This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft File: IqXYQFPisMMTrx47pRAkZqX3lng.mft (raw, json) Hash identifier: HjflRv+/sfMj1i7jqPoIYUhhw9AKtNXAkidAwcGtJGc= Subject key identifier: CF:7B:35:A6:6F:71:58:B6:3D:37:56:50:C3:F4:D7:A5:F6:68:73:B5 Authority key identifier: 22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78 Certificate issuer: /CN=22a5d84053e2b0c313af1e3ba5102466a5f79678 Certificate serial: 019BFD65BBEC08131EAC5FD684DE285FB63F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft Manifest number: 0B1D Signing time: Tue 27 Jan 2026 03:01:01 +0000 Manifest this update: Tue 27 Jan 2026 03:01:01 +0000 Manifest next update: Wed 28 Jan 2026 03:01:01 +0000 Files and hashes: 1: 1-Y24DkHX_YS8BQf944IXH_5kays.roa (hash: +VJRpnj8CgCWOeIl5a7z0P70ihS3i/FmFwSi/9utCPo=) 2: IY-cX-MNALu4IC_OTud7vyl-LrA.roa (hash: EREk8HtkB+3C+caNH7Ch6KSJNkDCyci86tLaep5Ej3s=) 3: IqXYQFPisMMTrx47pRAkZqX3lng.crl (hash: v91G30HxAGUhn3dUDyTZjCwd4D0/cT0B1x+uvggMLWc=) 4: KSxgyXQgmuvgD3hsIbjoWlYRqkk.roa (hash: MfPYx4d8dGraW1R0Aep23IPqwadZP9+eAkLv5cmiWoM=) 5: M6wnPrDmWw7o372pn664G-6XMUM.roa (hash: vz3Xt9QAg5obB1AHMtVF5JrXwk6u3qtnMl8SakINxdQ=) 6: QU7_3XfMPgpIQHQ50_jrWQFQx7o.roa (hash: LAB6ax0DqVCa39oB2jLFatVSxmBNDm8xZgfRNR237Ws=) 7: _25UfYuLERvQd7ERXXNW_sly9Oo.roa (hash: mce8PC+zpkQB3aka/bSBor9uJVmt1ZEupgGD8nmRstI=) 8: gr17UYbRi7cQ6eQ9EyDF-CuJIp4.roa (hash: NAQ/vI5+2VgZpVpsxQmGoZaiAZnJI/pT7XEYYA4d1IM=) 9: mwE7644yuRyikfXfTRLC6TQjC0w.roa (hash: KcHRogBcTVnQMGjCpBXC4Xr5iRWrDOZmEHuY1S/TOXA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:65:bb:ec:08:13:1e:ac:5f:d6:84:de:28:5f:b6:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22a5d84053e2b0c313af1e3ba5102466a5f79678 Validity Not Before: Jan 27 03:01:01 2026 GMT Not After : Jan 28 03:01:01 2026 GMT Subject: CN=cf7b35a66f7158b63d375650c3f4d7a5f66873b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fd:54:35:b1:68:a7:06:bf:0b:fd:39:76:03: 79:80:60:82:d1:64:19:a4:1b:0a:09:6f:d7:8c:61: f5:48:a0:da:b8:01:14:bc:f9:72:1b:b2:69:03:bf: 85:d4:a2:c7:87:59:7f:e5:0d:1e:39:1d:dd:7e:dc: 06:e8:28:cd:70:32:17:2d:13:e7:fa:ac:23:44:96: 04:84:8c:d3:93:ba:8c:ba:ba:1e:ba:4e:ed:d4:38: 3e:ae:00:6b:0a:69:33:bc:87:75:17:cb:5a:66:7f: ce:e4:7e:bc:89:28:3e:c6:1d:5e:6b:f5:c2:7e:11: fc:9c:be:f5:78:dd:f9:1e:05:44:74:f6:4f:7a:40: d9:4c:09:c4:b9:8d:ce:4e:99:21:fa:81:ca:94:2f: ba:ac:d8:b6:e4:49:f0:d5:ca:64:7c:03:66:ad:5f: b1:e7:8c:84:d7:ab:56:bc:2b:c4:15:7a:26:6c:b0: 86:65:4a:ec:a7:01:dc:ed:cd:db:89:e5:9e:d4:c9: d7:5e:0c:86:6f:d3:58:a8:7c:18:74:b6:8b:3e:2f: 40:71:85:e1:1b:2f:5a:a3:44:79:4a:81:82:36:99: f2:0a:82:c6:aa:54:c1:de:78:cf:08:42:28:19:34: 61:13:fc:b9:52:4f:24:f4:dc:14:78:f6:38:d9:1f: 2c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7B:35:A6:6F:71:58:B6:3D:37:56:50:C3:F4:D7:A5:F6:68:73:B5 X509v3 Authority Key Identifier: keyid:22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:a0:2d:c7:1a:39:02:e3:5f:ab:8d:a4:5f:66:00:96:3e:8c: cb:53:da:f8:40:e2:1d:7d:45:5b:56:3b:9d:ab:3b:4f:bb:1f: 26:42:f0:1d:b6:f8:9d:2f:75:3a:ba:0e:36:38:2a:94:ec:36: 52:ef:d0:88:ff:05:32:56:66:1e:52:89:4b:54:bd:37:a1:ff: 58:17:8d:4a:cb:82:8a:35:b6:23:30:58:6a:31:ff:33:90:95: b2:9f:16:f6:cf:79:ec:96:7d:ab:6f:30:14:de:8c:40:7a:5c: e9:45:1e:c3:cf:b2:37:2f:44:cd:f5:48:45:6c:ac:50:21:45: 29:3c:e3:d2:ae:48:ed:e3:ed:b4:ba:cc:3c:c2:13:a3:a5:2a: 9f:db:87:b8:c2:a5:c9:ed:f2:c6:3b:f0:cb:c4:e7:a4:6b:3f: 96:7a:ee:2c:df:62:8b:c6:ec:53:3f:b5:4d:06:bd:bc:0d:e7: e0:54:58:8a:02:33:22:3c:e3:d6:ee:74:f7:3d:12:cb:22:cf: 8f:8b:18:7f:71:63:3c:36:b7:28:e1:d3:87:dc:c7:85:ba:09: f9:17:95:21:02:d7:e4:e5:2f:fd:aa:ec:fa:b3:cf:a7:ca:f2: f8:36:b5:bd:dc:79:0d:79:f0:9e:ab:fa:d5:ba:25:12:30:50: dd:bc:e0:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9ZbvsCBMerF/WhN4oX7Y/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYTVkODQwNTNlMmIwYzMxM2FmMWUzYmE1MTAyNDY2YTVm Nzk2NzgwHhcNMjYwMTI3MDMwMTAxWhcNMjYwMTI4MDMwMTAxWjAzMTEwLwYDVQQD EyhjZjdiMzVhNjZmNzE1OGI2M2QzNzU2NTBjM2Y0ZDdhNWY2Njg3M2I1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1f1UNbFopwa/C/05dgN5gGCC0WQZ pBsKCW/XjGH1SKDauAEUvPlyG7JpA7+F1KLHh1l/5Q0eOR3dftwG6CjNcDIXLRPn +qwjRJYEhIzTk7qMuroeuk7t1Dg+rgBrCmkzvId1F8taZn/O5H68iSg+xh1ea/XC fhH8nL71eN35HgVEdPZPekDZTAnEuY3OTpkh+oHKlC+6rNi25Enw1cpkfANmrV+x 54yE16tWvCvEFXombLCGZUrspwHc7c3bieWe1MnXXgyGb9NYqHwYdLaLPi9AcYXh Gy9ao0R5SoGCNpnyCoLGqlTB3njPCEIoGTRhE/y5Uk8k9NwUePY42R8sTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM97NaZvcVi2PTdWUMP016X2aHO1MB8GA1UdIwQY MBaAFCKl2EBT4rDDE68eO6UQJGal95Z4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUt NTkxY2FmNTM2ZWNjLzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUtNTkxY2FmNTM2ZWNj LzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB6Atxxo5 AuNfq42kX2YAlj6My1Pa+EDiHX1FW1Y7nas7T7sfJkLwHbb4nS91OroONjgqlOw2 Uu/QiP8FMlZmHlKJS1S9N6H/WBeNSsuCijW2IzBYajH/M5CVsp8W9s957JZ9q28w FN6MQHpc6UUew8+yNy9EzfVIRWysUCFFKTzj0q5I7ePttLrMPMITo6Uqn9uHuMKl ye3yxjvwy8TnpGs/lnruLN9ii8bsUz+1TQa9vA3n4FRYigIzIjzj1u509z0SyyLP j4sYf3FjPDa3KOHTh9zHhboJ+ReVIQLX5OUv/ars+rPPp8ry+Da1vdx5DXnwnqv6 1bolEjBQ3bzgCA== -----END CERTIFICATE-----Generated at Tue Jan 27 07:16:58 2026 by rpki-client