This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft File: IQH0Od66_1iAOV148Lv62Mp2CL8.mft (raw, json) Hash identifier: tK8qRPho2BCu+H0uzvulNJnXuvO5PILH7Z0m3OlwFq0= Subject key identifier: 1E:AF:8D:90:B6:12:3F:79:6F:A4:B3:D1:FD:1A:25:53:7A:96:ED:8A Authority key identifier: 21:01:F4:39:DE:BA:FF:58:80:39:5D:78:F0:BB:FA:D8:CA:76:08:BF Certificate issuer: /CN=2101f439debaff5880395d78f0bbfad8ca7608bf Certificate serial: 019C439012B823DD0913D32CF00199A21BA6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft Manifest number: 0ECD Signing time: Mon 09 Feb 2026 18:00:41 +0000 Manifest this update: Mon 09 Feb 2026 18:00:41 +0000 Manifest next update: Tue 10 Feb 2026 18:00:41 +0000 Files and hashes: 1: IQH0Od66_1iAOV148Lv62Mp2CL8.crl (hash: vee7ftjJNhxpZsdF3xSbt4H29E/9I9S2SzOUwtED+80=) 2: LIiML1O5GYrYT2OXv04_3crEOSo.roa (hash: GEv40+sowJMzMWvtaNBUTp1Lf4CV4ySJkJ0S9aCKf/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:12:b8:23:dd:09:13:d3:2c:f0:01:99:a2:1b:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2101f439debaff5880395d78f0bbfad8ca7608bf Validity Not Before: Feb 9 18:00:41 2026 GMT Not After : Feb 10 18:00:41 2026 GMT Subject: CN=1eaf8d90b6123f796fa4b3d1fd1a25537a96ed8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1a:e7:37:c7:9e:78:7c:01:51:fe:42:39:80: 0d:92:8a:4f:a3:cf:a9:da:dd:71:15:24:d4:f3:23: db:47:c5:37:8a:eb:c7:da:47:31:d2:89:5d:2f:92: 35:d5:a8:1a:19:a3:23:99:3f:f0:36:a6:df:31:72: ab:3f:5b:a4:9a:f1:5c:41:71:31:ab:e2:5c:18:17: 5d:24:64:a3:ff:68:38:3c:bd:12:33:6e:4c:27:f4: 39:94:9f:3f:08:b4:2b:d4:e1:1b:88:32:c0:93:10: b5:33:6c:6e:ea:a7:47:cd:de:ec:35:75:fc:a5:73: 75:10:fd:f8:51:da:aa:e0:0f:ce:a5:93:1f:f7:2c: 5a:de:1c:d7:8e:5b:41:26:cb:37:6a:ab:cd:a8:47: 22:e8:bc:1a:db:a6:be:26:38:38:20:e9:7c:64:e1: b9:32:45:b4:41:5b:3b:41:07:f4:b0:52:b2:6a:85: ad:2c:1a:ab:f3:b8:33:f9:28:11:11:e4:22:64:a2: c3:25:6a:39:7f:2d:02:6f:73:83:b5:20:3e:2f:67: 54:59:23:6b:af:8f:b4:bc:c0:26:cc:2c:85:94:88: 31:9e:b8:5a:c5:91:17:ea:c4:12:ec:11:29:5c:6c: 54:75:87:4f:c0:73:0a:34:09:71:b4:c4:58:b2:8a: ac:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:AF:8D:90:B6:12:3F:79:6F:A4:B3:D1:FD:1A:25:53:7A:96:ED:8A X509v3 Authority Key Identifier: keyid:21:01:F4:39:DE:BA:FF:58:80:39:5D:78:F0:BB:FA:D8:CA:76:08:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:e4:00:cb:7f:9e:5d:fb:e6:25:72:d4:10:23:80:7b:cb:2e: 54:ae:93:48:97:3d:a8:4f:f4:c5:0a:99:fa:92:9e:ad:1f:a1: 0f:ad:cd:89:c7:78:78:18:35:96:9d:03:27:4b:0e:e6:b9:22: 8f:83:12:88:23:c5:a8:c9:d0:c6:54:5a:6b:8d:27:99:7a:d3: 0e:02:ac:6b:35:ce:cb:66:fb:37:84:5d:55:c4:58:d0:f6:99: 21:85:df:73:c1:af:0f:7e:f6:ed:08:c9:5b:00:8a:2a:c7:c1: 00:7c:e7:ee:08:a4:71:7d:73:c5:ab:03:b3:20:11:4b:a2:4e: e7:89:19:b0:df:31:49:14:3c:99:8c:b3:fd:07:07:84:46:47: 06:0a:96:3a:0f:4f:8d:65:f0:38:da:d3:da:d2:93:47:77:0a: f1:01:1f:eb:c5:3c:b6:96:2c:dc:c4:19:66:02:25:9a:2b:cf: 11:c4:22:5d:2e:c0:aa:06:1f:eb:ab:e0:bc:40:e3:2e:18:de: 61:f6:d5:03:e7:98:c3:1e:36:cc:36:1a:57:68:1e:72:57:ec: 0a:e0:0b:05:d5:0f:df:f3:ba:97:05:d0:da:1a:cf:15:fb:51: a4:c3:83:3d:40:79:69:52:9a:0a:2f:b6:1f:3d:16:c6:b0:8b: 50:d2:f7:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkBK4I90JE9Ms8AGZohumMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDFmNDM5ZGViYWZmNTg4MDM5NWQ3OGYwYmJmYWQ4Y2E3 NjA4YmYwHhcNMjYwMjA5MTgwMDQxWhcNMjYwMjEwMTgwMDQxWjAzMTEwLwYDVQQD EygxZWFmOGQ5MGI2MTIzZjc5NmZhNGIzZDFmZDFhMjU1MzdhOTZlZDhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRrnN8eeeHwBUf5COYANkopPo8+p 2t1xFSTU8yPbR8U3iuvH2kcx0oldL5I11agaGaMjmT/wNqbfMXKrP1ukmvFcQXEx q+JcGBddJGSj/2g4PL0SM25MJ/Q5lJ8/CLQr1OEbiDLAkxC1M2xu6qdHzd7sNXX8 pXN1EP34Udqq4A/OpZMf9yxa3hzXjltBJss3aqvNqEci6Lwa26a+Jjg4IOl8ZOG5 MkW0QVs7QQf0sFKyaoWtLBqr87gz+SgREeQiZKLDJWo5fy0Cb3ODtSA+L2dUWSNr r4+0vMAmzCyFlIgxnrhaxZEX6sQS7BEpXGxUdYdPwHMKNAlxtMRYsoqsBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB6vjZC2Ej95b6Sz0f0aJVN6lu2KMB8GA1UdIwQY MBaAFCEB9Dneuv9YgDldePC7+tjKdgi/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFIME9kNjZfMWlBT1YxNDhMdjYyTXAyQ0w4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83OGM0MTQtOWIwOS00Nzc1LWE1NTgt ZTNkZWZiN2UyNTE4LzEvSVFIME9kNjZfMWlBT1YxNDhMdjYyTXAyQ0w4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi83OGM0MTQtOWIwOS00Nzc1LWE1NTgtZTNkZWZiN2UyNTE4 LzEvSVFIME9kNjZfMWlBT1YxNDhMdjYyTXAyQ0w4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOOQAy3+e XfvmJXLUECOAe8suVK6TSJc9qE/0xQqZ+pKerR+hD63Nicd4eBg1lp0DJ0sO5rki j4MSiCPFqMnQxlRaa40nmXrTDgKsazXOy2b7N4RdVcRY0PaZIYXfc8GvD3727QjJ WwCKKsfBAHzn7gikcX1zxasDsyARS6JO54kZsN8xSRQ8mYyz/QcHhEZHBgqWOg9P jWXwONrT2tKTR3cK8QEf68U8tpYs3MQZZgIlmivPEcQiXS7AqgYf66vgvEDjLhje YfbVA+eYwx42zDYaV2geclfsCuALBdUP3/O6lwXQ2hrPFftRpMODPUB5aVKaCi+2 Hz0WxrCLUNL3eA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:57 2026 by rpki-client