manifest this update: Mon 26 Jan 2026 17:00:54 +0000 Manifest next update: Tue 27 Jan 2026 17:00:54 +0000 Files and hashes: 1: cqgfNLDExy7FaffRoXOKMQXtqL4.roa (hash: TWz48Wr5Z6qhNEoUkqeyNmR7SZVnU/2APhq7EOM+kUQ=) 2: iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl (hash: dtl2kY5wRM0vgxqX2fnh9UD5PZvZTCjvLrY9eIUOAXo=) 3: wy6ybCdcWedAi4Mt3ixAA7PS5a0.roa (hash: G/CGlMinA8eb2TiqC5edW4JcIc15BJpfk+/kohiZa2w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:40:4e:09:e2:28:3f:e2:d0:a9:cf:b9:f3:7c:d4:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88a780738b853acffbabdb23914c50e36421f773 Validity Not Before: Jan 26 17:00:54 2026 GMT Not After : Jan 27 17:00:54 2026 GMT Subject: CN=216f9c8e67c0a7cfd96973994f2d056a57f5c44f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d7:17:30:7d:6e:ef:d1:db:83:25:fd:56:ab: af:66:21:f2:1b:7b:15:6a:7b:56:89:f4:dc:60:16: 93:7b:3d:33:00:08:9f:4a:e8:8d:0f:8f:20:43:d0: 8b:12:d2:8b:70:c4:cb:0b:de:f6:57:a6:a4:73:80: e9:ca:53:1a:b2:2e:39:13:c7:90:18:c5:4d:9e:ce: 04:b3:0f:30:a6:17:6a:9e:c0:b0:7a:b2:ba:b0:9f: af:d0:56:80:46:ac:2d:fb:17:5e:f3:39:b2:da:0d: c1:ce:1d:be:9f:bd:3a:09:b6:fe:85:ac:31:88:b1: e0:7f:bb:be:e5:2d:b0:5c:d1:be:63:fb:64:da:0e: ba:64:b8:45:a4:b8:00:7a:16:a6:c4:7b:6e:2b:4f: 4e:aa:46:bd:f7:c4:1c:00:25:3c:8c:b6:92:7a:89: d2:92:ed:df:f1:16:42:5d:aa:16:64:c4:06:53:a5: 7e:14:6d:0e:b7:dc:46:a9:59:d6:52:15:4f:09:42: ab:a6:86:43:f7:96:7d:5b:8c:0d:b8:17:0b:6d:0e: 0f:ff:73:1c:e8:5f:8a:c0:09:7e:cd:40:5d:c2:70: 18:a4:1d:57:28:db:b8:5d:af:75:f1:a0:01:f9:a8: 0b:00:42:36:5f:98:ba:9a:f3:88:ab:78:30:13:15: 7c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:6F:9C:8E:67:C0:A7:CF:D9:69:73:99:4F:2D:05:6A:57:F5:C4:4F X509v3 Authority Key Identifier: keyid:88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:e8:a6:45:ac:36:43:c6:8c:8e:31:86:a6:f2:fb:65:df:18: 2a:cf:8d:1a:5b:6b:18:09:b3:72:36:96:54:46:77:a9:b4:12: 22:5e:55:ad:07:78:b4:29:27:c3:58:2e:68:e6:ab:04:5d:2e: 14:fb:f7:65:66:4d:1d:71:6d:4e:3f:ac:05:1d:f6:75:f4:1a: 62:5e:b5:5e:7e:54:23:01:61:b9:77:b4:d7:ad:6f:6d:42:b8: f6:9e:58:87:c5:e9:78:82:50:d5:f6:ef:9a:0f:80:63:e8:f4: 3e:a5:82:be:e0:a4:de:9b:a2:13:7a:c3:2f:b0:b7:49:de:78: 8e:b2:b3:a3:95:3b:77:94:9b:17:b1:e5:84:a8:60:bd:8c:81: 8f:c1:f0:1a:e4:11:61:89:87:55:e4:59:39:be:5c:1a:b7:4e: 7c:d6:3f:62:78:f8:ea:49:a5:6f:f1:ec:f2:05:3c:6e:e8:8e: 64:48:5d:6d:31:c5:a0:46:d6:5f:41:b7:0b:3f:45:b5:2f:e3: 97:55:ea:85:1a:b2:6b:d5:cf:6f:84:3f:91:37:e2:8a:e7:0f: 93:79:df:c5:b5:44:fa:9b:89:df:3f:b2:a0:5f:71:68:26:23: 4d:a1:cd:e6:64:87:f4:dc:df:c6:d9:f3:76:3a:af:ee:2b:ca: a9:94:04:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7QE4J4ig/4tCpz7nzfNRhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4YTc4MDczOGI4NTNhY2ZmYmFiZGIyMzkxNGM1MGUzNjQy MWY3NzMwHhcNMjYwMTI2MTcwMDU0WhcNMjYwMTI3MTcwMDU0WjAzMTEwLwYDVQQD EygyMTZmOWM4ZTY3YzBhN2NmZDk2OTczOTk0ZjJkMDU2YTU3ZjVjNDRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdcXMH1u79HbgyX9VquvZiHyG3sV antWifTcYBaTez0zAAifSuiND48gQ9CLEtKLcMTLC972V6akc4DpylMasi45E8eQ GMVNns4Esw8wphdqnsCwerK6sJ+v0FaARqwt+xde8zmy2g3Bzh2+n706Cbb+hawx iLHgf7u+5S2wXNG+Y/tk2g66ZLhFpLgAehamxHtuK09Oqka998QcACU8jLaSeonS ku3f8RZCXaoWZMQGU6V+FG0Ot9xGqVnWUhVPCUKrpoZD95Z9W4wNuBcLbQ4P/3Mc 6F+KwAl+zUBdwnAYpB1XKNu4Xa918aAB+agLAEI2X5i6mvOIq3gwExV8WwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCFvnI5nwKfP2WlzmU8tBWpX9cRPMB8GA1UdIwQY MBaAFIingHOLhTrP+6vbI5FMUONkIfdzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9iODk3MDQtNGZkMi00ZTA3LWEwMzkt NjZmNTZlZjljZTI2LzEvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9iODk3MDQtNGZkMi00ZTA3LWEwMzktNjZmNTZlZjljZTI2 LzEvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd+imRaw2 Q8aMjjGGpvL7Zd8YKs+NGltrGAmzcjaWVEZ3qbQSIl5VrQd4tCknw1guaOarBF0u FPv3ZWZNHXFtTj+sBR32dfQaYl61Xn5UIwFhuXe0161vbUK49p5Yh8XpeIJQ1fbv mg+AY+j0PqWCvuCk3puiE3rDL7C3Sd54jrKzo5U7d5SbF7HlhKhgvYyBj8HwGuQR YYmHVeRZOb5cGrdOfNY/Ynj46kmlb/Hs8gU8buiOZEhdbTHFoEbWX0G3Cz9FtS/j l1XqhRqya9XPb4Q/kTfiiucPk3nfxbVE+puJ3z+yoF9xaCYjTaHN5mSH9Nzfxtnz djqv7ivKqZQEqA== -----END CERTIFICATE-----Generated at Tue Jan 27 00:30:09 2026 by rpki-client