This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft File: iW81xeAyGs0CFn3viAfwu29xwo0.mft (raw, json) Hash identifier: T2waVo8T2PnrkaDK6U3/u5muQjAPlh2PrRIRq29RYb0= Subject key identifier: 37:06:3D:68:8B:27:1B:84:1F:FC:24:28:D1:89:7F:64:CE:69:C6:AE Authority key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D Certificate issuer: /CN=896f35c5e0321acd02167def8807f0bb6f71c28d Certificate serial: 019C42EAF5B1162F31393A1B6D681BB38CBB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft Manifest number: 13D2 Signing time: Mon 09 Feb 2026 15:00:20 +0000 Manifest this update: Mon 09 Feb 2026 15:00:20 +0000 Manifest next update: Tue 10 Feb 2026 15:00:20 +0000 Files and hashes: 1: 7O5GfirPqz8Z-l1UI_YHQO7lQh4.roa (hash: tzbY87wDHF363K7TSFpJw4yb7j/fVIJaQ3EDQVJafo4=) 2: iW81xeAyGs0CFn3viAfwu29xwo0.crl (hash: R+m51dyLDk6EQBgPN1XvSlebrOTjoCfE20ZtnjiXFXE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:f5:b1:16:2f:31:39:3a:1b:6d:68:1b:b3:8c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896f35c5e0321acd02167def8807f0bb6f71c28d Validity Not Before: Feb 9 15:00:20 2026 GMT Not After : Feb 10 15:00:20 2026 GMT Subject: CN=37063d688b271b841ffc2428d1897f64ce69c6ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9f:84:27:96:20:7c:e9:eb:03:5e:58:df:d5: 20:3e:a7:f3:2e:ed:ef:c9:65:28:87:30:61:8e:3e: 4a:75:3e:2b:87:57:5d:4b:69:7a:81:7d:b6:fa:10: 0f:f0:f1:d1:1e:66:a9:1a:d8:3b:4f:d5:93:8d:58: 5d:ee:32:bf:a9:78:54:4a:2c:4b:3e:70:65:bf:ff: 69:53:8b:17:4c:ad:5f:17:aa:cf:db:0b:f9:67:e8: e7:0d:21:28:f1:c3:c6:53:32:c3:81:3b:26:86:cb: 46:a5:d7:a0:60:e5:3b:11:54:fb:79:ec:43:1f:7d: d8:d5:aa:eb:df:9f:b7:b6:4d:b5:f9:6b:b9:a3:74: 0b:e8:16:9c:ea:5d:15:df:86:4e:dc:8f:70:6a:a8: 83:5b:dd:a6:59:86:35:de:4b:1a:98:f9:fb:8c:80: bb:5f:e1:a7:b5:8c:6f:56:1b:34:70:cb:16:9d:0e: 4b:03:26:5f:ef:e6:89:e8:d1:af:d7:ed:fd:bb:f4: b8:8a:8c:f0:7d:57:be:49:51:29:86:43:c4:5f:c2: 5c:9e:33:5a:6c:17:aa:f9:62:45:54:ab:35:94:cd: dd:57:2f:c0:78:94:7f:87:7d:08:99:a2:08:c2:c7: 59:18:5f:46:26:5c:89:4c:c9:da:97:ec:60:78:3c: b9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:06:3D:68:8B:27:1B:84:1F:FC:24:28:D1:89:7F:64:CE:69:C6:AE X509v3 Authority Key Identifier: keyid:89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:62:05:47:62:8a:1b:df:cf:00:38:8e:e2:69:4d:eb:3b:c0: f6:36:72:69:1c:23:a5:7d:45:cb:49:dd:e6:23:df:b5:ce:62: 12:92:ae:b3:18:9a:86:b9:29:31:64:ab:45:aa:a8:8b:b7:e3: 8d:d1:35:1c:b1:31:22:43:00:41:de:64:e0:6e:de:de:f1:c4: 3e:b4:e5:98:1b:b8:f8:36:43:99:bf:5d:8e:61:dc:4e:49:45: 36:1c:2e:4c:17:2f:ab:ca:8f:ae:75:8c:a8:10:b9:22:ac:89: 69:99:38:f9:08:ad:34:c2:65:22:9b:f0:41:46:32:4f:2d:2f: fc:58:6a:02:5f:f2:06:19:d8:28:b4:41:1e:f1:a0:be:e2:84: af:75:b7:85:76:0b:d8:34:4a:60:fb:39:dd:43:33:ac:dd:00: e7:d5:53:72:24:73:cc:4e:25:3f:b0:f9:6c:b9:9f:8b:b4:20: 5c:63:e7:70:8e:ee:d5:54:f5:42:bc:e9:63:07:b5:83:c4:f1: c6:a2:25:a0:57:e1:57:95:9a:77:b6:84:cc:16:2f:41:59:68: bd:04:01:1c:f4:0a:25:43:0b:d2:61:2d:26:3d:cf:fe:a2:cc: e7:e5:09:56:9a:b1:da:1d:e4:5a:09:4b:72:70:4e:2e:7e:62: 70:b1:31:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6vWxFi8xOTobbWgbs4y7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmYzNWM1ZTAzMjFhY2QwMjE2N2RlZjg4MDdmMGJiNmY3 MWMyOGQwHhcNMjYwMjA5MTUwMDIwWhcNMjYwMjEwMTUwMDIwWjAzMTEwLwYDVQQD EygzNzA2M2Q2ODhiMjcxYjg0MWZmYzI0MjhkMTg5N2Y2NGNlNjljNmFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Z+EJ5YgfOnrA15Y39UgPqfzLu3v yWUohzBhjj5KdT4rh1ddS2l6gX22+hAP8PHRHmapGtg7T9WTjVhd7jK/qXhUSixL PnBlv/9pU4sXTK1fF6rP2wv5Z+jnDSEo8cPGUzLDgTsmhstGpdegYOU7EVT7eexD H33Y1arr35+3tk21+Wu5o3QL6Bac6l0V34ZO3I9waqiDW92mWYY13ksamPn7jIC7 X+GntYxvVhs0cMsWnQ5LAyZf7+aJ6NGv1+39u/S4iozwfVe+SVEphkPEX8JcnjNa bBeq+WJFVKs1lM3dVy/AeJR/h30ImaIIwsdZGF9GJlyJTMnal+xgeDy5gwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDcGPWiLJxuEH/wkKNGJf2TOacauMB8GA1UdIwQY MBaAFIlvNcXgMhrNAhZ974gH8LtvccKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVc4MXhlQXlHczBDRm4zdmlBZnd1Mjl4d28wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC84MGM0YzAtYzcyOS00MThlLTgwYWYt MjI5OWE2N2U2MDAxLzEvaVc4MXhlQXlHczBDRm4zdmlBZnd1Mjl4d28wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC84MGM0YzAtYzcyOS00MThlLTgwYWYtMjI5OWE2N2U2MDAx LzEvaVc4MXhlQXlHczBDRm4zdmlBZnd1Mjl4d28wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZmIFR2KK G9/PADiO4mlN6zvA9jZyaRwjpX1Fy0nd5iPftc5iEpKusxiahrkpMWSrRaqoi7fj jdE1HLExIkMAQd5k4G7e3vHEPrTlmBu4+DZDmb9djmHcTklFNhwuTBcvq8qPrnWM qBC5IqyJaZk4+QitNMJlIpvwQUYyTy0v/FhqAl/yBhnYKLRBHvGgvuKEr3W3hXYL 2DRKYPs53UMzrN0A59VTciRzzE4lP7D5bLmfi7QgXGPncI7u1VT1QrzpYwe1g8Tx xqIloFfhV5Wad7aEzBYvQVlovQQBHPQKJUML0mEtJj3P/qLM5+UJVpqx2h3kWglL cnBOLn5icLExww== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:04 2026 by rpki-client