This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft File: iQCNpBkicovFvtu9cIhwHFKbme0.mft (raw, json) Hash identifier: 81G15xy4fXgRp32dHWjYJqS5ndaINcE9GINIDYai5xQ= Subject key identifier: 72:6C:0E:6B:03:D1:7B:F8:16:C7:5F:1A:0A:BC:E6:EB:99:AA:07:D5 Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed Certificate serial: 019C1B3965848F2EE9B7D9EDF83AB065957F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft Manifest number: 03A3 Signing time: Sun 01 Feb 2026 22:01:12 +0000 Manifest this update: Sun 01 Feb 2026 22:01:12 +0000 Manifest next update: Mon 02 Feb 2026 22:01:12 +0000 Files and hashes: 1: CJHjJvBxO_A1o29RU77bYDobb1Y.asa (hash: OiQ96AcIrfdWv9rYq7YRunMZUUkm1k1hxiflexmUSCE=) 2: ZsGtqMxH4nL8S3-yctBXEQDc62g.roa (hash: +ZsU9QUE73+Gn9nFEGhVwL2RW/GlaE2Pf3U5DjyGOtE=) 3: iQCNpBkicovFvtu9cIhwHFKbme0.crl (hash: SBxr8mTwv67Vig4eEdEZmDBeT8QPPAkm4IOgvk7kxFw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1b:39:65:84:8f:2e:e9:b7:d9:ed:f8:3a:b0:65:95:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed Validity Not Before: Feb 1 22:01:12 2026 GMT Not After : Feb 2 22:01:12 2026 GMT Subject: CN=726c0e6b03d17bf816c75f1a0abce6eb99aa07d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3b:60:65:db:af:cc:80:7b:58:da:0a:58:6f: 37:c4:65:a0:9a:bf:95:05:63:65:c3:bd:13:95:da: 4d:a8:06:86:13:08:89:fe:aa:11:18:25:b2:ed:8d: 9a:7d:7e:9d:5c:f5:bc:16:dd:e0:87:04:85:f7:22: 72:57:94:52:1d:ac:e7:ca:2e:db:5d:d2:26:4d:83: ac:2c:6e:1c:b7:c6:4c:98:8c:4c:4b:b3:ba:b4:55: 0f:e3:2e:53:7c:be:40:72:8f:71:13:6a:9e:18:65: 01:47:57:69:76:cf:01:84:ec:07:51:44:79:47:b7: 39:8a:7c:b4:20:09:0c:9a:34:86:75:86:b8:5c:0d: 99:ee:08:5c:9a:26:09:d9:26:22:c0:4a:9b:7c:d8: 37:da:47:53:31:c5:db:68:22:59:19:13:7e:23:5e: c3:5d:b7:73:7e:c3:ed:0e:45:64:61:7c:21:e7:6b: a0:c9:4a:c0:43:2a:9a:13:ae:e3:bb:af:ee:d3:58: d8:b9:9b:ec:ee:09:cc:36:a7:81:5d:f0:56:3c:23: 34:b0:d5:ca:30:90:c0:3b:92:36:64:ba:0e:9c:19: 39:c4:35:6a:02:c4:90:8a:da:be:29:37:85:bd:87: 35:9d:63:c5:23:66:3b:7f:82:dc:0a:8a:1a:22:a1: f6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:6C:0E:6B:03:D1:7B:F8:16:C7:5F:1A:0A:BC:E6:EB:99:AA:07:D5 X509v3 Authority Key Identifier: keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:27:be:9f:f5:ae:28:6f:a1:c0:9d:08:53:c3:1a:6b:7f:79: 09:af:26:1d:6a:83:cc:ef:11:be:6e:33:06:b0:b5:3d:a9:50: b6:49:31:f8:66:f8:9a:e0:ed:f0:ae:7c:b6:2b:0a:d7:ab:7d: 0f:81:60:9a:6c:69:8c:af:2d:b8:e2:c4:db:9f:1e:73:46:fd: 65:70:e6:ef:bb:f6:2e:f3:71:aa:df:8c:8b:5e:ed:23:22:bf: b4:43:f2:0d:ef:e6:3c:d7:70:ab:12:39:8f:a4:0a:c5:85:98: 1c:fb:1b:07:22:85:b6:29:ff:89:5c:bc:d8:d6:59:e1:5e:d2: 51:c7:93:ff:4a:12:b8:09:8a:c8:b0:e2:e8:72:80:73:74:d2: 7e:5d:52:52:13:ed:f4:ba:5c:41:75:9e:74:70:9d:34:a4:c7: 68:23:f8:56:c0:c3:c4:aa:22:ac:5b:50:7c:6d:f7:be:5f:e5: a9:fa:aa:1d:24:9c:15:3e:54:fe:e0:a2:ac:73:70:46:4e:5a: c1:a5:32:70:2d:67:ac:b8:c3:1d:af:bb:b9:8d:4a:69:d5:00: 89:d1:94:93:53:f8:33:8d:ad:84:7a:93:72:82:6c:af:2a:cb: ff:42:d8:44:f0:fb:dd:fd:80:29:64:01:7a:b7:7c:11:b0:a9: 0a:bd:dd:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwbOWWEjy7pt9nt+DqwZZV/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5MDA4ZGE0MTkyMjcyOGJjNWJlZGJiZDcwODg3MDFjNTI5 Yjk5ZWQwHhcNMjYwMjAxMjIwMTEyWhcNMjYwMjAyMjIwMTEyWjAzMTEwLwYDVQQD Eyg3MjZjMGU2YjAzZDE3YmY4MTZjNzVmMWEwYWJjZTZlYjk5YWEwN2Q1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2jtgZduvzIB7WNoKWG83xGWgmr+V BWNlw70TldpNqAaGEwiJ/qoRGCWy7Y2afX6dXPW8Ft3ghwSF9yJyV5RSHaznyi7b XdImTYOsLG4ct8ZMmIxMS7O6tFUP4y5TfL5Aco9xE2qeGGUBR1dpds8BhOwHUUR5 R7c5iny0IAkMmjSGdYa4XA2Z7ghcmiYJ2SYiwEqbfNg32kdTMcXbaCJZGRN+I17D XbdzfsPtDkVkYXwh52ugyUrAQyqaE67ju6/u01jYuZvs7gnMNqeBXfBWPCM0sNXK MJDAO5I2ZLoOnBk5xDVqAsSQitq+KTeFvYc1nWPFI2Y7f4LcCooaIqH25wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHJsDmsD0Xv4FsdfGgq85uuZqgfVMB8GA1UdIwQY MBaAFIkAjaQZInKLxb7bvXCIcBxSm5ntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9lNWIxNGItOWQ1Yi00MzQ2LThlODUt NjM3MjlmZTU4OGEyLzEvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9lNWIxNGItOWQ1Yi00MzQ2LThlODUtNjM3MjlmZTU4OGEy LzEvaVFDTnBCa2ljb3ZGdnR1OWNJaHdIRktibWUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARie+n/Wu KG+hwJ0IU8Maa395Ca8mHWqDzO8Rvm4zBrC1PalQtkkx+Gb4muDt8K58tisK16t9 D4FgmmxpjK8tuOLE258ec0b9ZXDm77v2LvNxqt+Mi17tIyK/tEPyDe/mPNdwqxI5 j6QKxYWYHPsbByKFtin/iVy82NZZ4V7SUceT/0oSuAmKyLDi6HKAc3TSfl1SUhPt 9LpcQXWedHCdNKTHaCP4VsDDxKoirFtQfG33vl/lqfqqHSScFT5U/uCirHNwRk5a waUycC1nrLjDHa+7uY1KadUAidGUk1P4M42thHqTcoJsryrL/0LYRPD73f2AKWQB erd8EbCpCr3d9g== -----END CERTIFICATE-----Generated at Mon Feb 2 08:14:26 2026 by rpki-client