This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft File: immKFPthpoevCmP3xlXAAfZwEoI.mft (raw, json) Hash identifier: ROgSERLN+2mwDuF5YPP6WsO5eWM24ygY3MIvxOgmmXc= Subject key identifier: B1:F8:9A:BD:52:5A:BB:56:E6:DA:E8:E0:A1:6D:4C:DC:28:6C:8A:56 Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82 Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282 Certificate serial: 019C427D7A8B1E7902C5116603925C744469 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft Manifest number: 05AA Signing time: Mon 09 Feb 2026 13:00:45 +0000 Manifest this update: Mon 09 Feb 2026 13:00:45 +0000 Manifest next update: Tue 10 Feb 2026 13:00:45 +0000 Files and hashes: 1: HxmIn0AGzA-g9k-4bheqqTcmLgI.roa (hash: uHSpZAAfzcw7ixBYZphuiZW4nA4GJ515tOk36J46Jqw=) 2: immKFPthpoevCmP3xlXAAfZwEoI.crl (hash: gBklpnDjURNLWRWVkp1sxjCoqTLWhv+l3OB7ay4kLB0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:7a:8b:1e:79:02:c5:11:66:03:92:5c:74:44:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282 Validity Not Before: Feb 9 13:00:45 2026 GMT Not After : Feb 10 13:00:45 2026 GMT Subject: CN=b1f89abd525abb56e6dae8e0a16d4cdc286c8a56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1d:3b:90:26:e7:78:9b:5c:d1:d1:11:40:8b: 04:47:dc:6b:ca:7b:5f:27:e3:a9:1f:7f:2b:9b:90: b3:13:7a:d2:e7:dd:1a:b3:8d:3d:36:81:99:cb:1e: c5:d1:3e:03:8b:50:42:a3:cb:c4:a2:04:20:30:7a: c4:69:17:c8:60:9c:a5:ae:35:6b:d3:7f:c5:b2:ee: 9e:c9:89:85:69:55:7b:cd:41:c8:59:06:8d:73:4c: fb:3e:8e:27:e4:d3:3c:cf:fc:0d:af:8e:82:35:8e: a5:fd:25:1f:37:c0:a2:63:33:47:45:e5:50:5b:b3: 56:d6:0f:67:3c:65:02:61:8f:4c:ad:2f:b2:35:3b: d4:ef:bc:ae:16:ed:b6:83:3b:1a:fa:01:66:72:ba: 65:32:71:5a:ad:af:99:72:7a:49:91:17:08:06:0c: eb:40:2d:ce:bc:a3:69:78:60:02:92:90:11:97:b3: 91:57:80:33:e3:ed:a8:05:81:33:20:64:f5:37:07: a9:99:ad:6e:3e:1a:98:50:b5:61:13:86:69:7d:83: 51:05:c0:ed:87:83:95:91:45:bb:38:17:8c:9a:da: 53:eb:8e:f6:a0:6d:66:85:24:eb:ea:3a:ec:12:6c: 0c:0f:5f:2a:f7:80:25:04:e2:81:11:de:78:03:9c: b2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F8:9A:BD:52:5A:BB:56:E6:DA:E8:E0:A1:6D:4C:DC:28:6C:8A:56 X509v3 Authority Key Identifier: keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e0:cf:e2:cf:ca:ad:e0:3c:1f:9e:2f:d4:78:cf:02:2f:6f: 16:39:fb:68:38:70:88:e7:cb:5d:c2:99:b9:b6:91:d5:04:7d: 37:1f:db:2a:11:4e:de:4a:78:02:41:61:1d:a6:e2:b0:5b:d7: 92:40:bd:da:af:59:62:23:b3:d0:a7:26:80:74:28:c6:e1:72: c8:0f:23:b1:c7:d2:db:c2:2d:26:b1:7b:58:a4:a0:d9:20:b4: 03:0e:c2:87:c9:dc:d5:6c:c0:da:80:4b:b8:86:2e:9b:ce:4a: ed:c9:0f:b9:87:be:c6:aa:18:b4:da:3e:3d:7a:ea:81:41:e8: d9:db:98:72:64:0a:ce:54:28:8e:72:f2:7e:46:90:16:58:ad: cc:cb:15:28:50:99:c3:ad:bd:e9:3e:51:f3:08:21:4f:f7:eb: 40:3d:40:57:d8:d8:fd:0d:76:27:42:bc:b7:58:e2:09:21:36: 27:b4:d5:c2:82:db:f1:fe:56:14:03:0f:6c:91:47:e3:08:4c: df:1f:5b:08:63:c2:9b:f7:b9:f4:3a:98:fa:f8:c2:f0:02:06: d6:b9:26:5a:95:8f:ef:d4:79:f2:9f:41:56:eb:75:5f:32:e8: f1:68:94:3b:08:6e:92:a5:4d:c3:c5:d3:4b:7d:fd:53:b1:4a: d6:d0:69:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXqLHnkCxRFmA5JcdERpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhNjk4YTE0ZmI2MWE2ODdhZjBhNjNmN2M2NTVjMDAxZjY3 MDEyODIwHhcNMjYwMjA5MTMwMDQ1WhcNMjYwMjEwMTMwMDQ1WjAzMTEwLwYDVQQD EyhiMWY4OWFiZDUyNWFiYjU2ZTZkYWU4ZTBhMTZkNGNkYzI4NmM4YTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuB07kCbneJtc0dERQIsER9xryntf J+OpH38rm5CzE3rS590as409NoGZyx7F0T4Di1BCo8vEogQgMHrEaRfIYJylrjVr 03/Fsu6eyYmFaVV7zUHIWQaNc0z7Po4n5NM8z/wNr46CNY6l/SUfN8CiYzNHReVQ W7NW1g9nPGUCYY9MrS+yNTvU77yuFu22gzsa+gFmcrplMnFara+ZcnpJkRcIBgzr QC3OvKNpeGACkpARl7ORV4Az4+2oBYEzIGT1Nwepma1uPhqYULVhE4ZpfYNRBcDt h4OVkUW7OBeMmtpT6472oG1mhSTr6jrsEmwMD18q94AlBOKBEd54A5yyPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLH4mr1SWrtW5tro4KFtTNwobIpWMB8GA1UdIwQY MBaAFIppihT7YaaHrwpj98ZVwAH2cBKCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaW1tS0ZQdGhwb2V2Q21QM3hsWEFBZlp3RW9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zM2QyMjYtN2M0My00YzgzLTk0YWQt MjE4Mjg5ZDgxYzUzLzEvaW1tS0ZQdGhwb2V2Q21QM3hsWEFBZlp3RW9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8zM2QyMjYtN2M0My00YzgzLTk0YWQtMjE4Mjg5ZDgxYzUz LzEvaW1tS0ZQdGhwb2V2Q21QM3hsWEFBZlp3RW9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASuDP4s/K reA8H54v1HjPAi9vFjn7aDhwiOfLXcKZubaR1QR9Nx/bKhFO3kp4AkFhHabisFvX kkC92q9ZYiOz0KcmgHQoxuFyyA8jscfS28ItJrF7WKSg2SC0Aw7Ch8nc1WzA2oBL uIYum85K7ckPuYe+xqoYtNo+PXrqgUHo2duYcmQKzlQojnLyfkaQFlitzMsVKFCZ w6296T5R8wghT/frQD1AV9jY/Q12J0K8t1jiCSE2J7TVwoLb8f5WFAMPbJFH4whM 3x9bCGPCm/e59DqY+vjC8AIG1rkmWpWP79R58p9BVut1XzLo8WiUOwhukqVNw8XT S339U7FK1tBpEg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:01 2026 by rpki-client