This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft File: iwUOQskY3jwnNm3vQzph8Tw7FrI.mft (raw, json) Hash identifier: R/8alOSJHIMmsX/fNi2CK+lWJYaA2PEX8tYPozRMqXM= Subject key identifier: 95:3F:43:90:4A:81:04:D1:AD:D7:FC:B1:1F:F6:FE:A5:3F:1F:A4:85 Authority key identifier: 8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2 Certificate issuer: /CN=8b050e42c918de3c27366def433a61f13c3b16b2 Certificate serial: 019C432288A655DFBF3EF327BE45A8ED1052 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:01:02 +0000 Manifest this update: Mon 09 Feb 2026 16:01:02 +0000 Manifest next update: Tue 10 Feb 2026 16:01:02 +0000 Files and hashes: 1: iwUOQskY3jwnNm3vQzph8Tw7FrI.crl (hash: YvGdxFIlhkafjj3zDN8NdtA2gttSgjy+JKTbHcxkbNA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:88:a6:55:df:bf:3e:f3:27:be:45:a8:ed:10:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b050e42c918de3c27366def433a61f13c3b16b2 Validity Not Before: Feb 9 16:01:02 2026 GMT Not After : Feb 10 16:01:02 2026 GMT Subject: CN=953f43904a8104d1add7fcb11ff6fea53f1fa485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:db:99:ac:69:8b:10:d7:73:83:07:a7:5d:62: 8d:8f:62:8d:4c:f9:45:5d:17:29:36:3f:21:7a:09: 2a:1d:51:55:2e:f8:05:0d:00:d3:ef:d0:c6:7c:de: 12:8c:71:30:f9:86:3d:47:83:cc:6f:44:54:42:8e: 80:8b:6a:ce:5b:75:8b:9a:8c:eb:c4:33:4b:4e:cc: f8:83:82:0a:b2:6f:df:d1:71:8c:1e:9c:90:e6:21: a1:ae:eb:d0:68:3b:a6:5a:66:62:e1:66:23:10:41: 34:6f:03:49:c0:fb:1b:29:cf:15:bf:7b:ac:dc:ae: 6b:59:6e:40:1b:f1:69:76:2a:a5:6c:b6:39:d4:7b: da:b2:5e:37:9d:47:f7:63:64:76:50:c3:c3:6d:8a: 59:c3:8d:22:ef:16:82:f6:b9:72:36:c8:3d:7a:54: c5:fb:71:f9:73:f9:7d:1d:85:19:98:a5:db:b8:d4: 44:d9:f4:20:95:d9:ad:f4:4b:8a:14:80:eb:d1:a0: 11:46:18:2c:a9:6d:46:90:f4:58:c7:8c:f6:d7:37: 9a:47:c5:26:47:13:7c:6c:2d:d6:d4:7e:26:c4:eb: 4c:bf:f9:42:09:b9:49:ff:2e:6e:2d:f6:d1:4e:80: d5:f5:31:fe:30:e6:b8:ba:c5:68:cb:85:82:6b:18: 33:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3F:43:90:4A:81:04:D1:AD:D7:FC:B1:1F:F6:FE:A5:3F:1F:A4:85 X509v3 Authority Key Identifier: keyid:8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:46:5f:5f:d6:80:85:d2:93:35:35:41:ff:c0:0a:d0:e2:57: d6:a4:b9:be:7c:e2:36:03:bb:df:b9:19:94:c8:25:8e:ae:6f: d9:f8:5a:64:48:aa:2c:39:92:5b:09:1e:c3:93:03:1c:6a:13: ec:75:19:59:db:02:da:e2:d6:f9:6c:02:7c:fd:75:91:2e:f7: fd:c0:5a:c9:b9:91:c0:5e:4e:8b:44:4a:e8:99:65:41:c4:f5: 1e:e1:f4:46:07:b6:62:e1:28:5e:f3:74:3d:03:d9:73:82:fd: 41:83:b7:e1:e7:ca:11:35:6b:8a:61:0e:f9:9b:f8:7a:88:31: 9b:47:76:06:86:d1:e7:9a:5d:d6:f7:c1:65:a4:72:d1:9a:08: 19:0e:43:85:77:60:8a:ed:ba:42:fc:97:97:d9:29:95:69:08: 8b:8a:94:c6:b5:be:9e:26:b4:c1:58:d8:3e:d8:60:7c:e6:8e: 39:d7:61:34:19:2b:dd:4a:e1:d7:00:61:8e:4f:c2:94:25:81: 4d:a9:b9:a9:ae:59:df:f3:ab:31:f4:2a:30:48:96:bf:5d:1f: 21:c0:02:89:28:85:3f:d6:88:0a:49:29:5e:7c:fa:6c:1c:f8: be:d3:5b:21:24:40:16:11:04:89:a0:79:97:6a:ce:d2:38:da: 93:9e:e3:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoimVd+/PvMnvkWo7RBSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiMDUwZTQyYzkxOGRlM2MyNzM2NmRlZjQzM2E2MWYxM2Mz YjE2YjIwHhcNMjYwMjA5MTYwMTAyWhcNMjYwMjEwMTYwMTAyWjAzMTEwLwYDVQQD Eyg5NTNmNDM5MDRhODEwNGQxYWRkN2ZjYjExZmY2ZmVhNTNmMWZhNDg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAktuZrGmLENdzgwenXWKNj2KNTPlF XRcpNj8hegkqHVFVLvgFDQDT79DGfN4SjHEw+YY9R4PMb0RUQo6Ai2rOW3WLmozr xDNLTsz4g4IKsm/f0XGMHpyQ5iGhruvQaDumWmZi4WYjEEE0bwNJwPsbKc8Vv3us 3K5rWW5AG/FpdiqlbLY51Hvasl43nUf3Y2R2UMPDbYpZw40i7xaC9rlyNsg9elTF +3H5c/l9HYUZmKXbuNRE2fQgldmt9EuKFIDr0aARRhgsqW1GkPRYx4z21zeaR8Um RxN8bC3W1H4mxOtMv/lCCblJ/y5uLfbRToDV9TH+MOa4usVoy4WCaxgzRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJU/Q5BKgQTRrdf8sR/2/qU/H6SFMB8GA1UdIwQY MBaAFIsFDkLJGN48JzZt70M6YfE8OxayMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXdVT1Fza1kzanduTm0zdlF6cGg4VHc3RnJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy80YTZjNmQtYjg1NS00YjQ2LWIzMmYt Y2FjMmNmZmY2Nzc5LzEvaXdVT1Fza1kzanduTm0zdlF6cGg4VHc3RnJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy80YTZjNmQtYjg1NS00YjQ2LWIzMmYtY2FjMmNmZmY2Nzc5 LzEvaXdVT1Fza1kzanduTm0zdlF6cGg4VHc3RnJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD0ZfX9aA hdKTNTVB/8AK0OJX1qS5vnziNgO737kZlMgljq5v2fhaZEiqLDmSWwkew5MDHGoT 7HUZWdsC2uLW+WwCfP11kS73/cBaybmRwF5Oi0RK6JllQcT1HuH0Rge2YuEoXvN0 PQPZc4L9QYO34efKETVrimEO+Zv4eogxm0d2BobR55pd1vfBZaRy0ZoIGQ5DhXdg iu26QvyXl9kplWkIi4qUxrW+nia0wVjYPthgfOaOOddhNBkr3Urh1wBhjk/ClCWB Tam5qa5Z3/OrMfQqMEiWv10fIcACiSiFP9aICkkpXnz6bBz4vtNbISRAFhEEiaB5 l2rO0jjak57j+Q== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:41 2026 by rpki-client