This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft File: IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft (raw, json) Hash identifier: vU3FjlUjFUqB566ohDvakReu+asF7dEBUe41uWYnMOo= Subject key identifier: 05:8B:57:16:41:B9:B2:0B:0F:04:FB:EC:0D:5F:F5:61:BC:4C:FA:FC Authority key identifier: 21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6 Certificate issuer: /CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6 Certificate serial: 019BFC1C6FB96CCF5C521D30A040FA678938 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft Manifest number: 0178 Signing time: Mon 26 Jan 2026 21:01:20 +0000 Manifest this update: Mon 26 Jan 2026 21:01:20 +0000 Manifest next update: Tue 27 Jan 2026 21:01:20 +0000 Files and hashes: 1: IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl (hash: jv3rhXCQM04Ygu2MTH1krGFVnZeVpfn1WIZ/xhw5VFk=) 2: l8MRszfSe4qexC-9JyLTk4XoVgk.roa (hash: 9EV7cJFTRMkileOYn43dLtuQWD4NKNC4K7WAWUwzDvY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1c:6f:b9:6c:cf:5c:52:1d:30:a0:40:fa:67:89:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6 Validity Not Before: Jan 26 21:01:20 2026 GMT Not After : Jan 27 21:01:20 2026 GMT Subject: CN=058b571641b9b20b0f04fbec0d5ff561bc4cfafc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:00:cc:66:af:12:bd:f2:c3:85:b3:6d:f1:69: d9:a9:00:c1:ce:64:e2:1b:fb:e4:a2:d3:58:29:fe: d6:01:a2:d4:f4:75:5f:b9:b9:76:2b:7d:a8:c3:45: c4:47:41:3f:9a:cd:61:ae:47:00:1b:08:7a:43:31: b3:0f:f4:98:f8:6b:8d:55:e1:c2:32:68:41:51:da: f9:ee:a5:fd:e2:76:f9:9d:84:d3:3f:35:43:c7:32: 97:e6:41:37:2f:69:bf:9c:18:90:23:5d:27:6b:90: eb:7e:9f:77:6b:d2:5b:6d:9b:c7:1e:af:e1:47:e0: ca:f9:e0:65:b2:be:9d:ac:48:4b:68:7e:1b:61:e1: 03:21:61:ad:a2:12:c1:1f:10:88:07:f6:72:41:a5: c1:e8:62:81:ef:11:90:e4:d4:35:85:65:ed:a1:0a: 1d:f3:18:75:d7:ce:00:05:be:2b:6c:08:0d:de:7c: 1a:ae:69:3a:a6:ef:f5:eb:b2:5f:03:cc:70:0a:2b: 01:89:44:4e:ee:28:55:8e:ba:ac:40:35:af:05:a5: c6:ca:0d:26:8d:fd:2a:16:1c:6e:71:ed:89:ee:80: f1:ac:60:33:08:87:52:78:13:68:00:46:66:64:d7: bf:dc:7c:fb:f9:a4:b2:40:ea:30:88:82:6f:50:42: 32:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8B:57:16:41:B9:B2:0B:0F:04:FB:EC:0D:5F:F5:61:BC:4C:FA:FC X509v3 Authority Key Identifier: keyid:21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e3:e4:1f:9b:f2:f9:f7:b6:4d:9f:c9:1b:0c:ac:6a:76:99:4a: 15:ed:42:8d:f7:15:24:b8:af:ec:fa:d9:7a:33:8c:43:ca:d8: af:9a:56:89:bf:32:08:7a:d7:56:96:be:8f:e0:f4:ac:bc:6f: 6a:58:19:dc:ce:3e:37:0c:b2:86:48:35:eb:47:7f:16:bb:83: 55:4a:3e:07:10:2d:b4:6f:dd:9a:ed:31:bd:1d:35:77:d6:88: 04:6c:a6:dd:8b:7e:f7:10:79:f6:c9:26:14:4d:3a:84:8b:4f: 87:51:2c:dd:d9:ae:e2:98:8a:93:fa:3f:45:32:e3:1e:c2:37: a1:19:38:e0:5e:3e:63:6f:75:ad:e9:e1:03:70:d6:97:fe:13: ff:ac:4b:10:da:49:40:f1:7a:ff:94:52:6a:32:da:1f:25:f5: 6a:82:62:dc:8f:49:98:bc:44:db:eb:de:88:16:21:61:aa:5e: 36:85:3f:0a:54:aa:d6:0e:30:7d:db:fe:34:e6:ee:1a:18:77: 97:d7:c5:a8:df:41:f9:20:cc:4f:4e:90:b8:13:fd:6a:6b:ae: 3a:ab:b9:c0:5b:58:35:89:3b:b0:90:f0:04:5a:07:52:09:16: 67:44:a5:3a:0b:27:9b:8f:9f:d5:5a:e9:3e:9f:f7:b4:f4:7f: 60:e1:51:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8HG+5bM9cUh0woED6Z4k4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxODFjNWIzY2I3ZWViMWU0OTU4MjE1NWExOTE4ZWM2MTJm OTVhYzYwHhcNMjYwMTI2MjEwMTIwWhcNMjYwMTI3MjEwMTIwWjAzMTEwLwYDVQQD EygwNThiNTcxNjQxYjliMjBiMGYwNGZiZWMwZDVmZjU2MWJjNGNmYWZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QDMZq8SvfLDhbNt8WnZqQDBzmTi G/vkotNYKf7WAaLU9HVfubl2K32ow0XER0E/ms1hrkcAGwh6QzGzD/SY+GuNVeHC MmhBUdr57qX94nb5nYTTPzVDxzKX5kE3L2m/nBiQI10na5Drfp93a9JbbZvHHq/h R+DK+eBlsr6drEhLaH4bYeEDIWGtohLBHxCIB/ZyQaXB6GKB7xGQ5NQ1hWXtoQod 8xh1184ABb4rbAgN3nwarmk6pu/167JfA8xwCisBiURO7ihVjrqsQDWvBaXGyg0m jf0qFhxuce2J7oDxrGAzCIdSeBNoAEZmZNe/3Hz7+aSyQOowiIJvUEIy/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAWLVxZBubILDwT77A1f9WG8TPr8MB8GA1UdIwQY MBaAFCGBxbPLfuseSVghVaGRjsYS+VrGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9kY2QxNWUtZWIxMi00NjMxLWIyMjAt MDIyNmQ0NWE3NTMyLzEvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9kY2QxNWUtZWIxMi00NjMxLWIyMjAtMDIyNmQ0NWE3NTMy LzEvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA4+Qfm/L5 97ZNn8kbDKxqdplKFe1CjfcVJLiv7PrZejOMQ8rYr5pWib8yCHrXVpa+j+D0rLxv algZ3M4+Nwyyhkg160d/FruDVUo+BxAttG/dmu0xvR01d9aIBGym3Yt+9xB59skm FE06hItPh1Es3dmu4piKk/o/RTLjHsI3oRk44F4+Y291renhA3DWl/4T/6xLENpJ QPF6/5RSajLaHyX1aoJi3I9JmLxE2+veiBYhYapeNoU/ClSq1g4wfdv+NObuGhh3 l9fFqN9B+SDMT06QuBP9amuuOqu5wFtYNYk7sJDwBFoHUgkWZ0SlOgsnm4+f1Vrp Pp/3tPR/YOFRjw== -----END CERTIFICATE-----Generated at Tue Jan 27 01:33:15 2026 by rpki-client