This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json) Hash identifier: 7LOgN/gPCD7BRqWlBSRRSxphKXmRV6hRJwOKTG7ztsM= Subject key identifier: 80:AC:99:5D:67:CD:80:1A:54:39:11:73:B6:A1:12:33:2F:0B:BB:DF Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25 Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25 Certificate serial: 019C427CFC2A153C823895990AA74F1C2D40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft Manifest number: 0FAE Signing time: Mon 09 Feb 2026 13:00:13 +0000 Manifest this update: Mon 09 Feb 2026 13:00:13 +0000 Manifest next update: Tue 10 Feb 2026 13:00:13 +0000 Files and hashes: 1: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: XmywDWyUFcw4tfwYzc004SCP2Lw50N/hujNVMZWubZo=) 2: yjCN4h-OQwH-dv_bxbcZqXCm3bE.roa (hash: p3KrL6JUxzdYriz06hWpPAtkTxaVZyDG1Zr5vFYZVTs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7c:fc:2a:15:3c:82:38:95:99:0a:a7:4f:1c:2d:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25 Validity Not Before: Feb 9 13:00:13 2026 GMT Not After : Feb 10 13:00:13 2026 GMT Subject: CN=80ac995d67cd801a54391173b6a112332f0bbbdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6a:99:13:0c:8c:1f:f6:dd:fe:09:80:1d:16: 7b:b6:0e:43:b6:71:bd:9a:56:48:dc:5b:e2:fa:b7: a2:99:16:16:0b:95:d8:4f:4b:7a:53:bd:f2:0a:c2: 4b:1d:e8:5d:fe:01:73:34:b3:c4:e4:c6:c9:35:4d: a6:67:e7:a6:1f:a2:c4:52:57:c3:40:41:ea:84:be: 57:33:d1:e4:3d:42:4c:c2:24:38:49:a1:4d:a8:23: e7:d5:d5:00:2d:41:82:46:66:12:38:4d:d9:83:94: 48:5f:e9:e1:a1:7d:61:9d:4c:10:aa:3e:e7:4d:fd: d0:97:52:18:03:36:13:66:d1:f7:ae:9a:64:08:85: bc:d8:e0:c5:8b:0c:ff:6a:70:4e:b6:c0:39:bb:8d: 35:88:35:62:bd:1f:43:2c:9c:65:6a:78:57:4c:8b: 34:0d:ce:25:11:14:fc:55:04:11:86:60:ab:38:04: 3f:b9:61:2c:40:dc:a0:09:b8:56:a9:c2:e6:d2:7c: c1:b2:29:74:f6:d5:ce:97:f8:27:f3:85:a7:9d:a2: e2:d3:d9:42:0c:01:db:df:0a:b8:84:e6:15:16:66: 3d:df:0c:4c:c3:91:29:38:24:9f:10:17:8f:d3:37: 0f:de:5e:f7:a9:60:2c:0f:4b:68:8a:c3:f2:c5:d4: 7b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AC:99:5D:67:CD:80:1A:54:39:11:73:B6:A1:12:33:2F:0B:BB:DF X509v3 Authority Key Identifier: keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:c2:db:0c:5f:32:e3:6f:e9:1e:64:00:ba:fc:f2:d8:aa:f4: 97:2d:29:41:e7:af:f1:dc:36:fa:e3:22:58:2a:83:d6:b5:37: 19:13:22:19:a7:7f:72:67:9e:cf:cb:f0:14:67:e5:c5:75:42: 62:a4:ad:7e:27:bb:47:0e:29:e7:03:e5:57:e9:c8:09:cf:d1: 41:3e:c7:51:4d:07:45:04:94:74:60:93:34:23:d4:89:08:f8: b7:49:97:93:65:05:66:ea:80:14:e2:69:16:0f:e5:3c:60:f4: dd:fe:dd:b0:0f:eb:31:98:29:d9:26:bf:98:04:06:47:2f:db: ff:ba:a3:72:c0:24:be:f7:6a:cb:bd:b5:ee:0b:a1:21:fe:81: 6b:ff:cc:e4:38:ed:90:0b:01:97:bd:f9:7a:19:02:0d:b3:c2: 0f:8a:54:e6:4a:69:e1:6c:8d:0f:cb:8a:77:06:93:71:4d:fa: c0:28:1a:d8:b7:a5:6e:fc:c6:ba:5a:5e:38:74:0f:ca:59:18: a3:ae:2c:9d:5b:9a:c0:c5:e7:a1:51:21:79:9e:a2:47:cc:c0: 14:e9:b4:2f:9a:fc:4c:a9:34:9b:81:55:36:ee:a8:63:9c:7c: ea:96:f9:3b:56:99:10:42:18:7a:6d:34:6b:67:2f:4f:56:7e: a0:cb:93:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfPwqFTyCOJWZCqdPHC1AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4ZWJhYTJmMTc2OWEzZGRmNjVmODczZGMzMWYzNTFlZjA3 OGFkMjUwHhcNMjYwMjA5MTMwMDEzWhcNMjYwMjEwMTMwMDEzWjAzMTEwLwYDVQQD Eyg4MGFjOTk1ZDY3Y2Q4MDFhNTQzOTExNzNiNmExMTIzMzJmMGJiYmRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWqZEwyMH/bd/gmAHRZ7tg5DtnG9 mlZI3Fvi+reimRYWC5XYT0t6U73yCsJLHehd/gFzNLPE5MbJNU2mZ+emH6LEUlfD QEHqhL5XM9HkPUJMwiQ4SaFNqCPn1dUALUGCRmYSOE3Zg5RIX+nhoX1hnUwQqj7n Tf3Ql1IYAzYTZtH3rppkCIW82ODFiwz/anBOtsA5u401iDVivR9DLJxlanhXTIs0 Dc4lERT8VQQRhmCrOAQ/uWEsQNygCbhWqcLm0nzBsil09tXOl/gn84WnnaLi09lC DAHb3wq4hOYVFmY93wxMw5EpOCSfEBeP0zcP3l73qWAsD0toisPyxdR7ywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFICsmV1nzYAaVDkRc7ahEjMvC7vfMB8GA1UdIwQY MBaAFIjrqi8XaaPd9l+HPcMfNR7weK0lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy84YmZjYzItNWRlZi00NGFhLTg3YzEt MmJiZjQ2ODg0NTg1LzEvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy84YmZjYzItNWRlZi00NGFhLTg3YzEtMmJiZjQ2ODg0NTg1 LzEvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT8LbDF8y 42/pHmQAuvzy2Kr0ly0pQeev8dw2+uMiWCqD1rU3GRMiGad/cmeez8vwFGflxXVC YqStfie7Rw4p5wPlV+nICc/RQT7HUU0HRQSUdGCTNCPUiQj4t0mXk2UFZuqAFOJp Fg/lPGD03f7dsA/rMZgp2Sa/mAQGRy/b/7qjcsAkvvdqy7217guhIf6Ba//M5Djt kAsBl735ehkCDbPCD4pU5kpp4WyND8uKdwaTcU36wCga2LelbvzGulpeOHQPylkY o64snVuawMXnoVEheZ6iR8zAFOm0L5r8TKk0m4FVNu6oY5x86pb5O1aZEEIYem00 a2cvT1Z+oMuTKQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:02 2026 by rpki-client