This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft File: IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft (raw, json) Hash identifier: L+Y21Sn7vsyBu1OrjaYbOeZmKQNR0mHxaAlDvY9xgMQ= Subject key identifier: BF:5B:D8:6E:03:F8:5C:2B:C5:F5:C3:2B:09:1A:39:E6:F7:31:2F:56 Authority key identifier: 21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90 Certificate issuer: /CN=2101b6388d6435f54990905382b41dc9675fd490 Certificate serial: 019BD7D98A613DF41FE8E5F7A90296C93F69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft Manifest number: 0669 Signing time: Mon 19 Jan 2026 20:01:56 +0000 Manifest this update: Mon 19 Jan 2026 20:01:56 +0000 Manifest next update: Tue 20 Jan 2026 20:01:56 +0000 Files and hashes: 1: Bb0AlX7LVs8xu9FbBxHR7jZ41sc.roa (hash: 1RAeUNL+1NswFK++fmlLXs7tYc2gvuypR/zGLkI4pFk=) 2: IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl (hash: uxdJtcGO6cPPOOvaYrMc3e89RIqtlmILHc/l6oT860I=) 3: wuwvCCyqsgM8AhmBamIU1CDvuC4.roa (hash: 7kzHmkdddwIql7JhhvogOzHNgfL2sl/BzbMljE2+YF0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d7:d9:8a:61:3d:f4:1f:e8:e5:f7:a9:02:96:c9:3f:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2101b6388d6435f54990905382b41dc9675fd490 Validity Not Before: Jan 19 20:01:56 2026 GMT Not After : Jan 20 20:01:56 2026 GMT Subject: CN=bf5bd86e03f85c2bc5f5c32b091a39e6f7312f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b1:10:57:0c:99:f4:35:bd:ec:a9:b8:48:bd: ad:42:43:c3:ad:8f:f2:a8:05:23:92:ab:44:11:59: aa:d4:c8:54:61:42:57:d8:42:85:7f:8c:aa:25:66: 88:b0:0e:ed:c8:cf:87:43:ae:b6:28:2c:54:ce:23: 00:ba:f0:0d:5f:5b:fd:e1:7c:83:d0:bf:51:5c:38: d7:48:41:fd:8a:3d:0e:89:84:06:3e:90:05:d8:67: ac:d6:e6:c3:b5:a1:88:33:ef:0b:a2:19:fd:82:11: 86:e1:26:bd:bb:0a:da:d6:da:85:ca:8c:0c:56:56: 6d:68:e6:86:e5:78:0b:ff:e1:37:40:5e:26:13:60: ab:ff:b9:f5:2e:82:15:68:3c:95:ae:7a:f8:e3:74: e8:f0:15:9c:eb:8c:72:9a:2a:a1:2c:23:75:5b:8a: 41:41:d4:bb:30:69:7e:84:16:3d:c0:86:0c:a8:e3: 95:89:e3:82:b2:c8:da:31:b0:ea:a8:eb:ce:6a:50: d9:cc:f0:af:ac:67:f2:64:72:83:1c:45:3d:b0:b4: f3:01:97:91:79:bb:47:cc:e9:dc:dd:d3:0d:57:ff: 4c:d5:66:ae:39:21:fd:8f:cb:b0:e2:88:d7:69:83: 8b:e1:58:e9:42:c6:b6:30:bd:12:6b:7b:c1:6e:e8: 54:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:5B:D8:6E:03:F8:5C:2B:C5:F5:C3:2B:09:1A:39:E6:F7:31:2F:56 X509v3 Authority Key Identifier: keyid:21:01:B6:38:8D:64:35:F5:49:90:90:53:82:B4:1D:C9:67:5F:D4:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQG2OI1kNfVJkJBTgrQdyWdf1JA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c2095a-3b3d-4ac4-9c32-4df8912188f7/1/IQG2OI1kNfVJkJBTgrQdyWdf1JA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:1f:d9:1b:40:78:d9:25:00:d0:82:c6:44:b5:4a:2d:df:11: d4:60:b2:31:37:07:1b:9a:4b:0b:9b:58:97:39:3a:e6:54:45: 57:b1:d6:8b:fd:41:3f:a7:26:1b:dd:14:c5:21:db:e9:e5:a1: c4:fa:06:62:76:a0:a9:d0:5a:09:05:ec:08:2a:d5:78:22:87: bf:d8:bb:d5:00:2a:38:0a:61:e4:35:a8:a4:df:94:46:37:1e: 52:78:be:fe:a5:a4:8a:07:04:2e:4f:79:a2:35:34:94:86:c1: 00:32:a2:87:29:4f:68:78:3b:16:f1:cb:43:af:a0:0c:1d:94: a6:7d:73:13:1b:ed:b6:55:90:6b:f7:a0:56:cf:22:4f:a1:e4: f1:77:f2:bc:55:06:04:8a:1b:f2:81:9a:b7:df:5b:b8:aa:aa: a2:1e:89:a5:7f:a2:f4:f1:21:e3:76:51:d9:99:15:77:74:23: 7b:64:1b:67:c7:a2:70:a8:77:c9:11:46:df:07:03:7d:77:2f: a7:ef:e8:35:34:0d:aa:7f:42:c7:bd:d1:4f:15:b1:84:69:c5: 77:1a:f3:77:c3:6b:5d:52:7e:f5:d9:cb:4b:dc:0c:9e:24:93: 2b:a2:81:6a:11:93:3b:0d:c6:18:2e:cc:6e:be:d7:25:ef:2c: 25:b8:7c:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvX2YphPfQf6OX3qQKWyT9pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDFiNjM4OGQ2NDM1ZjU0OTkwOTA1MzgyYjQxZGM5Njc1 ZmQ0OTAwHhcNMjYwMTE5MjAwMTU2WhcNMjYwMTIwMjAwMTU2WjAzMTEwLwYDVQQD EyhiZjViZDg2ZTAzZjg1YzJiYzVmNWMzMmIwOTFhMzllNmY3MzEyZjU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurEQVwyZ9DW97Km4SL2tQkPDrY/y qAUjkqtEEVmq1MhUYUJX2EKFf4yqJWaIsA7tyM+HQ662KCxUziMAuvANX1v94XyD 0L9RXDjXSEH9ij0OiYQGPpAF2Ges1ubDtaGIM+8Lohn9ghGG4Sa9uwra1tqFyowM VlZtaOaG5XgL/+E3QF4mE2Cr/7n1LoIVaDyVrnr443To8BWc64xymiqhLCN1W4pB QdS7MGl+hBY9wIYMqOOVieOCssjaMbDqqOvOalDZzPCvrGfyZHKDHEU9sLTzAZeR ebtHzOnc3dMNV/9M1WauOSH9j8uw4ojXaYOL4VjpQsa2ML0Sa3vBbuhU+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL9b2G4D+FwrxfXDKwkaOeb3MS9WMB8GA1UdIwQY MBaAFCEBtjiNZDX1SZCQU4K0HclnX9SQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jMjA5NWEtM2IzZC00YWM0LTljMzIt NGRmODkxMjE4OGY3LzEvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9jMjA5NWEtM2IzZC00YWM0LTljMzItNGRmODkxMjE4OGY3 LzEvSVFHMk9JMWtOZlZKa0pCVGdyUWR5V2RmMUpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADR/ZG0B4 2SUA0ILGRLVKLd8R1GCyMTcHG5pLC5tYlzk65lRFV7HWi/1BP6cmG90UxSHb6eWh xPoGYnagqdBaCQXsCCrVeCKHv9i71QAqOAph5DWopN+URjceUni+/qWkigcELk95 ojU0lIbBADKihylPaHg7FvHLQ6+gDB2Upn1zExvttlWQa/egVs8iT6Hk8XfyvFUG BIob8oGat99buKqqoh6JpX+i9PEh43ZR2ZkVd3Qje2QbZ8eicKh3yRFG3wcDfXcv p+/oNTQNqn9Cx73RTxWxhGnFdxrzd8NrXVJ+9dnLS9wMniSTK6KBahGTOw3GGC7M br7XJe8sJbh8/Q== -----END CERTIFICATE-----Generated at Tue Jan 20 01:55:06 2026 by rpki-client