This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft File: IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft (raw, json) Hash identifier: muP+wiZxZEMMC67pt2/aM3KB3yWyWYEl+BeY7+XCRgQ= Subject key identifier: 31:BB:80:5F:54:B1:39:5B:B9:2D:01:E7:9B:A1:2E:25:B9:E1:62:97 Authority key identifier: 20:7E:90:D6:2D:E2:C7:27:CD:45:39:A2:F0:70:C4:E9:1D:F3:2B:B4 Certificate issuer: /CN=207e90d62de2c727cd4539a2f070c4e91df32bb4 Certificate serial: 019C42EB1C3A6951B238CFE85E71063226DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft Manifest number: 0454 Signing time: Mon 09 Feb 2026 15:00:30 +0000 Manifest this update: Mon 09 Feb 2026 15:00:30 +0000 Manifest next update: Tue 10 Feb 2026 15:00:30 +0000 Files and hashes: 1: IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl (hash: w5zT3QN3DHPkII0sx7s5sjmFDUKfBBGi8wdZpHOHnlw=) 2: nZLcR_yXR-0QVOrPZOSeS_-bslo.roa (hash: B2ppS1gw4DWVMWucnYpphzHEsSRmHapQBZqWEMy4B3U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:1c:3a:69:51:b2:38:cf:e8:5e:71:06:32:26:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207e90d62de2c727cd4539a2f070c4e91df32bb4 Validity Not Before: Feb 9 15:00:30 2026 GMT Not After : Feb 10 15:00:30 2026 GMT Subject: CN=31bb805f54b1395bb92d01e79ba12e25b9e16297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a2:00:2e:94:7a:d1:b3:2e:c1:40:ea:9f:dd: 24:d4:97:e0:67:23:cc:b1:1b:01:14:4f:6a:9b:76: 05:6a:31:71:27:bc:d6:23:ec:ea:cd:53:05:66:e6: b8:e3:dc:19:85:c3:b1:2e:dc:61:f1:a6:7d:9d:8f: 7f:09:2b:11:99:5d:7b:d5:96:dc:b0:d6:fc:84:13: 6c:e4:4e:28:92:7d:e7:69:fe:a0:45:1f:d7:4f:35: 2a:5e:8c:e2:06:84:da:89:44:5a:df:0a:5e:27:10: 85:3a:3b:55:3c:b1:4d:7d:6c:d4:e3:9c:1d:93:42: 80:61:50:47:a4:a7:b7:19:dd:17:12:0a:0f:f2:88: 35:3f:b4:55:0e:53:9c:6b:40:45:76:bf:07:af:86: 81:a8:dc:9d:22:b0:81:2a:92:7b:b2:ab:20:74:de: bd:77:9b:c4:69:30:62:a3:12:13:5b:c4:ba:0e:61: a9:9e:af:9d:b5:08:7f:09:b3:6c:b2:1d:53:c4:bd: d1:a1:37:e1:a2:4c:3b:4d:49:f1:ac:77:f4:93:c3: 20:bd:db:4b:61:3e:dc:7c:cb:61:bd:9d:d5:8c:80: 62:b4:4e:05:ba:a0:ea:4e:13:54:79:b3:12:cf:d5: ce:60:c2:a7:e7:2b:d1:e8:d0:d0:b7:35:a5:18:46: 4e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:BB:80:5F:54:B1:39:5B:B9:2D:01:E7:9B:A1:2E:25:B9:E1:62:97 X509v3 Authority Key Identifier: keyid:20:7E:90:D6:2D:E2:C7:27:CD:45:39:A2:F0:70:C4:E9:1D:F3:2B:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:32:dc:8e:d5:cc:40:35:7d:9c:66:c9:ba:17:0f:8a:4f:78: d4:93:75:0e:c2:c6:5c:f8:c6:ac:46:5e:19:30:54:1f:94:7f: 55:1e:49:57:af:5c:59:1e:2d:e7:52:f5:1c:ad:32:5c:ac:84: e4:12:fa:9b:70:19:45:55:66:03:1f:ee:dd:2c:21:e9:57:bb: e9:1a:3d:f0:18:63:9a:e9:29:8a:a6:b7:0b:b9:91:f2:8c:29: e4:59:e3:01:a2:a0:b6:11:f6:d3:39:87:7c:8e:8a:37:a3:b0: 69:03:d7:6e:f5:90:62:40:72:30:21:ed:fc:3f:fa:70:88:e9: 9c:11:65:3a:48:ad:82:71:3e:b3:97:d1:40:e2:5b:f7:4d:fa: 87:2d:f1:ef:76:f2:7d:1d:56:c7:05:b9:5d:25:b3:5f:ec:c9: ef:9c:00:d3:64:f4:89:28:8d:00:5a:10:f2:67:a4:e1:2a:42: e7:f5:8b:94:74:90:46:61:89:e4:aa:bb:67:2b:f4:4d:41:77: b4:d6:63:9c:e9:1d:98:55:8f:4a:3a:d5:8f:9e:68:d7:01:0a: dc:8a:8c:1e:38:07:63:6c:08:f4:79:8b:f4:fe:f8:a6:f3:1a: b6:40:50:bd:c2:78:71:61:73:bf:fa:3c:51:4e:47:77:46:03: 2a:5e:c7:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6xw6aVGyOM/oXnEGMibbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwN2U5MGQ2MmRlMmM3MjdjZDQ1MzlhMmYwNzBjNGU5MWRm MzJiYjQwHhcNMjYwMjA5MTUwMDMwWhcNMjYwMjEwMTUwMDMwWjAzMTEwLwYDVQQD EygzMWJiODA1ZjU0YjEzOTViYjkyZDAxZTc5YmExMmUyNWI5ZTE2Mjk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApaIALpR60bMuwUDqn90k1JfgZyPM sRsBFE9qm3YFajFxJ7zWI+zqzVMFZua449wZhcOxLtxh8aZ9nY9/CSsRmV171Zbc sNb8hBNs5E4okn3naf6gRR/XTzUqXoziBoTaiURa3wpeJxCFOjtVPLFNfWzU45wd k0KAYVBHpKe3Gd0XEgoP8og1P7RVDlOca0BFdr8Hr4aBqNydIrCBKpJ7sqsgdN69 d5vEaTBioxITW8S6DmGpnq+dtQh/CbNssh1TxL3RoTfhokw7TUnxrHf0k8MgvdtL YT7cfMthvZ3VjIBitE4FuqDqThNUebMSz9XOYMKn5yvR6NDQtzWlGEZO6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDG7gF9UsTlbuS0B55uhLiW54WKXMB8GA1UdIwQY MBaAFCB+kNYt4scnzUU5ovBwxOkd8yu0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUg2UTFpM2l4eWZOUlRtaThIREU2UjN6SzdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yNGUzZDAtYjU1Ni00ODg4LTlmNmYt ZmJlNjhmZjYyN2IyLzEvSUg2UTFpM2l4eWZOUlRtaThIREU2UjN6SzdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yNGUzZDAtYjU1Ni00ODg4LTlmNmYtZmJlNjhmZjYyN2Iy LzEvSUg2UTFpM2l4eWZOUlRtaThIREU2UjN6SzdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATDLcjtXM QDV9nGbJuhcPik941JN1DsLGXPjGrEZeGTBUH5R/VR5JV69cWR4t51L1HK0yXKyE 5BL6m3AZRVVmAx/u3Swh6Ve76Ro98Bhjmukpiqa3C7mR8owp5FnjAaKgthH20zmH fI6KN6OwaQPXbvWQYkByMCHt/D/6cIjpnBFlOkitgnE+s5fRQOJb9036hy3x73by fR1WxwW5XSWzX+zJ75wA02T0iSiNAFoQ8mek4SpC5/WLlHSQRmGJ5Kq7Zyv0TUF3 tNZjnOkdmFWPSjrVj55o1wEK3IqMHjgHY2wI9HmL9P74pvMatkBQvcJ4cWFzv/o8 UU5Hd0YDKl7HFw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:19 2026 by rpki-client