This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.mft File: ibmLHbxNsPvYZW0rK4pT4sPcpqs.mft (raw, json) Hash identifier: FcejBFttAueGCufIB+sVBs1HSjy9jug/82g5Iusk9HA= Subject key identifier: 7A:AB:63:8D:AC:87:9F:46:4C:71:31:A3:F1:22:2E:51:77:B4:40:2A Authority key identifier: 89:B9:8B:1D:BC:4D:B0:FB:D8:65:6D:2B:2B:8A:53:E2:C3:DC:A6:AB Certificate issuer: /CN=89b98b1dbc4db0fbd8656d2b2b8a53e2c3dca6ab Certificate serial: 019C420FB05CDD97BD211F5FB49E57A42941 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ibmLHbxNsPvYZW0rK4pT4sPcpqs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.mft Manifest number: 110C Signing time: Mon 09 Feb 2026 11:00:50 +0000 Manifest this update: Mon 09 Feb 2026 11:00:50 +0000 Manifest next update: Tue 10 Feb 2026 11:00:50 +0000 Files and hashes: 1: ibmLHbxNsPvYZW0rK4pT4sPcpqs.crl (hash: 7GmXgJC5XODf9mzBb0OcOM4aNmZaMLDlL2mBv96PomY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.mft rsync://rpki.ripe.net/repository/DEFAULT/ibmLHbxNsPvYZW0rK4pT4sPcpqs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:b0:5c:dd:97:bd:21:1f:5f:b4:9e:57:a4:29:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89b98b1dbc4db0fbd8656d2b2b8a53e2c3dca6ab Validity Not Before: Feb 9 11:00:50 2026 GMT Not After : Feb 10 11:00:50 2026 GMT Subject: CN=7aab638dac879f464c7131a3f1222e5177b4402a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:84:55:0e:6c:e3:9f:95:e5:d1:1a:f6:04:a4: 04:b4:71:11:80:10:d5:29:b0:11:18:8a:8f:79:f2: 7d:a1:51:a3:1a:3b:70:b0:34:48:8b:d3:d2:0d:03: 7b:c7:82:ac:ac:e1:76:21:08:7a:53:19:3e:44:81: a1:71:49:9b:36:55:87:0c:35:f8:10:28:a2:23:16: 95:b7:d0:7b:63:21:ea:ce:43:dc:6e:e9:e6:43:b3: 8d:6d:3e:69:5e:b9:0d:3e:fa:1d:a1:bc:88:cc:38: c6:c0:dd:c9:4b:74:30:88:ed:32:f2:6f:05:de:06: 08:e5:61:97:24:00:f4:23:c6:28:01:88:11:15:c9: 22:e3:55:64:7f:78:68:1f:90:87:07:5a:26:26:f9: 54:cd:2e:4d:82:6e:6f:96:3a:1b:c0:df:2b:99:c7: 1c:51:50:8a:01:8a:ae:f1:94:d1:ee:49:6a:f4:68: 18:ff:2e:33:da:3e:01:fe:f4:20:93:65:f9:e9:d1: 25:d2:35:5c:79:fd:19:e4:72:4b:c5:0d:96:54:76: fc:77:10:3e:3a:40:8c:24:77:7d:36:5a:25:eb:cc: e9:d9:fe:fc:cf:6b:4c:52:02:5d:01:c2:5a:ba:b6: db:35:71:da:04:de:bb:8c:da:5c:64:34:9c:03:93: 71:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:AB:63:8D:AC:87:9F:46:4C:71:31:A3:F1:22:2E:51:77:B4:40:2A X509v3 Authority Key Identifier: keyid:89:B9:8B:1D:BC:4D:B0:FB:D8:65:6D:2B:2B:8A:53:E2:C3:DC:A6:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ibmLHbxNsPvYZW0rK4pT4sPcpqs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/b4b600-47a7-4707-9a9e-4da54471762e/1/ibmLHbxNsPvYZW0rK4pT4sPcpqs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:60:3f:5b:2c:da:7d:a2:c4:6a:53:9b:d4:ee:e2:09:f1:12: 09:d3:e4:44:b3:fd:a3:d3:6a:21:c4:b7:9d:c4:4e:61:b3:68: 8e:ee:96:93:3a:5a:85:f2:a2:b3:81:51:61:2d:0a:80:2b:33: 92:ab:82:9a:a3:ee:d0:6b:72:7e:b9:5f:51:e7:08:ce:23:82: a8:b8:95:2c:46:42:22:cd:a3:d3:4b:41:e5:d3:63:e7:f9:5a: 26:b5:c2:42:fd:6f:46:49:2a:c6:01:3a:9f:98:21:c2:c9:6c: 09:ee:4d:74:04:95:a9:e0:20:e7:64:8d:9e:71:68:77:17:b6: 33:8c:a3:33:86:25:ff:d9:e1:ae:b6:c9:5a:f8:b0:e0:24:a7: 9c:77:00:88:88:21:8c:6f:59:d6:e2:97:07:d1:cd:9e:c3:10: 59:fa:4a:20:4c:a4:24:28:39:8a:77:63:65:99:bc:cc:61:f5: 97:48:60:de:12:72:6f:3a:f9:f6:ba:b1:05:aa:c5:02:a5:d2: 2d:19:d6:fa:35:d4:bf:74:1b:97:b5:54:6e:18:af:19:fa:b7: 9b:1e:c0:20:18:a1:93:8b:fd:c0:e0:9c:12:39:a3:3d:28:c5: 34:dd:a8:4a:79:d8:c7:d9:06:7d:cb:64:2a:5d:37:bd:f1:bf: c4:31:60:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD7Bc3Ze9IR9ftJ5XpClBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5Yjk4YjFkYmM0ZGIwZmJkODY1NmQyYjJiOGE1M2UyYzNk Y2E2YWIwHhcNMjYwMjA5MTEwMDUwWhcNMjYwMjEwMTEwMDUwWjAzMTEwLwYDVQQD Eyg3YWFiNjM4ZGFjODc5ZjQ2NGM3MTMxYTNmMTIyMmU1MTc3YjQ0MDJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3IRVDmzjn5Xl0Rr2BKQEtHERgBDV KbARGIqPefJ9oVGjGjtwsDRIi9PSDQN7x4KsrOF2IQh6Uxk+RIGhcUmbNlWHDDX4 ECiiIxaVt9B7YyHqzkPcbunmQ7ONbT5pXrkNPvodobyIzDjGwN3JS3QwiO0y8m8F 3gYI5WGXJAD0I8YoAYgRFcki41Vkf3hoH5CHB1omJvlUzS5Ngm5vljobwN8rmccc UVCKAYqu8ZTR7klq9GgY/y4z2j4B/vQgk2X56dEl0jVcef0Z5HJLxQ2WVHb8dxA+ OkCMJHd9Nlol68zp2f78z2tMUgJdAcJaurbbNXHaBN67jNpcZDScA5NxzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHqrY42sh59GTHExo/EiLlF3tEAqMB8GA1UdIwQY MBaAFIm5ix28TbD72GVtKyuKU+LD3KarMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWJtTEhieE5zUHZZWlcwcks0cFQ0c1BjcHFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iNGI2MDAtNDdhNy00NzA3LTlhOWUt NGRhNTQ0NzE3NjJlLzEvaWJtTEhieE5zUHZZWlcwcks0cFQ0c1BjcHFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9iNGI2MDAtNDdhNy00NzA3LTlhOWUtNGRhNTQ0NzE3NjJl LzEvaWJtTEhieE5zUHZZWlcwcks0cFQ0c1BjcHFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgGA/Wyza faLEalOb1O7iCfESCdPkRLP9o9NqIcS3ncROYbNoju6WkzpahfKis4FRYS0KgCsz kquCmqPu0GtyfrlfUecIziOCqLiVLEZCIs2j00tB5dNj5/laJrXCQv1vRkkqxgE6 n5ghwslsCe5NdASVqeAg52SNnnFodxe2M4yjM4Yl/9nhrrbJWviw4CSnnHcAiIgh jG9Z1uKXB9HNnsMQWfpKIEykJCg5indjZZm8zGH1l0hg3hJybzr59rqxBarFAqXS LRnW+jXUv3Qbl7VUbhivGfq3mx7AIBihk4v9wOCcEjmjPSjFNN2oSnnYx9kGfctk Kl03vfG/xDFg5g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:46 2026 by rpki-client