This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft File: iay4iT6UGAdH7sGXXtVgTE3b4MU.mft (raw, json) Hash identifier: 6kxHQ5JJXzk7ukqZAAQnq3tmcvOkDTxs7EcJUb6fVnA= Subject key identifier: 5C:DE:86:6E:DF:CC:7A:C4:2C:BC:96:B5:27:B7:4B:E3:AF:D4:46:7F Authority key identifier: 89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5 Certificate issuer: /CN=89acb8893e94180747eec1975ed5604c4ddbe0c5 Certificate serial: 019C43907F9F704B7D97849B4720C0D62F11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 18:01:09 +0000 Manifest this update: Mon 09 Feb 2026 18:01:09 +0000 Manifest next update: Tue 10 Feb 2026 18:01:09 +0000 Files and hashes: 1: 7oSS-r2bMLw-tHLZnTLEn6ZKtA0.roa (hash: sEaYDQdsiX4RB8VnPuUfSRtKLpLITXk4UddGS53dMkM=) 2: iay4iT6UGAdH7sGXXtVgTE3b4MU.crl (hash: 7d7Fn+FZUBKsi3rao5/HV1LbohVLlZn5VSk28g/nt2I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:7f:9f:70:4b:7d:97:84:9b:47:20:c0:d6:2f:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89acb8893e94180747eec1975ed5604c4ddbe0c5 Validity Not Before: Feb 9 18:01:09 2026 GMT Not After : Feb 10 18:01:09 2026 GMT Subject: CN=5cde866edfcc7ac42cbc96b527b74be3afd4467f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:77:48:0a:23:48:75:0c:aa:ed:9c:a1:76:7c: db:a9:6d:59:b6:a5:a8:34:cf:85:45:13:0f:34:14: bb:bb:40:65:a8:b0:5e:88:0f:7e:51:80:0a:8b:d2: 1b:c2:cb:d6:f1:82:f4:d4:eb:54:dc:2b:92:05:ff: 85:e7:9a:e7:01:2a:4f:fd:e1:8c:e2:a6:73:cb:79: 34:75:4e:dd:f3:bd:bd:c7:98:ba:65:64:3d:64:ae: de:8c:50:0d:73:52:73:34:50:35:95:62:48:94:0c: 65:be:66:fc:3e:f9:50:0d:32:6f:5d:fd:c1:90:35: 08:ee:c2:66:8e:5c:33:a2:61:93:de:4f:56:68:dc: 7a:fc:88:0a:79:df:c8:ec:98:7b:95:d3:86:1e:62: 34:b5:dc:e4:82:15:d5:be:7e:f7:b2:4d:c3:28:48: 5a:b3:f2:c0:35:f5:34:97:c5:3b:42:7a:4e:0f:10: b0:18:2b:65:62:f4:8d:87:59:b4:31:9c:bb:7a:94: 12:f0:be:ac:bb:a8:08:ae:a2:de:7d:71:76:d9:45: 60:65:0f:be:bb:dc:4b:57:73:f9:a0:e0:66:04:d0: 66:3c:9d:fe:71:3f:46:06:8f:35:00:ca:82:33:e4: 25:47:cf:89:1b:6e:15:02:4a:b8:81:93:3e:6f:0c: 33:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:DE:86:6E:DF:CC:7A:C4:2C:BC:96:B5:27:B7:4B:E3:AF:D4:46:7F X509v3 Authority Key Identifier: keyid:89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:6b:ac:b2:f1:c7:c7:32:e0:e1:d4:61:ba:e1:66:4d:b3:0e: 11:56:82:91:47:51:99:c3:12:05:17:56:4d:c8:90:22:0f:c6: 01:61:d7:c5:f5:f1:e9:e8:68:70:8c:77:6d:3e:bf:f4:03:cc: 11:3d:47:85:0a:8b:71:90:3d:b3:b8:a9:43:ab:0e:c3:69:45: 32:7c:81:70:cb:25:9e:21:ba:fa:96:5a:1c:64:e4:94:8a:b0: c5:18:62:10:6a:a2:af:f7:5a:5b:54:d0:fd:dd:67:96:3d:84: 3b:b0:da:97:64:76:54:59:8f:54:e8:87:85:c5:19:b6:dc:35: 8d:de:6b:f7:6b:61:d1:0a:2c:6e:2c:61:c9:ac:90:cb:dd:82: d5:ca:4c:99:2f:04:95:8f:7f:c3:99:e8:89:46:b3:1a:55:76: cf:fe:16:0c:e3:38:97:13:12:88:4e:14:a7:1b:84:f9:ba:e0: 95:c5:a4:f6:81:27:cc:90:20:c3:8f:9f:84:1e:3d:56:1e:80: 83:21:92:d1:f2:cf:55:52:8d:f1:6a:a1:81:85:f3:e1:81:93: a4:65:c0:4c:47:37:64:56:03:e6:c6:59:c0:ee:ea:82:06:88: 10:1d:70:16:9c:6f:c8:fb:9a:10:00:26:dc:02:8f:a1:8b:8d: b2:6b:24:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkH+fcEt9l4SbRyDA1i8RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWNiODg5M2U5NDE4MDc0N2VlYzE5NzVlZDU2MDRjNGRk YmUwYzUwHhcNMjYwMjA5MTgwMTA5WhcNMjYwMjEwMTgwMTA5WjAzMTEwLwYDVQQD Eyg1Y2RlODY2ZWRmY2M3YWM0MmNiYzk2YjUyN2I3NGJlM2FmZDQ0NjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArndICiNIdQyq7ZyhdnzbqW1ZtqWo NM+FRRMPNBS7u0BlqLBeiA9+UYAKi9IbwsvW8YL01OtU3CuSBf+F55rnASpP/eGM 4qZzy3k0dU7d8729x5i6ZWQ9ZK7ejFANc1JzNFA1lWJIlAxlvmb8PvlQDTJvXf3B kDUI7sJmjlwzomGT3k9WaNx6/IgKed/I7Jh7ldOGHmI0tdzkghXVvn73sk3DKEha s/LANfU0l8U7QnpODxCwGCtlYvSNh1m0MZy7epQS8L6su6gIrqLefXF22UVgZQ++ u9xLV3P5oOBmBNBmPJ3+cT9GBo81AMqCM+QlR8+JG24VAkq4gZM+bwwz+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFzehm7fzHrELLyWtSe3S+Ov1EZ/MB8GA1UdIwQY MBaAFImsuIk+lBgHR+7Bl17VYExN2+DFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWF5NGlUNlVHQWRIN3NHWFh0VmdURTNiNE1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wY2Q0YmUtMjQ3Zi00ZGUyLTkzOGMt ZjBjZDhiYjU1MmUwLzEvaWF5NGlUNlVHQWRIN3NHWFh0VmdURTNiNE1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wY2Q0YmUtMjQ3Zi00ZGUyLTkzOGMtZjBjZDhiYjU1MmUw LzEvaWF5NGlUNlVHQWRIN3NHWFh0VmdURTNiNE1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU2ussvHH xzLg4dRhuuFmTbMOEVaCkUdRmcMSBRdWTciQIg/GAWHXxfXx6ehocIx3bT6/9APM ET1HhQqLcZA9s7ipQ6sOw2lFMnyBcMslniG6+pZaHGTklIqwxRhiEGqir/daW1TQ /d1nlj2EO7Dal2R2VFmPVOiHhcUZttw1jd5r92th0QosbixhyayQy92C1cpMmS8E lY9/w5noiUazGlV2z/4WDOM4lxMSiE4UpxuE+brglcWk9oEnzJAgw4+fhB49Vh6A gyGS0fLPVVKN8WqhgYXz4YGTpGXATEc3ZFYD5sZZwO7qggaIEB1wFpxvyPuaEAAm 3AKPoYuNsmskiA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:31 2026 by rpki-client