This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft File: ieXrHhIJiXh0XVQNypbP8N5HBNo.mft (raw, json) Hash identifier: LAjMoO0MknKOLhZpEeEAxKgeOqd7QjcX4VvRxXrIkUw= Subject key identifier: E7:61:CC:98:6A:FF:5E:73:DD:6F:EC:57:80:12:65:1D:A0:F0:00:C7 Authority key identifier: 89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA Certificate issuer: /CN=89e5eb1e12098978745d540dca96cff0de4704da Certificate serial: 019BFBE510FF70CA8E2D90A01EBA9B18D98B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft Manifest number: 0C61 Signing time: Mon 26 Jan 2026 20:00:51 +0000 Manifest this update: Mon 26 Jan 2026 20:00:51 +0000 Manifest next update: Tue 27 Jan 2026 20:00:51 +0000 Files and hashes: 1: ieXrHhIJiXh0XVQNypbP8N5HBNo.crl (hash: ItppA7pv0F9cejTjY3sp0yjFhAFAArT9Gx5yHpBAKCY=) 2: mdTsNfdOLmAj5Ib0bSI7RIV96g0.roa (hash: xAGPZrEW2fEUSd+UrPEI5hWaivVab8Rku87e+bOIo2Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:e5:10:ff:70:ca:8e:2d:90:a0:1e:ba:9b:18:d9:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89e5eb1e12098978745d540dca96cff0de4704da Validity Not Before: Jan 26 20:00:51 2026 GMT Not After : Jan 27 20:00:51 2026 GMT Subject: CN=e761cc986aff5e73dd6fec578012651da0f000c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8d:f5:84:e0:65:51:fc:6b:a0:87:ad:25:fe: 34:b7:18:39:16:fc:f3:b3:76:ff:09:8c:a4:14:b7: 9c:32:c3:8d:fb:be:e2:79:69:48:a7:2c:33:00:db: 44:43:4a:ea:2e:24:02:67:a4:e3:6a:cd:87:6d:60: de:87:b5:08:62:92:bc:18:8e:79:81:db:2f:7b:31: e5:9f:30:be:68:96:45:cb:e9:8d:4b:fe:d3:29:ed: 60:d8:11:af:d6:4c:d6:4b:73:ba:18:46:bf:95:33: dc:c1:72:b8:ea:c0:f6:37:4d:53:1a:55:ea:67:e5: 57:e6:41:4f:4c:0b:47:82:b1:26:70:6f:bd:65:81: f4:0a:fb:9f:28:16:fe:43:ca:aa:fb:57:a3:d6:01: ca:db:dc:67:d7:14:71:a3:a0:ea:0a:3a:07:2e:c6: 53:1a:2c:10:67:61:2e:ce:27:63:c0:cc:3c:6d:92: 30:11:1b:14:0f:a4:da:71:4f:1f:ef:0b:af:87:cf: 3e:bb:65:f0:25:2d:09:e1:6c:7c:f3:16:ee:0d:a4: 3b:f1:fc:71:5f:d2:89:41:ca:e9:3a:45:5e:a8:30: 22:6b:8c:0c:2c:bd:b8:c2:b1:a0:01:39:57:cb:b9: 5b:9d:32:ae:6f:64:ff:e1:41:31:b8:76:b1:0c:6c: 91:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:61:CC:98:6A:FF:5E:73:DD:6F:EC:57:80:12:65:1D:A0:F0:00:C7 X509v3 Authority Key Identifier: keyid:89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:1f:b3:3a:d7:f5:3d:a8:4b:ae:3b:86:3e:f0:a3:5a:43:41: 9f:8e:12:d4:06:4a:65:b6:f6:95:17:c5:4b:c7:ec:3d:a6:1b: a2:d8:2c:cc:b4:54:2b:b8:b4:5d:df:81:03:7d:8a:43:23:c9: 80:93:5d:57:25:f7:b1:fb:bc:7e:de:25:14:d3:43:0a:05:5d: e8:10:c6:3c:02:58:bf:84:8f:c3:6f:1d:96:23:a0:b3:bc:24: 1d:d3:f4:ad:25:3d:38:4e:77:08:8d:1f:4b:6c:a5:9e:b0:21: 95:fc:0c:d4:96:f1:98:25:cc:3a:8e:23:c6:1d:78:0f:8c:d6: 77:23:92:3a:e6:c3:74:c9:d2:ee:9b:d0:25:6d:ab:2b:20:e3: 61:17:f3:61:01:de:63:1d:62:be:a1:31:af:4b:57:93:59:f5: 3e:7c:f9:60:f8:83:be:f9:89:8a:46:48:72:9a:97:6c:09:f0: 98:ae:87:6d:07:7c:c1:91:d4:81:50:74:9a:04:c5:5d:f5:c3: f9:6d:62:ec:17:5f:cc:81:a1:e1:25:51:7e:e6:29:25:09:99: 7b:91:ac:38:c3:b3:ce:72:7b:be:8f:3f:68:ec:c2:03:b8:7f: 2e:f3:02:26:a7:5e:84:c8:37:79:0e:9e:ff:6d:c8:f9:0e:2c: 59:16:70:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv75RD/cMqOLZCgHrqbGNmLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5ZTVlYjFlMTIwOTg5Nzg3NDVkNTQwZGNhOTZjZmYwZGU0 NzA0ZGEwHhcNMjYwMTI2MjAwMDUxWhcNMjYwMTI3MjAwMDUxWjAzMTEwLwYDVQQD EyhlNzYxY2M5ODZhZmY1ZTczZGQ2ZmVjNTc4MDEyNjUxZGEwZjAwMGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4I31hOBlUfxroIetJf40txg5Fvzz s3b/CYykFLecMsON+77ieWlIpywzANtEQ0rqLiQCZ6Tjas2HbWDeh7UIYpK8GI55 gdsvezHlnzC+aJZFy+mNS/7TKe1g2BGv1kzWS3O6GEa/lTPcwXK46sD2N01TGlXq Z+VX5kFPTAtHgrEmcG+9ZYH0CvufKBb+Q8qq+1ej1gHK29xn1xRxo6DqCjoHLsZT GiwQZ2EuzidjwMw8bZIwERsUD6TacU8f7wuvh88+u2XwJS0J4Wx88xbuDaQ78fxx X9KJQcrpOkVeqDAia4wMLL24wrGgATlXy7lbnTKub2T/4UExuHaxDGyRnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOdhzJhq/15z3W/sV4ASZR2g8ADHMB8GA1UdIwQY MBaAFInl6x4SCYl4dF1UDcqWz/DeRwTaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9lMTNiMzItMWJhOS00ZGI5LWE1Njkt NGFjYTA5NTY0ZmE4LzEvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9lMTNiMzItMWJhOS00ZGI5LWE1NjktNGFjYTA5NTY0ZmE4 LzEvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUR+zOtf1 PahLrjuGPvCjWkNBn44S1AZKZbb2lRfFS8fsPaYbotgszLRUK7i0Xd+BA32KQyPJ gJNdVyX3sfu8ft4lFNNDCgVd6BDGPAJYv4SPw28dliOgs7wkHdP0rSU9OE53CI0f S2ylnrAhlfwM1JbxmCXMOo4jxh14D4zWdyOSOubDdMnS7pvQJW2rKyDjYRfzYQHe Yx1ivqExr0tXk1n1Pnz5YPiDvvmJikZIcpqXbAnwmK6HbQd8wZHUgVB0mgTFXfXD +W1i7BdfzIGh4SVRfuYpJQmZe5GsOMOzznJ7vo8/aOzCA7h/LvMCJqdehMg3eQ6e /23I+Q4sWRZw0w== -----END CERTIFICATE-----Generated at Tue Jan 27 06:10:17 2026 by rpki-client