This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft File: I5xF5DYlUiCArsU5UpiaE6KKvQA.mft (raw, json) Hash identifier: NF1M1ZNfMaj37HQBkt1ErtPYexbZQ49u7YsJV5AXS5E= Subject key identifier: 65:D1:15:0C:5C:B3:41:64:FB:C2:3B:0F:E8:9F:18:E3:E5:6D:43:B8 Authority key identifier: 23:9C:45:E4:36:25:52:20:80:AE:C5:39:52:98:9A:13:A2:8A:BD:00 Certificate issuer: /CN=239c45e43625522080aec53952989a13a28abd00 Certificate serial: 019C438FD8D0C050F21F2559FC87F72851D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft Manifest number: 1814 Signing time: Mon 09 Feb 2026 18:00:26 +0000 Manifest this update: Mon 09 Feb 2026 18:00:26 +0000 Manifest next update: Tue 10 Feb 2026 18:00:26 +0000 Files and hashes: 1: I5xF5DYlUiCArsU5UpiaE6KKvQA.crl (hash: mWjFBpDlBQju89T4LOt+6ddM+uy7kFZS027NnOP08u0=) 2: fPLmAT9sBKzZTI5avOrmP_4azzE.roa (hash: n1zSR4IBSvIZaMH2EehZjIUkwdVdlUzRvizvkmneFGQ=) 3: kv-wz_H1IkgiuMYCGj0bpRh0nLE.roa (hash: Uy297jSuY0TxK5aeIM5g0jUPcIVpmb6oF+UG7zwW9lA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:d8:d0:c0:50:f2:1f:25:59:fc:87:f7:28:51:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=239c45e43625522080aec53952989a13a28abd00 Validity Not Before: Feb 9 18:00:26 2026 GMT Not After : Feb 10 18:00:26 2026 GMT Subject: CN=65d1150c5cb34164fbc23b0fe89f18e3e56d43b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ed:0d:ef:de:27:eb:7a:73:33:00:fc:12:3a: 0f:64:da:2d:12:34:3d:0a:3b:f3:94:24:b4:00:10: 45:44:88:6a:e9:23:fb:96:d0:15:21:55:96:6e:f3: b7:78:2a:f5:17:cf:80:15:51:2f:a8:45:59:0f:8c: e5:a3:45:fe:c2:17:a7:06:d6:09:b6:3b:2a:ce:ae: 6f:aa:af:2c:3b:c9:43:0d:59:65:07:e4:07:a5:1c: 88:3c:b3:15:65:82:fb:84:a9:34:39:69:c9:39:22: b6:46:44:f8:18:68:3a:0a:43:41:ee:10:1c:8c:84: 51:e7:69:4c:69:ef:ec:75:e2:d8:4d:15:65:d6:c1: f7:91:a4:a6:68:60:9f:5a:35:b0:33:3b:c1:93:33: 85:7f:59:5a:52:f0:a0:00:3e:ae:92:79:54:f3:9b: 5e:29:c1:e2:97:4b:e5:21:25:59:70:39:47:8e:ea: 6b:95:5a:3c:8c:d7:97:40:20:3f:b4:a9:df:f3:a3: e4:37:a9:a6:b7:b6:14:6d:96:78:31:4d:61:59:e2: 00:61:7d:4f:68:a2:e3:12:f6:fb:87:6e:07:11:b8: 3f:e2:04:b1:2d:c3:00:b8:0d:f8:38:f0:aa:59:28: 03:50:6a:8a:70:b1:15:98:20:43:b6:a1:27:7f:79: ab:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D1:15:0C:5C:B3:41:64:FB:C2:3B:0F:E8:9F:18:E3:E5:6D:43:B8 X509v3 Authority Key Identifier: keyid:23:9C:45:E4:36:25:52:20:80:AE:C5:39:52:98:9A:13:A2:8A:BD:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5xF5DYlUiCArsU5UpiaE6KKvQA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4c4894-80fc-48ef-b668-975a237ecd06/1/I5xF5DYlUiCArsU5UpiaE6KKvQA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:84:69:f2:94:c9:39:38:80:2d:35:39:7e:83:2a:90:1d:ba: e9:f9:0e:7f:b1:c5:85:7a:57:39:70:f0:99:48:a8:0e:2a:74: 75:a8:ff:45:25:64:a9:d9:ff:10:09:31:05:0a:ac:c9:e3:f2: 08:12:86:a0:b9:4b:84:a5:78:77:ef:fa:d0:a4:32:e0:bc:23: 8a:ea:b4:3e:43:ea:52:c7:65:ba:69:3e:77:88:ab:7f:db:49: 51:b5:3f:10:e5:9f:ec:4a:c7:9b:5e:e2:3b:a1:a1:6e:e1:3c: 44:1e:5e:c1:21:9e:52:09:5e:2e:ab:35:a9:b4:43:2a:fb:a8: 21:91:b7:db:a9:c1:e9:46:43:66:58:fa:d5:fd:28:84:ed:66: 3a:bc:01:a6:1d:0b:71:be:0a:a3:51:02:91:ae:22:54:5f:47: ee:5e:31:8c:69:e9:7a:b2:91:ca:eb:50:43:ad:d4:15:d1:61: fb:b6:85:72:95:41:d2:e3:08:39:70:ae:40:0b:a0:cb:3d:16: 4b:33:a6:f3:b5:48:08:9c:0a:ce:5a:cc:11:bb:8c:be:8c:59: 9e:00:32:64:ff:13:d3:b6:f8:b4:11:3b:9e:40:29:83:80:7c: 64:d6:f8:13:47:02:f0:0a:8a:31:04:da:dc:88:c0:9d:63:86: d5:c1:fa:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj9jQwFDyHyVZ/If3KFHUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzOWM0NWU0MzYyNTUyMjA4MGFlYzUzOTUyOTg5YTEzYTI4 YWJkMDAwHhcNMjYwMjA5MTgwMDI2WhcNMjYwMjEwMTgwMDI2WjAzMTEwLwYDVQQD Eyg2NWQxMTUwYzVjYjM0MTY0ZmJjMjNiMGZlODlmMThlM2U1NmQ0M2I4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+0N794n63pzMwD8EjoPZNotEjQ9 CjvzlCS0ABBFRIhq6SP7ltAVIVWWbvO3eCr1F8+AFVEvqEVZD4zlo0X+whenBtYJ tjsqzq5vqq8sO8lDDVllB+QHpRyIPLMVZYL7hKk0OWnJOSK2RkT4GGg6CkNB7hAc jIRR52lMae/sdeLYTRVl1sH3kaSmaGCfWjWwMzvBkzOFf1laUvCgAD6uknlU85te KcHil0vlISVZcDlHjuprlVo8jNeXQCA/tKnf86PkN6mmt7YUbZZ4MU1hWeIAYX1P aKLjEvb7h24HEbg/4gSxLcMAuA34OPCqWSgDUGqKcLEVmCBDtqEnf3mroQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGXRFQxcs0Fk+8I7D+ifGOPlbUO4MB8GA1UdIwQY MBaAFCOcReQ2JVIggK7FOVKYmhOiir0AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTV4RjVEWWxVaUNBcnNVNVVwaWFFNktLdlFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi80YzQ4OTQtODBmYy00OGVmLWI2Njgt OTc1YTIzN2VjZDA2LzEvSTV4RjVEWWxVaUNBcnNVNVVwaWFFNktLdlFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi80YzQ4OTQtODBmYy00OGVmLWI2NjgtOTc1YTIzN2VjZDA2 LzEvSTV4RjVEWWxVaUNBcnNVNVVwaWFFNktLdlFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkIRp8pTJ OTiALTU5foMqkB266fkOf7HFhXpXOXDwmUioDip0daj/RSVkqdn/EAkxBQqsyePy CBKGoLlLhKV4d+/60KQy4Lwjiuq0PkPqUsdlumk+d4irf9tJUbU/EOWf7ErHm17i O6GhbuE8RB5ewSGeUgleLqs1qbRDKvuoIZG326nB6UZDZlj61f0ohO1mOrwBph0L cb4Ko1ECka4iVF9H7l4xjGnperKRyutQQ63UFdFh+7aFcpVB0uMIOXCuQAugyz0W SzOm87VICJwKzlrMEbuMvoxZngAyZP8T07b4tBE7nkApg4B8ZNb4E0cC8AqKMQTa 3IjAnWOG1cH6kw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:49 2026 by rpki-client