This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8a4f5-de32-499f-8188-02b715ce0048/1/iAhHmt0p6po2NI6J5dIhVSygh8g.mft File: iAhHmt0p6po2NI6J5dIhVSygh8g.mft (raw, json) Hash identifier: uSpGEHhsv2FpH+z4jKAEWitXnJoGltu/FpDaYytI2Es= Subject key identifier: 5A:13:92:86:96:60:E1:28:ED:1B:95:C9:CD:82:BF:07:D8:32:4C:4A Authority key identifier: 88:08:47:9A:DD:29:EA:9A:36:34:8E:89:E5:D2:21:55:2C:A0:87:C8 Certificate issuer: /CN=8808479add29ea9a36348e89e5d221552ca087c8 Certificate serial: 019C427D192268C92A24877105931C355E1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iAhHmt0p6po2NI6J5dIhVSygh8g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8a4f5-de32-499f-8188-02b715ce0048/1/iAhHmt0p6po2NI6J5dIhVSygh8g.mft Manifest number: 44 Signing time: Mon 09 Feb 2026 13:00:20 +0000 Manifest this update: Mon 09 Feb 2026 13:00:20 +0000 Manifest next update: Tue 10 Feb 2026 13:00:20 +0000 Files and hashes: 1: iAhHmt0p6po2NI6J5dIhVSygh8g.crl (hash: VCHTT80Zz+X3vgTE7ST+h8tTh+kIyoekvC7Ux88NLdE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8a4f5-de32-499f-8188-02b715ce0048/1/iAhHmt0p6po2NI6J5dIhVSygh8g.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/c8a4f5-de32-499f-8188-02b715ce0048/1/iAhHmt0p6po2NI6J5dIhVSygh8g.mft rsync://rpki.ripe.net/repository/DEFAULT/iAhHmt0p6po2NI6J5dIhVSygh8g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:19:22:68:c9:2a:24:87:71:05:93:1c:35:5e:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8808479add29ea9a36348e89e5d221552ca087c8 Validity Not Before: Feb 9 13:00:20 2026 GMT Not After : Feb 10 13:00:20 2026 GMT Subject: CN=5a1392869660e128ed1b95c9cd82bf07d8324c4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:00:c1:7e:36:bd:3c:ee:69:54:47:e3:5b:6b: e5:70:ec:af:95:7d:de:a8:8b:ba:40:33:ae:d8:20: e7:a1:7f:6f:46:8f:c3:d2:58:6a:fe:25:8c:c4:61: fb:76:42:e0:73:cf:86:2a:f1:34:d9:60:e2:6e:50: 90:0e:aa:93:e5:c9:80:56:4a:59:bc:f9:c5:13:08: d1:16:36:4a:98:07:9b:a8:e7:97:08:d8:62:03:60: e7:9d:38:f5:8c:c9:e3:8e:67:21:df:b1:07:30:16: 31:5a:6f:bd:e7:cd:52:64:af:ae:c5:d2:0a:ed:17: 57:d4:d1:03:29:65:78:cc:f6:94:e4:ea:c6:7b:c1: 35:81:0c:d6:f3:0e:42:29:02:7b:86:5d:40:1b:ce: 11:ef:25:e1:ae:c8:dd:a2:59:67:ad:40:52:37:8e: 15:5b:76:7b:81:e2:fc:85:49:c8:2a:b3:21:c4:cf: 93:5f:4f:2f:f8:a6:aa:17:98:da:78:d4:8b:a6:ac: d5:ba:2d:61:24:c3:5d:6f:dc:92:39:16:ce:d1:56: ee:57:9f:a1:18:2e:93:f7:18:4d:c4:41:57:3d:ac: 6f:55:dd:be:ca:9c:f2:b0:97:f6:63:3f:dc:a7:15: e1:01:99:c0:5c:6f:20:62:c7:49:7d:f4:33:1b:e2: 90:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:13:92:86:96:60:E1:28:ED:1B:95:C9:CD:82:BF:07:D8:32:4C:4A X509v3 Authority Key Identifier: keyid:88:08:47:9A:DD:29:EA:9A:36:34:8E:89:E5:D2:21:55:2C:A0:87:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iAhHmt0p6po2NI6J5dIhVSygh8g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8a4f5-de32-499f-8188-02b715ce0048/1/iAhHmt0p6po2NI6J5dIhVSygh8g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8a4f5-de32-499f-8188-02b715ce0048/1/iAhHmt0p6po2NI6J5dIhVSygh8g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:c8:27:10:2b:69:b7:03:e9:47:35:5a:73:ce:89:45:2c:14: 3b:35:a9:81:d5:09:89:94:72:de:e3:40:6f:c3:98:ea:6c:30: 46:ff:0c:b2:d4:18:51:a9:47:6b:dc:b8:76:b8:a6:55:c3:6f: fa:1b:a9:66:66:e9:da:ac:cd:3e:0e:87:45:e0:35:ad:16:a1: 1d:f3:b6:75:58:44:f9:65:69:4b:3f:40:d4:21:d9:69:7a:ce: 3b:92:5d:93:ad:aa:86:62:06:3f:12:9d:c8:33:3e:ad:cc:8d: 12:a7:1b:d7:5a:f9:2b:99:93:d4:f6:55:94:fc:56:51:a1:8c: 92:a1:f9:41:99:c9:ef:a6:17:96:06:1e:cd:0d:26:86:b5:5e: f2:1e:85:d0:28:1c:39:ec:bd:7b:a0:3c:14:4e:88:28:37:7a: 9d:89:d1:df:d6:3e:53:6d:f5:4a:3d:39:9e:35:08:24:14:57: 91:e9:c0:74:a3:4e:5b:46:31:07:42:45:21:58:72:de:64:8b: 42:6d:dd:98:9a:de:71:8d:54:cd:c2:30:64:71:48:92:cd:e8: 43:c7:08:a0:a6:89:91:5e:66:a4:36:10:29:35:4e:5d:ab:94: bb:95:af:10:c5:95:e3:2c:70:51:c3:11:4c:a1:6d:63:25:91: 39:6e:f6:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfRkiaMkqJIdxBZMcNV4cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4MDg0NzlhZGQyOWVhOWEzNjM0OGU4OWU1ZDIyMTU1MmNh MDg3YzgwHhcNMjYwMjA5MTMwMDIwWhcNMjYwMjEwMTMwMDIwWjAzMTEwLwYDVQQD Eyg1YTEzOTI4Njk2NjBlMTI4ZWQxYjk1YzljZDgyYmYwN2Q4MzI0YzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwDBfja9PO5pVEfjW2vlcOyvlX3e qIu6QDOu2CDnoX9vRo/D0lhq/iWMxGH7dkLgc8+GKvE02WDiblCQDqqT5cmAVkpZ vPnFEwjRFjZKmAebqOeXCNhiA2DnnTj1jMnjjmch37EHMBYxWm+9581SZK+uxdIK 7RdX1NEDKWV4zPaU5OrGe8E1gQzW8w5CKQJ7hl1AG84R7yXhrsjdollnrUBSN44V W3Z7geL8hUnIKrMhxM+TX08v+KaqF5jaeNSLpqzVui1hJMNdb9ySORbO0VbuV5+h GC6T9xhNxEFXPaxvVd2+ypzysJf2Yz/cpxXhAZnAXG8gYsdJffQzG+KQXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFoTkoaWYOEo7RuVyc2CvwfYMkxKMB8GA1UdIwQY MBaAFIgIR5rdKeqaNjSOieXSIVUsoIfIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUFoSG10MHA2cG8yTkk2SjVkSWhWU3lnaDhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jOGE0ZjUtZGUzMi00OTlmLTgxODgt MDJiNzE1Y2UwMDQ4LzEvaUFoSG10MHA2cG8yTkk2SjVkSWhWU3lnaDhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9jOGE0ZjUtZGUzMi00OTlmLTgxODgtMDJiNzE1Y2UwMDQ4 LzEvaUFoSG10MHA2cG8yTkk2SjVkSWhWU3lnaDhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXcgnECtp twPpRzVac86JRSwUOzWpgdUJiZRy3uNAb8OY6mwwRv8MstQYUalHa9y4drimVcNv +hupZmbp2qzNPg6HReA1rRahHfO2dVhE+WVpSz9A1CHZaXrOO5Jdk62qhmIGPxKd yDM+rcyNEqcb11r5K5mT1PZVlPxWUaGMkqH5QZnJ76YXlgYezQ0mhrVe8h6F0Cgc Oey9e6A8FE6IKDd6nYnR39Y+U231Sj05njUIJBRXkenAdKNOW0YxB0JFIVhy3mSL Qm3dmJrecY1UzcIwZHFIks3oQ8cIoKaJkV5mpDYQKTVOXauUu5WvEMWV4yxwUcMR TKFtYyWROW72jQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:39:58 2026 by rpki-client