This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft File: I7GUMIfOaWI-drIUWzR5rCBLock.mft (raw, json) Hash identifier: Wcb3XRX06NtGFOhrd7DGJN9Mw0TL6F2D0Ab0v51YDwQ= Subject key identifier: 69:1B:7B:8D:55:93:A0:6F:FE:16:28:7B:D1:18:C0:36:44:2A:FC:34 Authority key identifier: 23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9 Certificate issuer: /CN=23b1943087ce69623e76b2145b3479ac204ba1c9 Certificate serial: 019B7D821FEDAC48B62BA8D1FEAA03E9E7FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft Manifest number: 16E8 Signing time: Fri 02 Jan 2026 07:00:38 +0000 Manifest this update: Fri 02 Jan 2026 07:00:38 +0000 Manifest next update: Sat 03 Jan 2026 07:00:38 +0000 Files and hashes: 1: I7GUMIfOaWI-drIUWzR5rCBLock.crl (hash: 7bAsUkWUKAapbQGQfGCItUmZKpH5/qfhZxYlmjgAofc=) 2: IGzDnKyfU3XrsCi1kVIq3v9WjnM.roa (hash: BCjdpahib4P29wEhEZ+5HfDxKnWj0l2OSsP7lZ3IOHg=) 3: fngY7vAjtnIa6khyzBr6ohfARXc.roa (hash: 8j7K0AdGmWd/+RMVsdDrX0khITQq1MTMhTuPXkbPnqc=) 4: xgdlAL2WKr_Js4V_ZLjPaz6bev8.roa (hash: CfOyHBtQR8zjYYv9qA3Dd8n5he3YeIT+MsIzoT30dKc=) 5: z5Ucz1kkGg56QZyAblN2WefSoGM.roa (hash: 5hK/qHn0csimMvRktmqCqsq2To8mi7zen0Vo1KFJGyM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:82:1f:ed:ac:48:b6:2b:a8:d1:fe:aa:03:e9:e7:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23b1943087ce69623e76b2145b3479ac204ba1c9 Validity Not Before: Jan 2 07:00:38 2026 GMT Not After : Jan 3 07:00:38 2026 GMT Subject: CN=691b7b8d5593a06ffe16287bd118c036442afc34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9a:03:45:ff:1f:4f:88:d3:d8:87:f8:f9:b9: eb:5d:1b:d4:7b:3b:ab:67:65:a2:73:14:3d:a6:79: c8:67:ae:f2:7d:c7:9b:95:92:76:b1:83:f7:2a:24: 8e:0b:6e:9a:93:4d:f4:31:5d:28:b5:29:48:9a:6e: fd:f7:ae:be:0d:25:38:e7:da:6d:ad:e8:0d:34:3f: 04:c6:f2:af:7b:5b:25:1d:0e:88:20:3c:9d:f3:57: 39:b6:b7:43:22:e5:ca:02:ef:9f:40:c2:00:ac:f1: d7:1c:d4:2b:1c:48:d7:db:a7:79:01:34:f0:f5:b2: 89:37:52:f9:28:ad:cb:3b:a5:de:91:60:b7:74:dd: b4:53:dd:d8:2a:b3:df:b8:dc:31:b4:dc:61:df:51: 44:44:ea:e0:40:37:5f:19:83:55:59:ef:a9:fc:ee: 86:9c:8f:2b:d4:49:be:01:92:40:0b:7f:2d:d3:1e: 81:2c:93:6d:be:f4:0b:a0:cc:02:09:0d:32:09:c3: 48:13:9a:6c:9c:51:a4:09:22:3c:65:3b:b5:9f:f9: ae:b8:5b:bd:b3:d3:b6:f9:a0:ad:7e:df:c9:78:bf: 31:90:1f:12:76:35:d9:99:bd:33:fc:92:97:f9:3f: c3:78:37:b6:f6:54:22:d5:07:e6:0d:9f:27:f6:f8: 6c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:1B:7B:8D:55:93:A0:6F:FE:16:28:7B:D1:18:C0:36:44:2A:FC:34 X509v3 Authority Key Identifier: keyid:23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:b9:f9:6f:ce:e3:7e:ad:80:37:25:b9:71:85:c0:9a:0a:15: e8:57:28:ce:53:ec:7e:6f:64:99:25:20:fe:84:af:b1:cc:d3: ca:51:5c:80:df:3f:9c:b3:b8:b1:36:cb:29:6b:67:9e:11:7a: 9e:d6:e8:c1:fc:a1:4b:f2:88:f5:5e:1e:50:bb:24:b9:fb:48: c5:bf:15:4d:f0:0b:46:bc:4e:63:e4:92:c7:e8:e3:6e:83:0d: 44:82:a4:25:bc:8d:7c:5a:53:b6:01:3b:08:ce:a8:5b:11:c4: 88:d6:5a:d6:e1:1a:9e:f4:2c:3f:be:86:ce:c6:7f:59:0d:b2: 8a:23:ba:94:04:d4:74:fc:45:cf:7d:e5:3f:ce:3d:8a:13:6b: c0:f6:17:73:c9:7e:d9:ba:d1:a3:9f:a2:54:9d:5d:4c:49:e8: d7:50:fe:a0:fe:ac:35:cb:72:5e:c4:bb:f2:47:e3:cb:81:73: 4c:72:ee:21:45:33:4b:34:8a:a1:6d:0c:38:9d:8c:f6:74:96: 74:9b:ea:c4:97:e4:5c:17:b7:1a:ab:8e:6a:74:c3:7b:06:32: b0:89:b5:f2:26:7a:0e:4a:41:a6:7f:99:f7:d7:7f:86:1f:ab: a5:a6:aa:6c:fd:01:ff:5f:31:9b:de:e0:12:f4:d8:11:be:b9: a4:38:2e:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt9gh/trEi2K6jR/qoD6ef9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzYjE5NDMwODdjZTY5NjIzZTc2YjIxNDViMzQ3OWFjMjA0 YmExYzkwHhcNMjYwMTAyMDcwMDM4WhcNMjYwMTAzMDcwMDM4WjAzMTEwLwYDVQQD Eyg2OTFiN2I4ZDU1OTNhMDZmZmUxNjI4N2JkMTE4YzAzNjQ0MmFmYzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJoDRf8fT4jT2If4+bnrXRvUezur Z2WicxQ9pnnIZ67yfceblZJ2sYP3KiSOC26ak030MV0otSlImm79966+DSU459pt regNND8ExvKve1slHQ6IIDyd81c5trdDIuXKAu+fQMIArPHXHNQrHEjX26d5ATTw 9bKJN1L5KK3LO6XekWC3dN20U93YKrPfuNwxtNxh31FEROrgQDdfGYNVWe+p/O6G nI8r1Em+AZJAC38t0x6BLJNtvvQLoMwCCQ0yCcNIE5psnFGkCSI8ZTu1n/muuFu9 s9O2+aCtft/JeL8xkB8SdjXZmb0z/JKX+T/DeDe29lQi1QfmDZ8n9vhs9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGkbe41Vk6Bv/hYoe9EYwDZEKvw0MB8GA1UdIwQY MBaAFCOxlDCHzmliPnayFFs0eawgS6HJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTdHVU1JZk9hV0ktZHJJVVd6UjVyQ0JMb2NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83M2YxYzktODJiMC00ZWRlLWI4OTkt Zjc0MmYzOTVhYWY5LzEvSTdHVU1JZk9hV0ktZHJJVVd6UjVyQ0JMb2NrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC83M2YxYzktODJiMC00ZWRlLWI4OTktZjc0MmYzOTVhYWY5 LzEvSTdHVU1JZk9hV0ktZHJJVVd6UjVyQ0JMb2NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL7n5b87j fq2ANyW5cYXAmgoV6FcozlPsfm9kmSUg/oSvsczTylFcgN8/nLO4sTbLKWtnnhF6 ntbowfyhS/KI9V4eULskuftIxb8VTfALRrxOY+SSx+jjboMNRIKkJbyNfFpTtgE7 CM6oWxHEiNZa1uEanvQsP76GzsZ/WQ2yiiO6lATUdPxFz33lP849ihNrwPYXc8l+ 2brRo5+iVJ1dTEno11D+oP6sNctyXsS78kfjy4FzTHLuIUUzSzSKoW0MOJ2M9nSW dJvqxJfkXBe3GquOanTDewYysIm18iZ6DkpBpn+Z99d/hh+rpaaqbP0B/18xm97g EvTYEb65pDguqA== -----END CERTIFICATE-----Generated at Fri Jan 2 13:06:17 2026 by rpki-client