This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft File: ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft (raw, json) Hash identifier: e1/OWR1GNFqCs0AbkFGN6U63ntG4oL7TMFNiV/TSGXE= Subject key identifier: 0E:8F:5C:22:05:2C:B0:7F:68:04:FF:AE:F2:F5:26:7F:77:68:D3:8B Authority key identifier: 89:AF:87:69:33:97:03:DA:3B:0C:B5:E8:31:02:3D:3B:F6:3F:02:2E Certificate issuer: /CN=89af8769339703da3b0cb5e831023d3bf63f022e Certificate serial: 019C43221CCEE5CCDEF380E40CCB26EBAF62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft Manifest number: 10BA Signing time: Mon 09 Feb 2026 16:00:34 +0000 Manifest this update: Mon 09 Feb 2026 16:00:34 +0000 Manifest next update: Tue 10 Feb 2026 16:00:34 +0000 Files and hashes: 1: 7TJ8GqKMB7ONKpmIttAKlfVjIPI.roa (hash: YqU7Dk9vgRbL9GHaPYk9nyjuTWJnjnKlb/odLn25dDg=) 2: ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl (hash: Yg7NNaKSFSnzPQrgbKv8eRRh0cjL9a70namCgLttmYk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:1c:ce:e5:cc:de:f3:80:e4:0c:cb:26:eb:af:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89af8769339703da3b0cb5e831023d3bf63f022e Validity Not Before: Feb 9 16:00:34 2026 GMT Not After : Feb 10 16:00:34 2026 GMT Subject: CN=0e8f5c22052cb07f6804ffaef2f5267f7768d38b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:72:eb:41:e0:48:16:64:90:88:72:1a:f2:b1: 89:cd:52:9b:21:62:60:0a:6d:94:5d:a3:86:79:37: fc:9a:ce:6a:5a:5c:16:f7:19:f8:44:24:70:d1:ea: c1:3d:ae:de:ef:b9:89:75:d0:ce:92:2d:07:5c:b7: ee:40:53:db:03:46:8a:fc:b3:2d:d8:de:0f:73:98: af:bb:fd:53:7a:22:1a:de:5b:6c:80:7f:27:4d:42: a1:88:ed:e5:d9:97:aa:e5:ed:6d:14:52:f5:04:5a: 68:42:0d:b3:54:76:e1:de:4c:79:85:57:f2:9c:ef: 88:9b:7b:2a:a1:ec:bb:9f:42:19:a4:7b:cb:54:58: 0d:31:7e:6b:b0:fc:b0:30:a6:fe:bb:eb:9b:f9:85: 64:a5:92:d2:cb:d0:12:36:ac:99:0b:5c:0c:db:c2: c5:c9:ed:11:3c:c7:7b:89:dd:d2:8b:6c:3f:2e:bd: 5f:a3:21:4f:a2:a7:f2:bc:f9:46:ac:f1:dd:6d:05: 4d:e1:7e:99:0d:a4:4a:46:e4:82:8a:7f:21:93:51: 1a:83:64:25:5c:ab:7c:aa:98:5e:cb:1c:aa:64:cd: cd:cb:45:d0:04:4e:7a:2f:84:21:7d:af:47:a6:62: 5a:06:e1:ac:77:e8:3a:ea:a8:12:b7:5b:82:6e:6a: 4e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:8F:5C:22:05:2C:B0:7F:68:04:FF:AE:F2:F5:26:7F:77:68:D3:8B X509v3 Authority Key Identifier: keyid:89:AF:87:69:33:97:03:DA:3B:0C:B5:E8:31:02:3D:3B:F6:3F:02:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e82d6-c611-40ad-958e-301e4654ddf6/1/ia-HaTOXA9o7DLXoMQI9O_Y_Ai4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:50:2d:30:2b:5b:12:e2:e0:8f:73:66:ef:16:40:41:88:2d: 6a:f4:8f:c5:fa:da:c1:4e:6f:bd:e1:a1:5f:33:f4:81:a1:d7: 9a:c5:cc:d4:9b:00:da:07:27:26:14:08:af:8c:e9:64:26:01: ca:10:bb:64:e3:17:5b:e2:f1:88:c5:5d:a4:20:d9:74:b8:d9: ef:a6:b9:71:d5:f7:87:29:92:5d:c0:b4:63:78:70:82:33:c8: cd:d1:73:b4:ab:f6:3e:82:5e:05:bc:82:51:4f:af:78:db:3b: aa:2e:70:40:41:fc:ef:59:44:c8:24:a8:da:e8:31:29:5e:29: 18:4d:fd:e3:d5:4e:a6:7e:ab:2c:df:4b:cd:df:d1:b8:f8:40: fb:e6:e4:e7:7b:3b:0b:5b:23:49:0f:d1:79:df:be:35:9d:e9: b1:fa:71:e6:43:6b:1b:9f:ae:ea:f7:27:67:c4:d0:cf:65:88: a6:c8:9b:4c:ab:4f:15:11:59:7b:28:4f:b3:29:cd:9b:e7:a8: 50:69:f5:3f:b4:7d:12:67:a0:a6:15:ca:b4:fe:ab:13:0d:73: 18:eb:74:49:31:d1:05:53:f5:16:c7:be:73:d4:c3:16:d9:0f: ac:ac:31:7c:6f:69:86:a3:14:1a:23:46:88:3f:b0:2a:63:c8: ae:24:a6:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIhzO5cze84DkDMsm669iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWY4NzY5MzM5NzAzZGEzYjBjYjVlODMxMDIzZDNiZjYz ZjAyMmUwHhcNMjYwMjA5MTYwMDM0WhcNMjYwMjEwMTYwMDM0WjAzMTEwLwYDVQQD EygwZThmNWMyMjA1MmNiMDdmNjgwNGZmYWVmMmY1MjY3Zjc3NjhkMzhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnLrQeBIFmSQiHIa8rGJzVKbIWJg Cm2UXaOGeTf8ms5qWlwW9xn4RCRw0erBPa7e77mJddDOki0HXLfuQFPbA0aK/LMt 2N4Pc5ivu/1TeiIa3ltsgH8nTUKhiO3l2Zeq5e1tFFL1BFpoQg2zVHbh3kx5hVfy nO+Im3sqoey7n0IZpHvLVFgNMX5rsPywMKb+u+ub+YVkpZLSy9ASNqyZC1wM28LF ye0RPMd7id3Si2w/Lr1foyFPoqfyvPlGrPHdbQVN4X6ZDaRKRuSCin8hk1Eag2Ql XKt8qpheyxyqZM3Ny0XQBE56L4Qhfa9HpmJaBuGsd+g66qgSt1uCbmpOywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA6PXCIFLLB/aAT/rvL1Jn93aNOLMB8GA1UdIwQY MBaAFImvh2kzlwPaOwy16DECPTv2PwIuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWEtSGFUT1hBOW83RExYb01RSTlPX1lfQWk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC81ZTgyZDYtYzYxMS00MGFkLTk1OGUt MzAxZTQ2NTRkZGY2LzEvaWEtSGFUT1hBOW83RExYb01RSTlPX1lfQWk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC81ZTgyZDYtYzYxMS00MGFkLTk1OGUtMzAxZTQ2NTRkZGY2 LzEvaWEtSGFUT1hBOW83RExYb01RSTlPX1lfQWk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq1AtMCtb EuLgj3Nm7xZAQYgtavSPxfrawU5vveGhXzP0gaHXmsXM1JsA2gcnJhQIr4zpZCYB yhC7ZOMXW+LxiMVdpCDZdLjZ76a5cdX3hymSXcC0Y3hwgjPIzdFztKv2PoJeBbyC UU+veNs7qi5wQEH871lEyCSo2ugxKV4pGE3949VOpn6rLN9Lzd/RuPhA++bk53s7 C1sjSQ/Red++NZ3psfpx5kNrG5+u6vcnZ8TQz2WIpsibTKtPFRFZeyhPsynNm+eo UGn1P7R9EmegphXKtP6rEw1zGOt0STHRBVP1Fse+c9TDFtkPrKwxfG9phqMUGiNG iD+wKmPIriSmtw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:32 2026 by rpki-client