This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft File: i6gkldaDsIyIGoGM0B-kL_9v9tE.mft (raw, json) Hash identifier: QlZUTgpQHbs0uPK0BBgCZdebKHXGRa8itWUCh7opvOg= Subject key identifier: AE:1D:2E:AE:89:72:81:F8:9E:63:7E:67:ED:5C:4B:71:E2:9F:BB:A4 Authority key identifier: 8B:A8:24:95:D6:83:B0:8C:88:1A:81:8C:D0:1F:A4:2F:FF:6F:F6:D1 Certificate issuer: /CN=8ba82495d683b08c881a818cd01fa42fff6ff6d1 Certificate serial: 019BB1A7CF0302963F10C0F54B8D783C0206 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft Manifest number: 03BA Signing time: Mon 12 Jan 2026 10:02:03 +0000 Manifest this update: Mon 12 Jan 2026 10:02:03 +0000 Manifest next update: Tue 13 Jan 2026 10:02:03 +0000 Files and hashes: 1: i6gkldaDsIyIGoGM0B-kL_9v9tE.crl (hash: MlgVWq3BQAI+kp37fcqtOsZ2Wm0itCWFnBVbCeD7S5Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b1:a7:cf:03:02:96:3f:10:c0:f5:4b:8d:78:3c:02:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ba82495d683b08c881a818cd01fa42fff6ff6d1 Validity Not Before: Jan 12 10:02:03 2026 GMT Not After : Jan 13 10:02:03 2026 GMT Subject: CN=ae1d2eae897281f89e637e67ed5c4b71e29fbba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:db:98:a9:91:ac:ae:81:c3:5b:55:38:dc:0f: dd:e0:e8:87:07:5e:f2:63:30:14:88:de:ed:7c:2f: d7:63:b3:08:2d:02:3b:c7:f7:2f:7d:89:59:a2:a4: bd:2a:dc:17:45:dc:74:d4:ed:45:da:19:c6:9c:d1: 95:62:3d:d4:13:9e:e4:93:d0:3e:18:be:23:25:e0: e3:70:50:43:67:b0:b1:a3:d1:cf:31:8d:e1:b9:01: f4:4c:6a:a6:5c:8d:5b:af:ff:70:11:5d:ec:30:ee: c5:a6:49:4c:17:62:d8:3d:60:09:81:5d:a4:71:3a: 4d:2e:26:bd:cb:ba:bf:12:9f:b0:14:6a:c9:b0:81: ef:ab:2a:c6:d5:ba:ee:bb:3e:a4:58:a9:28:f9:ac: 61:20:d0:10:e4:8e:4f:ad:c9:bb:77:77:6f:8b:58: 21:5d:c1:16:2f:4b:6f:56:1d:40:bf:42:d8:17:8e: db:57:b9:25:8d:47:b1:86:22:8c:99:28:59:b7:67: b6:07:f9:c0:21:8d:e6:c1:39:a5:aa:42:82:cf:25: 8c:63:0a:8e:f2:39:cf:ea:c9:8d:98:56:3d:08:81: 5a:8c:40:cc:95:be:25:b6:bc:de:a8:ea:3b:50:e2: ed:5e:79:75:e1:9a:52:32:c1:23:ff:c5:b1:a6:32: 86:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:1D:2E:AE:89:72:81:F8:9E:63:7E:67:ED:5C:4B:71:E2:9F:BB:A4 X509v3 Authority Key Identifier: keyid:8B:A8:24:95:D6:83:B0:8C:88:1A:81:8C:D0:1F:A4:2F:FF:6F:F6:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:63:09:e6:20:ae:85:48:04:0e:7d:5e:03:49:8a:b0:31:0a: 8f:70:02:fd:ff:56:bf:0b:66:72:f9:6c:e2:94:63:5d:15:24: 1f:a6:3d:5d:19:d7:f5:51:c0:4d:f3:83:c4:f7:61:d2:0f:14: 13:b3:fb:6c:45:0c:cd:9f:0f:ee:0e:2a:d6:cd:c4:51:59:5e: b0:c6:09:9c:aa:2f:ed:da:e5:a3:2d:90:86:c2:bb:9d:47:42: 66:f8:c1:6e:d0:32:ab:1d:fd:8f:d5:ea:df:fe:75:83:bf:20: ba:2b:c6:a7:b7:9d:40:56:f8:38:8a:b1:d7:ae:a3:c4:d2:30: cf:75:c3:18:56:af:ed:17:b1:54:81:a7:89:c2:ec:de:6f:cb: a5:6c:ac:d9:44:4e:42:c9:11:48:89:95:b8:a7:5a:34:72:af: 51:b4:0f:f3:2c:22:f4:a7:e2:a9:e2:8b:e5:67:e8:2e:1d:13: d3:0d:04:c8:c9:38:f0:67:f2:64:64:f7:ce:52:16:4f:bb:2e: ec:61:24:6d:5a:d3:8e:a1:3c:1e:c0:0a:32:8a:bb:ae:9e:a0: ca:b0:43:ae:78:44:58:c8:29:79:8b:14:45:fd:7e:4c:5e:13: bd:8e:ad:2d:b5:cb:de:95:a7:87:fe:8a:91:17:b8:41:4c:04: e6:75:ce:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuxp88DApY/EMD1S414PAIGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiYTgyNDk1ZDY4M2IwOGM4ODFhODE4Y2QwMWZhNDJmZmY2 ZmY2ZDEwHhcNMjYwMTEyMTAwMjAzWhcNMjYwMTEzMTAwMjAzWjAzMTEwLwYDVQQD EyhhZTFkMmVhZTg5NzI4MWY4OWU2MzdlNjdlZDVjNGI3MWUyOWZiYmE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAituYqZGsroHDW1U43A/d4OiHB17y YzAUiN7tfC/XY7MILQI7x/cvfYlZoqS9KtwXRdx01O1F2hnGnNGVYj3UE57kk9A+ GL4jJeDjcFBDZ7Cxo9HPMY3huQH0TGqmXI1br/9wEV3sMO7FpklMF2LYPWAJgV2k cTpNLia9y7q/Ep+wFGrJsIHvqyrG1bruuz6kWKko+axhINAQ5I5Prcm7d3dvi1gh XcEWL0tvVh1Av0LYF47bV7kljUexhiKMmShZt2e2B/nAIY3mwTmlqkKCzyWMYwqO 8jnP6smNmFY9CIFajEDMlb4ltrzeqOo7UOLtXnl14ZpSMsEj/8WxpjKGFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK4dLq6JcoH4nmN+Z+1cS3Hin7ukMB8GA1UdIwQY MBaAFIuoJJXWg7CMiBqBjNAfpC//b/bRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTZna2xkYURzSXlJR29HTTBCLWtMXzl2OXRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy82OGVkOTgtZmUzZi00MDYzLTkxYTkt YzYyNTBmYjYwOTZlLzEvaTZna2xkYURzSXlJR29HTTBCLWtMXzl2OXRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy82OGVkOTgtZmUzZi00MDYzLTkxYTktYzYyNTBmYjYwOTZl LzEvaTZna2xkYURzSXlJR29HTTBCLWtMXzl2OXRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuWMJ5iCu hUgEDn1eA0mKsDEKj3AC/f9Wvwtmcvls4pRjXRUkH6Y9XRnX9VHATfODxPdh0g8U E7P7bEUMzZ8P7g4q1s3EUVlesMYJnKov7drloy2QhsK7nUdCZvjBbtAyqx39j9Xq 3/51g78guivGp7edQFb4OIqx166jxNIwz3XDGFav7RexVIGnicLs3m/LpWys2URO QskRSImVuKdaNHKvUbQP8ywi9KfiqeKL5WfoLh0T0w0EyMk48GfyZGT3zlIWT7su 7GEkbVrTjqE8HsAKMoq7rp6gyrBDrnhEWMgpeYsURf1+TF4TvY6tLbXL3pWnh/6K kRe4QUwE5nXOpA== -----END CERTIFICATE-----Generated at Mon Jan 12 13:45:53 2026 by rpki-client