This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft File: iJiSZOUPOa6IiuMnYQm7qALkWAE.mft (raw, json) Hash identifier: cG1cNJoOP9HAdO59KbOyZ2jL0PktgoDcvYqvzW5+FdQ= Subject key identifier: EF:24:4F:17:42:16:27:DA:B8:68:B3:A2:71:C5:93:C9:64:3C:CD:50 Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01 Certificate issuer: /CN=88989264e50f39ae888ae3276109bba802e45801 Certificate serial: 019BAF81C060A54B68BE2C4CBB22694685E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft Manifest number: 045B Signing time: Mon 12 Jan 2026 00:01:14 +0000 Manifest this update: Mon 12 Jan 2026 00:01:14 +0000 Manifest next update: Tue 13 Jan 2026 00:01:14 +0000 Files and hashes: 1: AQr0Xr5i3xBK0VnBVEVqjXo_PEE.roa (hash: Q7J5BCM0jvKNyBjP+FioWdAANoRPVT9LyCNXJ4wWorw=) 2: iJiSZOUPOa6IiuMnYQm7qALkWAE.crl (hash: TP7kBL4/KFE0Gilzj67cFAY2Oud9Dd9fBRsGlqCl3WY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 00:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:af:81:c0:60:a5:4b:68:be:2c:4c:bb:22:69:46:85:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88989264e50f39ae888ae3276109bba802e45801 Validity Not Before: Jan 12 00:01:14 2026 GMT Not After : Jan 13 00:01:14 2026 GMT Subject: CN=ef244f17421627dab868b3a271c593c9643ccd50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:11:ca:bb:1f:17:c8:69:21:4e:49:3d:2b:85: 66:8f:29:b9:eb:89:86:fb:15:a3:02:7f:7c:3d:8b: 48:43:11:1e:a8:a6:0c:c7:4e:c6:cc:2b:46:d4:0c: ba:17:19:33:9a:31:60:ce:a6:a5:af:bd:46:93:b3: 61:5f:8a:c9:49:6a:e1:6f:d2:6a:e2:89:ad:02:1e: 1e:4a:00:bc:2f:da:5d:f2:18:f2:4d:93:90:11:ee: bc:af:f8:79:ef:d3:80:59:34:c9:c2:86:09:c9:2d: da:a7:06:9d:54:22:c4:3c:55:a8:b0:01:7b:c7:c7: 4e:3b:57:65:65:44:02:0b:f3:d8:58:d4:eb:56:36: 96:e2:27:d8:a6:e5:2d:ae:a7:e0:29:78:6f:0e:01: 00:98:60:01:14:ea:b0:05:46:bc:4c:5f:e1:d6:b5: d0:45:20:a0:30:49:e3:3a:bd:f2:7a:a9:de:69:dd: 35:aa:65:be:6c:20:ea:84:e0:f5:bf:2f:eb:38:2f: 74:90:2b:6e:58:f9:17:08:62:7d:a6:87:d3:9a:9c: f4:a8:49:31:3e:dc:6e:4b:de:8b:03:42:60:d9:fb: 03:51:43:81:1e:3f:88:3b:05:39:1b:d3:a7:67:c6: b4:b5:1a:97:43:46:8a:73:a9:3d:82:7c:3d:94:bf: ad:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:24:4F:17:42:16:27:DA:B8:68:B3:A2:71:C5:93:C9:64:3C:CD:50 X509v3 Authority Key Identifier: keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:04:d3:fa:85:55:cf:1f:1b:11:62:0a:97:20:a3:da:70:6f: e7:39:9f:7b:36:a6:f5:50:32:1e:ca:50:be:32:fa:52:9c:d7: 49:13:d3:d1:a0:00:ff:10:bc:90:0a:a2:18:e3:c3:15:27:8f: 6e:d9:03:b4:f7:52:e9:06:38:83:87:e2:da:7d:31:57:d2:f3: 35:ba:2d:47:6d:9d:9d:fc:a4:1a:73:1a:e9:3d:92:bf:33:72: 6e:59:5c:67:ae:7a:2e:c2:56:d2:0a:9d:2f:8d:62:b0:70:a7: d9:47:75:09:f4:16:33:f0:05:5d:85:13:18:f6:21:08:e2:3b: 0e:fd:b8:4d:0b:31:19:21:62:d1:5b:53:62:90:04:a7:09:88: 57:e5:f4:74:e8:36:56:1f:b1:9b:d2:8f:22:96:9a:5a:38:23: 55:2c:6c:3f:f2:ae:6a:87:00:3a:54:5d:d6:ec:9e:98:ef:ce: 79:00:c7:5f:2e:e6:81:f2:6e:fe:5b:ec:fc:38:81:ec:15:1d: 58:e3:56:35:ea:c4:76:e2:c5:d3:27:b4:36:91:75:23:26:67: d4:e7:dd:d3:83:cd:5d:b9:74:c3:13:c0:e6:5f:94:43:db:92: e8:71:b1:27:65:28:10:67:4c:08:36:44:7b:34:cb:e9:ff:d8: 41:8d:39:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuvgcBgpUtovixMuyJpRoXmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4OTg5MjY0ZTUwZjM5YWU4ODhhZTMyNzYxMDliYmE4MDJl NDU4MDEwHhcNMjYwMTEyMDAwMTE0WhcNMjYwMTEzMDAwMTE0WjAzMTEwLwYDVQQD EyhlZjI0NGYxNzQyMTYyN2RhYjg2OGIzYTI3MWM1OTNjOTY0M2NjZDUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBHKux8XyGkhTkk9K4Vmjym564mG +xWjAn98PYtIQxEeqKYMx07GzCtG1Ay6FxkzmjFgzqalr71Gk7NhX4rJSWrhb9Jq 4omtAh4eSgC8L9pd8hjyTZOQEe68r/h579OAWTTJwoYJyS3apwadVCLEPFWosAF7 x8dOO1dlZUQCC/PYWNTrVjaW4ifYpuUtrqfgKXhvDgEAmGABFOqwBUa8TF/h1rXQ RSCgMEnjOr3yeqnead01qmW+bCDqhOD1vy/rOC90kCtuWPkXCGJ9pofTmpz0qEkx PtxuS96LA0Jg2fsDUUOBHj+IOwU5G9OnZ8a0tRqXQ0aKc6k9gnw9lL+tcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO8kTxdCFifauGizonHFk8lkPM1QMB8GA1UdIwQY MBaAFIiYkmTlDzmuiIrjJ2EJu6gC5FgBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUppU1pPVVBPYTZJaXVNbllRbTdxQUxrV0FFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS81NzEyNDQtOWM5YS00M2FjLTkzMGMt MzcwYzgwNzY5ODMxLzEvaUppU1pPVVBPYTZJaXVNbllRbTdxQUxrV0FFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS81NzEyNDQtOWM5YS00M2FjLTkzMGMtMzcwYzgwNzY5ODMx LzEvaUppU1pPVVBPYTZJaXVNbllRbTdxQUxrV0FFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFgTT+oVV zx8bEWIKlyCj2nBv5zmfezam9VAyHspQvjL6UpzXSRPT0aAA/xC8kAqiGOPDFSeP btkDtPdS6QY4g4fi2n0xV9LzNbotR22dnfykGnMa6T2SvzNybllcZ656LsJW0gqd L41isHCn2Ud1CfQWM/AFXYUTGPYhCOI7Dv24TQsxGSFi0VtTYpAEpwmIV+X0dOg2 Vh+xm9KPIpaaWjgjVSxsP/KuaocAOlRd1uyemO/OeQDHXy7mgfJu/lvs/DiB7BUd WONWNerEduLF0ye0NpF1IyZn1Ofd04PNXbl0wxPA5l+UQ9uS6HGxJ2UoEGdMCDZE ezTL6f/YQY05cA== -----END CERTIFICATE-----Generated at Mon Jan 12 09:07:31 2026 by rpki-client