This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft File: 1O219t5yQ2FIs1pZA38jNBUN2zY.mft (raw, json) Hash identifier: 2x8uLLqajQ/F4Y9Ipa8IpuP8kFmJ9rxmjH8EmIDaMBY= Subject key identifier: D2:05:F4:29:7E:78:6C:47:7C:69:F0:93:74:E2:BB:96:01:18:65:14 Authority key identifier: D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36 Certificate issuer: /CN=d4edb5f6de72436148b35a59037f2334150ddb36 Certificate serial: 019BFCC1266AC75307B7A68DAE00EB9298AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft Manifest number: 177F Signing time: Tue 27 Jan 2026 00:01:15 +0000 Manifest this update: Tue 27 Jan 2026 00:01:15 +0000 Manifest next update: Wed 28 Jan 2026 00:01:15 +0000 Files and hashes: 1: 1O219t5yQ2FIs1pZA38jNBUN2zY.crl (hash: revL4JSw3LNeZljKt2yMhvai6BXD1pccgTHE4FJDCyg=) 2: RpCy1JXxo-ZI0wF9fz-fX4KJGZQ.roa (hash: 3/7dLJaax8heeK87EWODxuRiV6OLm+WDskuSJCjvPmQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:c1:26:6a:c7:53:07:b7:a6:8d:ae:00:eb:92:98:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4edb5f6de72436148b35a59037f2334150ddb36 Validity Not Before: Jan 27 00:01:15 2026 GMT Not After : Jan 28 00:01:15 2026 GMT Subject: CN=d205f4297e786c477c69f09374e2bb9601186514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f8:13:55:3f:c8:25:94:22:6e:11:68:8d:0c: aa:ca:10:dc:c7:56:4c:e7:4b:a0:52:25:80:3a:c3: 6a:39:cd:64:b5:8d:e1:3c:c5:b7:87:09:ac:06:da: d2:da:79:17:0d:3f:c4:4d:67:f2:ac:7c:93:51:a8: 03:51:75:6f:8f:8f:dd:c8:3b:18:da:5b:1a:db:e9: 8f:9f:45:26:66:d2:a6:69:4f:27:d6:30:f9:88:86: f9:ce:86:8b:63:13:83:cf:bc:16:34:d6:ee:7e:2b: 1f:ae:ba:66:63:3f:09:7c:19:2a:f4:cb:48:31:48: 1a:26:8f:94:c3:73:06:15:52:18:09:54:b1:e3:52: 66:20:b0:95:c6:2b:94:ab:e0:ba:7d:67:e5:f9:6f: 89:fe:f5:d5:78:6b:1c:ec:ca:79:a1:c3:bf:da:bc: c2:7b:3f:0c:50:0a:fa:97:54:92:1c:a9:23:2b:87: ba:16:24:2c:10:7b:a9:4e:b9:08:98:ed:d4:7c:61: 26:6b:ef:00:02:3a:74:1d:c2:80:a0:31:34:9c:43: e2:84:82:11:8a:3b:41:c0:b3:f8:55:72:2f:33:67: a0:f0:e1:b5:40:e1:29:bf:3c:b5:e1:2b:63:76:1f: 75:f7:dc:60:72:3e:b0:68:41:d7:a9:74:80:ea:4f: ac:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:05:F4:29:7E:78:6C:47:7C:69:F0:93:74:E2:BB:96:01:18:65:14 X509v3 Authority Key Identifier: keyid:D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:5b:58:46:03:5d:d4:35:2d:7e:ac:f8:14:0e:35:8e:75:9f: 1d:b5:4f:b1:fc:98:72:ca:f1:80:af:85:22:c8:00:64:d0:31: ea:61:14:82:54:21:db:ff:d0:3a:8b:ae:9c:ce:38:3b:cf:4f: d2:68:cd:f2:1c:bf:ff:b5:22:77:4f:c3:82:1e:3f:ed:2c:26: db:84:bc:6d:67:81:dc:2e:2a:e7:09:64:4c:7f:b6:b8:30:13: f6:02:5b:a6:15:af:fc:04:a3:e6:ed:06:f6:77:31:d1:8b:01: 7e:ae:41:c6:55:19:05:67:b4:92:02:ca:90:d0:f2:07:ac:4e: 7a:3c:9d:79:38:ac:79:6c:ca:8e:07:17:3a:eb:5c:de:9a:5c: 7b:56:ac:c4:a1:a6:dd:ed:19:06:4f:7d:71:fb:b4:b8:45:88: a6:ea:14:db:01:d4:5c:73:c0:89:ee:91:f5:7e:c4:74:1c:63: 5e:01:a5:88:53:92:93:05:89:a1:83:9b:b4:39:94:52:08:43: 6b:df:e0:fc:32:96:d3:9c:75:62:aa:ae:80:dc:66:ce:ae:a8: 35:97:89:79:91:22:e0:21:63:2a:3b:6f:24:c8:14:f6:cc:fe: f4:d3:f7:91:71:e3:e0:11:47:66:e4:f5:f2:be:48:5b:ed:8c: 1a:e0:e2:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8wSZqx1MHt6aNrgDrkpisMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ZWRiNWY2ZGU3MjQzNjE0OGIzNWE1OTAzN2YyMzM0MTUw ZGRiMzYwHhcNMjYwMTI3MDAwMTE1WhcNMjYwMTI4MDAwMTE1WjAzMTEwLwYDVQQD EyhkMjA1ZjQyOTdlNzg2YzQ3N2M2OWYwOTM3NGUyYmI5NjAxMTg2NTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/gTVT/IJZQibhFojQyqyhDcx1ZM 50ugUiWAOsNqOc1ktY3hPMW3hwmsBtrS2nkXDT/ETWfyrHyTUagDUXVvj4/dyDsY 2lsa2+mPn0UmZtKmaU8n1jD5iIb5zoaLYxODz7wWNNbufisfrrpmYz8JfBkq9MtI MUgaJo+Uw3MGFVIYCVSx41JmILCVxiuUq+C6fWfl+W+J/vXVeGsc7Mp5ocO/2rzC ez8MUAr6l1SSHKkjK4e6FiQsEHupTrkImO3UfGEma+8AAjp0HcKAoDE0nEPihIIR ijtBwLP4VXIvM2eg8OG1QOEpvzy14Stjdh9199xgcj6waEHXqXSA6k+sHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNIF9Cl+eGxHfGnwk3Tiu5YBGGUUMB8GA1UdIwQY MBaAFNTttfbeckNhSLNaWQN/IzQVDds2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMU8yMTl0NXlRMkZJczFwWkEzOGpOQlVOMnpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8zYTUyNTgtOTg5ZC00MDBiLWI3Yjct NDU0YzkzYzA2NWEwLzEvMU8yMTl0NXlRMkZJczFwWkEzOGpOQlVOMnpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC8zYTUyNTgtOTg5ZC00MDBiLWI3YjctNDU0YzkzYzA2NWEw LzEvMU8yMTl0NXlRMkZJczFwWkEzOGpOQlVOMnpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASFtYRgNd 1DUtfqz4FA41jnWfHbVPsfyYcsrxgK+FIsgAZNAx6mEUglQh2//QOouunM44O89P 0mjN8hy//7Uid0/Dgh4/7Swm24S8bWeB3C4q5wlkTH+2uDAT9gJbphWv/ASj5u0G 9ncx0YsBfq5BxlUZBWe0kgLKkNDyB6xOejydeTiseWzKjgcXOutc3ppce1asxKGm 3e0ZBk99cfu0uEWIpuoU2wHUXHPAie6R9X7EdBxjXgGliFOSkwWJoYObtDmUUghD a9/g/DKW05x1YqqugNxmzq6oNZeJeZEi4CFjKjtvJMgU9sz+9NP3kXHj4BFHZuT1 8r5IW+2MGuDiTQ== -----END CERTIFICATE-----Generated at Tue Jan 27 08:29:53 2026 by rpki-client