This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft File: IO7gXaGD3uK4EYFBlWRiySQNeHY.mft (raw, json) Hash identifier: BnXTvDb15Ksctuh2A04sAn/JFvqZrcyW7HjrmQnuUTE= Subject key identifier: 5B:BC:D5:E8:25:CC:2A:FF:93:C1:3D:92:78:63:F9:45:7D:47:F5:54 Authority key identifier: 20:EE:E0:5D:A1:83:DE:E2:B8:11:81:41:95:64:62:C9:24:0D:78:76 Certificate issuer: /CN=20eee05da183dee2b8118141956462c9240d7876 Certificate serial: 019C4322058E0C82410CF8ADA9E6B47EE4D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft Manifest number: 161B Signing time: Mon 09 Feb 2026 16:00:28 +0000 Manifest this update: Mon 09 Feb 2026 16:00:28 +0000 Manifest next update: Tue 10 Feb 2026 16:00:28 +0000 Files and hashes: 1: IO7gXaGD3uK4EYFBlWRiySQNeHY.crl (hash: TyTLyTbbrYsxsLD+LcBZZZ2lDVXzf5M+SQ74slWBkmk=) 2: WX9t0xmXDR4uM2A7AQHLj3QPI_4.roa (hash: juszrqxHpM/25SYd4SpIiGanqn2fYHKuBqSkrqz21Rw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.crl rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:05:8e:0c:82:41:0c:f8:ad:a9:e6:b4:7e:e4:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20eee05da183dee2b8118141956462c9240d7876 Validity Not Before: Feb 9 16:00:28 2026 GMT Not After : Feb 10 16:00:28 2026 GMT Subject: CN=5bbcd5e825cc2aff93c13d927863f9457d47f554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fb:a5:72:02:d2:de:b9:01:d1:75:ba:eb:b1: b7:4d:da:52:aa:5e:3e:3a:fd:fe:25:e8:11:18:21: 28:3c:36:46:e5:c3:e1:0b:c3:21:c5:b6:0d:44:d9: 36:49:6c:94:37:ba:b8:15:53:99:97:0a:8f:e3:e2: c2:69:d0:fc:53:51:51:27:d4:5d:f7:c6:86:5b:0f: 37:19:ec:f5:64:8c:0b:47:fb:9a:8b:c7:a1:df:ff: 53:54:df:9e:61:14:e3:7d:91:a8:8e:4c:85:08:d5: 99:ed:ed:36:df:24:fb:41:fc:4a:92:d0:7e:2f:52: a6:f1:66:0a:5e:70:f8:82:98:e1:c7:83:2a:4a:b5: 92:2f:e7:57:68:08:9e:54:05:a0:d1:0e:b9:2d:01: 3a:d8:47:be:5b:d6:46:33:b7:d1:a0:1e:96:dc:9d: a5:26:97:1b:26:af:6b:78:c6:b6:6c:2b:19:eb:26: ec:22:e7:ff:5c:46:de:f5:b5:b9:c4:3d:aa:80:f3: a7:4b:d9:5f:2a:9b:1c:58:c7:b1:df:83:67:7c:e2: 14:40:60:6e:00:2d:75:53:ab:3e:53:8d:24:51:49: bd:7c:84:41:35:0d:55:5b:01:70:86:33:6c:cf:fb: 00:ab:e4:6b:e2:02:e5:44:c7:4b:ef:bd:2d:71:08: 7f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:BC:D5:E8:25:CC:2A:FF:93:C1:3D:92:78:63:F9:45:7D:47:F5:54 X509v3 Authority Key Identifier: keyid:20:EE:E0:5D:A1:83:DE:E2:B8:11:81:41:95:64:62:C9:24:0D:78:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:f0:f6:b3:59:02:f2:d7:af:5a:f4:da:f1:83:a6:5f:bd:cd: 6f:68:f9:cb:71:63:9b:33:0b:cf:61:f5:32:05:0f:5a:d3:f5: 8e:dc:6f:8b:98:73:4f:d4:75:73:4e:c5:66:f4:b5:6d:1d:81: c7:41:4a:d1:34:ec:5c:7d:d0:e3:15:3c:80:7e:81:49:f0:0f: 40:f6:b2:3e:7f:e0:02:9f:f3:3e:11:ce:35:37:7f:04:62:e4: 7e:5e:24:46:8b:6d:94:52:1e:43:7d:9f:45:49:b7:ec:f9:63: c0:1d:2d:4f:b0:56:28:60:00:d5:7c:47:38:84:20:ff:63:4c: e3:b8:71:5f:df:80:7f:a7:b8:4d:9d:e9:10:13:79:a8:cc:a5: 33:f4:86:51:d8:d9:87:da:02:9a:14:ba:9b:e4:aa:f4:51:e7: 43:24:40:c7:fe:e4:b2:9d:8d:6f:d2:e1:05:94:da:4c:d8:f0: 7f:10:52:3a:5c:f6:45:8f:a7:ae:52:1a:c3:4e:d3:01:83:17: 6d:e5:5a:9b:bd:25:e6:63:ca:1c:f2:d4:ac:f3:af:98:5c:bc: 99:3e:98:60:16:9c:f1:a1:d6:12:87:fa:2e:4d:61:7e:42:93: cc:4b:1e:75:08:e8:68:8b:f3:bb:7f:13:4b:ce:cb:83:f3:f5: 2c:ad:c9:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIgWODIJBDPitqea0fuTZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZWVlMDVkYTE4M2RlZTJiODExODE0MTk1NjQ2MmM5MjQw ZDc4NzYwHhcNMjYwMjA5MTYwMDI4WhcNMjYwMjEwMTYwMDI4WjAzMTEwLwYDVQQD Eyg1YmJjZDVlODI1Y2MyYWZmOTNjMTNkOTI3ODYzZjk0NTdkNDdmNTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPulcgLS3rkB0XW667G3TdpSql4+ Ov3+JegRGCEoPDZG5cPhC8MhxbYNRNk2SWyUN7q4FVOZlwqP4+LCadD8U1FRJ9Rd 98aGWw83Gez1ZIwLR/uai8eh3/9TVN+eYRTjfZGojkyFCNWZ7e023yT7QfxKktB+ L1Km8WYKXnD4gpjhx4MqSrWSL+dXaAieVAWg0Q65LQE62Ee+W9ZGM7fRoB6W3J2l JpcbJq9reMa2bCsZ6ybsIuf/XEbe9bW5xD2qgPOnS9lfKpscWMex34NnfOIUQGBu AC11U6s+U40kUUm9fIRBNQ1VWwFwhjNsz/sAq+Rr4gLlRMdL770tcQh/vQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFu81eglzCr/k8E9knhj+UV9R/VUMB8GA1UdIwQY MBaAFCDu4F2hg97iuBGBQZVkYskkDXh2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU83Z1hhR0QzdUs0RVlGQmxXUml5U1FOZUhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9jZmMwZDEtZDA5NS00YjFiLTliNWQt Mzk4NTI5OWZhZDZkLzEvSU83Z1hhR0QzdUs0RVlGQmxXUml5U1FOZUhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS9jZmMwZDEtZDA5NS00YjFiLTliNWQtMzk4NTI5OWZhZDZk LzEvSU83Z1hhR0QzdUs0RVlGQmxXUml5U1FOZUhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbfD2s1kC 8tevWvTa8YOmX73Nb2j5y3FjmzMLz2H1MgUPWtP1jtxvi5hzT9R1c07FZvS1bR2B x0FK0TTsXH3Q4xU8gH6BSfAPQPayPn/gAp/zPhHONTd/BGLkfl4kRottlFIeQ32f RUm37PljwB0tT7BWKGAA1XxHOIQg/2NM47hxX9+Af6e4TZ3pEBN5qMylM/SGUdjZ h9oCmhS6m+Sq9FHnQyRAx/7ksp2Nb9LhBZTaTNjwfxBSOlz2RY+nrlIaw07TAYMX beVam70l5mPKHPLUrPOvmFy8mT6YYBac8aHWEof6Lk1hfkKTzEsedQjoaIvzu38T S87Lg/P1LK3JXA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:41:39 2026 by rpki-client