This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft File: IujBtA7lecGDeWRV9Aklc9mVodI.mft (raw, json) Hash identifier: NaTVFsh4oed8OH1E869t09tsuKSv1slq/Y+x8dhVeys= Subject key identifier: D2:23:E3:4A:C7:F8:D2:C8:BE:C4:98:A3:BA:EB:31:52:31:F2:70:52 Authority key identifier: 22:E8:C1:B4:0E:E5:79:C1:83:79:64:55:F4:09:25:73:D9:95:A1:D2 Certificate issuer: /CN=22e8c1b40ee579c183796455f4092573d995a1d2 Certificate serial: 019C43224730FD403B13C8B498067D0A64EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IujBtA7lecGDeWRV9Aklc9mVodI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft Manifest number: 0C72 Signing time: Mon 09 Feb 2026 16:00:45 +0000 Manifest this update: Mon 09 Feb 2026 16:00:45 +0000 Manifest next update: Tue 10 Feb 2026 16:00:45 +0000 Files and hashes: 1: IujBtA7lecGDeWRV9Aklc9mVodI.crl (hash: 2Qx3kYnb4K6uJNZ1rXPNRkCx4Gq00/rVtgoQEoT7UL4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.crl rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft rsync://rpki.ripe.net/repository/DEFAULT/IujBtA7lecGDeWRV9Aklc9mVodI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:47:30:fd:40:3b:13:c8:b4:98:06:7d:0a:64:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22e8c1b40ee579c183796455f4092573d995a1d2 Validity Not Before: Feb 9 16:00:45 2026 GMT Not After : Feb 10 16:00:45 2026 GMT Subject: CN=d223e34ac7f8d2c8bec498a3baeb315231f27052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:70:5b:58:65:93:0f:bc:f7:ca:61:18:9b:f3: f7:74:33:23:ea:31:46:1b:4b:bb:e3:70:74:22:92: d1:fd:f4:de:84:67:05:07:e7:bd:a9:b8:17:b4:cc: 18:93:8e:2d:53:69:f6:12:69:6c:ce:7f:17:9b:26: 6a:0d:61:f0:8c:18:52:69:44:39:02:7a:d8:30:78: da:c6:4a:f7:42:84:4c:e3:63:b6:a1:8f:ee:0a:8f: 3e:c1:4f:0f:7c:be:90:4a:12:13:d7:fa:36:ac:37: 59:df:c9:70:6f:bc:9b:03:67:e8:ec:83:e9:ac:74: 14:ec:7f:7c:4c:1c:72:82:d0:5a:9f:e1:fd:79:88: f7:c3:f4:56:cc:8d:2a:0c:70:ce:72:1f:bf:fa:7e: 7b:32:3b:ca:ea:82:32:f3:ef:13:c9:56:d2:60:0e: 8b:de:c0:8d:b3:2a:9a:ef:1e:28:25:13:c2:d7:f5: ad:e2:07:52:f8:f0:71:5b:76:c0:01:4a:83:ca:ae: a3:e0:c4:7f:c8:c1:cd:c4:66:27:d6:18:cc:1d:4c: d7:06:79:68:49:7d:27:95:b1:8c:18:64:d2:20:1d: fe:14:fa:ca:ad:8c:13:bc:10:b2:b0:b1:03:78:7a: ad:2e:3a:dd:a4:ff:62:86:fd:fd:14:db:a7:36:6d: 9c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:23:E3:4A:C7:F8:D2:C8:BE:C4:98:A3:BA:EB:31:52:31:F2:70:52 X509v3 Authority Key Identifier: keyid:22:E8:C1:B4:0E:E5:79:C1:83:79:64:55:F4:09:25:73:D9:95:A1:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IujBtA7lecGDeWRV9Aklc9mVodI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:f5:36:b5:d1:54:9d:94:e5:96:06:18:92:8f:4e:9a:6f:c5: b7:b6:c2:d8:fc:42:40:95:7a:a7:cb:47:9d:df:6a:e6:43:71: 58:92:38:e4:08:a6:98:6b:ca:81:d0:3e:2f:e3:e3:88:ed:e9: f8:c4:c6:8b:3d:cb:fa:1e:0b:be:a3:ed:08:39:d7:b2:9f:20: f7:35:c3:9c:8b:08:e7:71:c8:35:4f:b5:ec:2c:97:f9:53:32: fa:df:0e:c5:10:19:fc:c0:46:06:87:64:88:8a:82:cd:a7:47: 9a:43:bb:6a:ca:0d:aa:44:17:3c:67:f6:81:d7:5c:24:73:c4: e1:ea:fa:5c:81:2c:0e:95:92:6e:75:02:db:79:27:81:d1:db: 36:19:58:4a:86:8a:e0:b0:94:55:90:20:1f:a7:c2:99:cc:2b: 1d:a9:6f:5d:83:9b:47:1e:c3:75:b8:7f:75:17:dd:73:83:2c: 33:54:c9:93:3c:1a:b1:90:a8:e1:a4:4f:1c:e5:0e:51:3d:a8: ca:f5:d9:2f:5f:14:4e:8d:1b:0d:c4:7e:56:58:fc:d2:60:7f: a0:9d:d0:9c:ad:81:b7:01:72:17:ea:5a:b9:80:36:ef:10:8e: ab:a7:53:cd:1a:5d:11:af:10:f4:b4:b4:19:bc:c2:6c:4f:1e: f9:cd:a7:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkcw/UA7E8i0mAZ9CmTuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZThjMWI0MGVlNTc5YzE4Mzc5NjQ1NWY0MDkyNTczZDk5 NWExZDIwHhcNMjYwMjA5MTYwMDQ1WhcNMjYwMjEwMTYwMDQ1WjAzMTEwLwYDVQQD EyhkMjIzZTM0YWM3ZjhkMmM4YmVjNDk4YTNiYWViMzE1MjMxZjI3MDUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl3BbWGWTD7z3ymEYm/P3dDMj6jFG G0u743B0IpLR/fTehGcFB+e9qbgXtMwYk44tU2n2Emlszn8XmyZqDWHwjBhSaUQ5 AnrYMHjaxkr3QoRM42O2oY/uCo8+wU8PfL6QShIT1/o2rDdZ38lwb7ybA2fo7IPp rHQU7H98TBxygtBan+H9eYj3w/RWzI0qDHDOch+/+n57MjvK6oIy8+8TyVbSYA6L 3sCNsyqa7x4oJRPC1/Wt4gdS+PBxW3bAAUqDyq6j4MR/yMHNxGYn1hjMHUzXBnlo SX0nlbGMGGTSIB3+FPrKrYwTvBCysLEDeHqtLjrdpP9ihv39FNunNm2cGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNIj40rH+NLIvsSYo7rrMVIx8nBSMB8GA1UdIwQY MBaAFCLowbQO5XnBg3lkVfQJJXPZlaHSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXVqQnRBN2xlY0dEZVdSVjlBa2xjOW1Wb2RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC85MjlkMDctN2UzYi00YzlhLWFmOTEt ZTIxMmZkNDM4OTdhLzEvSXVqQnRBN2xlY0dEZVdSVjlBa2xjOW1Wb2RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC85MjlkMDctN2UzYi00YzlhLWFmOTEtZTIxMmZkNDM4OTdh LzEvSXVqQnRBN2xlY0dEZVdSVjlBa2xjOW1Wb2RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFfU2tdFU nZTllgYYko9Omm/Ft7bC2PxCQJV6p8tHnd9q5kNxWJI45AimmGvKgdA+L+PjiO3p +MTGiz3L+h4LvqPtCDnXsp8g9zXDnIsI53HINU+17CyX+VMy+t8OxRAZ/MBGBodk iIqCzadHmkO7asoNqkQXPGf2gddcJHPE4er6XIEsDpWSbnUC23kngdHbNhlYSoaK 4LCUVZAgH6fCmcwrHalvXYObRx7Ddbh/dRfdc4MsM1TJkzwasZCo4aRPHOUOUT2o yvXZL18UTo0bDcR+Vlj80mB/oJ3QnK2BtwFyF+pauYA27xCOq6dTzRpdEa8Q9LS0 GbzCbE8e+c2nWQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:23 2026 by rpki-client