This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json) Hash identifier: xNF5xeycjI4S1CN8zm5Z9qhSjkRCEMg54+G4ZH4CPb0= Subject key identifier: 2B:E3:C0:5B:97:E0:81:04:42:7A:3F:75:A3:95:14:1B:9E:BC:C8:F5 Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86 Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986 Certificate serial: 019BFC1C9DF10CD7EDB94D3F4700C6D9A9A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft Manifest number: 12C5 Signing time: Mon 26 Jan 2026 21:01:32 +0000 Manifest this update: Mon 26 Jan 2026 21:01:32 +0000 Manifest next update: Tue 27 Jan 2026 21:01:32 +0000 Files and hashes: 1: 19kTeJepP8HkpIg63hHdZMuI5pU.roa (hash: rYKL3pXSi0W4E3AFcHleDUG0Z3vGSYXA5D+E17BmR8U=) 2: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: ABSlKT8cjDTTKw7EpBwizTppGDbjLZPBX0h1VMBNq/M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1c:9d:f1:0c:d7:ed:b9:4d:3f:47:00:c6:d9:a9:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986 Validity Not Before: Jan 26 21:01:32 2026 GMT Not After : Jan 27 21:01:32 2026 GMT Subject: CN=2be3c05b97e08104427a3f75a395141b9ebcc8f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:58:c8:74:44:00:3f:9a:80:c0:22:50:3e:ac: 0f:f4:f9:20:b8:55:b0:76:55:de:93:8b:03:e6:aa: e7:ef:f0:c2:30:b6:a5:5c:f9:ff:2b:c9:e3:4c:1a: 35:61:bf:48:1f:f5:a4:e9:0e:be:a8:f2:87:15:7e: bb:02:8c:04:32:21:f3:c1:1d:28:cc:5e:46:33:66: e4:29:ee:4b:7f:f7:54:4c:55:af:9d:17:52:e2:60: b7:97:69:10:9b:2c:49:cd:71:49:40:83:f3:96:8a: 6b:77:f7:cb:68:23:3a:23:ab:6a:47:bb:0c:bc:13: 3f:c9:72:28:87:f8:b0:b5:72:11:32:c1:ae:49:0d: 3e:36:c8:18:a9:9b:70:28:bd:d5:f5:90:ba:f3:fb: 5e:12:a5:6d:ee:ef:3c:48:f1:c6:24:4a:24:92:c5: 36:4c:1f:35:89:7e:33:ef:5c:69:8b:ea:c0:db:a2: cb:17:ad:23:40:ea:84:14:40:1f:b3:82:5e:58:12: b9:2b:8f:f2:ec:92:2f:94:5c:63:f7:23:7f:90:71: 57:19:cb:2c:15:5b:bb:7f:e6:02:df:49:66:e2:20: 85:8b:e9:f9:d5:ad:25:74:bc:31:d7:3b:20:f6:c8: a8:e0:45:da:6f:b8:16:46:54:86:36:3f:ec:2c:b1: ec:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E3:C0:5B:97:E0:81:04:42:7A:3F:75:A3:95:14:1B:9E:BC:C8:F5 X509v3 Authority Key Identifier: keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:bf:8d:d8:42:ee:9a:58:cc:74:b1:01:e8:aa:e9:2b:fa:9f: aa:df:ae:03:b3:50:14:75:01:b8:0e:15:62:5f:86:bb:38:63: cb:ef:78:b9:a1:2f:9a:02:68:5d:ed:8c:20:65:ff:4a:d8:80: ab:58:17:b1:e6:14:8b:ed:7d:28:ab:f0:1a:2c:67:87:de:2a: ac:f2:bb:d3:e3:61:11:90:c3:a8:fd:a7:60:33:9b:4f:fa:99: ce:da:aa:6d:7e:f9:48:af:8c:bc:3b:65:85:14:0c:81:25:b9: d2:93:17:53:b8:53:41:8b:d4:2a:26:f5:37:f8:7d:c4:6d:d5: c3:18:5b:1b:52:eb:eb:54:b4:3b:a3:b5:86:7d:f2:83:73:d4: a5:d6:13:64:67:f8:45:99:9a:8d:42:ab:e7:22:e8:81:74:07: 39:f4:b6:3e:0f:b6:7f:8d:97:04:c4:b7:c5:c0:ea:a4:69:1f: 53:8a:ab:51:e6:ee:98:9e:1e:da:9d:be:af:1e:8c:0e:e1:dc: ea:e3:7e:86:2a:21:0a:ab:4a:85:3c:9a:cc:4e:50:31:07:af: d0:9c:d7:dc:13:5d:0d:42:77:76:c0:0f:c2:24:d6:89:c8:75: eb:15:db:5f:c3:97:7e:00:1f:15:25:7a:14:dc:3c:2c:9a:88: f6:d4:38:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8HJ3xDNftuU0/RwDG2amjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4ODE2NjQ2M2ExYTMwMWNhNWI2ZWI5OGJkZGQwN2UzOTcw OTE5ODYwHhcNMjYwMTI2MjEwMTMyWhcNMjYwMTI3MjEwMTMyWjAzMTEwLwYDVQQD EygyYmUzYzA1Yjk3ZTA4MTA0NDI3YTNmNzVhMzk1MTQxYjllYmNjOGY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/ljIdEQAP5qAwCJQPqwP9PkguFWw dlXek4sD5qrn7/DCMLalXPn/K8njTBo1Yb9IH/Wk6Q6+qPKHFX67AowEMiHzwR0o zF5GM2bkKe5Lf/dUTFWvnRdS4mC3l2kQmyxJzXFJQIPzloprd/fLaCM6I6tqR7sM vBM/yXIoh/iwtXIRMsGuSQ0+NsgYqZtwKL3V9ZC68/teEqVt7u88SPHGJEokksU2 TB81iX4z71xpi+rA26LLF60jQOqEFEAfs4JeWBK5K4/y7JIvlFxj9yN/kHFXGcss FVu7f+YC30lm4iCFi+n51a0ldLwx1zsg9sio4EXab7gWRlSGNj/sLLHsIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCvjwFuX4IEEQno/daOVFBuevMj1MB8GA1UdIwQY MBaAFIiBZkY6GjAcpbbrmL3dB+OXCRmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUt MzhjMmMyYTc5YzM1LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUtMzhjMmMyYTc5YzM1 LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARb+N2ELu mljMdLEB6KrpK/qfqt+uA7NQFHUBuA4VYl+Guzhjy+94uaEvmgJoXe2MIGX/StiA q1gXseYUi+19KKvwGixnh94qrPK70+NhEZDDqP2nYDObT/qZztqqbX75SK+MvDtl hRQMgSW50pMXU7hTQYvUKib1N/h9xG3VwxhbG1Lr61S0O6O1hn3yg3PUpdYTZGf4 RZmajUKr5yLogXQHOfS2Pg+2f42XBMS3xcDqpGkfU4qrUebumJ4e2p2+rx6MDuHc 6uN+hiohCqtKhTyazE5QMQev0JzX3BNdDUJ3dsAPwiTWich16xXbX8OXfgAfFSV6 FNw8LJqI9tQ4uQ== -----END CERTIFICATE-----Generated at Tue Jan 27 00:09:53 2026 by rpki-client