This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.mft File: iXlCagvNkDpVJkksxa97TysO2wQ.mft (raw, json) Hash identifier: SA8i6n07DK3w029XTsMXECLQvtYh2w5a9uMMhP8Z1gA= Subject key identifier: 48:A2:8B:3E:A2:85:3A:F9:73:69:0D:7C:7B:01:BB:8C:96:1A:28:6B Authority key identifier: 89:79:42:6A:0B:CD:90:3A:55:26:49:2C:C5:AF:7B:4F:2B:0E:DB:04 Certificate issuer: /CN=8979426a0bcd903a5526492cc5af7b4f2b0edb04 Certificate serial: 019BAD93742E0987ADD31683A8AB871A0FB9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iXlCagvNkDpVJkksxa97TysO2wQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.mft Manifest number: 0744 Signing time: Sun 11 Jan 2026 15:01:20 +0000 Manifest this update: Sun 11 Jan 2026 15:01:20 +0000 Manifest next update: Mon 12 Jan 2026 15:01:20 +0000 Files and hashes: 1: iXlCagvNkDpVJkksxa97TysO2wQ.crl (hash: nFnX+XMQorf7IlF1qXYwRQbT17QyQpCEDmVQ1nkzoMA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.crl rsync://rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.mft rsync://rpki.ripe.net/repository/DEFAULT/iXlCagvNkDpVJkksxa97TysO2wQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 15:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ad:93:74:2e:09:87:ad:d3:16:83:a8:ab:87:1a:0f:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8979426a0bcd903a5526492cc5af7b4f2b0edb04 Validity Not Before: Jan 11 15:01:20 2026 GMT Not After : Jan 12 15:01:20 2026 GMT Subject: CN=48a28b3ea2853af973690d7c7b01bb8c961a286b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ff:b0:21:f0:32:7e:e5:61:54:40:6c:06:cc: 50:c7:32:86:be:6c:ed:c8:69:1d:8e:f0:1e:8d:30: 3d:25:7f:40:0e:c8:9f:52:13:6a:b4:d4:e4:d5:d7: 77:a9:d3:e2:d7:ae:6d:43:0e:96:16:98:c4:f7:e3: d9:03:08:1f:2a:6e:73:e6:0a:22:f8:20:50:ed:c8: 20:a2:6f:f8:db:4f:ee:62:86:26:0b:85:ca:45:83: 34:a5:de:14:82:ad:b8:ab:e7:6b:2c:5c:8a:e9:8e: 77:e5:03:95:f2:b6:3e:c1:70:8d:8d:24:25:2b:5c: 0e:ee:9b:4a:85:4c:a3:7a:c8:19:d2:ed:d8:34:99: 02:19:c4:ab:ac:60:11:82:46:67:15:17:49:44:3c: d8:4c:b9:94:fe:5b:c8:45:6f:ca:08:2c:b7:a5:57: 6e:08:37:57:3a:80:41:63:a0:2d:d1:0a:d7:0a:d1: 0b:08:15:dc:17:c7:11:c3:7f:af:ae:78:77:f3:2b: a1:b1:18:bd:f9:1f:a3:e8:fe:00:63:f4:fc:d3:51: a5:2b:9f:5c:c1:04:88:ce:23:d6:2c:fe:0e:1b:1f: 08:ab:d2:23:27:0c:38:a2:7d:28:e9:6d:43:7a:c2: 68:6a:f0:8a:68:7f:73:46:b3:f1:e8:d6:c3:e2:33: 7a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:A2:8B:3E:A2:85:3A:F9:73:69:0D:7C:7B:01:BB:8C:96:1A:28:6B X509v3 Authority Key Identifier: keyid:89:79:42:6A:0B:CD:90:3A:55:26:49:2C:C5:AF:7B:4F:2B:0E:DB:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iXlCagvNkDpVJkksxa97TysO2wQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/993364-d85f-4007-96ec-49ac28142318/1/iXlCagvNkDpVJkksxa97TysO2wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:e5:af:b2:77:27:25:57:bd:4d:10:c1:58:85:73:7b:1b:b6: da:b3:9e:9c:2e:bc:fc:38:d8:a5:cc:47:29:38:3b:f5:1d:71: 6c:8e:0c:a0:74:c2:a0:86:21:42:71:4f:80:8f:6f:bc:a1:8a: 51:c6:80:61:72:b9:43:5a:8a:0b:99:40:66:9e:e2:d0:df:df: f6:8f:c5:ee:48:76:77:eb:4d:a0:c1:60:6e:f5:7f:29:0c:c4: 6d:fb:9a:d3:c8:e9:32:d9:39:bc:95:13:e6:db:95:d6:4a:36: 59:ba:b1:16:1a:92:a2:77:76:c1:a8:31:69:89:9b:2c:7a:8a: 03:d5:00:04:2b:d4:cb:d1:9f:e6:32:e7:44:a6:7b:8c:b9:23: 5a:ba:2d:af:0f:33:1f:e9:85:74:8c:cc:2c:8c:81:9c:81:ba: a2:46:d4:2f:db:41:b8:88:03:30:38:c7:95:89:be:1e:50:a2: e5:57:ff:7d:ae:5d:34:be:59:94:99:62:4a:ad:b7:c3:24:51: 48:73:4b:b4:9b:b7:ec:46:f3:57:1e:3d:13:74:47:7b:97:29: 79:33:33:88:01:f3:c8:18:7b:7d:22:e0:cd:51:02:ca:ba:cb: 7b:a5:b8:88:18:02:28:da:6b:11:16:59:85:05:f6:f8:66:84: 37:8e:a2:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZutk3QuCYet0xaDqKuHGg+5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5Nzk0MjZhMGJjZDkwM2E1NTI2NDkyY2M1YWY3YjRmMmIw ZWRiMDQwHhcNMjYwMTExMTUwMTIwWhcNMjYwMTEyMTUwMTIwWjAzMTEwLwYDVQQD Eyg0OGEyOGIzZWEyODUzYWY5NzM2OTBkN2M3YjAxYmI4Yzk2MWEyODZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/+wIfAyfuVhVEBsBsxQxzKGvmzt yGkdjvAejTA9JX9ADsifUhNqtNTk1dd3qdPi165tQw6WFpjE9+PZAwgfKm5z5goi +CBQ7cggom/420/uYoYmC4XKRYM0pd4Ugq24q+drLFyK6Y535QOV8rY+wXCNjSQl K1wO7ptKhUyjesgZ0u3YNJkCGcSrrGARgkZnFRdJRDzYTLmU/lvIRW/KCCy3pVdu CDdXOoBBY6At0QrXCtELCBXcF8cRw3+vrnh38yuhsRi9+R+j6P4AY/T801GlK59c wQSIziPWLP4OGx8Iq9IjJww4on0o6W1DesJoavCKaH9zRrPx6NbD4jN6fwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEiiiz6ihTr5c2kNfHsBu4yWGihrMB8GA1UdIwQY MBaAFIl5QmoLzZA6VSZJLMWve08rDtsEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVhsQ2Fndk5rRHBWSmtrc3hhOTdUeXNPMndRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi85OTMzNjQtZDg1Zi00MDA3LTk2ZWMt NDlhYzI4MTQyMzE4LzEvaVhsQ2Fndk5rRHBWSmtrc3hhOTdUeXNPMndRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi85OTMzNjQtZDg1Zi00MDA3LTk2ZWMtNDlhYzI4MTQyMzE4 LzEvaVhsQ2Fndk5rRHBWSmtrc3hhOTdUeXNPMndRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH+Wvsncn JVe9TRDBWIVzexu22rOenC68/DjYpcxHKTg79R1xbI4MoHTCoIYhQnFPgI9vvKGK UcaAYXK5Q1qKC5lAZp7i0N/f9o/F7kh2d+tNoMFgbvV/KQzEbfua08jpMtk5vJUT 5tuV1ko2WbqxFhqSond2wagxaYmbLHqKA9UABCvUy9Gf5jLnRKZ7jLkjWrotrw8z H+mFdIzMLIyBnIG6okbUL9tBuIgDMDjHlYm+HlCi5Vf/fa5dNL5ZlJliSq23wyRR SHNLtJu37EbzVx49E3RHe5cpeTMziAHzyBh7fSLgzVECyrrLe6W4iBgCKNprERZZ hQX2+GaEN46i2g== -----END CERTIFICATE-----Generated at Sun Jan 11 23:16:49 2026 by rpki-client