This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json) Hash identifier: r7OgHgj3nhKyxPAUGqK6uQrZPAui9OUAPBZYWBw0jUo= Subject key identifier: 74:64:48:0C:77:B1:64:D7:DC:23:01:B1:10:79:44:F3:DA:D3:71:5D Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Certificate serial: 019C1E72629CEFEEA7402EEE37F099D3BDD6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft Manifest number: 1807 Signing time: Mon 02 Feb 2026 13:02:18 +0000 Manifest this update: Mon 02 Feb 2026 13:02:18 +0000 Manifest next update: Tue 03 Feb 2026 13:02:18 +0000 Files and hashes: 1: BNGMVvTZ1XawSMPOVaywEKgFz8w.roa (hash: WMt9Jn62xWAvsFJt6BLgLhIXnUKvtSHXK/jsLiQ9wc0=) 2: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: WN2VClCSjZRNuSWg4bqB2zD8tOP9x81zLPvHgemmoB8=) 3: J_k_uJydXhJKkAPBLn_Xr9EpYmw.roa (hash: bMaFsCf1Hj+guhXQdkk7ZJ24ZgANPSnkOncPj3CW1pQ=) 4: S9D_ZvZP7Y2SyyqdAWt1mGxtagE.roa (hash: hH6PHrAp3gX28fWUuJtWpjV+rB9bYio8w3wI6R4XHQI=) 5: YPhzzBUAAD8W6PxdQ8Eo6J_1Xlo.roa (hash: QJjVxTN7Kd8ed1QYD92fFHesTbkRe6gyeZIi3S6D0so=) 6: Z8UyJlJrz_tPx2Lzi2wtF6sRSoY.roa (hash: pZEmU7QBOi+LmI67NMxNilqE5KRHfsee+sRCVmykeWE=) 7: gw26QBwPzQF9bT3yyu20z1tgJyk.roa (hash: iuHp19gpWORmcmt7JfC/koJtOp0jpGQxA/LoBFKsFao=) 8: mdj55pZO6nRDbpPFsXBoK-GkNU8.roa (hash: JU7FZwf7hl0KcJAATQ/by5oF+/xX9ntEZw2LOkX+3S0=) 9: n70k782e6Gxq_-Hc2YO_idjOcAs.roa (hash: 9xPDUcAeeZeb+V1tJdiN4n6+fuVQh1F2hwH4+x4MOiQ=) 10: pX4-zHrOaGGZmLrFodKOqsDRVt8.roa (hash: oNNoPaGL9tiGcsnmh6pVkfSYR8zyTqJrDL9WChZzfdA=) 11: vqLY8AJRdwBNZp1vMAKBzj7hYMk.roa (hash: QScIVVTzvA87+g4pWqcXEROo6Uo1IppOyeJM8oSgj8s=) 12: xgHR7y7J0aGtYD0R9jhr6WJbZm8.roa (hash: CHXV05nQbB5KxwYkctbAeeyJMsjXN6ysG0w+cPnzH+Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 13:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1e:72:62:9c:ef:ee:a7:40:2e:ee:37:f0:99:d3:bd:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Validity Not Before: Feb 2 13:02:18 2026 GMT Not After : Feb 3 13:02:18 2026 GMT Subject: CN=7464480c77b164d7dc2301b1107944f3dad3715d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:32:d4:ec:42:1e:75:44:08:ee:d3:2e:1c:21: 54:63:15:3a:19:7a:db:9a:ad:ac:49:aa:b5:16:63: ea:21:db:b9:ad:ec:53:1c:48:70:77:2c:5b:92:9f: b4:21:9d:14:f9:95:b1:74:65:d0:ee:a5:5e:b6:74: 4b:15:38:e9:eb:5a:9c:40:cc:8a:bd:7e:19:ec:2e: 8e:21:b5:39:59:34:2c:a0:2d:5c:9c:75:f6:1d:65: ab:83:f7:9d:f2:37:68:ec:79:c2:32:c7:e5:5d:ec: 79:90:37:62:de:38:c6:21:ab:19:ce:0c:2c:91:14: a9:fa:08:ef:a5:54:53:2d:92:2f:8b:f7:f6:ac:c2: 33:67:a4:70:56:2a:c7:d7:47:a5:5e:18:2e:f1:7c: 8c:78:4b:56:e0:86:16:32:d8:d7:cd:39:6a:48:de: 91:bf:76:f2:94:c2:9e:a2:1c:ca:3b:e4:c6:78:de: 32:08:cc:05:06:a6:2a:9c:a9:81:03:92:9d:c2:fc: 54:06:58:bf:7c:7f:a0:3a:35:db:b3:54:e7:13:de: ca:4a:cc:94:0b:af:f0:4c:76:cd:6e:88:6f:e3:69: 82:a0:97:a2:93:fd:a7:f0:40:e5:ac:e6:d2:e3:67: 92:2d:f8:b6:44:8a:f2:e2:af:cc:06:49:af:8c:84: f4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:64:48:0C:77:B1:64:D7:DC:23:01:B1:10:79:44:F3:DA:D3:71:5D X509v3 Authority Key Identifier: keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:18:99:f9:25:85:a0:31:f3:df:e3:eb:91:b8:67:04:42:90: 35:23:dc:5d:c5:21:6d:4e:80:1e:db:f3:16:4d:01:af:23:8e: a7:7a:1d:e3:51:0f:6e:c1:9a:8b:b5:43:63:a7:23:0e:1a:bd: f3:47:89:90:2f:06:23:4b:1b:6b:56:9a:de:c2:d1:49:cb:e4: e9:4e:01:e6:a8:0b:98:31:39:dc:68:0b:61:dc:7d:1a:8b:f3: 27:ec:80:11:2e:4b:3f:0c:c6:db:7c:d2:59:5b:86:ff:78:7b: 9a:63:f1:5e:39:f2:51:b5:e9:71:f7:81:f4:9d:f5:22:ba:26: 46:f5:01:26:3f:9f:61:0d:23:4e:b4:3b:fe:b7:a7:2f:a8:3f: 69:b8:57:6b:e1:1d:98:d7:a7:f9:68:c4:f1:58:0b:1e:4a:9a: 56:80:66:97:39:83:a0:6c:62:a2:7f:d7:f7:4d:e7:87:0e:53: 8c:0e:06:04:bc:89:1e:85:86:42:77:4b:05:48:77:f8:a5:28: 7a:cf:2b:19:55:e6:e9:06:e3:06:cc:1e:ce:d2:57:48:a4:77: f8:06:91:6a:08:2f:d0:51:af:5d:91:7d:3b:6d:49:0f:35:bc: cf:61:72:bc:d3:aa:ea:59:90:f2:c6:6b:f9:36:b5:9d:b1:82: 10:03:3e:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwecmKc7+6nQC7uN/CZ073WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj ZmQwNjIwHhcNMjYwMjAyMTMwMjE4WhcNMjYwMjAzMTMwMjE4WjAzMTEwLwYDVQQD Eyg3NDY0NDgwYzc3YjE2NGQ3ZGMyMzAxYjExMDc5NDRmM2RhZDM3MTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTLU7EIedUQI7tMuHCFUYxU6GXrb mq2sSaq1FmPqIdu5rexTHEhwdyxbkp+0IZ0U+ZWxdGXQ7qVetnRLFTjp61qcQMyK vX4Z7C6OIbU5WTQsoC1cnHX2HWWrg/ed8jdo7HnCMsflXex5kDdi3jjGIasZzgws kRSp+gjvpVRTLZIvi/f2rMIzZ6RwVirH10elXhgu8XyMeEtW4IYWMtjXzTlqSN6R v3bylMKeohzKO+TGeN4yCMwFBqYqnKmBA5KdwvxUBli/fH+gOjXbs1TnE97KSsyU C6/wTHbNbohv42mCoJeik/2n8EDlrObS42eSLfi2RIry4q/MBkmvjIT0SQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHRkSAx3sWTX3CMBsRB5RPPa03FdMB8GA1UdIwQY MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt NjU0ZGQ2NDQyY2U0LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0 LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmBiZ+SWF oDHz3+PrkbhnBEKQNSPcXcUhbU6AHtvzFk0BryOOp3od41EPbsGai7VDY6cjDhq9 80eJkC8GI0sba1aa3sLRScvk6U4B5qgLmDE53GgLYdx9GovzJ+yAES5LPwzG23zS WVuG/3h7mmPxXjnyUbXpcfeB9J31IromRvUBJj+fYQ0jTrQ7/renL6g/abhXa+Ed mNen+WjE8VgLHkqaVoBmlzmDoGxion/X903nhw5TjA4GBLyJHoWGQndLBUh3+KUo es8rGVXm6QbjBsweztJXSKR3+AaRaggv0FGvXZF9O21JDzW8z2FyvNOq6lmQ8sZr +Ta1nbGCEAM+KA== -----END CERTIFICATE-----Generated at Mon Feb 2 20:44:50 2026 by rpki-client