This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json) Hash identifier: xAYoRErFK0wBze3L8Qp8iCOfKAEk7MjyuKQQbBTEOj4= Subject key identifier: D3:5A:4C:1F:CF:09:B6:EF:BC:6A:37:F7:01:BA:F8:56:B4:35:7E:73 Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb Certificate serial: 019BB65F5FB818421D7C28AAB0564F52C542 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft Manifest number: 16B8 Signing time: Tue 13 Jan 2026 08:01:02 +0000 Manifest this update: Tue 13 Jan 2026 08:01:02 +0000 Manifest next update: Wed 14 Jan 2026 08:01:02 +0000 Files and hashes: 1: 6k_g9zpR0oUHNJNOJpWC6Uips58.roa (hash: xsbRkvDZeur19giHSHwKBgppoMpB/PB9Dmlu/eOW38M=) 2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: +5qzdWP5OKgfjBd/5Fq1B6lRGsL+dbLcGL+/dehUwJ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 Jan 2026 08:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b6:5f:5f:b8:18:42:1d:7c:28:aa:b0:56:4f:52:c5:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb Validity Not Before: Jan 13 08:01:02 2026 GMT Not After : Jan 14 08:01:02 2026 GMT Subject: CN=d35a4c1fcf09b6efbc6a37f701baf856b4357e73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f0:2d:78:5c:ba:a2:a9:36:fc:75:55:a2:1c: b5:e7:5a:34:d7:d6:11:dd:27:15:3f:44:ca:d6:64: da:64:6a:02:05:9c:de:92:1d:80:1a:70:00:e9:d8: 61:9d:0c:90:54:9c:4d:b2:61:3e:1f:8b:12:d1:10: a5:61:f3:c1:89:b4:2b:eb:3e:a8:08:f3:d6:20:93: 3e:da:7a:46:52:5d:8a:06:e3:5c:e6:3e:75:35:1c: d8:7a:ab:2b:af:b9:f9:f5:29:49:cd:ac:ec:8d:35: fa:00:b5:14:8b:3d:d8:ce:a9:aa:9b:16:bc:85:f0: 17:d9:4e:99:b2:f1:c1:93:6a:9a:29:78:02:6e:0c: 23:6b:f9:9e:93:d4:8e:88:60:7e:4d:35:31:d7:c6: ff:c4:e5:18:c8:9a:64:56:64:cf:21:07:74:e2:e8: 76:a9:fa:e0:72:4d:62:8c:92:49:25:09:60:c0:26: a9:8d:d9:e9:f3:72:78:fd:d1:ef:68:42:b3:51:2b: 9e:0f:c2:6e:ab:6b:a4:b8:2a:14:ba:04:c4:40:b4: 71:72:b5:d3:a4:77:b9:29:fb:9b:f0:f2:db:33:e8: a8:f0:dd:0a:da:1b:18:4e:8c:ff:3f:31:e6:16:4b: eb:90:32:0f:b1:e2:8b:63:65:c3:52:b3:00:71:ed: 62:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:5A:4C:1F:CF:09:B6:EF:BC:6A:37:F7:01:BA:F8:56:B4:35:7E:73 X509v3 Authority Key Identifier: keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:07:19:ce:94:4b:f1:ce:64:b0:53:0a:6d:f9:98:8e:3d:5c: c0:ad:03:73:38:86:50:6c:52:5a:09:ff:b4:d8:1b:3a:0d:f1: 30:a8:2e:79:ee:bb:2b:37:f7:7a:32:2c:17:96:b5:47:4e:9a: ab:9f:27:c7:0f:54:1e:2c:b6:c0:af:70:73:06:7a:df:3c:0e: b4:35:ec:7d:68:bb:28:e9:14:45:89:53:cd:de:20:24:72:e2: 0b:0f:96:7d:1b:35:ae:13:a8:fb:2f:99:4d:02:b9:c6:b2:19: 46:cf:3b:a5:b7:3d:f8:e5:36:e7:a6:8c:bb:6d:4b:d0:c3:6b: f8:7a:49:e3:50:10:37:12:d6:7e:13:a1:c6:79:fb:21:e7:e3: ca:55:e8:43:69:7c:92:f8:f6:60:09:84:8c:70:92:91:25:dc: 84:77:e3:ae:77:38:a5:24:91:cb:ea:80:b3:97:f0:3d:63:59: 4d:ae:97:23:66:2f:e9:a1:57:63:47:7f:21:0c:55:7c:90:b9: 9a:a2:ec:67:cd:4a:b4:93:58:c9:de:34:85:ff:03:5b:a8:0d: 92:e4:23:09:8d:06:98:51:1e:58:32:97:9a:f5:fc:c0:05:ad: b3:82:3b:e4:d3:0a:71:71:1e:cf:33:bc:6f:9e:ea:cf:74:f7: 28:bf:5d:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZu2X1+4GEIdfCiqsFZPUsVCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMjZhOTk3NDEwMmJhNTgyMjE3MTg4YmU2ZDQ5ZDg3NzZk M2JlYmIwHhcNMjYwMTEzMDgwMTAyWhcNMjYwMTE0MDgwMTAyWjAzMTEwLwYDVQQD EyhkMzVhNGMxZmNmMDliNmVmYmM2YTM3ZjcwMWJhZjg1NmI0MzU3ZTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPAteFy6oqk2/HVVohy151o019YR 3ScVP0TK1mTaZGoCBZzekh2AGnAA6dhhnQyQVJxNsmE+H4sS0RClYfPBibQr6z6o CPPWIJM+2npGUl2KBuNc5j51NRzYeqsrr7n59SlJzazsjTX6ALUUiz3Yzqmqmxa8 hfAX2U6ZsvHBk2qaKXgCbgwja/mek9SOiGB+TTUx18b/xOUYyJpkVmTPIQd04uh2 qfrgck1ijJJJJQlgwCapjdnp83J4/dHvaEKzUSueD8Juq2ukuCoUugTEQLRxcrXT pHe5Kfub8PLbM+io8N0K2hsYToz/PzHmFkvrkDIPseKLY2XDUrMAce1iOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNNaTB/PCbbvvGo39wG6+Fa0NX5zMB8GA1UdIwQY MBaAFIImqZdBArpYIhcYi+bUnYd20767MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2lhcGwwRUN1bGdpRnhpTDV0U2RoM2JUdnJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8zNTQ3N2YtODBkMC00ZWE0LWJiZGUt NzY3YjcyZWI0MDdiLzEvZ2lhcGwwRUN1bGdpRnhpTDV0U2RoM2JUdnJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8zNTQ3N2YtODBkMC00ZWE0LWJiZGUtNzY3YjcyZWI0MDdi LzEvZ2lhcGwwRUN1bGdpRnhpTDV0U2RoM2JUdnJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAAcZzpRL 8c5ksFMKbfmYjj1cwK0DcziGUGxSWgn/tNgbOg3xMKguee67Kzf3ejIsF5a1R06a q58nxw9UHiy2wK9wcwZ63zwOtDXsfWi7KOkURYlTzd4gJHLiCw+WfRs1rhOo+y+Z TQK5xrIZRs87pbc9+OU256aMu21L0MNr+HpJ41AQNxLWfhOhxnn7IefjylXoQ2l8 kvj2YAmEjHCSkSXchHfjrnc4pSSRy+qAs5fwPWNZTa6XI2Yv6aFXY0d/IQxVfJC5 mqLsZ81KtJNYyd40hf8DW6gNkuQjCY0GmFEeWDKXmvX8wAWts4I75NMKcXEezzO8 b57qz3T3KL9dFA== -----END CERTIFICATE-----Generated at Tue Jan 13 14:17:56 2026 by rpki-client