This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/205007-79c6-4852-8924-fdced45d2fec/1/I_kQhAWIGYiaSo8y6jR3WVQxNPA.mft File: I_kQhAWIGYiaSo8y6jR3WVQxNPA.mft (raw, json) Hash identifier: damyVk3oUwl2//xrkbiE9t96YdjEIvUYstbSgO9yDmM= Subject key identifier: 50:8C:E8:C9:05:1C:1F:19:3A:E4:2F:BA:D0:33:8A:55:E3:1E:C4:43 Authority key identifier: 23:F9:10:84:05:88:19:88:9A:4A:8F:32:EA:34:77:59:54:31:34:F0 Certificate issuer: /CN=23f91084058819889a4a8f32ea347759543134f0 Certificate serial: 019C41A1BA1528515F2938D7819BE8EA704A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_kQhAWIGYiaSo8y6jR3WVQxNPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/205007-79c6-4852-8924-fdced45d2fec/1/I_kQhAWIGYiaSo8y6jR3WVQxNPA.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 09:00:43 +0000 Manifest this update: Mon 09 Feb 2026 09:00:43 +0000 Manifest next update: Tue 10 Feb 2026 09:00:43 +0000 Files and hashes: 1: I_kQhAWIGYiaSo8y6jR3WVQxNPA.crl (hash: ypjszqumwI7NJezDchYZt/gIS7zIaUN2Q1BObDnVlD8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/205007-79c6-4852-8924-fdced45d2fec/1/I_kQhAWIGYiaSo8y6jR3WVQxNPA.crl rsync://rpki.ripe.net/repository/DEFAULT/51/205007-79c6-4852-8924-fdced45d2fec/1/I_kQhAWIGYiaSo8y6jR3WVQxNPA.mft rsync://rpki.ripe.net/repository/DEFAULT/I_kQhAWIGYiaSo8y6jR3WVQxNPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:ba:15:28:51:5f:29:38:d7:81:9b:e8:ea:70:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23f91084058819889a4a8f32ea347759543134f0 Validity Not Before: Feb 9 09:00:43 2026 GMT Not After : Feb 10 09:00:43 2026 GMT Subject: CN=508ce8c9051c1f193ae42fbad0338a55e31ec443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:69:02:68:d4:c8:a5:a4:f4:40:23:c7:32:a1: 2a:23:3e:9f:d2:1d:4c:89:70:c8:93:7c:9c:5d:ea: 8e:b0:ad:44:7a:7f:16:1b:89:df:8f:a7:77:e3:21: f5:38:44:02:b0:b5:41:10:1e:69:9c:b1:52:d6:c5: 50:98:0f:6e:f0:2d:5f:3d:be:4e:a4:89:a8:0a:ad: 36:0d:e3:2e:20:c6:8a:b5:40:b7:2b:95:54:f8:56: 96:7e:8c:bb:0c:ad:7c:ff:d0:d7:f3:8e:af:99:05: b3:d0:12:d1:d5:b1:b7:c1:35:57:c7:35:52:20:7c: 1e:25:af:45:67:10:a9:b6:1d:6d:c7:a9:a5:e1:6e: 67:1a:6a:60:ba:ad:2e:14:4a:e3:a4:d4:14:e1:4f: 4b:fd:30:f3:c8:80:f8:01:d2:d8:7d:73:f6:88:e7: 7f:71:af:ec:46:7f:c4:f9:d9:99:a4:52:22:71:a4: d0:75:a1:43:ea:35:60:b6:dd:cb:48:aa:58:11:af: 92:c4:14:de:d2:85:09:d7:d9:92:ff:82:e9:b5:2d: 88:56:0d:9e:ee:2d:9d:21:41:3d:a8:17:9f:5e:0b: fa:fc:14:17:23:b0:a6:54:b6:59:0c:20:76:d9:78: 1d:b2:9b:76:10:d6:75:80:66:d9:74:3a:46:7d:2b: a9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:8C:E8:C9:05:1C:1F:19:3A:E4:2F:BA:D0:33:8A:55:E3:1E:C4:43 X509v3 Authority Key Identifier: keyid:23:F9:10:84:05:88:19:88:9A:4A:8F:32:EA:34:77:59:54:31:34:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_kQhAWIGYiaSo8y6jR3WVQxNPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/205007-79c6-4852-8924-fdced45d2fec/1/I_kQhAWIGYiaSo8y6jR3WVQxNPA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/205007-79c6-4852-8924-fdced45d2fec/1/I_kQhAWIGYiaSo8y6jR3WVQxNPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:e3:5e:80:bc:59:de:1b:ea:1e:e6:3e:b4:33:c5:b0:ee:65: 23:56:3a:b6:48:d5:5f:bd:69:19:d7:cc:4c:d6:56:68:fb:47: af:26:4b:7a:e2:5a:69:f3:44:d5:b5:f7:05:21:bd:16:ab:65: 73:76:18:17:3a:01:60:26:71:f4:d1:52:db:e8:d8:5b:e2:dd: 9c:68:48:31:2e:5c:bc:d3:c2:37:cc:fd:b4:ac:13:0b:42:b1: dc:93:c0:26:8f:a4:7d:8d:cc:50:cd:e3:9f:c8:2c:dc:29:9a: 6f:f0:d2:b2:a1:26:07:4c:b1:e3:49:c6:d6:97:76:96:ea:8a: f1:ef:4c:13:d7:52:2e:1a:1c:b9:62:43:9f:5f:15:b7:cc:5a: 09:32:6d:50:6d:ba:7d:99:91:3a:8a:1a:26:89:f5:40:ca:29: fc:1d:cd:84:78:1e:c7:33:c8:4d:84:f1:c6:9b:d2:65:10:51: c2:68:c7:36:7f:29:b0:c3:bf:82:4a:5a:f4:2d:78:0f:82:5f: 39:59:21:29:64:74:fa:b2:6e:1f:02:9d:70:9e:7e:58:9a:53: 29:cd:7c:ea:df:a8:7f:b9:b1:03:e9:36:2f:4d:0c:fa:8b:ee: 9c:10:2b:1e:7f:58:ca:c2:98:2c:2f:f1:f4:78:87:10:59:53: 3c:7e:e7:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoboVKFFfKTjXgZvo6nBKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZjkxMDg0MDU4ODE5ODg5YTRhOGYzMmVhMzQ3NzU5NTQz MTM0ZjAwHhcNMjYwMjA5MDkwMDQzWhcNMjYwMjEwMDkwMDQzWjAzMTEwLwYDVQQD Eyg1MDhjZThjOTA1MWMxZjE5M2FlNDJmYmFkMDMzOGE1NWUzMWVjNDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2kCaNTIpaT0QCPHMqEqIz6f0h1M iXDIk3ycXeqOsK1Een8WG4nfj6d34yH1OEQCsLVBEB5pnLFS1sVQmA9u8C1fPb5O pImoCq02DeMuIMaKtUC3K5VU+FaWfoy7DK18/9DX846vmQWz0BLR1bG3wTVXxzVS IHweJa9FZxCpth1tx6ml4W5nGmpguq0uFErjpNQU4U9L/TDzyID4AdLYfXP2iOd/ ca/sRn/E+dmZpFIicaTQdaFD6jVgtt3LSKpYEa+SxBTe0oUJ19mS/4LptS2IVg2e 7i2dIUE9qBefXgv6/BQXI7CmVLZZDCB22Xgdspt2ENZ1gGbZdDpGfSupGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFCM6MkFHB8ZOuQvutAzilXjHsRDMB8GA1UdIwQY MBaAFCP5EIQFiBmImkqPMuo0d1lUMTTwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSV9rUWhBV0lHWWlhU284eTZqUjNXVlF4TlBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8yMDUwMDctNzljNi00ODUyLTg5MjQt ZmRjZWQ0NWQyZmVjLzEvSV9rUWhBV0lHWWlhU284eTZqUjNXVlF4TlBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8yMDUwMDctNzljNi00ODUyLTg5MjQtZmRjZWQ0NWQyZmVj LzEvSV9rUWhBV0lHWWlhU284eTZqUjNXVlF4TlBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB+NegLxZ 3hvqHuY+tDPFsO5lI1Y6tkjVX71pGdfMTNZWaPtHryZLeuJaafNE1bX3BSG9Fqtl c3YYFzoBYCZx9NFS2+jYW+LdnGhIMS5cvNPCN8z9tKwTC0Kx3JPAJo+kfY3MUM3j n8gs3Cmab/DSsqEmB0yx40nG1pd2luqK8e9ME9dSLhocuWJDn18Vt8xaCTJtUG26 fZmROooaJon1QMop/B3NhHgexzPITYTxxpvSZRBRwmjHNn8psMO/gkpa9C14D4Jf OVkhKWR0+rJuHwKdcJ5+WJpTKc186t+of7mxA+k2L00M+ovunBArHn9YysKYLC/x 9HiHEFlTPH7ndQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:35 2026 by rpki-client