This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft File: IKpgywAkMyottomT8zVxWK9gyN4.mft (raw, json) Hash identifier: OSf4Gs3RxwWs5qL8NT2MBWw3Gf/1wyTLixi3eJd4sQk= Subject key identifier: 4D:98:A4:C5:CB:F9:7A:CA:D5:D6:37:CE:09:AB:AA:5B:89:29:E8:F2 Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de Certificate serial: 019BFC52A2EE8D82A303A310604774322962 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft Manifest number: 1820 Signing time: Mon 26 Jan 2026 22:00:32 +0000 Manifest this update: Mon 26 Jan 2026 22:00:32 +0000 Manifest next update: Tue 27 Jan 2026 22:00:32 +0000 Files and hashes: 1: IKpgywAkMyottomT8zVxWK9gyN4.crl (hash: wTVEHFN3rtz2NNaG0EPpYWz/TzxoO9ln89tqXUlhlaY=) 2: QiXcXG4EDIRSf-VSNpu4RHBWAV4.roa (hash: 0qXAcwhMmlvzkuMEiWShTeGZUNL6+ryDi7ehHbJ1xl8=) 3: Tar1g33LvZCdpcq_JVPYhAJSdEk.roa (hash: QMkYB+0q1+Lk5nvo2OLotb9QUYic5rNjwNkq1hEO+78=) 4: ixwpJztfYUlUnPQNZhnkMR7K_yU.roa (hash: McdR8UEnDJLQe/Y5De9k6/QzPqtdNiKRIqwLfpPLq6I=) 5: rPnkzMR46g2upeGLwnbyd0fXnb4.roa (hash: flmLV+/lWpi4M1ZIkwy5iom73MDu5dXcw9z52gR1sjM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:52:a2:ee:8d:82:a3:03:a3:10:60:47:74:32:29:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de Validity Not Before: Jan 26 22:00:32 2026 GMT Not After : Jan 27 22:00:32 2026 GMT Subject: CN=4d98a4c5cbf97acad5d637ce09abaa5b8929e8f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e0:7e:13:17:1b:10:24:32:80:60:5c:a8:e7: 88:f6:10:ba:42:4a:79:45:5e:7a:00:e5:f2:f0:6c: 1d:b0:f0:51:fa:0e:34:51:68:c3:c9:58:fc:5a:e3: e2:3f:d8:6e:0d:4b:6f:a8:b6:7c:72:62:cd:62:5c: 22:18:cd:59:e0:6f:d6:11:ca:c4:d7:7d:de:09:b5: d8:ec:b1:80:d1:bd:89:97:62:e4:8f:3b:2e:77:50: 25:f2:02:14:9c:d6:b2:57:bc:ec:97:35:0e:55:c8: 7c:07:11:76:25:56:4e:cc:53:6c:a1:49:2e:03:8e: b3:b5:32:54:21:17:3d:d6:a1:d8:fb:0b:c3:a4:1e: b4:2f:27:8b:f7:f6:37:39:b9:4d:af:f5:b8:a0:06: 6a:73:f9:b5:05:7a:b9:20:6a:20:f8:a6:75:bc:0d: 5e:e3:3e:f1:2f:f6:5c:5f:bf:c4:74:e8:a9:ed:06: 20:d4:2a:58:f7:5b:bd:91:e0:2e:44:6b:89:1d:38: 1b:dd:9a:3b:72:89:0c:71:82:1c:e2:69:fa:e8:52: 86:bd:82:b7:02:b1:87:d3:4c:2c:b1:fd:9b:10:92: b3:6d:28:dc:79:24:a5:f3:9d:1b:85:3d:00:ab:9e: 1f:69:2c:bd:39:ad:3a:16:fb:8b:5f:41:63:f9:33: f6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:98:A4:C5:CB:F9:7A:CA:D5:D6:37:CE:09:AB:AA:5B:89:29:E8:F2 X509v3 Authority Key Identifier: keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:76:96:3f:7c:b8:da:e5:fd:b7:15:56:44:4a:3e:c0:b6:59: 1a:9b:44:fb:dc:c2:9e:f8:63:9c:ce:bb:87:2e:55:bc:33:7b: 26:17:50:ed:35:61:87:ad:1a:7b:7d:06:89:a8:f0:3a:86:35: ba:c6:e3:74:af:2d:68:cc:87:1c:7a:04:3d:a3:a2:d2:22:21: 65:41:94:cb:b6:20:c4:8c:34:56:f6:b3:6b:54:64:93:71:ca: f6:ed:5c:8f:fd:73:2e:2f:7d:51:4f:44:39:fb:81:2e:83:44: 23:34:e9:f4:d0:65:c8:b9:b6:5a:d6:f2:d2:92:75:ff:6f:3c: 30:b1:5f:bc:06:2b:0f:05:80:4b:bc:20:7d:9d:39:3f:14:c7: 94:78:6e:09:3c:79:bd:c8:1e:28:93:c9:eb:0b:fe:94:e3:32: af:eb:d3:ff:7c:0e:40:3f:1c:b9:b8:b8:7e:b2:9b:b0:04:2b: af:4d:5e:54:b2:60:6e:7c:ce:a8:98:2e:e1:f3:de:ae:94:d6: f6:ec:85:39:8a:fe:1f:76:74:98:5b:bf:06:70:04:be:a8:dc: 4e:59:70:2d:af:2c:90:f1:57:c5:29:d1:f4:58:0b:74:30:40: 01:d4:d8:4f:62:45:4a:00:a3:cb:75:10:bf:18:14:b8:ef:78: 18:6d:1f:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8UqLujYKjA6MQYEd0MiliMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYWE2MGNiMDAyNDMzMmEyZGI2ODk5M2YzMzU3MTU4YWY2 MGM4ZGUwHhcNMjYwMTI2MjIwMDMyWhcNMjYwMTI3MjIwMDMyWjAzMTEwLwYDVQQD Eyg0ZDk4YTRjNWNiZjk3YWNhZDVkNjM3Y2UwOWFiYWE1Yjg5MjllOGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOB+ExcbECQygGBcqOeI9hC6Qkp5 RV56AOXy8GwdsPBR+g40UWjDyVj8WuPiP9huDUtvqLZ8cmLNYlwiGM1Z4G/WEcrE 133eCbXY7LGA0b2Jl2Lkjzsud1Al8gIUnNayV7zslzUOVch8BxF2JVZOzFNsoUku A46ztTJUIRc91qHY+wvDpB60LyeL9/Y3OblNr/W4oAZqc/m1BXq5IGog+KZ1vA1e 4z7xL/ZcX7/EdOip7QYg1CpY91u9keAuRGuJHTgb3Zo7cokMcYIc4mn66FKGvYK3 ArGH00wssf2bEJKzbSjceSSl850bhT0Aq54faSy9Oa06FvuLX0Fj+TP2VQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE2YpMXL+XrK1dY3zgmrqluJKejyMB8GA1UdIwQY MBaAFCCqYMsAJDMqLbaJk/M1cVivYMjeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYt NzNmN2QxMTBiODJhLzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYtNzNmN2QxMTBiODJh LzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHnaWP3y4 2uX9txVWREo+wLZZGptE+9zCnvhjnM67hy5VvDN7JhdQ7TVhh60ae30GiajwOoY1 usbjdK8taMyHHHoEPaOi0iIhZUGUy7YgxIw0Vvaza1Rkk3HK9u1cj/1zLi99UU9E OfuBLoNEIzTp9NBlyLm2Wtby0pJ1/288MLFfvAYrDwWAS7wgfZ05PxTHlHhuCTx5 vcgeKJPJ6wv+lOMyr+vT/3wOQD8cubi4frKbsAQrr01eVLJgbnzOqJgu4fPerpTW 9uyFOYr+H3Z0mFu/BnAEvqjcTllwLa8skPFXxSnR9FgLdDBAAdTYT2JFSgCjy3UQ vxgUuO94GG0fMg== -----END CERTIFICATE-----Generated at Mon Jan 26 23:48:29 2026 by rpki-client