This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json) Hash identifier: YkYUwACCx3kEwHritC2dI7KlyA1CvUmefrrTVhWnUXw= Subject key identifier: 30:93:EC:65:F2:2C:1E:6D:44:67:1A:50:F3:C3:A4:51:C2:CC:37:89 Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27 Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27 Certificate serial: 019C1D5EEE3BD4D657E028B461FDFD51842C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft Manifest number: 1791 Signing time: Mon 02 Feb 2026 08:01:26 +0000 Manifest this update: Mon 02 Feb 2026 08:01:26 +0000 Manifest next update: Tue 03 Feb 2026 08:01:26 +0000 Files and hashes: 1: Qd96EibuUMUl47bpcNIQg2lzdXM.roa (hash: bfpu3e5a3SbtwnPEBP2TMhw1nW2Ik4salWdsyYywAxI=) 2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: sRSGM/EhczzogJXuPgIuhCh1FvxjVF04+StW5oeQRdc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 08:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1d:5e:ee:3b:d4:d6:57:e0:28:b4:61:fd:fd:51:84:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27 Validity Not Before: Feb 2 08:01:26 2026 GMT Not After : Feb 3 08:01:26 2026 GMT Subject: CN=3093ec65f22c1e6d44671a50f3c3a451c2cc3789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:20:8c:bc:73:10:c3:9c:6d:13:91:2e:7d:09: 34:7f:3f:59:79:95:f9:8f:4b:27:fe:54:c0:7d:8a: e3:78:48:7c:cc:2a:1e:1d:47:5e:1e:53:cf:57:a8: dd:e2:2a:90:61:30:74:a6:d2:39:ae:70:a0:ea:5e: de:30:39:82:cc:6e:f6:6e:9d:3a:24:87:88:67:c7: 61:f8:53:01:15:f3:00:1e:af:7c:5f:bf:ae:3f:63: 33:cc:64:13:99:f4:8d:28:e0:40:b8:81:74:22:f7: 7d:02:64:4c:19:3f:46:81:34:17:e5:3f:06:a8:0e: 36:38:25:10:9b:15:d9:5e:2a:d6:50:c5:40:d2:78: 95:bb:cc:f9:da:9d:dd:d2:40:b7:7c:4b:a9:92:cb: 50:a7:1f:a3:a2:b4:36:bb:5a:23:48:df:08:28:a2: a7:24:fb:97:a1:c7:9e:3a:22:00:7e:d6:bd:28:ff: 53:44:60:a4:61:e0:48:ab:d4:e4:d8:86:8c:0e:d9: a3:d5:38:06:a7:31:e4:5b:9d:ec:2d:54:06:40:6d: f8:13:c0:34:d2:4d:88:99:82:6d:70:99:91:bc:e8: 52:77:07:f2:dd:8a:5a:ee:de:90:2e:5e:36:40:9e: 60:3c:9a:6e:da:eb:6f:f1:fe:7a:81:1b:51:40:4c: ee:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:93:EC:65:F2:2C:1E:6D:44:67:1A:50:F3:C3:A4:51:C2:CC:37:89 X509v3 Authority Key Identifier: keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:6f:9c:00:f5:2a:24:bc:3a:ec:27:fd:a9:49:2b:d8:8f:53: 7c:1a:c2:c3:0f:54:9c:48:90:84:11:6a:3b:b3:b5:16:28:13: 91:31:35:d9:a7:7d:b5:9c:47:ed:65:d8:96:ed:1d:06:8b:94: 34:94:e5:10:71:4b:db:48:8c:4d:0d:9b:0a:3d:60:fe:b0:7c: 7d:3f:cb:4b:51:0d:dc:45:71:51:3b:03:fc:71:d2:b8:6d:8b: 25:0b:40:25:01:a7:1d:e3:2a:e9:c7:59:93:92:a3:4a:17:fc: f3:78:08:47:f1:cd:9b:1e:c0:c0:f4:f9:28:72:2a:d3:4b:47: 70:9d:51:24:ce:20:02:d4:62:27:40:77:68:8a:db:77:17:88: 85:02:91:0e:77:23:96:3c:07:18:9c:c0:b9:3c:93:a6:86:45: b3:6d:25:d1:61:4e:e0:a2:07:64:ca:b2:60:64:68:24:73:5c: 91:3a:cf:9b:7d:40:53:26:55:54:49:28:40:70:6c:e1:43:b0: 4f:6d:39:a2:f1:ad:f2:28:49:4b:b4:47:3c:88:ed:54:1a:90: eb:14:87:7a:1d:46:da:c6:7d:2d:9f:00:b4:0f:71:37:cf:dc: 7d:1d:3b:a7:c1:fe:9a:5e:3a:31:54:d1:b5:a4:ee:81:ab:8e: 8d:b3:60:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwdXu471NZX4Ci0Yf39UYQsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3NGRhMjFkYTgwMzhhODIwNTQyYjNhZmFmYmVhYWFhNjY2 YjdiMjcwHhcNMjYwMjAyMDgwMTI2WhcNMjYwMjAzMDgwMTI2WjAzMTEwLwYDVQQD EygzMDkzZWM2NWYyMmMxZTZkNDQ2NzFhNTBmM2MzYTQ1MWMyY2MzNzg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SCMvHMQw5xtE5EufQk0fz9ZeZX5 j0sn/lTAfYrjeEh8zCoeHUdeHlPPV6jd4iqQYTB0ptI5rnCg6l7eMDmCzG72bp06 JIeIZ8dh+FMBFfMAHq98X7+uP2MzzGQTmfSNKOBAuIF0Ivd9AmRMGT9GgTQX5T8G qA42OCUQmxXZXirWUMVA0niVu8z52p3d0kC3fEupkstQpx+jorQ2u1ojSN8IKKKn JPuXoceeOiIAfta9KP9TRGCkYeBIq9Tk2IaMDtmj1TgGpzHkW53sLVQGQG34E8A0 0k2ImYJtcJmRvOhSdwfy3Ypa7t6QLl42QJ5gPJpu2utv8f56gRtRQEzuFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDCT7GXyLB5tRGcaUPPDpFHCzDeJMB8GA1UdIwQY MBaAFMdNoh2oA4qCBUKzr6++qqpma3snMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDAyaUhhZ0Rpb0lGUXJPdnI3NnFxbVpyZXljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC80Zjg0NDQtMmMzZC00NTkyLTk0NTgt ODAxZDg5ZDczNjZkLzEveDAyaUhhZ0Rpb0lGUXJPdnI3NnFxbVpyZXljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC80Zjg0NDQtMmMzZC00NTkyLTk0NTgtODAxZDg5ZDczNjZk LzEveDAyaUhhZ0Rpb0lGUXJPdnI3NnFxbVpyZXljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXm+cAPUq JLw67Cf9qUkr2I9TfBrCww9UnEiQhBFqO7O1FigTkTE12ad9tZxH7WXYlu0dBouU NJTlEHFL20iMTQ2bCj1g/rB8fT/LS1EN3EVxUTsD/HHSuG2LJQtAJQGnHeMq6cdZ k5KjShf883gIR/HNmx7AwPT5KHIq00tHcJ1RJM4gAtRiJ0B3aIrbdxeIhQKRDncj ljwHGJzAuTyTpoZFs20l0WFO4KIHZMqyYGRoJHNckTrPm31AUyZVVEkoQHBs4UOw T205ovGt8ihJS7RHPIjtVBqQ6xSHeh1G2sZ9LZ8AtA9xN8/cfR07p8H+ml46MVTR taTugauOjbNgwA== -----END CERTIFICATE-----Generated at Mon Feb 2 17:23:41 2026 by rpki-client