This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft File: IEBQzFlTby2UB2koI4kMzdqFRQg.mft (raw, json) Hash identifier: 8FD/TfzNTQ8bvW1twoGukB82fTgpmZl5ENl59ByNa5I= Subject key identifier: 38:7F:60:E9:40:87:45:B8:38:A7:46:9F:A6:A7:2E:52:86:C6:E1:FC Authority key identifier: 20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08 Certificate issuer: /CN=204050cc59536f2d9407692823890ccdda854508 Certificate serial: 019C4321D836B06C2AFE6334651D79E8AE46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft Manifest number: 061F Signing time: Mon 09 Feb 2026 16:00:17 +0000 Manifest this update: Mon 09 Feb 2026 16:00:17 +0000 Manifest next update: Tue 10 Feb 2026 16:00:17 +0000 Files and hashes: 1: IEBQzFlTby2UB2koI4kMzdqFRQg.crl (hash: yIIfQJTgJaoyCwJjKwxzl9qUIcRUMEw+q6qbdwsEL6s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:d8:36:b0:6c:2a:fe:63:34:65:1d:79:e8:ae:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=204050cc59536f2d9407692823890ccdda854508 Validity Not Before: Feb 9 16:00:17 2026 GMT Not After : Feb 10 16:00:17 2026 GMT Subject: CN=387f60e9408745b838a7469fa6a72e5286c6e1fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:58:70:c6:6e:e2:36:f5:9c:85:73:9d:25:db: 53:8b:31:86:09:ae:d8:02:bf:88:13:03:1c:3b:88: 40:b1:45:34:e4:71:56:34:ff:41:49:15:96:84:0f: ba:c3:7c:05:f6:6c:dc:12:da:a5:18:c7:38:78:74: c6:bc:3f:e1:3d:86:fb:6e:a5:46:9e:1b:61:88:93: f0:03:2b:74:6b:42:dd:71:4d:c7:2d:d0:1f:8f:38: 9f:fd:98:74:1f:d1:c2:87:9a:c5:5e:ec:78:70:3d: 0e:ce:45:05:2b:cb:31:54:dd:be:e8:d1:3b:71:c5: 81:4f:95:8b:ae:72:dd:71:8d:46:6f:cd:a2:b3:71: 74:2e:26:3a:e0:0b:60:4b:ad:0f:f7:df:6c:f9:69: 57:cd:b6:99:2a:2a:4f:c1:a1:c5:5d:3d:9e:94:07: c9:1a:a4:6a:a6:8f:86:58:13:4b:70:a6:c7:37:09: 62:58:7d:93:dd:34:f3:59:72:22:e4:89:4d:c4:6c: fb:bb:b3:9e:94:66:01:bb:dd:c3:61:49:7c:5f:55: 49:56:c4:e7:bb:c1:a5:de:e6:fd:f1:78:9f:34:e0: 4a:5f:dc:4a:b7:37:54:51:32:4b:44:6d:4f:bf:9a: a8:54:c7:c1:52:99:86:09:c4:18:1a:cd:b1:38:ea: 1d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7F:60:E9:40:87:45:B8:38:A7:46:9F:A6:A7:2E:52:86:C6:E1:FC X509v3 Authority Key Identifier: keyid:20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:ce:75:b1:dc:33:f2:6a:a7:22:8b:d4:e5:e0:5c:e7:50:28: 6a:b6:07:a6:0d:13:79:9f:bb:36:e6:65:5a:85:79:7c:5e:59: 04:fd:b5:64:27:f4:61:00:24:fc:44:a1:76:bf:cc:69:89:fd: dc:2d:ef:05:0f:70:0f:1d:2f:7d:ec:ca:c1:d3:48:1f:93:7f: 08:66:17:c7:55:b6:6a:58:ed:98:96:a0:ea:1a:4f:d3:bb:62: 42:80:54:b0:79:6a:3a:ed:fe:d0:f9:1c:55:5d:bc:c6:57:f5: 97:fd:02:dd:35:91:a3:1c:fb:23:85:1d:c9:5a:1b:d5:ce:b4: f6:f5:86:40:6c:8e:cd:c8:99:27:11:37:40:bb:dd:96:00:4c: 8f:35:4a:f0:15:1f:07:75:bb:0d:13:82:c5:51:d3:ee:40:99: 91:a8:4e:32:d3:05:a4:bf:65:39:3e:35:04:c0:76:ea:1c:4e: aa:27:6e:5e:bb:c9:36:5e:13:e3:17:29:8e:5f:3b:b1:3e:4a: dd:df:e7:48:14:8a:67:58:04:78:43:ad:e6:f4:31:81:33:ee: e5:12:35:cb:1f:0a:85:61:f3:29:8f:54:00:cb:fa:3a:2e:28: 74:02:89:0e:e6:c8:94:59:0d:ab:8b:79:84:bc:c1:3a:56:14: 94:77:d9:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdg2sGwq/mM0ZR156K5GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwNDA1MGNjNTk1MzZmMmQ5NDA3NjkyODIzODkwY2NkZGE4 NTQ1MDgwHhcNMjYwMjA5MTYwMDE3WhcNMjYwMjEwMTYwMDE3WjAzMTEwLwYDVQQD EygzODdmNjBlOTQwODc0NWI4MzhhNzQ2OWZhNmE3MmU1Mjg2YzZlMWZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAylhwxm7iNvWchXOdJdtTizGGCa7Y Ar+IEwMcO4hAsUU05HFWNP9BSRWWhA+6w3wF9mzcEtqlGMc4eHTGvD/hPYb7bqVG nhthiJPwAyt0a0LdcU3HLdAfjzif/Zh0H9HCh5rFXux4cD0OzkUFK8sxVN2+6NE7 ccWBT5WLrnLdcY1Gb82is3F0LiY64AtgS60P999s+WlXzbaZKipPwaHFXT2elAfJ GqRqpo+GWBNLcKbHNwliWH2T3TTzWXIi5IlNxGz7u7OelGYBu93DYUl8X1VJVsTn u8Gl3ub98XifNOBKX9xKtzdUUTJLRG1Pv5qoVMfBUpmGCcQYGs2xOOodfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDh/YOlAh0W4OKdGn6anLlKGxuH8MB8GA1UdIwQY MBaAFCBAUMxZU28tlAdpKCOJDM3ahUUIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUVCUXpGbFRieTJVQjJrb0k0a016ZHFGUlFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wNDU1ZDUtYWU1Ni00ODIwLWExZTkt OWI0MzdkYmZkMzUzLzEvSUVCUXpGbFRieTJVQjJrb0k0a016ZHFGUlFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8wNDU1ZDUtYWU1Ni00ODIwLWExZTktOWI0MzdkYmZkMzUz LzEvSUVCUXpGbFRieTJVQjJrb0k0a016ZHFGUlFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKs51sdwz 8mqnIovU5eBc51AoarYHpg0TeZ+7NuZlWoV5fF5ZBP21ZCf0YQAk/EShdr/MaYn9 3C3vBQ9wDx0vfezKwdNIH5N/CGYXx1W2aljtmJag6hpP07tiQoBUsHlqOu3+0Pkc VV28xlf1l/0C3TWRoxz7I4UdyVob1c609vWGQGyOzciZJxE3QLvdlgBMjzVK8BUf B3W7DROCxVHT7kCZkahOMtMFpL9lOT41BMB26hxOqiduXrvJNl4T4xcpjl87sT5K 3d/nSBSKZ1gEeEOt5vQxgTPu5RI1yx8KhWHzKY9UAMv6Oi4odAKJDubIlFkNq4t5 hLzBOlYUlHfZHg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:15 2026 by rpki-client