This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft File: iPQfqz5j6vW98HFm31qmgWLq16Y.mft (raw, json) Hash identifier: fG3G0uOlDHSTbZxCvW8jLQ4zTHsooyB3NH4s7554SMI= Subject key identifier: 3B:71:E9:99:D2:B9:37:EC:F8:1C:32:49:55:33:63:FA:CE:D4:84:8B Authority key identifier: 88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6 Certificate issuer: /CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6 Certificate serial: 019C427DC955BD8AD76D9F10AA3CCE4B1281 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 13:01:05 +0000 Manifest this update: Mon 09 Feb 2026 13:01:05 +0000 Manifest next update: Tue 10 Feb 2026 13:01:05 +0000 Files and hashes: 1: gjzgYMADmxh6Q8pdc-WWoEw7shc.roa (hash: 0P8JuvcWmnVuYZSLeNadkGvm4K+4XLNVcmqTDBqXszk=) 2: iPQfqz5j6vW98HFm31qmgWLq16Y.crl (hash: 7LFmSD0/4oUDzfBgRHftncK3emusHDgBlYiXw+x+JIY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:c9:55:bd:8a:d7:6d:9f:10:aa:3c:ce:4b:12:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6 Validity Not Before: Feb 9 13:01:05 2026 GMT Not After : Feb 10 13:01:05 2026 GMT Subject: CN=3b71e999d2b937ecf81c3249553363faced4848b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:9a:3f:1c:cc:2e:b8:cb:0d:48:a0:7b:8f:c9: 58:0d:c6:9a:06:d2:25:04:8e:b6:21:22:b8:71:fa: 47:4a:e4:64:89:81:fc:fe:cd:6e:64:f1:bc:e6:81: d2:3c:71:69:d7:ff:29:cf:2e:f0:d8:15:f7:33:85: 0a:83:b3:84:9a:f7:0b:ec:e7:64:6f:e4:89:2f:0b: 82:17:c6:57:81:68:3b:30:b3:c0:a3:d4:a4:77:89: 37:49:75:b6:25:b5:87:1d:20:b0:74:61:f1:5c:93: 63:e7:53:cb:30:ed:61:ef:97:3f:4a:b5:38:1e:b4: 3a:9c:42:45:fc:c3:d2:01:cc:01:ee:ee:eb:83:13: 3c:27:91:9a:38:25:e2:92:ac:cb:58:62:03:ab:91: 71:b9:2e:02:f5:a8:36:8e:8f:52:88:0b:dc:1c:f1: aa:af:ba:9f:79:fb:cd:90:c4:04:03:09:69:14:56: 36:5f:70:66:8f:f8:23:ad:68:d9:7c:a8:f1:d6:fc: 11:73:35:55:21:9a:f5:77:84:56:dc:2f:f3:5a:27: 65:d2:68:93:32:db:af:1f:42:46:3f:e7:ab:9b:d7: ac:e0:4a:4e:2c:84:56:95:65:c8:89:35:1a:7e:e4: 8a:64:42:38:7e:9c:d5:e1:7b:a6:ac:35:a0:03:24: c0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:71:E9:99:D2:B9:37:EC:F8:1C:32:49:55:33:63:FA:CE:D4:84:8B X509v3 Authority Key Identifier: keyid:88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cb:fb:12:ae:00:c3:ed:42:1f:b1:33:41:c2:40:24:62:64:d7: 96:46:0b:3a:d5:44:bb:04:ef:ab:bd:01:c5:82:b7:ad:27:85: 06:b1:c1:b3:ea:aa:41:81:03:80:a3:ec:d4:46:8b:1f:2c:d6: d2:e9:dd:c8:c9:72:8d:5d:bc:a3:05:d0:72:dc:7d:10:a8:07: fc:49:06:1a:f2:b1:9d:9a:73:7f:3b:43:0d:a0:ef:db:7a:1e: 3a:8d:03:ed:a8:fe:31:ff:2a:8b:bc:57:af:57:fa:fb:47:21: fe:c5:38:2a:26:ca:df:19:f4:42:bc:9c:90:09:e3:65:5d:37: e4:2e:d5:e5:4f:f3:2e:b7:4e:8c:c6:dd:ae:be:2e:15:cb:09: 74:94:35:82:c8:fc:52:b2:06:b5:98:db:59:e4:74:e3:46:8d: 0d:e7:bd:5d:17:7b:a0:8d:34:39:12:3a:a0:0c:be:aa:07:b3: 5d:93:b2:ab:58:d1:c3:45:63:f7:fc:02:12:33:bd:4d:b7:10: 06:4b:88:7c:dc:54:c2:3a:6e:14:82:fa:df:a2:8b:70:1c:ad: f6:dd:47:2c:5a:9b:01:c9:74:a8:d7:62:be:a5:1f:31:94:e7: 0b:b0:c4:66:c7:35:5d:81:ce:31:a3:fb:6f:c4:92:0e:e3:b3: df:d0:bb:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfclVvYrXbZ8QqjzOSxKBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4ZjQxZmFiM2U2M2VhZjViZGYwNzE2NmRmNWFhNjgxNjJl YWQ3YTYwHhcNMjYwMjA5MTMwMTA1WhcNMjYwMjEwMTMwMTA1WjAzMTEwLwYDVQQD EygzYjcxZTk5OWQyYjkzN2VjZjgxYzMyNDk1NTMzNjNmYWNlZDQ4NDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZo/HMwuuMsNSKB7j8lYDcaaBtIl BI62ISK4cfpHSuRkiYH8/s1uZPG85oHSPHFp1/8pzy7w2BX3M4UKg7OEmvcL7Odk b+SJLwuCF8ZXgWg7MLPAo9Skd4k3SXW2JbWHHSCwdGHxXJNj51PLMO1h75c/SrU4 HrQ6nEJF/MPSAcwB7u7rgxM8J5GaOCXikqzLWGIDq5FxuS4C9ag2jo9SiAvcHPGq r7qfefvNkMQEAwlpFFY2X3Bmj/gjrWjZfKjx1vwRczVVIZr1d4RW3C/zWidl0miT MtuvH0JGP+erm9es4EpOLIRWlWXIiTUafuSKZEI4fpzV4XumrDWgAyTAEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDtx6ZnSuTfs+BwySVUzY/rO1ISLMB8GA1UdIwQY MBaAFIj0H6s+Y+r1vfBxZt9apoFi6temMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVBRZnF6NWo2dlc5OEhGbTMxcW1nV0xxMTZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDZkOGItYzc1OC00YjkzLWI5ZjMt ODk3Y2I2YTQzMGQ3LzEvaVBRZnF6NWo2dlc5OEhGbTMxcW1nV0xxMTZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9lMDZkOGItYzc1OC00YjkzLWI5ZjMtODk3Y2I2YTQzMGQ3 LzEvaVBRZnF6NWo2dlc5OEhGbTMxcW1nV0xxMTZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAy/sSrgDD 7UIfsTNBwkAkYmTXlkYLOtVEuwTvq70BxYK3rSeFBrHBs+qqQYEDgKPs1EaLHyzW 0undyMlyjV28owXQctx9EKgH/EkGGvKxnZpzfztDDaDv23oeOo0D7aj+Mf8qi7xX r1f6+0ch/sU4KibK3xn0QryckAnjZV035C7V5U/zLrdOjMbdrr4uFcsJdJQ1gsj8 UrIGtZjbWeR040aNDee9XRd7oI00ORI6oAy+qgezXZOyq1jRw0Vj9/wCEjO9TbcQ BkuIfNxUwjpuFIL636KLcByt9t1HLFqbAcl0qNdivqUfMZTnC7DEZsc1XYHOMaP7 b8SSDuOz39C7nA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:34 2026 by rpki-client