This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft File: Iu8SfmGVSrmJNlydukuMBkzu2fA.mft (raw, json) Hash identifier: juT3I8R226t4Xf33A9rx6J/UUkFW0HxGAjIYw0KW7HU= Subject key identifier: 15:A4:A8:60:29:A2:8E:47:C9:B8:86:90:2A:95:D1:B4:ED:46:96:D1 Authority key identifier: 22:EF:12:7E:61:95:4A:B9:89:36:5C:9D:BA:4B:8C:06:4C:EE:D9:F0 Certificate issuer: /CN=22ef127e61954ab989365c9dba4b8c064ceed9f0 Certificate serial: 019C427D466B06666BB7CBF7DCB0DAA34C03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft Manifest number: 0667 Signing time: Mon 09 Feb 2026 13:00:31 +0000 Manifest this update: Mon 09 Feb 2026 13:00:31 +0000 Manifest next update: Tue 10 Feb 2026 13:00:31 +0000 Files and hashes: 1: Iu8SfmGVSrmJNlydukuMBkzu2fA.crl (hash: tcduDJmzkRQmbFk7CbF3adLqgUgSgu+/twpju0weJIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.crl rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:46:6b:06:66:6b:b7:cb:f7:dc:b0:da:a3:4c:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22ef127e61954ab989365c9dba4b8c064ceed9f0 Validity Not Before: Feb 9 13:00:31 2026 GMT Not After : Feb 10 13:00:31 2026 GMT Subject: CN=15a4a86029a28e47c9b886902a95d1b4ed4696d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2b:67:89:bf:4f:86:97:ea:93:a9:f9:54:0a: f6:57:19:58:fc:25:89:7e:88:49:0c:04:5f:e8:14: f8:ec:3a:02:3c:c0:03:f8:77:36:b7:47:b5:0f:e6: 70:30:db:f6:73:b1:0f:4e:7a:70:00:0a:d2:40:47: 6f:00:32:6c:b1:43:e7:ed:8e:d5:5e:81:a1:05:88: 5c:0f:71:64:f1:39:e0:a9:f8:af:26:ee:41:22:21: 08:c8:4d:e3:2f:67:61:0f:40:b8:c1:6a:db:48:d6: cb:54:6d:64:6f:b2:8e:f6:30:cb:4c:63:dd:d3:b0: b5:c1:10:97:7d:c4:d1:a5:61:90:82:f9:30:af:d3: 06:05:19:2e:e7:93:15:b4:f2:d4:c5:cd:ff:9b:3a: 92:98:dc:b4:5a:e2:48:28:6e:24:94:83:34:9e:07: 8c:fa:00:80:ff:ee:59:21:8d:c6:9c:83:65:4c:f1: 32:81:30:53:68:88:b6:05:9c:ad:fe:ff:03:c1:76: 74:06:fa:1c:74:72:cd:ec:cf:2f:30:d0:53:c6:32: 66:a2:1b:61:86:44:5d:e4:78:12:da:63:a0:9f:b3: a8:76:be:01:cc:00:13:b9:43:de:4a:83:5a:f1:65: 46:e4:b1:2e:df:49:a0:8f:8c:e4:44:5f:1f:4b:45: f2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A4:A8:60:29:A2:8E:47:C9:B8:86:90:2A:95:D1:B4:ED:46:96:D1 X509v3 Authority Key Identifier: keyid:22:EF:12:7E:61:95:4A:B9:89:36:5C:9D:BA:4B:8C:06:4C:EE:D9:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:99:46:05:1c:04:d6:62:a4:ec:f0:cb:63:b1:24:5b:a1:0a: 46:63:66:07:3c:d4:4a:09:13:72:5d:4c:c4:49:f6:d3:37:5b: 1a:d7:fd:ac:f2:22:46:ac:05:63:93:0e:e9:76:c3:b7:11:27: 28:f7:ab:ad:e2:02:70:f9:54:eb:0a:b2:c6:5a:01:fe:f3:a0: 47:16:c7:27:36:6d:04:31:72:d2:60:81:02:6d:61:35:9f:96: 77:f9:68:21:85:b5:6d:4d:bf:96:e8:73:81:26:c9:fd:79:3c: ae:fb:cb:f0:a4:c8:1d:52:a2:d2:ba:06:1c:87:d5:21:59:90: 8d:e7:c7:40:64:96:40:bc:1c:fc:bf:0d:f2:da:f1:89:90:6e: e0:e7:cb:48:db:a5:3d:20:28:41:47:55:d2:fe:09:58:23:68: 81:f7:81:ac:55:a9:5f:fb:de:fe:5e:3c:fc:0f:03:0f:0b:7a: fd:a9:50:4d:4a:57:8a:5d:90:a2:97:1b:4e:1e:94:e8:d5:72: 05:0b:69:2f:a6:66:e0:4c:20:b7:eb:20:15:2c:69:03:09:41: 77:f7:ff:ca:5c:44:6d:96:a8:50:17:54:28:9c:25:eb:93:15: 36:67:43:63:bc:5b:9a:f5:d8:ac:68:85:17:3e:a9:d8:c9:eb: 3b:cd:1f:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfUZrBmZrt8v33LDao0wDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZWYxMjdlNjE5NTRhYjk4OTM2NWM5ZGJhNGI4YzA2NGNl ZWQ5ZjAwHhcNMjYwMjA5MTMwMDMxWhcNMjYwMjEwMTMwMDMxWjAzMTEwLwYDVQQD EygxNWE0YTg2MDI5YTI4ZTQ3YzliODg2OTAyYTk1ZDFiNGVkNDY5NmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsytnib9Phpfqk6n5VAr2VxlY/CWJ fohJDARf6BT47DoCPMAD+Hc2t0e1D+ZwMNv2c7EPTnpwAArSQEdvADJssUPn7Y7V XoGhBYhcD3Fk8TngqfivJu5BIiEIyE3jL2dhD0C4wWrbSNbLVG1kb7KO9jDLTGPd 07C1wRCXfcTRpWGQgvkwr9MGBRku55MVtPLUxc3/mzqSmNy0WuJIKG4klIM0ngeM +gCA/+5ZIY3GnINlTPEygTBTaIi2BZyt/v8DwXZ0BvocdHLN7M8vMNBTxjJmohth hkRd5HgS2mOgn7Oodr4BzAATuUPeSoNa8WVG5LEu30mgj4zkRF8fS0XySQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBWkqGApoo5HybiGkCqV0bTtRpbRMB8GA1UdIwQY MBaAFCLvEn5hlUq5iTZcnbpLjAZM7tnwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXU4U2ZtR1ZTcm1KTmx5ZHVrdU1Ca3p1MmZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy84Mzk4MjgtY2U1OS00ZDIyLWE2MjEt OGM2YWExMDY5NWIyLzEvSXU4U2ZtR1ZTcm1KTmx5ZHVrdU1Ca3p1MmZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy84Mzk4MjgtY2U1OS00ZDIyLWE2MjEtOGM2YWExMDY5NWIy LzEvSXU4U2ZtR1ZTcm1KTmx5ZHVrdU1Ca3p1MmZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj5lGBRwE 1mKk7PDLY7EkW6EKRmNmBzzUSgkTcl1MxEn20zdbGtf9rPIiRqwFY5MO6XbDtxEn KPerreICcPlU6wqyxloB/vOgRxbHJzZtBDFy0mCBAm1hNZ+Wd/loIYW1bU2/luhz gSbJ/Xk8rvvL8KTIHVKi0roGHIfVIVmQjefHQGSWQLwc/L8N8trxiZBu4OfLSNul PSAoQUdV0v4JWCNogfeBrFWpX/ve/l48/A8DDwt6/alQTUpXil2QopcbTh6U6NVy BQtpL6Zm4Ewgt+sgFSxpAwlBd/f/ylxEbZaoUBdUKJwl65MVNmdDY7xbmvXYrGiF Fz6p2MnrO80fFA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:51 2026 by rpki-client