This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft File: i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft (raw, json) Hash identifier: QSc1f7hpl8/XZYNrc/k/p32kWVMwu2BlWksSeAwCmQo= Subject key identifier: A1:09:AD:AC:FD:F0:9A:68:9B:7B:14:6F:64:E7:26:71:B6:A4:17:3D Authority key identifier: 8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9 Certificate issuer: /CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9 Certificate serial: 019C427DC5575E9DFD9F1E15CC7D0FC566FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft Manifest number: 1127 Signing time: Mon 09 Feb 2026 13:01:04 +0000 Manifest this update: Mon 09 Feb 2026 13:01:04 +0000 Manifest next update: Tue 10 Feb 2026 13:01:04 +0000 Files and hashes: 1: bgpnt5ibenfPpBkC5ed1S0aPSHU.roa (hash: S5fBLUnI7/aLMxt/ortotYg/YTHmJIqk2MiL/kErwvI=) 2: i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl (hash: MfDaGxmYLPqnLVf0h6G+2x74GkYPO7nCCDGdGF1QsSE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:c5:57:5e:9d:fd:9f:1e:15:cc:7d:0f:c5:66:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bca0edf122f4cf98b082dd4cc0d84f5ede804b9 Validity Not Before: Feb 9 13:01:04 2026 GMT Not After : Feb 10 13:01:04 2026 GMT Subject: CN=a109adacfdf09a689b7b146f64e72671b6a4173d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:89:87:12:2e:63:95:aa:25:c2:5e:e2:be:fd: 97:2b:c1:86:9d:65:87:2b:67:75:94:54:36:3f:0d: a5:83:94:36:b2:1d:d8:48:04:ad:c0:1f:4b:ae:b9: d4:2a:4e:ee:01:ed:de:bd:85:a5:21:6e:ce:dc:82: 46:3a:1a:01:c3:e7:6b:98:f1:82:ad:49:65:2a:9c: 5b:b2:b8:b6:c2:43:5e:af:bc:ef:9e:c8:10:88:29: 92:af:46:5c:d1:39:5c:77:a7:4c:18:52:39:08:ca: ea:5a:71:d4:16:19:d6:0c:cb:2e:1c:49:38:12:2c: dd:53:13:b2:4c:ba:c9:d2:41:fa:c5:e9:34:63:f1: 85:96:b8:df:0b:4d:ec:7e:ac:9a:6a:e5:6d:e2:bc: dc:d9:10:51:13:ee:40:75:97:91:76:ac:66:42:15: 26:da:93:2f:d2:8a:f6:cc:a3:94:fe:1e:77:bf:b7: 1a:1d:70:9f:67:f6:fb:8e:68:a4:e9:08:07:46:c8: c0:2c:c9:c3:b5:1e:3e:21:75:fc:ad:df:56:4d:06: 16:de:9d:cd:46:f0:2e:b0:e0:6f:a3:82:08:65:5f: 2e:8b:61:97:92:16:c7:1e:c3:8c:f1:6a:47:ca:f4: 70:eb:28:d8:03:a0:2b:de:1c:20:dd:b9:98:2f:ae: 54:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:09:AD:AC:FD:F0:9A:68:9B:7B:14:6F:64:E7:26:71:B6:A4:17:3D X509v3 Authority Key Identifier: keyid:8B:CA:0E:DF:12:2F:4C:F9:8B:08:2D:D4:CC:0D:84:F5:ED:E8:04:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8oO3xIvTPmLCC3UzA2E9e3oBLk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/aef0ea-9403-47fb-ad80-1eda53aebe51/1/i8oO3xIvTPmLCC3UzA2E9e3oBLk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:cb:b1:1a:a3:2f:32:bc:52:8b:fa:53:3b:08:2b:6a:ae:62: 18:79:f9:95:a1:09:d3:37:d6:f2:88:85:bc:db:3d:7f:94:cb: 76:99:df:85:e2:9f:b7:49:8e:57:8f:a0:06:77:88:94:cb:c8: 0e:4a:bc:ff:25:13:3f:80:db:fe:4e:0e:23:13:8f:76:18:ae: c7:05:7d:f1:98:c6:77:69:0c:a0:df:85:e3:29:27:2a:c8:bb: 82:d7:cd:e3:d1:11:96:8f:8e:dc:77:0b:a3:3f:35:63:ee:ab: 63:b3:c1:33:1f:e6:46:a7:51:83:74:a8:34:4e:5d:ac:9e:c4: 3a:8a:2f:d2:16:cb:e5:6c:70:12:6e:fd:2f:cb:37:eb:e4:22: 62:89:2d:62:7d:95:85:b9:0e:01:7f:21:1f:20:5b:52:10:9b: a7:4b:7a:c4:3d:56:80:12:33:26:9e:e3:5b:e4:1a:b7:f0:7f: c9:62:c7:97:0f:3b:e2:7c:f8:9a:ea:db:fe:4e:8b:7b:16:96: 98:61:2c:89:f2:89:50:8e:3e:c8:c4:a9:4e:39:cf:26:e6:ce: 4e:49:3f:7c:06:86:1d:0d:b6:da:8b:6d:21:f5:c8:2c:b9:1e: 5b:82:b7:56:dc:9f:6f:87:ae:5e:3f:f6:88:02:7e:8c:d1:aa: 15:f7:71:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfcVXXp39nx4VzH0PxWb8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiY2EwZWRmMTIyZjRjZjk4YjA4MmRkNGNjMGQ4NGY1ZWRl ODA0YjkwHhcNMjYwMjA5MTMwMTA0WhcNMjYwMjEwMTMwMTA0WjAzMTEwLwYDVQQD EyhhMTA5YWRhY2ZkZjA5YTY4OWI3YjE0NmY2NGU3MjY3MWI2YTQxNzNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ImHEi5jlaolwl7ivv2XK8GGnWWH K2d1lFQ2Pw2lg5Q2sh3YSAStwB9LrrnUKk7uAe3evYWlIW7O3IJGOhoBw+drmPGC rUllKpxbsri2wkNer7zvnsgQiCmSr0Zc0Tlcd6dMGFI5CMrqWnHUFhnWDMsuHEk4 EizdUxOyTLrJ0kH6xek0Y/GFlrjfC03sfqyaauVt4rzc2RBRE+5AdZeRdqxmQhUm 2pMv0or2zKOU/h53v7caHXCfZ/b7jmik6QgHRsjALMnDtR4+IXX8rd9WTQYW3p3N RvAusOBvo4IIZV8ui2GXkhbHHsOM8WpHyvRw6yjYA6Ar3hwg3bmYL65U+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKEJraz98Jpom3sUb2TnJnG2pBc9MB8GA1UdIwQY MBaAFIvKDt8SL0z5iwgt1MwNhPXt6AS5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaThvTzN4SXZUUG1MQ0MzVXpBMkU5ZTNvQkxrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9hZWYwZWEtOTQwMy00N2ZiLWFkODAt MWVkYTUzYWViZTUxLzEvaThvTzN4SXZUUG1MQ0MzVXpBMkU5ZTNvQkxrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi9hZWYwZWEtOTQwMy00N2ZiLWFkODAtMWVkYTUzYWViZTUx LzEvaThvTzN4SXZUUG1MQ0MzVXpBMkU5ZTNvQkxrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKcuxGqMv MrxSi/pTOwgraq5iGHn5laEJ0zfW8oiFvNs9f5TLdpnfheKft0mOV4+gBneIlMvI Dkq8/yUTP4Db/k4OIxOPdhiuxwV98ZjGd2kMoN+F4yknKsi7gtfN49ERlo+O3HcL oz81Y+6rY7PBMx/mRqdRg3SoNE5drJ7EOoov0hbL5WxwEm79L8s36+QiYoktYn2V hbkOAX8hHyBbUhCbp0t6xD1WgBIzJp7jW+Qat/B/yWLHlw874nz4murb/k6LexaW mGEsifKJUI4+yMSpTjnPJubOTkk/fAaGHQ222ottIfXILLkeW4K3Vtyfb4euXj/2 iAJ+jNGqFfdxpg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:56:03 2026 by rpki-client