This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft File: iaBBZwABZgo3ILd9dk2DaFIZATg.mft (raw, json) Hash identifier: joogpvvVbs94ntWULJ57WCHHREky44d2WrfYxXEM520= Subject key identifier: 15:ED:3F:62:51:72:89:99:02:D9:F4:37:7C:4E:42:48:AE:D7:84:7E Authority key identifier: 89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38 Certificate issuer: /CN=89a041670001660a3720b77d764d836852190138 Certificate serial: 019C41D8BCFA5F8F6FB51B0C367E92EB0D1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft Manifest number: 0617 Signing time: Mon 09 Feb 2026 10:00:48 +0000 Manifest this update: Mon 09 Feb 2026 10:00:48 +0000 Manifest next update: Tue 10 Feb 2026 10:00:48 +0000 Files and hashes: 1: YYlR0VhASW-c1FKU9zzl7csrdhQ.roa (hash: L8Cgn7blv4wmGFxmaxB9nE0adWzGkvnaCFP3mMVQv7g=) 2: iaBBZwABZgo3ILd9dk2DaFIZATg.crl (hash: VNjtE6QDap4ULjxYMKbk1NR3LXlbc9Wz5SRkQq4e5zI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:bc:fa:5f:8f:6f:b5:1b:0c:36:7e:92:eb:0d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89a041670001660a3720b77d764d836852190138 Validity Not Before: Feb 9 10:00:48 2026 GMT Not After : Feb 10 10:00:48 2026 GMT Subject: CN=15ed3f625172899902d9f4377c4e4248aed7847e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:64:01:dc:7d:68:b7:9f:0e:c8:34:25:ff:47: f5:cb:c3:35:db:25:7e:53:4c:02:ea:f9:86:97:a7: c3:72:4f:10:2f:e8:33:d1:6c:a5:9a:67:13:65:e5: 51:35:f4:ab:eb:90:cf:0c:17:bd:7f:d7:79:24:7c: 10:c7:b4:32:fa:5e:40:25:88:8e:f5:b4:66:19:16: 5d:2f:a5:a5:bd:53:96:9e:77:f4:8f:d4:af:eb:7e: 47:8c:32:4d:c1:d9:b3:5d:85:fc:aa:e3:1b:d8:7c: cc:1e:34:19:c8:bc:24:86:b5:f6:15:e4:45:a9:1a: 4a:88:d0:42:17:1f:7b:bf:99:aa:95:06:63:2d:50: 7b:75:4f:f4:11:45:0f:88:83:1e:8f:e9:d9:12:4b: 61:53:ff:8d:73:ee:c1:76:85:05:7b:9f:c3:ad:d3: bb:22:7f:ff:7c:4d:a6:d2:86:37:a3:93:32:1c:cc: 46:92:28:0d:2f:60:e4:85:81:2c:8c:70:64:44:71: 03:58:2b:b9:db:77:6a:80:93:91:41:7d:17:bf:86: e6:f1:0e:f8:0d:8e:b8:86:9a:a0:9d:e4:e1:5b:2c: da:3a:34:d4:9b:25:74:76:85:29:e9:37:81:4d:be: 0d:2c:ca:97:d3:94:3c:6e:b0:bb:75:28:85:3f:ae: c7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:ED:3F:62:51:72:89:99:02:D9:F4:37:7C:4E:42:48:AE:D7:84:7E X509v3 Authority Key Identifier: keyid:89:A0:41:67:00:01:66:0A:37:20:B7:7D:76:4D:83:68:52:19:01:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaBBZwABZgo3ILd9dk2DaFIZATg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4469a-13a8-472c-b46f-4bb414623a14/1/iaBBZwABZgo3ILd9dk2DaFIZATg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:f6:e5:16:dc:a3:96:99:2f:cb:47:2f:04:2e:36:63:5a:f0: 21:ad:4e:08:b1:48:bc:e2:ee:dc:6c:17:d8:c3:46:cd:00:82: a5:75:ba:44:ea:e5:8d:d8:6f:98:95:70:98:90:29:e3:c8:eb: bb:45:f4:b7:bd:c2:66:eb:f6:1b:06:52:b5:2f:7e:85:ce:fa: 3a:89:c6:40:7f:c9:c8:8d:6c:56:4e:1b:df:85:e6:44:12:82: 5b:b0:59:28:d9:15:4d:79:59:5c:73:40:76:5f:a5:12:51:10: 60:6f:78:89:04:83:1d:71:4d:d1:c1:9e:dc:f9:1e:35:a5:36: 08:73:62:7c:77:bd:26:c8:bc:ee:0b:a2:95:88:5f:0c:00:08: 32:83:6e:12:b4:9b:0b:4a:ca:67:11:e2:41:81:31:ab:c4:f2: 06:76:2b:18:15:47:e8:a5:57:db:19:13:e3:07:21:cc:60:68: e6:d9:76:60:5a:29:4e:6c:15:88:bd:ff:09:de:2c:f3:cb:74: a8:49:bc:a5:f4:ac:e0:5b:20:59:87:c9:5f:b1:78:ac:e2:73: 91:fa:36:7e:e1:22:a7:dc:a6:39:9d:c2:7a:03:f8:c0:9a:98: db:73:7a:9e:37:0e:e0:42:df:0f:56:d6:f2:a9:c7:d7:88:41: da:7c:fe:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2Lz6X49vtRsMNn6S6w0aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YTA0MTY3MDAwMTY2MGEzNzIwYjc3ZDc2NGQ4MzY4NTIx OTAxMzgwHhcNMjYwMjA5MTAwMDQ4WhcNMjYwMjEwMTAwMDQ4WjAzMTEwLwYDVQQD EygxNWVkM2Y2MjUxNzI4OTk5MDJkOWY0Mzc3YzRlNDI0OGFlZDc4NDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWQB3H1ot58OyDQl/0f1y8M12yV+ U0wC6vmGl6fDck8QL+gz0WylmmcTZeVRNfSr65DPDBe9f9d5JHwQx7Qy+l5AJYiO 9bRmGRZdL6WlvVOWnnf0j9Sv635HjDJNwdmzXYX8quMb2HzMHjQZyLwkhrX2FeRF qRpKiNBCFx97v5mqlQZjLVB7dU/0EUUPiIMej+nZEkthU/+Nc+7BdoUFe5/DrdO7 In//fE2m0oY3o5MyHMxGkigNL2DkhYEsjHBkRHEDWCu523dqgJORQX0Xv4bm8Q74 DY64hpqgneThWyzaOjTUmyV0doUp6TeBTb4NLMqX05Q8brC7dSiFP67H6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBXtP2JRcomZAtn0N3xOQkiu14R+MB8GA1UdIwQY MBaAFImgQWcAAWYKNyC3fXZNg2hSGQE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYt NGJiNDE0NjIzYTE0LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9kNDQ2OWEtMTNhOC00NzJjLWI0NmYtNGJiNDE0NjIzYTE0 LzEvaWFCQlp3QUJaZ28zSUxkOWRrMkRhRklaQVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD/blFtyj lpkvy0cvBC42Y1rwIa1OCLFIvOLu3GwX2MNGzQCCpXW6ROrljdhvmJVwmJAp48jr u0X0t73CZuv2GwZStS9+hc76OonGQH/JyI1sVk4b34XmRBKCW7BZKNkVTXlZXHNA dl+lElEQYG94iQSDHXFN0cGe3PkeNaU2CHNifHe9Jsi87guilYhfDAAIMoNuErSb C0rKZxHiQYExq8TyBnYrGBVH6KVX2xkT4wchzGBo5tl2YFopTmwViL3/Cd4s88t0 qEm8pfSs4FsgWYfJX7F4rOJzkfo2fuEip9ymOZ3CegP4wJqY23N6njcO4ELfD1bW 8qnH14hB2nz+RA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:14 2026 by rpki-client