This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.mft File: IM56QQse-G8hrSE9PXNmhvdwjrk.mft (raw, json) Hash identifier: V4t9Pxy8xNVCfvbZJ5ZoInaVcNwgFlsujvaDZQRbF38= Subject key identifier: 54:55:4E:E8:7E:7F:E3:A4:3D:AC:BB:BB:00:52:4F:4E:4A:7E:AB:6C Authority key identifier: 20:CE:7A:41:0B:1E:F8:6F:21:AD:21:3D:3D:73:66:86:F7:70:8E:B9 Certificate issuer: /CN=20ce7a410b1ef86f21ad213d3d736686f7708eb9 Certificate serial: 019C4434A83E79853F8464640B30D07DB859 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IM56QQse-G8hrSE9PXNmhvdwjrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.mft Manifest number: 07A2 Signing time: Mon 09 Feb 2026 21:00:27 +0000 Manifest this update: Mon 09 Feb 2026 21:00:27 +0000 Manifest next update: Tue 10 Feb 2026 21:00:27 +0000 Files and hashes: 1: IM56QQse-G8hrSE9PXNmhvdwjrk.crl (hash: gz6K8qkaiga1ojflUT3kjrxTe6DJggJlqbTY696IdN4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.crl rsync://rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.mft rsync://rpki.ripe.net/repository/DEFAULT/IM56QQse-G8hrSE9PXNmhvdwjrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:a8:3e:79:85:3f:84:64:64:0b:30:d0:7d:b8:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ce7a410b1ef86f21ad213d3d736686f7708eb9 Validity Not Before: Feb 9 21:00:27 2026 GMT Not After : Feb 10 21:00:27 2026 GMT Subject: CN=54554ee87e7fe3a43dacbbbb00524f4e4a7eab6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a6:df:8e:cd:01:84:53:9a:62:c5:9f:9d:43: dc:13:6d:80:e0:90:97:bd:73:2e:c2:da:be:89:30: 28:1b:f2:e1:73:a6:ac:00:2b:32:63:1e:31:64:72: 3c:ec:ae:39:76:ad:5c:a0:97:e3:83:e2:4c:93:fa: c2:3f:38:9d:d1:c2:2e:4a:75:6d:bc:aa:1e:20:23: 2f:54:98:de:3a:ed:ff:ce:bd:5b:64:7f:85:0a:02: 78:72:ca:30:36:22:b9:44:37:7d:09:31:42:c8:a0: f6:f0:19:3e:2f:32:99:26:05:ba:db:a4:13:46:22: b5:db:7f:39:b1:70:e1:57:f6:7f:5d:cf:0f:3f:8d: 8a:47:c1:cc:53:02:4c:a3:60:42:3c:9a:d9:7e:87: 1b:b8:b1:05:51:08:12:f6:fe:7a:a7:31:4e:dd:bc: c4:8d:66:e7:fd:3d:86:3b:6b:f5:bd:26:14:c0:33: 4e:9b:f6:1c:74:95:7a:ac:fc:62:06:35:72:96:e4: f2:db:b6:8a:09:40:72:77:10:95:91:db:b6:c4:34: b0:c0:3d:a7:a1:05:33:52:2e:96:27:e1:f8:68:36: c2:0b:a2:6c:a9:cb:11:be:25:28:29:48:e4:df:89: fc:af:f4:17:88:11:32:20:c0:78:42:d2:04:99:71: ea:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:55:4E:E8:7E:7F:E3:A4:3D:AC:BB:BB:00:52:4F:4E:4A:7E:AB:6C X509v3 Authority Key Identifier: keyid:20:CE:7A:41:0B:1E:F8:6F:21:AD:21:3D:3D:73:66:86:F7:70:8E:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IM56QQse-G8hrSE9PXNmhvdwjrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/d74b3a-d1f1-430d-b502-a8d031aa143f/1/IM56QQse-G8hrSE9PXNmhvdwjrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:e7:dc:a9:9a:83:d3:22:7b:af:65:51:db:cd:de:17:20:d1: dd:08:ea:ab:e7:6b:21:7b:ac:09:0a:78:54:c4:13:55:f6:7a: 3d:24:5b:d5:cb:e4:15:bc:bb:ac:ef:14:fe:03:22:e9:71:c0: af:e2:f0:d2:29:da:49:e7:81:42:57:b2:34:d7:fa:ef:01:ba: 4b:5d:03:d1:d3:c2:1a:53:67:e6:07:4a:f3:fc:a7:a6:1e:af: c2:ae:22:a1:22:3a:76:36:00:62:57:c3:11:bf:9e:68:71:a5: 15:ff:0b:cb:e5:59:29:c1:ae:ed:41:40:e1:18:e3:dd:9e:ea: 14:57:77:c0:6b:ad:bc:ba:e1:8a:a9:95:d9:b0:97:4f:f5:f1: e7:3e:30:e6:15:48:0b:c7:e9:19:66:f7:e9:b4:06:50:96:7a: 28:96:bb:d2:ae:bf:9d:e8:a9:11:47:13:5a:fb:42:b9:56:8b: c8:b5:a9:14:fc:9c:40:54:20:2c:2c:ca:16:fe:8c:30:ee:3d: 9d:55:06:82:19:a3:10:f8:2c:9f:6e:6d:90:2a:d3:34:69:07: 87:ac:ba:f0:40:b5:18:9b:de:94:28:09:c7:68:84:b6:7a:82: 6f:0b:a4:53:9c:d1:6a:c8:0d:32:44:bd:27:6c:c4:b1:55:09: 81:15:94:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENKg+eYU/hGRkCzDQfbhZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwY2U3YTQxMGIxZWY4NmYyMWFkMjEzZDNkNzM2Njg2Zjc3 MDhlYjkwHhcNMjYwMjA5MjEwMDI3WhcNMjYwMjEwMjEwMDI3WjAzMTEwLwYDVQQD Eyg1NDU1NGVlODdlN2ZlM2E0M2RhY2JiYmIwMDUyNGY0ZTRhN2VhYjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6bfjs0BhFOaYsWfnUPcE22A4JCX vXMuwtq+iTAoG/Lhc6asACsyYx4xZHI87K45dq1coJfjg+JMk/rCPzid0cIuSnVt vKoeICMvVJjeOu3/zr1bZH+FCgJ4csowNiK5RDd9CTFCyKD28Bk+LzKZJgW626QT RiK12385sXDhV/Z/Xc8PP42KR8HMUwJMo2BCPJrZfocbuLEFUQgS9v56pzFO3bzE jWbn/T2GO2v1vSYUwDNOm/YcdJV6rPxiBjVyluTy27aKCUBydxCVkdu2xDSwwD2n oQUzUi6WJ+H4aDbCC6JsqcsRviUoKUjk34n8r/QXiBEyIMB4QtIEmXHqVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFRVTuh+f+OkPay7uwBST05KfqtsMB8GA1UdIwQY MBaAFCDOekELHvhvIa0hPT1zZob3cI65MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU01NlFRc2UtRzhoclNFOVBYTm1odmR3anJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9kNzRiM2EtZDFmMS00MzBkLWI1MDIt YThkMDMxYWExNDNmLzEvSU01NlFRc2UtRzhoclNFOVBYTm1odmR3anJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS9kNzRiM2EtZDFmMS00MzBkLWI1MDItYThkMDMxYWExNDNm LzEvSU01NlFRc2UtRzhoclNFOVBYTm1odmR3anJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcufcqZqD 0yJ7r2VR283eFyDR3Qjqq+drIXusCQp4VMQTVfZ6PSRb1cvkFby7rO8U/gMi6XHA r+Lw0inaSeeBQleyNNf67wG6S10D0dPCGlNn5gdK8/ynph6vwq4ioSI6djYAYlfD Eb+eaHGlFf8Ly+VZKcGu7UFA4Rjj3Z7qFFd3wGutvLrhiqmV2bCXT/Xx5z4w5hVI C8fpGWb36bQGUJZ6KJa70q6/neipEUcTWvtCuVaLyLWpFPycQFQgLCzKFv6MMO49 nVUGghmjEPgsn25tkCrTNGkHh6y68EC1GJvelCgJx2iEtnqCbwukU5zRasgNMkS9 J2zEsVUJgRWUYw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:27 2026 by rpki-client