This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json) Hash identifier: K4ztcirNK9OAvzpj79hSzEQ2QYYEyYBdkDTjIxoHOFo= Subject key identifier: F7:D4:97:F6:D7:CF:D0:2E:12:0D:DB:9A:66:A7:8F:1D:02:5C:BE:55 Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d Certificate serial: 019C438FAC1B0275DD42F0E2E65E930F11B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft Manifest number: 129E Signing time: Mon 09 Feb 2026 18:00:14 +0000 Manifest this update: Mon 09 Feb 2026 18:00:14 +0000 Manifest next update: Tue 10 Feb 2026 18:00:14 +0000 Files and hashes: 1: 5lnasV2204ovFjXYLSXNVvtyrOk.roa (hash: xjGig7wrwgL+6zENtEl5DMDRUc85WEr4TmfLvxx+0vU=) 2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: twxHTbOf+B4Wk45iV4Z0qlNitII2YgGIoGBPuj0lgNk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:ac:1b:02:75:dd:42:f0:e2:e6:5e:93:0f:11:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d Validity Not Before: Feb 9 18:00:14 2026 GMT Not After : Feb 10 18:00:14 2026 GMT Subject: CN=f7d497f6d7cfd02e120ddb9a66a78f1d025cbe55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:0c:99:2b:a1:be:7c:1c:97:95:72:8c:f7:92: 18:61:49:f7:05:08:30:27:e8:2a:02:60:cd:fa:47: 13:58:28:c5:21:fc:27:7a:e0:d9:c3:db:55:09:d3: f2:40:95:d8:aa:c3:ee:11:8e:07:a9:4f:d1:66:4e: 7b:c4:44:83:1c:58:19:98:7a:4d:33:af:ce:e4:69: 62:85:e0:bb:4a:f8:af:ad:56:b4:f4:76:47:45:1d: 04:99:32:aa:60:c7:63:b2:51:83:2a:25:72:05:8f: 35:34:9f:68:98:cd:56:4f:06:ac:1a:16:63:56:2a: cf:b2:f5:a0:7e:9b:a8:36:b1:93:be:8f:23:39:68: f4:45:27:52:25:fe:f7:f2:45:17:53:cf:97:3d:fe: 03:b6:24:d0:75:c7:91:ea:8b:c5:aa:2b:b3:c6:84: a1:4f:e6:2e:92:a9:c4:f2:d7:29:69:d0:f0:18:d1: 5f:8d:b9:9f:fb:a3:c6:8d:7f:71:64:37:6c:35:ca: 5e:19:2f:d0:a1:1b:11:ab:c2:2d:a3:45:4d:bc:d4: 0c:3b:ad:d4:2a:84:05:f2:ad:94:9f:0b:23:48:a2: 64:e5:a9:23:05:36:c4:e3:0d:2e:c9:87:6a:55:18: 2d:34:aa:ee:b9:85:13:5d:a8:e1:d1:ee:b8:0d:28: 2e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D4:97:F6:D7:CF:D0:2E:12:0D:DB:9A:66:A7:8F:1D:02:5C:BE:55 X509v3 Authority Key Identifier: keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:46:30:0a:09:86:f8:2e:c5:b0:9f:f3:f5:3e:be:e9:a7:2c: d2:df:08:c0:f2:43:72:73:fe:f6:5e:aa:91:2f:d3:2a:10:0e: d9:8f:26:70:9d:8a:62:80:87:7c:e6:5c:9e:52:4f:f9:d8:5e: ef:b2:22:61:b6:c8:1d:10:9a:72:03:5a:8c:52:a0:86:29:73: 7b:63:0a:c0:af:fd:ce:07:95:82:77:aa:71:3b:6c:bc:21:72: 71:5c:a6:39:e4:ab:d4:39:c0:37:67:6c:1a:1a:cd:51:f4:4d: 3e:b9:31:37:d1:53:b0:d9:a7:71:44:2c:0f:b0:ae:72:51:63: 7e:1b:9d:90:02:8c:e7:f7:c8:f8:4a:a4:07:cd:d8:3b:59:3b: 8f:24:fb:a8:be:df:dd:db:03:bb:95:ca:ee:4a:35:0b:3e:9f: 6d:71:b9:a5:e9:74:9a:f9:56:20:ef:24:1c:fd:c5:79:aa:4f: 41:81:13:7d:71:61:d7:98:bf:0c:3a:4c:5a:b3:76:6f:1a:a2: cb:64:2c:0c:58:8e:6a:ee:ab:53:71:39:57:84:57:b9:88:49: 6f:ac:bc:19:7e:fd:2e:a8:da:65:52:10:4a:27:13:ba:fa:66: b3:c0:be:c1:0d:0a:21:6b:25:45:53:a6:7b:6a:41:a3:cb:f9: b5:f5:89:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj6wbAnXdQvDi5l6TDxG0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4YThkMzI1Zjk3YjAzNzEzMzQyNjgyZmM0MDhkNTMzNjg3 NDBlN2QwHhcNMjYwMjA5MTgwMDE0WhcNMjYwMjEwMTgwMDE0WjAzMTEwLwYDVQQD EyhmN2Q0OTdmNmQ3Y2ZkMDJlMTIwZGRiOWE2NmE3OGYxZDAyNWNiZTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkgyZK6G+fByXlXKM95IYYUn3BQgw J+gqAmDN+kcTWCjFIfwneuDZw9tVCdPyQJXYqsPuEY4HqU/RZk57xESDHFgZmHpN M6/O5GliheC7SvivrVa09HZHRR0EmTKqYMdjslGDKiVyBY81NJ9omM1WTwasGhZj VirPsvWgfpuoNrGTvo8jOWj0RSdSJf738kUXU8+XPf4DtiTQdceR6ovFqiuzxoSh T+YukqnE8tcpadDwGNFfjbmf+6PGjX9xZDdsNcpeGS/QoRsRq8Ito0VNvNQMO63U KoQF8q2UnwsjSKJk5akjBTbE4w0uyYdqVRgtNKruuYUTXajh0e64DSguSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPfUl/bXz9AuEg3bmmanjx0CXL5VMB8GA1UdIwQY MBaAFIio0yX5ewNxM0JoL8QI1TNodA59MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy82NDViYjItZmMzNC00MjliLWE3ZjAt Y2YwM2ZhNGNhMDgzLzEvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy82NDViYjItZmMzNC00MjliLWE3ZjAtY2YwM2ZhNGNhMDgz LzEvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXkYwCgmG +C7FsJ/z9T6+6acs0t8IwPJDcnP+9l6qkS/TKhAO2Y8mcJ2KYoCHfOZcnlJP+dhe 77IiYbbIHRCacgNajFKghilze2MKwK/9zgeVgneqcTtsvCFycVymOeSr1DnAN2ds GhrNUfRNPrkxN9FTsNmncUQsD7CuclFjfhudkAKM5/fI+EqkB83YO1k7jyT7qL7f 3dsDu5XK7ko1Cz6fbXG5pel0mvlWIO8kHP3FeapPQYETfXFh15i/DDpMWrN2bxqi y2QsDFiOau6rU3E5V4RXuYhJb6y8GX79LqjaZVIQSicTuvpms8C+wQ0KIWslRVOm e2pBo8v5tfWJxQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:08 2026 by rpki-client