This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft File: iawKy_23onTvNsFvWGCtoqJHBpc.mft (raw, json) Hash identifier: MhVfKxb8/EqniHci28icOhdhzloF7zRzRkiVpFUr/fs= Subject key identifier: 9B:3D:56:AC:92:D3:93:40:B9:49:99:52:02:92:19:96:0B:7A:6E:EE Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Certificate serial: 019BFD9C362CF8D6D29298CB3941A94346A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft Manifest number: 17DC Signing time: Tue 27 Jan 2026 04:00:31 +0000 Manifest this update: Tue 27 Jan 2026 04:00:31 +0000 Manifest next update: Wed 28 Jan 2026 04:00:31 +0000 Files and hashes: 1: 8dz0TrMtwzys9aId9S0iNBUOM6I.roa (hash: QLXQgTisSL5o9NDXTvqc31xSu43P2bWSnl0Mbj1LxKA=) 2: ATr9on9NXfN5KaeCexdDhihuhvE.roa (hash: fRmU0RyX9cmxFGh6vh7b2kq/1xI8atRRIR73j9hG4+Y=) 3: JSGXBtXBDhU1ugyi_XXHVVOXM3E.roa (hash: arGn6FJKM/5X/KQBvvmxnfiup95zCVTz6MKIcb88dnA=) 4: JutDRiQZPtkgRNn4DbKRtcU159k.roa (hash: TBfVgKnr15EdS367udNkZsLjUZkCmwigL6STK1CGALk=) 5: U9dVil-DLUXDoMlzZYRZH7n9BYc.roa (hash: 7WJQeBBvXC+SEalxl/wPubwjCYsWQ+iY3C0k1kE/78M=) 6: WYjaPZyXn9OqgdQ9oF2UyH6UZxY.roa (hash: EVCumPjXA28vp5ehPKHe+PCdpvR77Tfj3/cbydnM+o0=) 7: XXTLAzTN8ORt_-RYCj2-8C6GR00.roa (hash: 6BDh84FsMhXUtXLJgFo0Xh10o5gPmpg2C2PNspUTVCk=) 8: iawKy_23onTvNsFvWGCtoqJHBpc.crl (hash: 55C0FYvNb+gTWSjTUvI+dvx7D6Ba92cWrK7a3xu+dAY=) 9: nkHJQxs3RvxryxXyywwLA5kWGDI.roa (hash: VuLzAxuuKrma6aeyKBkCPTnFtqwkCI2Bh/sV0lxF7Jc=) 10: vzjiQ62-Ida16ZpmsWaWVB-3g8U.roa (hash: jsH0jmCurlULuLa9fBp8xexVcDJDX4+DOBZF+vtnAlE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:9c:36:2c:f8:d6:d2:92:98:cb:39:41:a9:43:46:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Validity Not Before: Jan 27 04:00:31 2026 GMT Not After : Jan 28 04:00:31 2026 GMT Subject: CN=9b3d56ac92d39340b9499952029219960b7a6eee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b5:2c:be:f5:88:35:f1:45:66:5f:d1:2e:86: 5a:cd:71:f8:f0:a2:92:3e:8b:ab:ca:47:c4:57:57: 73:9f:84:e7:0a:be:ca:71:6f:5f:ae:ef:05:04:eb: db:89:4a:83:0f:24:36:5f:58:fd:dd:c5:48:e1:ce: f3:9c:9e:37:53:3d:27:48:20:1e:78:c5:25:f9:83: 3b:1e:88:3e:a4:d9:0c:c0:d6:73:21:7d:eb:75:1f: 33:27:c0:e9:9a:0a:c6:c7:43:c7:1d:30:1e:07:bc: 89:ee:00:41:cd:2e:26:d2:f6:8a:c1:ed:8d:17:91: e6:f8:bb:9c:2b:c2:c1:7b:a2:b0:78:2a:ab:92:54: 3e:28:df:44:99:69:51:8f:d7:f7:54:6f:14:00:12: 83:d7:f7:8a:53:7a:d9:0a:61:b4:04:af:c5:cf:e7: b6:1a:b2:6f:ca:e8:ea:93:ad:b4:2e:5e:52:4a:77: 60:26:7e:ac:90:90:1e:c4:18:71:b2:a4:cb:5b:1b: 38:00:25:34:07:fe:64:c0:b8:0e:52:a0:c4:14:ef: db:92:42:f3:6e:2d:d5:67:ca:fb:a3:91:e1:ba:b2: e2:45:4f:63:3a:2d:24:8a:43:19:68:1a:a2:37:32: 32:a0:24:ff:fc:76:2e:00:f8:9b:14:bb:34:13:d7: a3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:3D:56:AC:92:D3:93:40:B9:49:99:52:02:92:19:96:0B:7A:6E:EE X509v3 Authority Key Identifier: keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:42:cc:5d:1c:50:76:33:80:3f:8d:2a:69:e7:7e:11:27:1a: c3:ae:7d:8e:2e:bd:0e:73:45:30:24:77:8f:ec:73:10:bd:e2: 3d:ee:a7:e1:7f:b5:9b:f1:8a:3c:39:f6:80:52:97:c1:d0:9c: 95:c6:00:20:0f:ff:42:db:a3:c0:4b:b5:44:53:c8:b3:ca:aa: a3:36:9d:6b:a1:19:c3:be:62:8b:3f:d6:23:35:65:58:3c:a3: e1:97:81:21:dc:f2:2b:36:4d:07:92:4d:0a:3b:55:6b:7a:15: 05:db:cd:ef:3f:fe:4b:08:73:11:5b:d6:56:c7:f2:19:71:2f: 12:13:08:22:7d:a1:8c:a2:6c:64:ca:50:c0:8f:6b:7f:c6:fb: 84:71:ef:41:38:9b:aa:8b:83:86:fa:8c:7f:42:0c:03:88:62: 2c:71:6a:66:54:00:ab:92:d8:35:95:03:8e:8c:59:08:04:ed: af:27:7b:21:44:f3:a4:0c:1b:09:c7:56:05:96:f2:55:16:f8: 69:fb:2d:44:02:3f:75:e5:06:0a:e8:01:72:98:84:1b:d9:01: e1:4a:38:06:ec:7c:af:25:9c:44:13:ab:58:e8:14:63:a1:4d: 24:49:fa:e9:2e:36:e1:04:4a:01:e0:e6:5d:fb:3d:c5:4f:f9: af:26:b6:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9nDYs+NbSkpjLOUGpQ0amMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWMwYWNiZmRiN2EyNzRlZjM2YzE2ZjU4NjBhZGEyYTI0 NzA2OTcwHhcNMjYwMTI3MDQwMDMxWhcNMjYwMTI4MDQwMDMxWjAzMTEwLwYDVQQD Eyg5YjNkNTZhYzkyZDM5MzQwYjk0OTk5NTIwMjkyMTk5NjBiN2E2ZWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4bUsvvWINfFFZl/RLoZazXH48KKS PourykfEV1dzn4TnCr7KcW9fru8FBOvbiUqDDyQ2X1j93cVI4c7znJ43Uz0nSCAe eMUl+YM7Hog+pNkMwNZzIX3rdR8zJ8DpmgrGx0PHHTAeB7yJ7gBBzS4m0vaKwe2N F5Hm+LucK8LBe6KweCqrklQ+KN9EmWlRj9f3VG8UABKD1/eKU3rZCmG0BK/Fz+e2 GrJvyujqk620Ll5SSndgJn6skJAexBhxsqTLWxs4ACU0B/5kwLgOUqDEFO/bkkLz bi3VZ8r7o5HhurLiRU9jOi0kikMZaBqiNzIyoCT//HYuAPibFLs0E9ejMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJs9VqyS05NAuUmZUgKSGZYLem7uMB8GA1UdIwQY MBaAFImsCsv9t6J07zbBb1hgraKiRwaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMt ZDRkYmY3MDY2ZmQzLzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMtZDRkYmY3MDY2ZmQz LzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnULMXRxQ djOAP40qaed+EScaw659ji69DnNFMCR3j+xzEL3iPe6n4X+1m/GKPDn2gFKXwdCc lcYAIA//QtujwEu1RFPIs8qqozada6EZw75iiz/WIzVlWDyj4ZeBIdzyKzZNB5JN CjtVa3oVBdvN7z/+SwhzEVvWVsfyGXEvEhMIIn2hjKJsZMpQwI9rf8b7hHHvQTib qouDhvqMf0IMA4hiLHFqZlQAq5LYNZUDjoxZCATtryd7IUTzpAwbCcdWBZbyVRb4 afstRAI/deUGCugBcpiEG9kB4Uo4Bux8ryWcRBOrWOgUY6FNJEn66S424QRKAeDm Xfs9xU/5rya26g== -----END CERTIFICATE-----Generated at Tue Jan 27 07:39:58 2026 by rpki-client