This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json) Hash identifier: X67NV7GfPs/HkVRxvBQOCOz1HzZD8b1faKOGjxxNt6s= Subject key identifier: 07:A4:DA:58:9B:15:0C:11:1D:65:54:3F:5F:8D:C8:1F:34:0A:A0:B1 Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d Certificate serial: 019B7780339644298FF89D85E5D5745C6ACE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft Manifest number: 13B8 Signing time: Thu 01 Jan 2026 03:00:49 +0000 Manifest this update: Thu 01 Jan 2026 03:00:49 +0000 Manifest next update: Fri 02 Jan 2026 03:00:49 +0000 Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=) 2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: ZxQeXlGAEBaeLKB/PWaeaumq5l1OcaYe/Kj6xrU+18Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 03:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:80:33:96:44:29:8f:f8:9d:85:e5:d5:74:5c:6a:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8819956ddceae022cfe123da373c6b111640368d Validity Not Before: Jan 1 03:00:49 2026 GMT Not After : Jan 2 03:00:49 2026 GMT Subject: CN=07a4da589b150c111d65543f5f8dc81f340aa0b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4a:7f:67:ae:c2:b8:47:91:57:46:df:d3:28: e3:91:ec:d4:7d:df:f4:24:d9:9d:41:aa:28:34:49: fe:fe:2d:8d:a4:ab:c5:46:b8:c9:5f:4b:e9:d8:36: c0:a4:f3:5a:88:fc:ef:0e:2e:76:77:be:92:c0:f1: 11:79:36:61:9b:35:38:80:69:3d:eb:8a:30:ad:2e: 5a:69:b3:36:33:fb:e8:49:29:e4:2b:cc:27:a4:80: 15:03:3a:13:1a:2a:80:64:de:fe:f6:c7:c8:1a:90: 67:02:0e:49:0f:ed:fb:9a:c4:72:73:9d:75:16:b9: 55:fe:12:f6:67:cd:eb:b2:0f:52:f5:d9:a0:00:a3: fe:3d:3e:73:9d:45:ee:6a:82:51:e8:5a:09:e1:6d: ad:ec:43:34:9d:c6:c0:8f:c8:74:3f:9d:fc:46:cb: 87:52:79:ec:9f:ce:da:03:b8:72:94:a3:bf:b5:73: f7:9d:28:d8:37:ab:c7:45:d4:8c:33:2f:0c:a4:ab: 82:a2:9f:17:45:66:3f:07:1c:4e:d8:7c:84:55:7f: 72:16:03:ee:ca:7d:ee:24:b1:84:e2:0e:39:1c:08: 3b:8e:d7:61:59:5c:55:c8:fd:0e:e4:eb:ea:30:72: 22:43:7c:91:4e:16:5f:c0:47:a7:0c:ba:1a:0b:64: 67:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:A4:DA:58:9B:15:0C:11:1D:65:54:3F:5F:8D:C8:1F:34:0A:A0:B1 X509v3 Authority Key Identifier: keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:8b:0d:b7:af:25:9f:fb:33:6e:54:b9:79:f2:3d:0f:d2:7e: 9d:56:4d:28:88:9a:46:39:49:ca:87:0a:1b:5a:37:15:25:62: d8:a7:c5:8e:62:20:7d:2d:ed:d1:8a:88:85:14:a2:d1:76:48: c8:41:93:b1:a2:3e:05:4a:e1:f9:fa:8d:6a:0b:52:4f:09:0e: d3:ed:7f:5c:c5:c2:cc:22:14:0b:1e:e6:81:85:1a:79:85:7d: db:eb:2d:1c:cd:98:15:3f:5f:9a:e7:4f:3a:01:81:7e:e5:e4: 74:35:cf:7c:be:6d:a3:90:06:50:56:79:59:e1:55:c2:45:0d: 11:bd:66:a0:6b:a5:b4:aa:c4:d9:f7:21:cc:b1:03:6b:71:11: 33:1c:99:73:cc:71:c1:87:70:29:8d:6f:62:6d:24:1f:1a:e7: 0a:e7:fb:02:bb:08:04:26:b7:10:ec:ab:34:09:9c:2d:47:f2: c8:18:1e:79:fd:e1:ce:8e:29:7c:14:ac:71:16:ae:88:cc:27: 28:28:4c:08:41:13:dd:42:ab:d2:0e:a3:57:0e:e4:b6:75:40: 37:41:24:84:75:24:1f:90:ba:72:cb:b0:6e:23:6e:fd:ab:2b: 26:e8:d8:e5:51:d8:79:33:83:d6:9f:66:32:27:ab:8c:d6:07: 75:f1:c1:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt3gDOWRCmP+J2F5dV0XGrOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MTk5NTZkZGNlYWUwMjJjZmUxMjNkYTM3M2M2YjExMTY0 MDM2OGQwHhcNMjYwMTAxMDMwMDQ5WhcNMjYwMTAyMDMwMDQ5WjAzMTEwLwYDVQQD EygwN2E0ZGE1ODliMTUwYzExMWQ2NTU0M2Y1ZjhkYzgxZjM0MGFhMGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Ep/Z67CuEeRV0bf0yjjkezUfd/0 JNmdQaooNEn+/i2NpKvFRrjJX0vp2DbApPNaiPzvDi52d76SwPEReTZhmzU4gGk9 64owrS5aabM2M/voSSnkK8wnpIAVAzoTGiqAZN7+9sfIGpBnAg5JD+37msRyc511 FrlV/hL2Z83rsg9S9dmgAKP+PT5znUXuaoJR6FoJ4W2t7EM0ncbAj8h0P538RsuH Unnsn87aA7hylKO/tXP3nSjYN6vHRdSMMy8MpKuCop8XRWY/BxxO2HyEVX9yFgPu yn3uJLGE4g45HAg7jtdhWVxVyP0O5OvqMHIiQ3yRThZfwEenDLoaC2Rn3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAek2libFQwRHWVUP1+NyB80CqCxMB8GA1UdIwQY MBaAFIgZlW3c6uAiz+Ej2jc8axEWQDaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDkt MmRlYjE0YzI5MGVkLzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDktMmRlYjE0YzI5MGVk LzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATIsNt68l n/szblS5efI9D9J+nVZNKIiaRjlJyocKG1o3FSVi2KfFjmIgfS3t0YqIhRSi0XZI yEGTsaI+BUrh+fqNagtSTwkO0+1/XMXCzCIUCx7mgYUaeYV92+stHM2YFT9fmudP OgGBfuXkdDXPfL5to5AGUFZ5WeFVwkUNEb1moGultKrE2fchzLEDa3ERMxyZc8xx wYdwKY1vYm0kHxrnCuf7ArsIBCa3EOyrNAmcLUfyyBgeef3hzo4pfBSscRauiMwn KChMCEET3UKr0g6jVw7ktnVAN0EkhHUkH5C6csuwbiNu/asrJujY5VHYeTOD1p9m MierjNYHdfHB/A== -----END CERTIFICATE-----Generated at Thu Jan 1 10:54:28 2026 by rpki-client