This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft File: 1ITgzuV1xhkFP47isQBMxEL9LO0.mft (raw, json) Hash identifier: W5Qy79KL9XqV/Tb3ut3xSODDq2rWKWDM0WI4yDyAvgk= Subject key identifier: C8:C5:34:B5:E8:75:64:7A:0B:74:D6:37:F0:30:F3:4B:85:B4:67:57 Authority key identifier: D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED Certificate issuer: /CN=d484e0cee575c619053f8ee2b1004cc442fd2ced Certificate serial: 019C427D347E9B29966F2868877FF25737B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft Manifest number: 1639 Signing time: Mon 09 Feb 2026 13:00:27 +0000 Manifest this update: Mon 09 Feb 2026 13:00:27 +0000 Manifest next update: Tue 10 Feb 2026 13:00:27 +0000 Files and hashes: 1: 1ITgzuV1xhkFP47isQBMxEL9LO0.crl (hash: 2jlYWYRe8CgMaMB1h3DWfRVs0cgIXiuBLioNqhQLfRk=) 2: VGhk2cDF1jTB8yf6DPPbRT2NsSU.roa (hash: P3BuUVRGKsw3eiebCq9ip9oGlC6+nCgvMNwUPBdCFVA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:34:7e:9b:29:96:6f:28:68:87:7f:f2:57:37:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d484e0cee575c619053f8ee2b1004cc442fd2ced Validity Not Before: Feb 9 13:00:27 2026 GMT Not After : Feb 10 13:00:27 2026 GMT Subject: CN=c8c534b5e875647a0b74d637f030f34b85b46757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0b:18:f3:20:79:32:02:3a:62:54:d8:16:0e: 8b:46:51:57:ce:dc:66:7b:c0:1e:e1:c5:e3:4e:67: c3:5e:8c:6d:08:40:49:70:f1:6a:42:9f:34:eb:59: 88:09:64:7f:58:68:81:47:6a:4b:c4:bd:f5:a9:2d: 9f:44:89:b3:8e:a1:ec:66:76:89:68:89:14:a5:9e: 6d:91:78:95:84:5e:27:d8:3a:3e:92:7d:bc:08:9e: 49:91:76:3f:0a:9c:ef:ea:85:24:b5:62:7d:03:8c: a5:b5:b5:ea:93:96:a3:cb:df:d8:59:45:e5:6d:c7: 8e:31:43:11:87:fa:98:37:c2:4d:b0:cd:a4:a2:32: 47:6f:00:2c:ed:6c:29:99:46:e1:08:fc:3c:a5:fe: 4c:42:e1:a5:f7:11:ce:ee:69:18:72:5a:d8:15:b2: fb:47:5b:31:03:cf:d1:7c:01:6d:86:47:48:16:4a: d7:3c:fa:20:94:33:16:4d:ac:d3:94:14:6f:87:99: 20:98:c9:9e:40:10:1b:5f:be:49:b4:79:2a:3d:d7: 52:1a:9a:5c:1c:2b:da:ec:ef:1b:1c:a2:7e:b9:df: cc:fb:e1:8a:82:79:fe:61:52:63:4e:0b:0c:f6:b1: 46:b6:8b:87:26:b0:50:db:92:6c:07:36:48:3a:8b: f5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C5:34:B5:E8:75:64:7A:0B:74:D6:37:F0:30:F3:4B:85:B4:67:57 X509v3 Authority Key Identifier: keyid:D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:7e:8e:d4:0c:8f:9c:a1:90:51:77:b4:eb:26:bb:79:06:10: 6e:30:3a:cc:ed:08:a2:9e:cb:ba:c4:b3:be:b0:b1:60:4a:bc: 3b:9d:0c:b9:14:9e:b6:ab:0b:12:5a:23:fe:a8:7a:ac:1f:19: 03:ae:50:88:d0:6d:03:2e:e4:42:ba:90:25:03:22:93:18:c1: d9:ec:76:5f:64:e6:86:81:6e:d0:6c:05:fe:4b:a3:b5:d2:3c: 9e:3a:a1:a2:a9:1d:89:47:55:ec:13:f6:54:c5:8b:06:50:cc: 45:9b:a3:26:75:fb:92:65:87:1a:ef:43:61:b8:2e:30:66:a7: 7b:20:a4:6d:ae:87:d0:1d:eb:74:52:e3:31:42:ac:e7:76:41: 70:ea:eb:a0:58:12:37:e7:5c:4d:e8:0b:bc:03:3d:6e:4d:36: fd:d0:33:d9:2d:56:16:e8:4c:64:fd:e2:d5:9d:f4:3e:be:48: 63:4d:d2:0c:2b:d1:84:d8:bf:17:ee:05:62:d2:38:1f:15:2c: ba:48:a0:90:03:02:c7:ec:73:3a:96:76:46:81:d4:6d:71:6f: 30:fe:29:9f:10:63:69:bf:6a:b5:62:c9:7b:87:76:1f:c6:0f: 67:51:bd:a6:41:f3:91:80:54:40:b5:4e:0d:f7:9d:5c:e3:8f: a9:b3:9d:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfTR+mymWbyhoh3/yVze0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ODRlMGNlZTU3NWM2MTkwNTNmOGVlMmIxMDA0Y2M0NDJm ZDJjZWQwHhcNMjYwMjA5MTMwMDI3WhcNMjYwMjEwMTMwMDI3WjAzMTEwLwYDVQQD EyhjOGM1MzRiNWU4NzU2NDdhMGI3NGQ2MzdmMDMwZjM0Yjg1YjQ2NzU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwsY8yB5MgI6YlTYFg6LRlFXztxm e8Ae4cXjTmfDXoxtCEBJcPFqQp8061mICWR/WGiBR2pLxL31qS2fRImzjqHsZnaJ aIkUpZ5tkXiVhF4n2Do+kn28CJ5JkXY/Cpzv6oUktWJ9A4yltbXqk5ajy9/YWUXl bceOMUMRh/qYN8JNsM2kojJHbwAs7WwpmUbhCPw8pf5MQuGl9xHO7mkYclrYFbL7 R1sxA8/RfAFthkdIFkrXPPoglDMWTazTlBRvh5kgmMmeQBAbX75JtHkqPddSGppc HCva7O8bHKJ+ud/M++GKgnn+YVJjTgsM9rFGtouHJrBQ25JsBzZIOov1bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMjFNLXodWR6C3TWN/Aw80uFtGdXMB8GA1UdIwQY MBaAFNSE4M7ldcYZBT+O4rEATMRC/SztMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC83ODQ3ZmItZjU1YS00OTk1LTg1MzEt ZWMwMjYyYWIzM2YxLzEvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC83ODQ3ZmItZjU1YS00OTk1LTg1MzEtZWMwMjYyYWIzM2Yx LzEvMUlUZ3p1VjF4aGtGUDQ3aXNRQk14RUw5TE8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArX6O1AyP nKGQUXe06ya7eQYQbjA6zO0Iop7LusSzvrCxYEq8O50MuRSetqsLEloj/qh6rB8Z A65QiNBtAy7kQrqQJQMikxjB2ex2X2TmhoFu0GwF/kujtdI8njqhoqkdiUdV7BP2 VMWLBlDMRZujJnX7kmWHGu9DYbguMGaneyCkba6H0B3rdFLjMUKs53ZBcOrroFgS N+dcTegLvAM9bk02/dAz2S1WFuhMZP3i1Z30Pr5IY03SDCvRhNi/F+4FYtI4HxUs ukigkAMCx+xzOpZ2RoHUbXFvMP4pnxBjab9qtWLJe4d2H8YPZ1G9pkHzkYBUQLVO DfedXOOPqbOdEA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:45 2026 by rpki-client