This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json) Hash identifier: JiTsFcokQaV04qXNUsJrsqEgSP2o9kJ+lYCcnt4J7+0= Subject key identifier: F7:49:E1:18:03:1B:9A:12:CC:ED:B5:E4:D5:40:22:C0:7A:4D:45:3D Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00 Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00 Certificate serial: 019BA3B4F4656AFA8238B31E11301FF50FBA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft Manifest number: 0B1D Signing time: Fri 09 Jan 2026 17:01:43 +0000 Manifest this update: Fri 09 Jan 2026 17:01:43 +0000 Manifest next update: Sat 10 Jan 2026 17:01:43 +0000 Files and hashes: 1: Lte4Gj7HvnpBCaOGUd7AOzRaBV0.roa (hash: yVkM1zt/EykUfazBUe+F76pn3O1M/hLY9A7dh99ee7E=) 2: OG4lz2aT-P_T1pbKQmVuBGnxAM0.roa (hash: OAZhJcMAQC48Syy5KrA0aFBAMfYodkPWCtect72qfTI=) 3: XEYiiN3BOEIRPz4xSOYL_41xhiw.roa (hash: 0ywms5lLpzQH6FFtmE9+FqNLyVuKgqHknSLCPnwXsEI=) 4: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: hl89eepcGfqKAwQPva/c+d+aGGKz2c3mhis85Tqqk7I=) 5: lEbUtLtNkfAyY2Y1bQXjNgffS1A.roa (hash: b/0/ySYWBBPjZPbNT3Q9pWagQbtfduFB4wZTve0Q5AE=) 6: tEbhK49lj9A2t1UjujH2qFk6A88.roa (hash: 7LJLF76QvPCjlTh8Y9wGeCk9+DPapbJzwhv04lpZotk=) 7: vi3DjTDiHudyYK8w8VItrX_abyg.roa (hash: nMbONn7wYaL+5u0tqJSULFh7G6Nyiekz0kaTGUhg9nU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a3:b4:f4:65:6a:fa:82:38:b3:1e:11:30:1f:f5:0f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00 Validity Not Before: Jan 9 17:01:43 2026 GMT Not After : Jan 10 17:01:43 2026 GMT Subject: CN=f749e118031b9a12ccedb5e4d54022c07a4d453d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bf:73:6b:a6:9a:8f:9a:e5:34:a9:a0:32:02: 12:3f:47:34:82:ab:45:78:20:bb:cc:24:7e:52:37: 7b:f0:ae:b0:0a:06:71:c4:a0:e5:04:d9:6d:89:8c: f6:0a:50:a0:36:30:48:c1:0d:ca:56:da:5a:dc:42: b2:55:de:00:1b:e2:41:40:a0:ef:67:7f:51:46:18: 03:2d:44:ce:c4:4f:f1:b7:2a:b2:16:fc:0f:45:f3: 3e:58:f4:04:ff:c7:12:5a:e3:48:03:ea:15:1b:84: 77:a7:24:e5:d2:1d:36:30:7a:46:14:81:dd:86:1c: da:b6:3d:f9:08:d1:2c:4c:e5:e8:28:be:0a:1e:31: 9c:37:41:d5:c5:02:60:c7:ad:aa:6f:a5:d3:e1:2e: 1f:3d:1f:cd:44:3e:02:1d:c5:01:ae:69:55:82:30: 12:04:cd:ad:6d:37:78:a7:cd:8f:ab:a3:bd:a8:3f: dc:7b:f7:c0:0c:e8:17:1e:3d:df:e4:b5:2c:8a:1c: 70:01:25:a4:a0:77:a9:03:4d:2b:68:5c:24:44:2d: d2:5e:6e:79:bd:ac:f5:a0:04:ad:7d:e5:cd:4a:2b: 7c:91:19:1d:4c:7f:ca:51:17:d6:4e:79:9e:9b:f8: 9f:fb:93:5d:7a:d8:72:4b:99:11:d5:e6:3b:54:67: 65:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:49:E1:18:03:1B:9A:12:CC:ED:B5:E4:D5:40:22:C0:7A:4D:45:3D X509v3 Authority Key Identifier: keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:fc:a2:b8:03:5e:f7:c6:bb:0d:8a:5f:b7:28:bf:ed:cd:11: 71:4f:f7:77:87:96:c5:d4:c4:1a:12:e1:83:7e:3c:85:00:d2: 06:82:2c:00:4f:17:4f:5b:39:e5:f4:67:cb:da:24:4d:67:10: d4:79:e7:09:ce:c2:3e:67:0e:7d:9e:0f:2c:87:56:fa:89:21: 23:c1:90:04:73:6f:b0:31:9b:00:98:0a:8a:a8:31:44:c4:49: b4:f8:5b:3a:a8:24:df:30:bf:3f:86:43:a5:dc:0f:f5:2b:6f: a9:66:65:ce:cf:20:8f:ea:5c:92:8a:4c:a7:60:a4:f8:d5:27: 8f:3f:b5:e0:65:e5:f1:b3:7a:2b:20:11:17:b1:5c:bb:75:8c: 3e:66:7b:1b:71:be:1c:89:f6:13:b4:e9:24:b9:e3:c6:c6:de: ba:79:44:39:a8:e3:54:86:a7:c7:be:c4:f8:4f:60:41:52:5d: b6:34:84:65:98:e6:4e:e1:93:c3:04:2f:6b:8e:e5:1d:92:bd: 7b:22:c9:4d:5c:0a:c5:16:61:b1:bd:ef:26:a6:e5:31:86:84: 6c:7d:bf:26:be:74:91:58:ec:8c:5f:ba:31:af:ab:9b:42:3d: d1:1e:88:b6:05:32:6b:3b:23:8e:ea:d6:26:87:a5:a6:88:53: 2f:3a:29:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZujtPRlavqCOLMeETAf9Q+6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWQ5YzBjZTViYTM5MDViNDE5NzBhMDRlNTE5NzYwNzZj NjdlMDAwHhcNMjYwMTA5MTcwMTQzWhcNMjYwMTEwMTcwMTQzWjAzMTEwLwYDVQQD EyhmNzQ5ZTExODAzMWI5YTEyY2NlZGI1ZTRkNTQwMjJjMDdhNGQ0NTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvb9za6aaj5rlNKmgMgISP0c0gqtF eCC7zCR+Ujd78K6wCgZxxKDlBNltiYz2ClCgNjBIwQ3KVtpa3EKyVd4AG+JBQKDv Z39RRhgDLUTOxE/xtyqyFvwPRfM+WPQE/8cSWuNIA+oVG4R3pyTl0h02MHpGFIHd hhzatj35CNEsTOXoKL4KHjGcN0HVxQJgx62qb6XT4S4fPR/NRD4CHcUBrmlVgjAS BM2tbTd4p82Pq6O9qD/ce/fADOgXHj3f5LUsihxwASWkoHepA00raFwkRC3SXm55 vaz1oAStfeXNSit8kRkdTH/KURfWTnmem/if+5NdethyS5kR1eY7VGdlEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPdJ4RgDG5oSzO215NVAIsB6TUU9MB8GA1UdIwQY MBaAFIqtnAzlujkFtBlwoE5Rl2B2xn4AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGIt N2EwZWNlOWMwYWY4LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGItN2EwZWNlOWMwYWY4 LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ/yiuANe 98a7DYpftyi/7c0RcU/3d4eWxdTEGhLhg348hQDSBoIsAE8XT1s55fRny9okTWcQ 1HnnCc7CPmcOfZ4PLIdW+okhI8GQBHNvsDGbAJgKiqgxRMRJtPhbOqgk3zC/P4ZD pdwP9StvqWZlzs8gj+pckopMp2Ck+NUnjz+14GXl8bN6KyARF7Fcu3WMPmZ7G3G+ HIn2E7TpJLnjxsbeunlEOajjVIanx77E+E9gQVJdtjSEZZjmTuGTwwQva47lHZK9 eyLJTVwKxRZhsb3vJqblMYaEbH2/Jr50kVjsjF+6Ma+rm0I90R6ItgUyazsjjurW JoelpohTLzopzg== -----END CERTIFICATE-----Generated at Fri Jan 9 21:39:34 2026 by rpki-client