This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json) Hash identifier: 8ob1+InQgFwTDJ3SgtkZTs9kCHQ1G+QnMcvWwWP+1b0= Subject key identifier: DC:CC:D0:CB:F1:AF:60:1B:93:18:E5:B0:C1:46:39:46:62:2B:B5:DE Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35 Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35 Certificate serial: 019BAB6E25F48502F7DE031F96FC61C744D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft Manifest number: 17C2 Signing time: Sun 11 Jan 2026 05:01:21 +0000 Manifest this update: Sun 11 Jan 2026 05:01:21 +0000 Manifest next update: Mon 12 Jan 2026 05:01:21 +0000 Files and hashes: 1: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: 03GtjldtARmwBeZfm0DLm1uvw99OwHxmN2hLIOGbTvc=) 2: ToOm_DRG8L881LK0bTvQrJEi9zE.roa (hash: DCNqoXRqfdwODxjtc8J2/AVxGOKRF24UDLD2fHtc4vM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 05:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ab:6e:25:f4:85:02:f7:de:03:1f:96:fc:61:c7:44:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35 Validity Not Before: Jan 11 05:01:21 2026 GMT Not After : Jan 12 05:01:21 2026 GMT Subject: CN=dcccd0cbf1af601b9318e5b0c1463946622bb5de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:47:de:64:4e:5b:f8:7b:a4:4c:51:57:70:34: 34:c9:ee:06:6c:30:be:f0:4a:11:da:bd:4f:48:fe: 62:01:6e:41:4f:85:a0:23:07:af:e6:b8:98:42:72: fa:82:da:ac:5d:c5:bc:1e:a8:a0:e7:af:91:4e:0d: 79:1c:78:55:bc:c1:0e:a1:85:7f:7e:d1:3f:89:b7: a2:25:3c:b8:2a:8f:ad:c2:84:c2:51:ed:bd:40:52: a6:b7:23:5e:4b:ee:86:63:a0:4b:9f:67:e1:8d:1c: 3f:d3:88:76:72:27:92:e0:8b:2d:ef:67:ff:dc:7d: 21:b1:75:44:4f:a7:0f:f6:ad:96:24:ce:e7:63:ff: 8f:92:ac:2e:11:fb:b2:be:0a:5a:db:2d:57:06:24: 9a:2c:86:14:61:50:ef:3a:4d:56:03:ec:bb:ba:94: 24:2e:68:b7:2d:1a:5f:c8:01:d4:b4:83:bc:a2:35: a6:c4:32:19:11:2e:ed:18:bb:f9:85:d6:b2:d5:25: 41:33:7e:f9:f7:ca:0c:62:fe:21:93:64:f4:2c:4d: cc:0b:c7:0d:57:e2:39:b6:8a:24:50:46:11:9a:11: b5:88:fd:6e:86:62:93:8c:6f:6a:0d:63:5a:75:00: 74:63:10:68:77:6e:80:8d:97:bd:58:5a:0a:cc:04: 5d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:CC:D0:CB:F1:AF:60:1B:93:18:E5:B0:C1:46:39:46:62:2B:B5:DE X509v3 Authority Key Identifier: keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:09:e6:aa:18:5d:53:b9:cc:11:7d:50:83:4d:3a:78:f1:cc: 35:b7:1f:5b:d2:ad:a0:88:a3:bc:a1:c0:76:1e:00:a5:98:43: aa:8e:6e:29:ed:ec:8d:13:e8:59:a4:94:aa:9a:11:f9:51:83: cf:87:29:23:c5:2b:0b:80:fe:cc:9d:14:db:27:22:93:b7:83: b9:55:5d:1c:8e:ac:0b:29:9a:c8:7e:a7:f4:fa:95:66:39:ce: 27:fb:60:cb:5c:03:d2:44:e8:41:a2:0b:69:12:a9:38:88:75: ca:1f:d8:49:84:fa:c5:25:03:61:0f:55:1b:5e:71:ca:d7:a6: 6f:ec:27:aa:6e:e9:7d:b2:79:ad:f9:66:d5:2c:e9:fc:b8:02: 07:e5:af:96:31:70:b6:ac:8a:b7:f0:d8:39:4a:35:58:6d:04: d2:f2:43:f6:ef:59:2b:9c:ac:af:40:56:38:48:c8:93:01:35: 96:ac:47:eb:4d:8b:c5:c7:6a:50:d3:af:aa:31:ab:d5:64:09: 11:9b:7b:09:73:64:24:ab:28:6d:a5:80:f0:32:69:8f:41:ea: 2e:af:26:35:e4:40:42:9f:60:0a:d0:5a:50:16:7c:ca:ca:de: 80:0d:23:e5:25:2e:a3:6c:31:95:26:4e:53:d3:63:d5:c9:d9: fe:91:7e:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZurbiX0hQL33gMflvxhx0TXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxNGEwZjQyMTkwOTQ0YWM2YjQ1ZTAwYTI0YWU0MWEzNDVm ZGNiMzUwHhcNMjYwMTExMDUwMTIxWhcNMjYwMTEyMDUwMTIxWjAzMTEwLwYDVQQD EyhkY2NjZDBjYmYxYWY2MDFiOTMxOGU1YjBjMTQ2Mzk0NjYyMmJiNWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEfeZE5b+HukTFFXcDQ0ye4GbDC+ 8EoR2r1PSP5iAW5BT4WgIwev5riYQnL6gtqsXcW8Hqig56+RTg15HHhVvMEOoYV/ ftE/ibeiJTy4Ko+twoTCUe29QFKmtyNeS+6GY6BLn2fhjRw/04h2cieS4Ist72f/ 3H0hsXVET6cP9q2WJM7nY/+PkqwuEfuyvgpa2y1XBiSaLIYUYVDvOk1WA+y7upQk Lmi3LRpfyAHUtIO8ojWmxDIZES7tGLv5hday1SVBM37598oMYv4hk2T0LE3MC8cN V+I5tookUEYRmhG1iP1uhmKTjG9qDWNadQB0YxBod26AjZe9WFoKzARdSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNzM0Mvxr2AbkxjlsMFGOUZiK7XeMB8GA1UdIwQY MBaAFCFKD0IZCUSsa0XgCiSuQaNF/cs1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVVvUFFoa0pSS3hyUmVBS0pLNUJvMFg5eXpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8wZDU3ZmYtNTUzMC00NjBkLThiNTMt YjY2NTZjYzFiZDU5LzEvSVVvUFFoa0pSS3hyUmVBS0pLNUJvMFg5eXpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8wZDU3ZmYtNTUzMC00NjBkLThiNTMtYjY2NTZjYzFiZDU5 LzEvSVVvUFFoa0pSS3hyUmVBS0pLNUJvMFg5eXpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcAnmqhhd U7nMEX1Qg006ePHMNbcfW9KtoIijvKHAdh4ApZhDqo5uKe3sjRPoWaSUqpoR+VGD z4cpI8UrC4D+zJ0U2ycik7eDuVVdHI6sCymayH6n9PqVZjnOJ/tgy1wD0kToQaIL aRKpOIh1yh/YSYT6xSUDYQ9VG15xytemb+wnqm7pfbJ5rflm1Szp/LgCB+WvljFw tqyKt/DYOUo1WG0E0vJD9u9ZK5ysr0BWOEjIkwE1lqxH602LxcdqUNOvqjGr1WQJ EZt7CXNkJKsobaWA8DJpj0HqLq8mNeRAQp9gCtBaUBZ8ysregA0j5SUuo2wxlSZO U9Nj1cnZ/pF++A== -----END CERTIFICATE-----Generated at Sun Jan 11 15:10:32 2026 by rpki-client