This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft File: I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft (raw, json) Hash identifier: sF9bBfyQ2QF4UM3QLNisznvBvXF+bjANM54JY6cNXP8= Subject key identifier: 98:7E:AD:00:58:E6:BB:4F:5B:90:29:AE:91:40:36:7E:2C:91:3B:39 Authority key identifier: 23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8 Certificate issuer: /CN=2393ff21c6f7310757a9dcd781da8805f23794d8 Certificate serial: 019C4322CC77B262DA6B258DDAF06E2A4250 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft Manifest number: 0B58 Signing time: Mon 09 Feb 2026 16:01:19 +0000 Manifest this update: Mon 09 Feb 2026 16:01:19 +0000 Manifest next update: Tue 10 Feb 2026 16:01:19 +0000 Files and hashes: 1: I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl (hash: xgc/hsgEzF9crhWfh31isCwtuSwsTI/BVTgO1D0ai2E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:cc:77:b2:62:da:6b:25:8d:da:f0:6e:2a:42:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2393ff21c6f7310757a9dcd781da8805f23794d8 Validity Not Before: Feb 9 16:01:19 2026 GMT Not After : Feb 10 16:01:19 2026 GMT Subject: CN=987ead0058e6bb4f5b9029ae9140367e2c913b39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b2:94:75:9a:c3:b0:d7:3c:90:73:e9:f2:f5: 47:a2:2a:6b:d7:c5:b3:4e:d8:b9:6e:75:31:d2:0e: 31:9d:6b:15:bd:84:5f:81:9e:b9:bc:a3:98:94:58: 6d:87:da:cc:7e:e2:b1:47:6a:ea:47:b6:1f:44:fb: 98:00:3a:f6:8b:39:61:dd:d2:6f:88:f1:9c:ec:ec: d3:be:62:0c:42:62:b6:57:c7:e1:ff:50:d2:dd:f0: 13:c0:5c:c0:57:18:8d:5b:85:85:06:fc:2e:c8:b7: af:ca:db:b8:61:00:e8:09:10:a9:bf:43:40:dd:6c: 2b:08:dc:fb:62:6b:6e:ce:eb:b6:c3:45:7a:8b:c2: 16:3e:30:f9:e6:5b:e4:dd:a7:a2:a0:9c:1f:ca:2f: 7a:c6:67:6a:d2:e2:cc:82:92:25:f2:8f:2d:de:27: 62:ac:11:3b:b4:dd:da:3a:ba:fa:5b:54:ae:05:94: 14:27:58:87:47:77:0e:9b:43:a8:e1:40:52:57:43: 79:82:71:f3:ac:c9:30:61:45:95:2f:72:93:db:70: 4e:54:c9:07:80:e0:46:fa:93:1c:2c:f8:ee:7e:5d: 92:aa:17:35:ea:b6:ec:35:00:95:4e:82:f9:cf:df: 51:0f:9e:fe:b3:70:db:67:1c:c7:ae:b7:ca:01:eb: d3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:7E:AD:00:58:E6:BB:4F:5B:90:29:AE:91:40:36:7E:2C:91:3B:39 X509v3 Authority Key Identifier: keyid:23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:a3:3c:e7:c7:98:45:77:fd:3a:7c:16:bc:2d:ed:81:bf:fa: e8:4a:e9:49:1c:26:55:4c:76:cf:67:a4:4e:aa:fa:09:fa:67: 0c:6f:20:05:87:10:91:7f:b9:c0:4f:73:93:4c:ab:c0:96:b6: 7c:c1:22:57:e7:b1:bd:ec:d7:a7:44:80:a7:b8:69:20:23:48: 14:68:28:5f:4c:4c:8a:44:1d:6b:b1:2a:1c:b2:6f:96:bf:26: 7e:01:91:ca:c1:54:63:22:e3:24:a1:40:a8:8e:8f:52:6f:48: ad:27:a2:03:f9:8d:a4:df:e5:63:85:9e:66:d8:90:25:c2:cb: 4d:38:af:1b:e3:66:ab:70:d2:33:33:4e:2a:95:12:19:d4:69: 67:6e:f1:41:0c:77:e7:30:9f:57:8e:87:21:01:66:18:58:e7: 25:17:ed:46:53:73:7e:76:63:7a:10:4c:79:46:99:39:a7:66: a6:ca:50:12:44:12:74:94:6f:00:13:a1:56:c8:30:6a:6a:a8: cb:8c:bb:74:4e:f0:d0:67:2c:da:33:15:0c:2a:4c:e9:e0:e9: 40:6b:3e:8a:3e:ce:95:2f:41:b0:6d:43:0f:91:b4:d4:ab:6e: 0d:b4:59:c1:d4:f5:df:d2:bc:28:40:16:c2:1d:2f:3d:f0:f8: 0d:3e:83:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIsx3smLaayWN2vBuKkJQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzOTNmZjIxYzZmNzMxMDc1N2E5ZGNkNzgxZGE4ODA1ZjIz Nzk0ZDgwHhcNMjYwMjA5MTYwMTE5WhcNMjYwMjEwMTYwMTE5WjAzMTEwLwYDVQQD Eyg5ODdlYWQwMDU4ZTZiYjRmNWI5MDI5YWU5MTQwMzY3ZTJjOTEzYjM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrKUdZrDsNc8kHPp8vVHoipr18Wz Tti5bnUx0g4xnWsVvYRfgZ65vKOYlFhth9rMfuKxR2rqR7YfRPuYADr2izlh3dJv iPGc7OzTvmIMQmK2V8fh/1DS3fATwFzAVxiNW4WFBvwuyLevytu4YQDoCRCpv0NA 3WwrCNz7Ymtuzuu2w0V6i8IWPjD55lvk3aeioJwfyi96xmdq0uLMgpIl8o8t3idi rBE7tN3aOrr6W1SuBZQUJ1iHR3cOm0Oo4UBSV0N5gnHzrMkwYUWVL3KT23BOVMkH gOBG+pMcLPjufl2Sqhc16rbsNQCVToL5z99RD57+s3DbZxzHrrfKAevTEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJh+rQBY5rtPW5AprpFANn4skTs5MB8GA1UdIwQY MBaAFCOT/yHG9zEHV6nc14HaiAXyN5TYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTVQX0ljYjNNUWRYcWR6WGdkcUlCZkkzbE5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9iYWVkZGMtZGJmMi00NDdmLWI0MmQt NWIzMDYzOWJhYmY2LzEvSTVQX0ljYjNNUWRYcWR6WGdkcUlCZkkzbE5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9iYWVkZGMtZGJmMi00NDdmLWI0MmQtNWIzMDYzOWJhYmY2 LzEvSTVQX0ljYjNNUWRYcWR6WGdkcUlCZkkzbE5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATaM858eY RXf9OnwWvC3tgb/66ErpSRwmVUx2z2ekTqr6CfpnDG8gBYcQkX+5wE9zk0yrwJa2 fMEiV+exvezXp0SAp7hpICNIFGgoX0xMikQda7EqHLJvlr8mfgGRysFUYyLjJKFA qI6PUm9IrSeiA/mNpN/lY4WeZtiQJcLLTTivG+Nmq3DSMzNOKpUSGdRpZ27xQQx3 5zCfV46HIQFmGFjnJRftRlNzfnZjehBMeUaZOadmpspQEkQSdJRvABOhVsgwamqo y4y7dE7w0Gcs2jMVDCpM6eDpQGs+ij7OlS9BsG1DD5G01KtuDbRZwdT139K8KEAW wh0vPfD4DT6Djg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:52 2026 by rpki-client