This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json) Hash identifier: pOzBn/cAV3E8Vgj0vU19KPrBADD+U9Ggp26SOdN/5qA= Subject key identifier: 74:D4:E6:D8:C5:42:C6:E1:4A:E5:C8:51:95:8F:63:99:CB:0C:8D:60 Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32 Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932 Certificate serial: 019B7FDEB210726A76C4C9DEE3E16F4E57DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft Manifest number: 1786 Signing time: Fri 02 Jan 2026 18:00:59 +0000 Manifest this update: Fri 02 Jan 2026 18:00:59 +0000 Manifest next update: Sat 03 Jan 2026 18:00:59 +0000 Files and hashes: 1: J_DoxZa70H67ENOsS_n1eDhcFAQ.roa (hash: tQiviNr92MhgXPhEqL1Y9uwZ4I5NyRoLEZEg6GFbSR0=) 2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: 18+41rCGqJSFkuBcqpLi9v2gLF9uNSJnFcOlUXApL1o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:de:b2:10:72:6a:76:c4:c9:de:e3:e1:6f:4e:57:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932 Validity Not Before: Jan 2 18:00:59 2026 GMT Not After : Jan 3 18:00:59 2026 GMT Subject: CN=74d4e6d8c542c6e14ae5c851958f6399cb0c8d60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:20:25:df:c4:c2:8a:a1:60:d4:a3:51:00:3a: d3:4b:0f:18:11:ce:04:0e:67:b5:31:c0:8a:04:db: dc:33:8f:2b:59:6a:84:69:91:4f:5a:19:02:3c:00: 19:5a:ba:4f:2e:48:a1:0f:70:8a:db:ec:d8:cd:57: a4:3a:ca:c8:c5:77:40:b0:f4:e1:cf:61:d3:da:f4: 25:cd:ad:6d:2c:50:83:e6:df:19:ef:45:ae:2c:3b: 76:14:49:8f:2d:b2:65:e1:39:c7:4e:d5:1e:08:f8: fd:9f:94:74:45:f4:e3:e0:46:87:4a:36:b3:64:4a: cc:e5:d3:00:5c:03:11:a3:60:d0:48:87:8b:1c:84: 64:e1:3c:4b:ae:7f:7d:ef:77:cf:32:89:ee:29:8e: 22:f4:54:90:cf:96:38:91:0a:35:85:be:60:c6:dc: 0e:b4:eb:3c:6c:76:fa:a9:c5:cd:b1:62:12:80:ed: 3f:da:86:eb:49:8d:8f:51:64:da:63:21:22:3f:b6: 99:ba:1b:86:09:00:0c:dc:fc:60:d2:a3:74:44:54: 5d:36:20:ef:0f:19:58:54:a9:af:2c:31:63:b4:75: 3d:01:a7:9b:e2:6e:21:a4:4e:ec:31:00:80:b2:6f: a6:1c:4d:8d:87:50:89:e9:88:7d:4f:f0:2d:6b:1c: e7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D4:E6:D8:C5:42:C6:E1:4A:E5:C8:51:95:8F:63:99:CB:0C:8D:60 X509v3 Authority Key Identifier: keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:2d:f7:85:88:86:19:68:7f:01:61:6f:43:83:b8:bd:22:9b: 09:5b:5d:7a:56:4b:54:ef:15:64:c7:cf:12:94:b0:e5:0e:96: 5c:c6:e0:3c:d0:b5:70:c1:28:8d:f8:71:59:bf:0e:e4:8e:ea: 9e:3c:e0:3e:0f:7c:32:f0:be:1b:06:79:97:a9:86:89:54:99: bb:16:26:c2:c5:43:ca:8f:b0:6e:af:6b:7e:b4:0f:05:c7:d2: a0:f9:bc:83:0e:fc:aa:0c:6f:9d:11:9e:9b:db:00:84:a1:2f: 78:d3:2a:83:f2:7d:29:f4:1d:3d:ab:e9:d0:28:b7:0f:16:fc: ed:59:ea:ed:fe:5a:7f:31:a2:76:55:b5:b9:3d:c9:79:dc:e8: de:38:f6:e5:93:b5:eb:79:44:c2:e7:2c:50:9e:a7:91:39:38: b0:dd:ec:28:00:7c:ec:b3:ec:24:88:f8:d9:91:d1:88:e9:9e: cc:32:83:1c:70:28:d8:fd:29:4c:62:cd:21:10:9b:8a:a9:57: c8:85:e4:ef:57:0a:b5:c3:aa:f3:80:b6:71:51:fc:21:78:bd: 30:1a:34:4c:82:48:22:ee:5a:a1:64:65:6c:0f:a1:6e:11:2b: 36:8f:89:3f:dc:40:ea:d2:78:6e:7a:03:58:e0:05:50:aa:38: db:0b:a8:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt/3rIQcmp2xMne4+FvTlfeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhM2ZlMGI5YzYzMGEzM2UxNzFhMGE1Yzc5M2YzNDBiNDM0 NDY5MzIwHhcNMjYwMTAyMTgwMDU5WhcNMjYwMTAzMTgwMDU5WjAzMTEwLwYDVQQD Eyg3NGQ0ZTZkOGM1NDJjNmUxNGFlNWM4NTE5NThmNjM5OWNiMGM4ZDYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCAl38TCiqFg1KNRADrTSw8YEc4E Dme1McCKBNvcM48rWWqEaZFPWhkCPAAZWrpPLkihD3CK2+zYzVekOsrIxXdAsPTh z2HT2vQlza1tLFCD5t8Z70WuLDt2FEmPLbJl4TnHTtUeCPj9n5R0RfTj4EaHSjaz ZErM5dMAXAMRo2DQSIeLHIRk4TxLrn9973fPMonuKY4i9FSQz5Y4kQo1hb5gxtwO tOs8bHb6qcXNsWISgO0/2obrSY2PUWTaYyEiP7aZuhuGCQAM3Pxg0qN0RFRdNiDv DxlYVKmvLDFjtHU9Aaeb4m4hpE7sMQCAsm+mHE2Nh1CJ6Yh9T/AtaxznAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHTU5tjFQsbhSuXIUZWPY5nLDI1gMB8GA1UdIwQY MBaAFIo/4LnGMKM+FxoKXHk/NAtDRGkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9mMzlhNDktNTllYS00YzRmLTk4ZmMt NTNhYWI0MmY0NzZlLzEvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi9mMzlhNDktNTllYS00YzRmLTk4ZmMtNTNhYWI0MmY0NzZl LzEvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFy33hYiG GWh/AWFvQ4O4vSKbCVtdelZLVO8VZMfPEpSw5Q6WXMbgPNC1cMEojfhxWb8O5I7q njzgPg98MvC+GwZ5l6mGiVSZuxYmwsVDyo+wbq9rfrQPBcfSoPm8gw78qgxvnRGe m9sAhKEveNMqg/J9KfQdPavp0Ci3Dxb87Vnq7f5afzGidlW1uT3Jedzo3jj25ZO1 63lEwucsUJ6nkTk4sN3sKAB87LPsJIj42ZHRiOmezDKDHHAo2P0pTGLNIRCbiqlX yIXk71cKtcOq84C2cVH8IXi9MBo0TIJIIu5aoWRlbA+hbhErNo+JP9xA6tJ4bnoD WOAFUKo42wuoJQ== -----END CERTIFICATE-----Generated at Fri Jan 2 19:46:24 2026 by rpki-client