This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft File: IG0YKjtEp74F0-5w3JCoXVer-40.mft (raw, json) Hash identifier: /IAGUmVb2CPkk3+/1u4W+XFZbUlh0UOR3NNEULoIe8E= Subject key identifier: A8:B9:5A:DF:EB:C2:4E:1F:0D:DF:29:0A:21:2D:D7:C3:96:A5:A5:18 Authority key identifier: 20:6D:18:2A:3B:44:A7:BE:05:D3:EE:70:DC:90:A8:5D:57:AB:FB:8D Certificate issuer: /CN=206d182a3b44a7be05d3ee70dc90a85d57abfb8d Certificate serial: 019C039E96E2235791C32D74CE7D83D6D1CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft Manifest number: 1751 Signing time: Wed 28 Jan 2026 08:00:50 +0000 Manifest this update: Wed 28 Jan 2026 08:00:50 +0000 Manifest next update: Thu 29 Jan 2026 08:00:50 +0000 Files and hashes: 1: IG0YKjtEp74F0-5w3JCoXVer-40.crl (hash: fDlavTJ6FJMjmll1xi/z/Ngok+VJnJJVLjTE4EyAQdM=) 2: qSWfUPbdifhrh3aKuAhxxmylP6A.roa (hash: fB+qGwcW2GhnHX2osyvSPDhd9KmuxX/DLSWIY8hF8h8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 08:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:03:9e:96:e2:23:57:91:c3:2d:74:ce:7d:83:d6:d1:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=206d182a3b44a7be05d3ee70dc90a85d57abfb8d Validity Not Before: Jan 28 08:00:50 2026 GMT Not After : Jan 29 08:00:50 2026 GMT Subject: CN=a8b95adfebc24e1f0ddf290a212dd7c396a5a518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f8:52:5f:d7:df:07:eb:40:7e:3f:39:f5:81: f4:2e:9a:0f:94:48:0d:fe:04:30:d1:3a:52:90:6a: 7f:68:a8:19:cf:4e:1e:e7:a5:55:2e:13:eb:6c:e2: 16:75:86:9b:d7:42:ea:61:2c:b6:49:bf:e5:b6:46: 9e:c1:ab:0d:b1:6f:e5:5d:d7:29:76:d7:ef:a5:73: 8f:5f:80:f1:93:92:95:cd:bc:15:17:e6:ad:66:57: 66:57:19:31:51:8f:29:7c:5d:97:ef:2f:56:90:c1: a5:d7:72:00:b9:5b:be:76:77:6d:ee:1b:67:3d:86: 65:c4:bf:3d:fd:13:34:53:23:d6:04:61:65:2d:3e: d5:0e:af:be:b3:91:01:f6:5c:2a:87:e7:54:86:28: 11:60:eb:43:5e:44:d3:fc:cc:8c:da:6e:3f:82:20: 38:cf:8f:f2:98:cf:e1:4e:66:f6:cc:86:23:ab:bf: e2:08:18:a0:72:11:66:35:79:e3:bb:70:94:a5:f6: db:26:8d:ed:69:0c:19:4c:22:ea:5c:0b:10:57:d2: 1d:d5:8d:81:b6:7b:90:e0:96:f4:24:69:b2:8f:f9: 71:be:fb:f5:ee:5b:45:18:61:cc:88:1c:15:b3:51: 12:c9:a8:e7:3b:d4:1b:55:62:f8:44:16:58:da:71: 77:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B9:5A:DF:EB:C2:4E:1F:0D:DF:29:0A:21:2D:D7:C3:96:A5:A5:18 X509v3 Authority Key Identifier: keyid:20:6D:18:2A:3B:44:A7:BE:05:D3:EE:70:DC:90:A8:5D:57:AB:FB:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:0d:99:e3:16:f7:e3:b5:88:fe:b6:7d:8f:e5:b1:df:93:61: c1:f5:04:57:c9:4b:fc:04:5f:45:a7:7a:2e:7c:5e:b5:6c:fe: 07:d1:b0:6b:6f:99:84:d7:d1:64:9a:58:95:54:ee:57:b6:8a: 8d:39:f1:e3:91:d6:7c:8f:33:fa:89:73:93:fc:c2:bf:c5:a0: 1a:d1:d9:48:64:80:a2:e5:3b:46:ec:e4:91:55:f2:04:78:43: 2d:10:b0:7d:53:29:6a:8c:c9:dd:40:8f:32:13:c6:f8:81:9a: c6:cb:18:2e:60:08:42:76:36:fa:f0:d9:0b:9e:7b:6b:92:74: 49:0b:f0:8a:73:c8:13:7a:30:88:00:e7:f6:e2:19:07:e3:79: 7e:a0:98:d4:03:41:76:d1:11:c0:52:19:c7:00:4f:a5:45:f7: 8f:33:86:39:47:49:b0:b7:1a:fb:9b:6d:77:51:b9:ab:e9:60: f8:e8:8f:3b:bf:0b:26:cd:99:fb:6a:d4:d3:cc:07:25:46:7d: d3:48:3f:b9:5c:a6:08:ca:13:f8:8a:85:e6:b7:eb:df:fe:79: e9:dd:46:8a:ba:25:1f:90:b3:21:da:33:19:4f:e8:c0:43:3f: 5d:7b:d4:71:71:f8:7f:4d:4e:63:e5:e6:6e:b1:be:dd:6c:2b: e7:12:29:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwDnpbiI1eRwy10zn2D1tHMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwNmQxODJhM2I0NGE3YmUwNWQzZWU3MGRjOTBhODVkNTdh YmZiOGQwHhcNMjYwMTI4MDgwMDUwWhcNMjYwMTI5MDgwMDUwWjAzMTEwLwYDVQQD EyhhOGI5NWFkZmViYzI0ZTFmMGRkZjI5MGEyMTJkZDdjMzk2YTVhNTE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/hSX9ffB+tAfj859YH0LpoPlEgN /gQw0TpSkGp/aKgZz04e56VVLhPrbOIWdYab10LqYSy2Sb/ltkaewasNsW/lXdcp dtfvpXOPX4Dxk5KVzbwVF+atZldmVxkxUY8pfF2X7y9WkMGl13IAuVu+dndt7htn PYZlxL89/RM0UyPWBGFlLT7VDq++s5EB9lwqh+dUhigRYOtDXkTT/MyM2m4/giA4 z4/ymM/hTmb2zIYjq7/iCBigchFmNXnju3CUpfbbJo3taQwZTCLqXAsQV9Id1Y2B tnuQ4Jb0JGmyj/lxvvv17ltFGGHMiBwVs1ESyajnO9QbVWL4RBZY2nF3fwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKi5Wt/rwk4fDd8pCiEt18OWpaUYMB8GA1UdIwQY MBaAFCBtGCo7RKe+BdPucNyQqF1Xq/uNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUcwWUtqdEVwNzRGMC01dzNKQ29YVmVyLTQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9lNmYyZWUtMDQ3Ni00MGI0LWJiNmEt NjYwNzc4MDk5YjNkLzEvSUcwWUtqdEVwNzRGMC01dzNKQ29YVmVyLTQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9lNmYyZWUtMDQ3Ni00MGI0LWJiNmEtNjYwNzc4MDk5YjNk LzEvSUcwWUtqdEVwNzRGMC01dzNKQ29YVmVyLTQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATA2Z4xb3 47WI/rZ9j+Wx35NhwfUEV8lL/ARfRad6LnxetWz+B9Gwa2+ZhNfRZJpYlVTuV7aK jTnx45HWfI8z+olzk/zCv8WgGtHZSGSAouU7RuzkkVXyBHhDLRCwfVMpaozJ3UCP MhPG+IGaxssYLmAIQnY2+vDZC557a5J0SQvwinPIE3owiADn9uIZB+N5fqCY1ANB dtERwFIZxwBPpUX3jzOGOUdJsLca+5ttd1G5q+lg+OiPO78LJs2Z+2rU08wHJUZ9 00g/uVymCMoT+IqF5rfr3/556d1GirolH5CzIdozGU/owEM/XXvUcXH4f01OY+Xm brG+3Wwr5xIp1Q== -----END CERTIFICATE-----Generated at Wed Jan 28 12:09:37 2026 by rpki-client