This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft File: iqrwV67ry_cGh34qqnSjljgL4hU.mft (raw, json) Hash identifier: fBFIXdLSU1sVzFlK+ArThmIty8AvrlEuhe0eFn68ZGk= Subject key identifier: 35:69:77:3F:E2:21:C3:7B:B3:A9:B0:EC:01:E8:1D:E9:00:01:5A:42 Authority key identifier: 8A:AA:F0:57:AE:EB:CB:F7:06:87:7E:2A:AA:74:A3:96:38:0B:E2:15 Certificate issuer: /CN=8aaaf057aeebcbf706877e2aaa74a396380be215 Certificate serial: 019BB4DF625F19805385D676D913E4B61182 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft Manifest number: 0558 Signing time: Tue 13 Jan 2026 01:01:37 +0000 Manifest this update: Tue 13 Jan 2026 01:01:37 +0000 Manifest next update: Wed 14 Jan 2026 01:01:37 +0000 Files and hashes: 1: iqrwV67ry_cGh34qqnSjljgL4hU.crl (hash: xFr9f6vmtYQHWz9JuVNnKauFRDedAL0B6/jhs3UVmBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.crl rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 21:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b4:df:62:5f:19:80:53:85:d6:76:d9:13:e4:b6:11:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aaaf057aeebcbf706877e2aaa74a396380be215 Validity Not Before: Jan 13 01:01:37 2026 GMT Not After : Jan 14 01:01:37 2026 GMT Subject: CN=3569773fe221c37bb3a9b0ec01e81de900015a42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cc:27:42:cc:a7:6b:ae:0c:0b:03:bd:bd:71: 80:e7:b7:ef:78:81:12:ad:4e:5a:87:0a:d4:fa:6a: c8:29:4f:79:ee:cb:48:73:f5:7a:d1:6e:11:cb:dc: c5:83:08:4a:b3:b9:40:04:20:9b:87:d7:4a:37:7a: 99:f7:2e:42:c9:19:05:cd:47:ce:33:1e:26:c5:81: f6:99:2e:cc:c8:13:02:de:e8:3a:78:2f:4e:92:fb: 15:ef:24:8b:8e:dc:ad:0f:b1:31:49:fd:19:02:d2: 3a:7e:d0:f2:52:dd:c6:3a:53:33:2d:32:83:35:08: e5:2f:62:48:3c:e8:bb:4a:c0:d7:a0:55:b6:4a:ef: 96:bf:ea:bb:64:12:9c:66:c6:bf:30:ea:7e:1d:3f: 1c:1c:bd:be:04:78:cb:e1:3a:f6:dc:67:d8:9b:1d: 6b:a9:b5:02:20:03:b6:69:9a:1c:eb:de:60:73:a9: 66:74:08:0f:b4:45:99:86:29:b1:89:33:d9:2f:3f: ff:b1:3b:2c:16:59:2c:84:70:a3:6c:ef:0c:95:81: 3f:ac:c0:48:7f:8a:ff:51:1a:05:c4:8f:97:69:bc: 00:af:3d:9e:7e:25:91:f9:9f:7e:8a:ad:8b:01:62: 91:dc:e6:77:9e:d2:5a:25:64:0a:fa:94:53:9a:8b: 4b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:69:77:3F:E2:21:C3:7B:B3:A9:B0:EC:01:E8:1D:E9:00:01:5A:42 X509v3 Authority Key Identifier: keyid:8A:AA:F0:57:AE:EB:CB:F7:06:87:7E:2A:AA:74:A3:96:38:0B:E2:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:91:28:97:f5:ea:94:f7:c5:e2:f8:5f:a8:6b:de:b0:53:18: 30:9b:9a:58:3e:ed:65:ad:98:11:55:af:9e:45:fb:61:be:b2: 1e:a1:de:08:41:16:19:2e:40:80:75:25:91:bb:2b:73:53:ef: 6b:d2:e0:1a:bf:ef:33:c8:d8:78:c1:13:dd:d3:77:c5:e8:59: 5d:96:db:73:c7:0c:f8:90:7b:b1:d3:e4:16:94:59:c9:51:33: 31:e7:66:bf:fa:e5:58:cf:47:df:f2:f5:50:46:d3:90:93:45: dd:40:84:82:2d:f5:d4:9c:e7:fc:3e:93:a1:30:0e:e5:9b:1e: c5:b7:6e:5e:80:92:a5:c7:93:bd:00:9d:b4:31:b1:62:41:19: c3:3e:79:43:da:9e:e2:da:e8:17:96:65:60:0d:94:ef:70:06: 3b:02:6a:59:a6:51:9c:d8:06:b9:dd:79:21:cd:9a:6b:6e:9b: ed:d7:a9:a9:a3:23:28:05:8d:7f:b7:1b:48:fc:89:d8:1e:c5: 25:31:16:4d:78:da:b1:ec:51:0a:5b:cc:44:b5:56:35:2a:32: b8:d1:bd:b0:6a:80:95:de:de:1e:51:85:86:7c:ba:7a:30:b1: e6:25:08:d2:04:b1:40:85:33:cf:aa:6d:f6:b2:02:31:ae:c5: c9:e4:54:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZu032JfGYBThdZ22RPkthGCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWFmMDU3YWVlYmNiZjcwNjg3N2UyYWFhNzRhMzk2Mzgw YmUyMTUwHhcNMjYwMTEzMDEwMTM3WhcNMjYwMTE0MDEwMTM3WjAzMTEwLwYDVQQD EygzNTY5NzczZmUyMjFjMzdiYjNhOWIwZWMwMWU4MWRlOTAwMDE1YTQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnswnQsyna64MCwO9vXGA57fveIES rU5ahwrU+mrIKU957stIc/V60W4Ry9zFgwhKs7lABCCbh9dKN3qZ9y5CyRkFzUfO Mx4mxYH2mS7MyBMC3ug6eC9OkvsV7ySLjtytD7ExSf0ZAtI6ftDyUt3GOlMzLTKD NQjlL2JIPOi7SsDXoFW2Su+Wv+q7ZBKcZsa/MOp+HT8cHL2+BHjL4Tr23GfYmx1r qbUCIAO2aZoc695gc6lmdAgPtEWZhimxiTPZLz//sTssFlkshHCjbO8MlYE/rMBI f4r/URoFxI+XabwArz2efiWR+Z9+iq2LAWKR3OZ3ntJaJWQK+pRTmotLowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDVpdz/iIcN7s6mw7AHoHekAAVpCMB8GA1UdIwQY MBaAFIqq8Feu68v3Bod+Kqp0o5Y4C+IVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXFyd1Y2N3J5X2NHaDM0cXFuU2psamdMNGhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8yMjQwYTktNTRkNS00YjgyLTg3MzEt NTMwOTBiM2JhYTgxLzEvaXFyd1Y2N3J5X2NHaDM0cXFuU2psamdMNGhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC8yMjQwYTktNTRkNS00YjgyLTg3MzEtNTMwOTBiM2JhYTgx LzEvaXFyd1Y2N3J5X2NHaDM0cXFuU2psamdMNGhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX5Eol/Xq lPfF4vhfqGvesFMYMJuaWD7tZa2YEVWvnkX7Yb6yHqHeCEEWGS5AgHUlkbsrc1Pv a9LgGr/vM8jYeMET3dN3xehZXZbbc8cM+JB7sdPkFpRZyVEzMedmv/rlWM9H3/L1 UEbTkJNF3UCEgi311Jzn/D6ToTAO5ZsexbduXoCSpceTvQCdtDGxYkEZwz55Q9qe 4troF5ZlYA2U73AGOwJqWaZRnNgGud15Ic2aa26b7depqaMjKAWNf7cbSPyJ2B7F JTEWTXjasexRClvMRLVWNSoyuNG9sGqAld7eHlGFhny6ejCx5iUI0gSxQIUzz6pt 9rICMa7FyeRUXw== -----END CERTIFICATE-----Generated at Tue Jan 13 04:38:34 2026 by rpki-client