This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft File: iQCNpBkicovFvtu9cIhwHFKbme0.mft (raw, json) Hash identifier: Y0/WF9t+D0g3Cn1dsl3j+9fHbTfOxlhxk4Zk+ebXMos= Subject key identifier: 1A:69:B1:4D:D3:F0:A0:B9:38:D3:82:09:7D:F1:EB:1C:49:D2:BC:AD Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed Certificate serial: 019C1D27A8EE57EBB35FA78D02D0D730960F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft Manifest number: 03A4 Signing time: Mon 02 Feb 2026 07:01:04 +0000 Manifest this update: Mon 02 Feb 2026 07:01:04 +0000 Manifest next update: Tue 03 Feb 2026 07:01:04 +0000 Files and hashes: 1: CJHjJvBxO_A1o29RU77bYDobb1Y.asa (hash: OiQ96AcIrfdWv9rYq7YRunMZUUkm1k1hxiflexmUSCE=) 2: ZsGtqMxH4nL8S3-yctBXEQDc62g.roa (hash: +ZsU9QUE73+Gn9nFEGhVwL2RW/GlaE2Pf3U5DjyGOtE=) 3: iQCNpBkicovFvtu9cIhwHFKbme0.crl (hash: JfjL6Y8qAveW4I6RRY6uLowWUiDEAU5fFH0GoKDb3iw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1d:27:a8:ee:57:eb:b3:5f:a7:8d:02:d0:d7:30:96:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed Validity Not Before: Feb 2 07:01:04 2026 GMT Not After : Feb 3 07:01:04 2026 GMT Subject: CN=1a69b14dd3f0a0b938d382097df1eb1c49d2bcad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:31:5e:d6:bc:e3:01:cc:8e:fd:43:26:b9:e7: 76:35:9e:11:76:66:0a:87:a5:5d:ba:b3:1b:a3:8e: dc:dc:32:a6:d3:85:8a:1f:f7:59:a1:96:77:2c:c3: b3:0d:e2:5b:89:fc:27:76:fc:81:54:b1:a4:a1:5f: 7b:1d:9a:d2:a1:1f:1d:67:27:1e:3b:1f:f6:f3:44: bf:1d:2b:e8:10:22:8e:ad:9b:fc:c6:88:68:7e:91: e1:81:17:f5:52:05:e7:8e:94:db:b5:3f:01:cf:13: 22:2a:19:67:bf:60:4a:46:be:b4:f4:dc:42:2c:f4: 4f:17:51:0d:4d:a9:0f:38:5b:f4:6f:51:07:0a:cf: 72:2c:4b:e5:59:6d:27:a4:4f:8b:16:b6:fa:e8:6e: d6:b2:c1:63:31:91:a6:9f:a8:3c:0c:18:dd:9a:1e: 53:c1:19:e0:31:1f:82:da:d2:96:f4:4f:3c:17:dd: 12:26:60:58:7d:48:fe:36:13:19:ce:f5:b1:7f:cc: 56:34:01:1b:c7:4e:18:b2:25:4e:52:a5:26:93:08: d9:d5:c0:e3:ab:22:66:4f:43:ea:f8:44:46:41:24: 6c:07:89:57:1f:8e:72:52:eb:91:20:65:1b:49:9c: c9:be:e8:25:c0:79:cb:08:c7:29:e4:99:ef:a9:92: 0f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:69:B1:4D:D3:F0:A0:B9:38:D3:82:09:7D:F1:EB:1C:49:D2:BC:AD X509v3 Authority Key Identifier: keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:75:8e:cd:e0:47:29:50:6a:d2:16:75:90:3e:42:73:9d:07: c2:22:82:ff:eb:3c:29:50:96:4f:2d:b0:f6:de:03:d3:2b:f5: 56:8b:eb:ec:bc:cc:bf:03:1d:aa:a6:18:21:4f:cf:a6:e1:8a: b1:6b:c6:5b:dc:1e:16:76:65:87:ff:2d:81:18:c7:78:05:e4: 1e:d4:8c:5a:97:b8:5e:4c:8b:78:38:3e:b9:02:e7:3e:88:e4: fb:31:93:ef:07:e4:7a:f8:c6:32:08:1e:25:25:bc:10:28:73: 05:39:5c:8e:13:16:b2:52:86:67:f0:7e:43:a5:38:ce:6c:f7: 27:a4:e1:24:32:3f:96:ee:07:8d:04:08:42:09:6f:99:7f:af: 2a:61:55:31:b3:1b:e8:07:09:c4:1e:2c:51:97:02:bd:fd:31: 2a:68:b6:7b:54:c7:08:26:5f:2f:03:aa:28:3c:3b:6e:3d:99: f7:e1:27:24:bb:ff:f2:95:21:b2:9a:05:7d:0b:1a:b5:13:54: c4:39:61:11:fb:07:36:09:c7:70:ee:54:74:2f:91:f9:a2:1f: 2b:3c:51:3c:ce:23:a4:4e:6a:85:31:d1:2e:4b:d4:7c:fa:75: 1f:44:38:83:20:86:a7:5d:ef:be:be:c1:2a:bb:21:6f:01:fc: d3:6c:eb:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwdJ6juV+uzX6eNAtDXMJYPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5MDA4ZGE0MTkyMjcyOGJjNWJlZGJiZDcwODg3MDFjNTI5 Yjk5ZWQwHhcNMjYwMjAyMDcwMTA0WhcNMjYwMjAzMDcwMTA0WjAzMTEwLwYDVQQD EygxYTY5YjE0ZGQzZjBhMGI5MzhkMzgyMDk3ZGYxZWIxYzQ5ZDJiY2FkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTFe1rzjAcyO/UMmued2NZ4RdmYK h6VdurMbo47c3DKm04WKH/dZoZZ3LMOzDeJbifwndvyBVLGkoV97HZrSoR8dZyce Ox/280S/HSvoECKOrZv8xohofpHhgRf1UgXnjpTbtT8BzxMiKhlnv2BKRr609NxC LPRPF1ENTakPOFv0b1EHCs9yLEvlWW0npE+LFrb66G7WssFjMZGmn6g8DBjdmh5T wRngMR+C2tKW9E88F90SJmBYfUj+NhMZzvWxf8xWNAEbx04YsiVOUqUmkwjZ1cDj qyJmT0Pq+ERGQSRsB4lXH45yUuuRIGUbSZzJvuglwHnLCMcp5JnvqZIP+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBppsU3T8KC5ONOCCX3x6xxJ0rytMB8GA1UdIwQY MBaAFIkAjaQZInKLxb7bvXCIcBxSm5ntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9lNWIxNGItOWQ1Yi00MzQ2LThlODUt NjM3MjlmZTU4OGEyLzEvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9lNWIxNGItOWQ1Yi00MzQ2LThlODUtNjM3MjlmZTU4OGEy LzEvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAenWOzeBH KVBq0hZ1kD5Cc50HwiKC/+s8KVCWTy2w9t4D0yv1Vovr7LzMvwMdqqYYIU/PpuGK sWvGW9weFnZlh/8tgRjHeAXkHtSMWpe4XkyLeDg+uQLnPojk+zGT7wfkevjGMgge JSW8EChzBTlcjhMWslKGZ/B+Q6U4zmz3J6ThJDI/lu4HjQQIQglvmX+vKmFVMbMb 6AcJxB4sUZcCvf0xKmi2e1THCCZfLwOqKDw7bj2Z9+EnJLv/8pUhspoFfQsatRNU xDlhEfsHNgnHcO5UdC+R+aIfKzxRPM4jpE5qhTHRLkvUfPp1H0Q4gyCGp13vvr7B KrshbwH802zrng== -----END CERTIFICATE-----Generated at Mon Feb 2 09:42:18 2026 by rpki-client