This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft File: IaqfF_jMpH37krSQLSwrMgPb7aY.mft (raw, json) Hash identifier: hOpDd0teLBeK5BYy/rpA34IDHQetVf9leTdpl3nv6q0= Subject key identifier: D7:40:B1:18:34:55:44:40:D3:24:8D:3D:4A:94:0B:51:4A:08:08:B2 Authority key identifier: 21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6 Certificate issuer: /CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6 Certificate serial: 019C43226A8DAC0D5230C9469C4F798AE13A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft Manifest number: 08AC Signing time: Mon 09 Feb 2026 16:00:54 +0000 Manifest this update: Mon 09 Feb 2026 16:00:54 +0000 Manifest next update: Tue 10 Feb 2026 16:00:54 +0000 Files and hashes: 1: IaqfF_jMpH37krSQLSwrMgPb7aY.crl (hash: U0YD84umkCnbAfCnmwbdPGceO2JttkbH1e1V07Mw8nM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6a:8d:ac:0d:52:30:c9:46:9c:4f:79:8a:e1:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6 Validity Not Before: Feb 9 16:00:54 2026 GMT Not After : Feb 10 16:00:54 2026 GMT Subject: CN=d740b11834554440d3248d3d4a940b514a0808b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:57:ec:58:71:97:77:99:4f:11:b0:74:4c:75: 77:27:ec:3f:5e:9c:d9:41:16:c4:e2:68:35:30:8c: c4:ae:71:da:4f:c0:a4:8b:a2:d1:46:49:b4:a9:89: 41:c2:fd:b5:4a:a6:f7:3c:b8:e6:7e:8e:0e:8d:60: d6:21:4b:6c:c9:25:80:95:f8:3b:06:d4:c2:bb:94: 2f:af:b3:af:2b:12:42:3d:49:4d:0a:e5:1a:95:20: 01:98:71:53:9e:ce:3d:aa:2e:49:bb:5d:c9:b2:06: 84:6e:8d:2a:fb:91:4c:f7:b6:1c:58:a7:f3:ac:f6: 93:a0:a6:8c:0d:8b:a2:57:3e:09:f4:df:f6:00:b5: f2:f0:7e:14:5c:9b:a8:3f:cc:eb:b5:9c:e2:98:fa: c2:d7:df:6e:d6:e1:75:d2:a4:e5:1f:83:c3:d3:9a: d1:b0:f5:d3:80:62:a4:95:ec:fc:2f:7a:c5:c0:b7: 79:31:06:5f:94:0e:7b:a1:c6:64:a4:ea:b3:8f:80: d7:98:11:7a:b2:6e:ae:a4:b3:3f:d4:f8:9a:ae:f4: 18:b0:ee:df:26:d6:95:26:4b:3b:24:d0:e8:ca:2f: e7:c6:ec:06:6d:9c:d5:92:4a:6d:c2:d0:60:84:6c: ac:7c:25:6c:f9:71:a4:89:77:50:01:cc:10:99:bc: f4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:40:B1:18:34:55:44:40:D3:24:8D:3D:4A:94:0B:51:4A:08:08:B2 X509v3 Authority Key Identifier: keyid:21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:0f:92:cf:4b:0f:7e:05:99:07:e8:a9:9f:b8:96:47:fa:3b: cf:37:ea:5b:90:c2:65:b4:6e:20:db:fb:d4:37:05:33:be:58: 14:e7:17:c9:bb:55:07:5f:38:a0:13:47:51:d2:c3:9a:e5:9a: 59:1e:10:d4:1b:f3:b0:b2:ff:29:c3:dd:f3:36:e9:8b:f3:4d: 83:7a:0d:4d:53:b0:65:ea:b5:94:6c:d2:01:87:94:ff:c6:85: bc:20:b2:f9:dd:7b:d6:be:c5:c0:60:a0:f6:e7:77:72:73:f1: 95:8a:bb:d5:ff:9b:61:cd:92:c6:9b:4b:42:c8:33:1b:bd:13: 75:f0:3b:a2:d6:96:11:03:2d:24:42:d9:2f:5c:57:8e:33:8a: 2f:f2:f2:cd:fe:2b:92:d4:ca:19:66:e3:9c:c9:03:99:54:b8: 79:35:dc:bc:8d:c0:20:79:4c:9e:d2:c4:6d:95:5b:99:d5:4a: b5:01:45:39:1e:89:cd:92:c6:ca:8f:1d:4b:bc:36:dd:21:bb: a1:81:80:4b:c9:20:ef:1b:72:2c:35:68:48:c6:b6:67:1d:93: a1:14:b3:c5:c0:35:ac:bd:2a:fb:de:5d:2c:42:84:33:b9:46: e0:f9:05:63:b6:c3:13:20:69:7b:69:68:73:cc:e9:82:9a:bd: 87:bb:9d:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImqNrA1SMMlGnE95iuE6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxYWE5ZjE3ZjhjY2E0N2RmYjkyYjQ5MDJkMmMyYjMyMDNk YmVkYTYwHhcNMjYwMjA5MTYwMDU0WhcNMjYwMjEwMTYwMDU0WjAzMTEwLwYDVQQD EyhkNzQwYjExODM0NTU0NDQwZDMyNDhkM2Q0YTk0MGI1MTRhMDgwOGIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1fsWHGXd5lPEbB0THV3J+w/XpzZ QRbE4mg1MIzErnHaT8Cki6LRRkm0qYlBwv21Sqb3PLjmfo4OjWDWIUtsySWAlfg7 BtTCu5Qvr7OvKxJCPUlNCuUalSABmHFTns49qi5Ju13JsgaEbo0q+5FM97YcWKfz rPaToKaMDYuiVz4J9N/2ALXy8H4UXJuoP8zrtZzimPrC199u1uF10qTlH4PD05rR sPXTgGKklez8L3rFwLd5MQZflA57ocZkpOqzj4DXmBF6sm6upLM/1PiarvQYsO7f JtaVJks7JNDoyi/nxuwGbZzVkkptwtBghGysfCVs+XGkiXdQAcwQmbz0mwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNdAsRg0VURA0ySNPUqUC1FKCAiyMB8GA1UdIwQY MBaAFCGqnxf4zKR9+5K0kC0sKzID2+2mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWFxZkZfak1wSDM3a3JTUUxTd3JNZ1BiN2FZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9kNjhkZmYtOTVlMS00YzkwLTllYzYt NTUwMjkyODBmZWMxLzEvSWFxZkZfak1wSDM3a3JTUUxTd3JNZ1BiN2FZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9kNjhkZmYtOTVlMS00YzkwLTllYzYtNTUwMjkyODBmZWMx LzEvSWFxZkZfak1wSDM3a3JTUUxTd3JNZ1BiN2FZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaw+Sz0sP fgWZB+ipn7iWR/o7zzfqW5DCZbRuINv71DcFM75YFOcXybtVB184oBNHUdLDmuWa WR4Q1BvzsLL/KcPd8zbpi/NNg3oNTVOwZeq1lGzSAYeU/8aFvCCy+d171r7FwGCg 9ud3cnPxlYq71f+bYc2SxptLQsgzG70TdfA7otaWEQMtJELZL1xXjjOKL/Lyzf4r ktTKGWbjnMkDmVS4eTXcvI3AIHlMntLEbZVbmdVKtQFFOR6JzZLGyo8dS7w23SG7 oYGAS8kg7xtyLDVoSMa2Zx2ToRSzxcA1rL0q+95dLEKEM7lG4PkFY7bDEyBpe2lo c8zpgpq9h7udbw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:07:52 2026 by rpki-client