This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json) Hash identifier: CRAF+CuzzaO0I9p+ZxfPd1GV/D7g6vf5FNPcdC0VZnE= Subject key identifier: B8:20:2E:B1:1B:44:AB:03:D2:BF:19:46:6D:CA:CE:DC:37:51:BA:CA Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc Certificate serial: 019C42B44EA30C64DDAF808A9E71334A9F3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft Manifest number: 06B8 Signing time: Mon 09 Feb 2026 14:00:38 +0000 Manifest this update: Mon 09 Feb 2026 14:00:38 +0000 Manifest next update: Tue 10 Feb 2026 14:00:38 +0000 Files and hashes: 1: C15rJO_bJRsVwZitZCSgh0qDMBk.roa (hash: rFrB85LTHmEZy4HaNwBvd/+Qzbn2vKgCWTAZhL3DIhc=) 2: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: YtLqiMELhAxeIMvZ+EWv4xSCQFeaE54NaQXIk4njVQ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:4e:a3:0c:64:dd:af:80:8a:9e:71:33:4a:9f:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc Validity Not Before: Feb 9 14:00:38 2026 GMT Not After : Feb 10 14:00:38 2026 GMT Subject: CN=b8202eb11b44ab03d2bf19466dcacedc3751baca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:06:e7:5d:0b:29:61:6c:0c:d7:5e:77:e9:dc: 30:f9:8b:8c:e3:b4:6d:d5:5c:44:aa:a1:bd:0e:ae: 80:93:a7:3f:53:ed:3c:2a:5e:de:0e:ce:64:f3:3d: 3d:88:51:d4:de:bd:9b:7f:f5:53:dc:61:e9:e1:be: be:0c:4c:56:59:e4:67:f0:4c:e6:d7:4d:4b:21:66: 67:0c:92:54:93:96:14:57:af:d4:42:69:3b:66:8b: db:8c:82:e7:4d:b6:3b:92:e2:04:3e:01:03:40:9a: a0:99:aa:cd:68:e3:b6:7d:b4:81:b6:ed:50:0d:82: 59:c5:be:25:03:f3:d1:33:8e:d9:3a:b2:2e:ad:9f: 56:fe:49:0c:aa:ee:15:28:ea:81:c0:da:9b:6f:f9: 40:51:5c:a6:c3:04:35:29:9f:f0:a5:b0:a2:49:18: 49:bf:38:f8:d8:dd:8c:34:0e:d9:d1:1d:84:a6:74: 4b:6c:96:79:05:52:62:b9:7f:fc:5e:c7:f0:c3:87: 44:07:11:4f:c5:53:d9:b4:3b:b4:02:68:88:6f:cd: a3:a5:b1:dc:63:9a:8b:3f:f8:de:46:4c:4e:96:de: a5:ca:b3:2e:7a:d2:87:6c:58:88:f3:8b:02:64:f0: 31:67:0e:96:03:f1:b9:0c:a3:44:93:ae:eb:ac:bf: ad:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:20:2E:B1:1B:44:AB:03:D2:BF:19:46:6D:CA:CE:DC:37:51:BA:CA X509v3 Authority Key Identifier: keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:47:4b:a8:77:2b:56:03:94:97:dd:ee:2d:b5:bf:6a:34:e3: 79:d3:e9:a9:c8:9a:cc:1c:15:24:6b:96:38:9a:8a:54:d2:4e: 75:2f:4f:18:e7:5d:75:10:af:0f:89:f4:4e:5e:b3:93:69:43: c7:53:15:cc:4c:be:70:9f:39:2a:ff:7a:fe:17:a1:06:95:48: 3c:24:8d:e5:f5:ca:9d:09:68:0f:a7:79:ce:89:31:12:1a:80: e8:50:6f:49:f4:61:4f:91:11:58:fa:d7:60:74:78:5c:d8:00: 13:0f:67:a7:6e:6b:02:2e:9c:c4:ee:aa:12:f6:b8:1e:d9:cf: 83:4a:83:0e:cb:05:1d:b9:4d:70:f3:bf:41:c4:18:3a:f7:09: 9c:ba:c8:10:0b:9f:a1:46:33:98:61:eb:e1:4d:7c:07:cf:85: dd:83:47:0d:8c:03:9e:54:40:16:5c:ca:e4:36:07:af:92:3b: f6:0b:29:0f:48:74:a6:2b:1a:77:5e:8e:07:94:1d:2d:70:01: 55:9b:60:34:7b:3c:70:e1:8b:f4:44:09:d5:3b:9b:cf:8d:5a: da:99:56:51:6a:02:d3:d6:46:ed:19:d6:74:71:f1:63:b9:23: 46:75:d2:e9:e5:25:6b:09:b8:71:75:15:25:ab:97:7a:33:8f: 42:59:7e:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtE6jDGTdr4CKnnEzSp88MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4ZjdiMGRkOWZmY2EyZjg1NzM0YzUzN2NiZWY1Y2NkMTE5 OWU1YmMwHhcNMjYwMjA5MTQwMDM4WhcNMjYwMjEwMTQwMDM4WjAzMTEwLwYDVQQD EyhiODIwMmViMTFiNDRhYjAzZDJiZjE5NDY2ZGNhY2VkYzM3NTFiYWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAbnXQspYWwM11536dww+YuM47Rt 1VxEqqG9Dq6Ak6c/U+08Kl7eDs5k8z09iFHU3r2bf/VT3GHp4b6+DExWWeRn8Ezm 101LIWZnDJJUk5YUV6/UQmk7ZovbjILnTbY7kuIEPgEDQJqgmarNaOO2fbSBtu1Q DYJZxb4lA/PRM47ZOrIurZ9W/kkMqu4VKOqBwNqbb/lAUVymwwQ1KZ/wpbCiSRhJ vzj42N2MNA7Z0R2EpnRLbJZ5BVJiuX/8Xsfww4dEBxFPxVPZtDu0AmiIb82jpbHc Y5qLP/jeRkxOlt6lyrMuetKHbFiI84sCZPAxZw6WA/G5DKNEk67rrL+txQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLggLrEbRKsD0r8ZRm3Kztw3UbrKMB8GA1UdIwQY MBaAFIj3sN2f/KL4VzTFN8vvXM0RmeW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMt MTM2OTA1ZTJjN2M1LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMtMTM2OTA1ZTJjN2M1 LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAEdLqHcr VgOUl93uLbW/ajTjedPpqciazBwVJGuWOJqKVNJOdS9PGOdddRCvD4n0Tl6zk2lD x1MVzEy+cJ85Kv96/hehBpVIPCSN5fXKnQloD6d5zokxEhqA6FBvSfRhT5ERWPrX YHR4XNgAEw9np25rAi6cxO6qEva4HtnPg0qDDssFHblNcPO/QcQYOvcJnLrIEAuf oUYzmGHr4U18B8+F3YNHDYwDnlRAFlzK5DYHr5I79gspD0h0pisad16OB5QdLXAB VZtgNHs8cOGL9EQJ1Tubz41a2plWUWoC09ZG7RnWdHHxY7kjRnXS6eUlawm4cXUV JauXejOPQll+YQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:32 2026 by rpki-client