This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json) Hash identifier: yv3s4q71SQe3norFaAkm3NuKzMoaNDE55+3kced53/w= Subject key identifier: CC:4B:29:75:EE:C4:4B:58:74:97:B9:76:42:31:E4:20:23:06:F2:A0 Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca Certificate serial: 019C03D650A194B21FFC39F7BBD332B3BBB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft Manifest number: 0BD7 Signing time: Wed 28 Jan 2026 09:01:42 +0000 Manifest this update: Wed 28 Jan 2026 09:01:42 +0000 Manifest next update: Thu 29 Jan 2026 09:01:42 +0000 Files and hashes: 1: 1gk0sLtkOinOBhMkUiRN6708AVA.roa (hash: qx4BeBMu/olO2Xz1c+ij7UE+dLcw4YvlNY6rUOImv/o=) 2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: Yl5GiIjmMGrJHBBjnuA9itzBvYaGs5ixy8U6lpKMJE4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:03:d6:50:a1:94:b2:1f:fc:39:f7:bb:d3:32:b3:bb:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca Validity Not Before: Jan 28 09:01:42 2026 GMT Not After : Jan 29 09:01:42 2026 GMT Subject: CN=cc4b2975eec44b587497b9764231e4202306f2a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7d:24:0e:6a:ee:3c:e7:ad:1c:e4:a3:8f:e0: c1:68:a3:92:3c:64:df:22:f7:b1:0b:70:1c:82:23: e5:8d:67:81:2c:8f:8f:f2:99:4a:3c:80:77:6d:aa: f1:25:eb:f2:41:d4:ea:02:db:ce:5c:8f:f9:84:15: cf:d9:c4:85:7b:b4:1b:68:13:30:8e:88:9e:00:ff: 34:c4:2d:d6:56:a0:bc:fa:af:2e:2c:a2:6e:2e:cf: 94:41:c1:10:9e:bb:7d:b9:1e:d3:0d:6f:44:43:a3: 34:1a:4a:9d:69:a2:83:79:df:1f:fd:7a:e4:d3:07: 4d:09:11:02:74:f2:c9:c8:ca:50:0a:61:c7:7e:b4: 7e:8b:1c:c1:1c:06:4c:0a:4f:d2:94:17:bc:4a:51: 8d:f5:39:fc:11:83:f7:e7:cc:e9:82:f7:ca:d2:65: 8f:96:9b:c3:ab:8f:9a:42:18:51:a1:95:af:c8:62: 04:16:81:6e:24:ba:ee:65:74:96:ac:48:71:f5:e9: cc:ec:fb:b6:33:b6:b7:d9:b6:4d:09:74:43:7f:b9: ba:24:5c:09:23:23:a4:33:fc:51:f4:3d:d1:17:9b: cd:90:54:21:2c:45:72:e5:aa:9c:fe:13:cc:66:e1: 79:bf:66:03:31:6d:e3:a1:eb:65:b4:23:46:01:ba: 23:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:4B:29:75:EE:C4:4B:58:74:97:B9:76:42:31:E4:20:23:06:F2:A0 X509v3 Authority Key Identifier: keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:8d:78:04:88:fc:dd:cf:2f:98:fc:2c:1b:0a:c1:05:3e:ff: e9:b5:2e:e8:0a:31:a1:45:67:05:d3:31:33:95:02:a7:94:83: 3b:9e:73:16:c9:1a:93:47:23:d0:cc:ae:e0:6b:fe:92:19:06: 3e:a4:d0:73:c6:cb:45:c9:bf:70:4d:b7:1e:65:be:bd:7b:6f: 3f:24:27:d7:5f:d8:c3:b0:ff:14:9e:8a:84:2a:38:4f:a5:17: c5:98:64:20:ac:cf:ff:97:46:96:14:c3:43:59:5d:70:7b:da: e2:44:03:23:80:7b:ad:a2:a8:7e:0d:40:9e:b7:b2:33:77:b3: e1:1f:3a:9e:3c:04:a9:ab:2b:6a:8d:6a:b6:bb:70:cf:47:b5: d2:cc:42:34:78:4f:59:25:a2:8d:4a:c0:09:98:88:28:9e:76: 02:57:b5:9d:84:cb:ed:76:61:96:21:8c:8c:80:83:1b:2e:a9: 92:96:5b:1b:6f:fe:c6:85:3c:0b:9c:9f:fd:10:f0:55:7d:f9: c0:5e:41:c5:6a:de:e8:56:4b:1d:da:28:40:8e:0c:59:f7:e9: 4c:5f:b6:25:7a:90:2a:b5:dd:df:c8:fb:25:60:07:1b:f1:67: 4b:92:70:4b:a3:44:65:f9:f5:ee:0e:b1:ce:15:15:5c:b6:76: dd:a5:61:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwD1lChlLIf/Dn3u9Mys7u4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhZjdmMzJkMzNmNjY0Njc3OWE1MWZiMjMyMDFjNjQ0MmQx NDUxY2EwHhcNMjYwMTI4MDkwMTQyWhcNMjYwMTI5MDkwMTQyWjAzMTEwLwYDVQQD EyhjYzRiMjk3NWVlYzQ0YjU4NzQ5N2I5NzY0MjMxZTQyMDIzMDZmMmEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArn0kDmruPOetHOSjj+DBaKOSPGTf IvexC3AcgiPljWeBLI+P8plKPIB3barxJevyQdTqAtvOXI/5hBXP2cSFe7QbaBMw joieAP80xC3WVqC8+q8uLKJuLs+UQcEQnrt9uR7TDW9EQ6M0GkqdaaKDed8f/Xrk 0wdNCRECdPLJyMpQCmHHfrR+ixzBHAZMCk/SlBe8SlGN9Tn8EYP358zpgvfK0mWP lpvDq4+aQhhRoZWvyGIEFoFuJLruZXSWrEhx9enM7Pu2M7a32bZNCXRDf7m6JFwJ IyOkM/xR9D3RF5vNkFQhLEVy5aqc/hPMZuF5v2YDMW3joetltCNGAboj9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMxLKXXuxEtYdJe5dkIx5CAjBvKgMB8GA1UdIwQY MBaAFIr38y0z9mRneaUfsjIBxkQtFFHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMt NWI3MmZiOTI3ZDFjLzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMtNWI3MmZiOTI3ZDFj LzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdY14BIj8 3c8vmPwsGwrBBT7/6bUu6AoxoUVnBdMxM5UCp5SDO55zFskak0cj0Myu4Gv+khkG PqTQc8bLRcm/cE23HmW+vXtvPyQn11/Yw7D/FJ6KhCo4T6UXxZhkIKzP/5dGlhTD Q1ldcHva4kQDI4B7raKofg1AnreyM3ez4R86njwEqasrao1qtrtwz0e10sxCNHhP WSWijUrACZiIKJ52Ale1nYTL7XZhliGMjICDGy6pkpZbG2/+xoU8C5yf/RDwVX35 wF5BxWre6FZLHdooQI4MWffpTF+2JXqQKrXd38j7JWAHG/FnS5JwS6NEZfn17g6x zhUVXLZ23aVhxw== -----END CERTIFICATE-----Generated at Wed Jan 28 17:54:28 2026 by rpki-client