This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft File: iqtMDPIcGj1upBBoy-kIvjiORQo.mft (raw, json) Hash identifier: QvnZrFSBhkobRnCBF58fg+MUOKQRVbUvTjawmQ7MYB0= Subject key identifier: D8:F7:74:4D:40:BC:DE:FD:EA:F9:51:63:18:BD:98:96:1C:F3:C8:A4 Authority key identifier: 8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A Certificate issuer: /CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a Certificate serial: 019C1CB9B0D579E7C753CD0A4E64F256049E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft Manifest number: 0540 Signing time: Mon 02 Feb 2026 05:00:57 +0000 Manifest this update: Mon 02 Feb 2026 05:00:57 +0000 Manifest next update: Tue 03 Feb 2026 05:00:57 +0000 Files and hashes: 1: 4GRqDQUSb-zxr8Uio1ztz9ttwpQ.roa (hash: ATHhAZBwTjYGOPvU16akA/fsoKv3w9kmqPeuvaUthH0=) 2: EdRGRNAOunRYG7-_JByQf_-npzI.roa (hash: hCZ1ruXMfJaNp5NsNXemKDBnVae+viS5ZTIr51GpNRQ=) 3: On2nk-aByUGs4ZA6emj31XEJdso.roa (hash: DD3HadfYy5dPFXQsNsDN3ezTTc4+paMyIyZQDpChk8M=) 4: QmnB2CMIfe5umcxczxRujV0wYEk.roa (hash: lwZAzq1D6hmN+6U+dqklR1EjzUoOQPeBNTMLHAdXkGQ=) 5: iqtMDPIcGj1upBBoy-kIvjiORQo.crl (hash: UlIroeffzXHnHdqeXy6wmHG1xlRk21Gpsl/55ULIcJA=) 6: tsHmi25vrKfns5kPGhl6myHWaVw.roa (hash: 8MIMAYAM0/jsI9v0uOOSYvki5uUrLoYRmY+NS2ZIDRg=) 7: vX_8fXaxigdlWpe1tG-xpUdtIoQ.roa (hash: XxkJj1YMXQmGGy2zQBCP59NASJ3xuWotiNT/aTYNmvw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 05:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:b9:b0:d5:79:e7:c7:53:cd:0a:4e:64:f2:56:04:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aab4c0cf21c1a3d6ea41068cbe908be388e450a Validity Not Before: Feb 2 05:00:57 2026 GMT Not After : Feb 3 05:00:57 2026 GMT Subject: CN=d8f7744d40bcdefdeaf9516318bd98961cf3c8a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c1:d7:73:22:9a:63:31:fd:d1:78:6d:2c:e7: 4e:c0:41:55:1a:89:96:f4:ba:8a:cc:a6:7b:8b:c5: d7:30:4d:eb:0f:16:f3:00:f0:bf:e3:5c:a2:55:a6: 58:b4:6a:ba:90:3e:d7:c0:e9:92:d7:ae:13:51:13: f0:01:12:f3:f2:a3:85:ac:99:e9:73:1f:21:80:18: e1:53:9b:a8:ca:c7:e0:3b:5c:56:80:5e:6e:e9:14: 5d:01:c4:75:f3:a3:b3:81:77:0f:62:ef:79:e5:aa: 82:7c:97:3e:a8:ae:d3:68:c7:40:0a:f5:75:e4:15: e0:45:4a:85:28:53:5a:88:f1:9a:57:ce:48:b9:8d: 20:71:f8:11:29:42:48:7a:47:e1:b2:ef:5e:98:be: a3:bb:d4:c0:bb:50:96:c0:f6:a5:c6:94:5d:93:a0: d4:7a:1c:c7:30:fe:55:d1:c7:5d:6d:03:f7:91:51: 6a:12:dd:22:db:9b:98:34:30:4c:88:88:b3:50:93: f5:d0:2a:57:ea:97:37:94:11:72:43:70:20:63:7d: 46:e5:3d:95:77:f6:3b:fe:70:86:8c:3f:de:5e:bd: 37:10:ab:30:fc:a6:a0:d7:3e:99:90:04:c5:d2:80: 6e:52:5d:e9:64:d1:1e:97:93:cc:3c:c1:61:08:3f: 0b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:F7:74:4D:40:BC:DE:FD:EA:F9:51:63:18:BD:98:96:1C:F3:C8:A4 X509v3 Authority Key Identifier: keyid:8A:AB:4C:0C:F2:1C:1A:3D:6E:A4:10:68:CB:E9:08:BE:38:8E:45:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqtMDPIcGj1upBBoy-kIvjiORQo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/740c1e-1a4c-4ca2-bd53-537b1b49dfe7/1/iqtMDPIcGj1upBBoy-kIvjiORQo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:57:b5:f3:47:d6:4d:09:c5:40:68:c1:95:90:d6:78:91:ce: 6c:f1:e4:9e:62:3c:bd:9f:f9:89:35:9c:33:85:60:04:cf:f2: da:f2:0b:da:4d:fe:ed:eb:35:89:da:47:84:0d:bc:3e:85:d8: 41:d9:c3:3c:39:46:76:d2:55:cd:7e:b9:59:7c:f0:60:f9:3a: 30:d5:a1:8f:63:f3:33:cf:3a:ad:f3:61:44:8d:5d:d4:21:f1: 90:4f:c5:39:63:a9:1e:e3:98:c8:45:47:b2:db:4f:04:e9:d3: 96:1c:82:03:61:80:3e:fa:76:c7:28:0d:3a:61:ce:08:c1:af: f6:43:92:54:14:ac:a6:e4:f9:e1:1e:af:27:97:4c:a1:74:d3: 17:63:d8:11:b0:e0:9c:c9:e2:89:26:25:83:bf:e4:b4:8b:42: 07:6b:95:7a:66:bc:a2:24:79:9b:97:11:c3:1b:14:50:27:a8: c5:ae:f0:0d:0a:f9:1b:b9:5a:ee:50:5c:2a:dc:f3:3c:e1:6a: 03:91:b3:af:94:d0:b4:2b:e6:93:c2:64:ec:d4:70:7d:c0:6f: 27:6d:bc:d8:c7:71:72:26:2c:b5:f6:6a:e6:21:3e:4d:2d:e6: 7e:37:e7:b2:7b:7a:04:62:e4:5e:96:73:ef:8b:a9:75:b0:e2: a7:c8:00:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcubDVeefHU80KTmTyVgSeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWI0YzBjZjIxYzFhM2Q2ZWE0MTA2OGNiZTkwOGJlMzg4 ZTQ1MGEwHhcNMjYwMjAyMDUwMDU3WhcNMjYwMjAzMDUwMDU3WjAzMTEwLwYDVQQD EyhkOGY3NzQ0ZDQwYmNkZWZkZWFmOTUxNjMxOGJkOTg5NjFjZjNjOGE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscHXcyKaYzH90XhtLOdOwEFVGomW 9LqKzKZ7i8XXME3rDxbzAPC/41yiVaZYtGq6kD7XwOmS164TURPwARLz8qOFrJnp cx8hgBjhU5uoysfgO1xWgF5u6RRdAcR186OzgXcPYu955aqCfJc+qK7TaMdACvV1 5BXgRUqFKFNaiPGaV85IuY0gcfgRKUJIekfhsu9emL6ju9TAu1CWwPalxpRdk6DU ehzHMP5V0cddbQP3kVFqEt0i25uYNDBMiIizUJP10CpX6pc3lBFyQ3AgY31G5T2V d/Y7/nCGjD/eXr03EKsw/Kag1z6ZkATF0oBuUl3pZNEel5PMPMFhCD8LRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNj3dE1AvN796vlRYxi9mJYc88ikMB8GA1UdIwQY MBaAFIqrTAzyHBo9bqQQaMvpCL44jkUKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMt NTM3YjFiNDlkZmU3LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS83NDBjMWUtMWE0Yy00Y2EyLWJkNTMtNTM3YjFiNDlkZmU3 LzEvaXF0TURQSWNHajF1cEJCb3kta0l2amlPUlFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQFe180fW TQnFQGjBlZDWeJHObPHknmI8vZ/5iTWcM4VgBM/y2vIL2k3+7es1idpHhA28PoXY QdnDPDlGdtJVzX65WXzwYPk6MNWhj2PzM886rfNhRI1d1CHxkE/FOWOpHuOYyEVH sttPBOnTlhyCA2GAPvp2xygNOmHOCMGv9kOSVBSspuT54R6vJ5dMoXTTF2PYEbDg nMniiSYlg7/ktItCB2uVema8oiR5m5cRwxsUUCeoxa7wDQr5G7la7lBcKtzzPOFq A5Gzr5TQtCvmk8Jk7NRwfcBvJ2282MdxciYstfZq5iE+TS3mfjfnsnt6BGLkXpZz 74updbDip8gAaw== -----END CERTIFICATE-----Generated at Mon Feb 2 15:57:49 2026 by rpki-client