This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft File: iqrwV67ry_cGh34qqnSjljgL4hU.mft (raw, json) Hash identifier: SEIKbHIDnPHKPqQkljl4WRZhq2CZV6ikzZDRwVSw7jk= Subject key identifier: 17:3E:A9:E9:25:16:D9:2C:EE:C3:52:65:CE:42:89:04:7F:32:3B:C4 Authority key identifier: 8A:AA:F0:57:AE:EB:CB:F7:06:87:7E:2A:AA:74:A3:96:38:0B:E2:15 Certificate issuer: /CN=8aaaf057aeebcbf706877e2aaa74a396380be215 Certificate serial: 019C41D8EEA72536F61327657C10CCA80AD7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft Manifest number: 05A1 Signing time: Mon 09 Feb 2026 10:01:01 +0000 Manifest this update: Mon 09 Feb 2026 10:01:01 +0000 Manifest next update: Tue 10 Feb 2026 10:01:01 +0000 Files and hashes: 1: iqrwV67ry_cGh34qqnSjljgL4hU.crl (hash: bosEXxB9xQ+RiXZ+c1ehejcPcOLVsK9igTR5Yh/dMQE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.crl rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:ee:a7:25:36:f6:13:27:65:7c:10:cc:a8:0a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aaaf057aeebcbf706877e2aaa74a396380be215 Validity Not Before: Feb 9 10:01:01 2026 GMT Not After : Feb 10 10:01:01 2026 GMT Subject: CN=173ea9e92516d92ceec35265ce4289047f323bc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:93:44:7c:89:ea:b6:98:aa:07:9d:6d:fb:80: 62:9a:b3:c0:46:31:6d:b8:d6:1f:77:7e:4b:f5:6c: 1a:81:3f:b1:1f:2c:39:60:02:94:68:e6:82:24:d8: 79:35:d1:19:64:b5:37:7e:5e:6c:c6:18:3a:c2:1c: 8b:a3:25:f6:07:9f:6a:15:9b:47:8f:05:7f:4c:6a: 9f:00:12:32:1d:83:e1:e1:dc:07:71:e3:c3:24:15: dc:80:73:f3:f7:1d:60:5b:ec:59:24:0b:5a:33:47: ba:c7:8c:f2:ca:ae:cc:91:79:3f:e2:43:7f:f7:78: 42:db:f7:0b:b0:18:ed:5f:bd:29:79:14:e8:d8:ca: 3e:20:49:92:52:5f:68:8f:23:09:60:d4:bc:91:ef: 63:a9:ba:70:13:10:da:e9:bd:95:a0:c7:e3:15:03: 37:45:d6:0a:a2:49:59:47:71:69:e0:8e:83:81:25: ba:6b:8a:f6:8a:01:80:36:8b:99:36:eb:a7:72:c4: ba:9d:b4:a8:48:79:1f:23:a1:f5:87:12:d7:c1:11: 58:0e:b4:11:78:1e:e0:63:1d:11:a6:87:1c:0c:74: f0:b9:dd:11:58:b7:f6:fb:77:d2:9c:ad:6a:26:e2: 9a:66:fe:40:1c:02:cc:61:55:63:c6:1f:17:f3:cd: 9a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3E:A9:E9:25:16:D9:2C:EE:C3:52:65:CE:42:89:04:7F:32:3B:C4 X509v3 Authority Key Identifier: keyid:8A:AA:F0:57:AE:EB:CB:F7:06:87:7E:2A:AA:74:A3:96:38:0B:E2:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:10:00:91:e3:8f:fe:a9:86:07:22:fc:3b:3f:8b:ff:f9:ce: 5f:bb:97:0b:cb:da:20:cc:f0:ea:7d:2e:2b:1d:15:1b:7b:d0: 31:13:e6:5f:35:21:e5:77:23:52:7a:8b:83:6c:7a:10:f8:8c: 58:61:c1:b0:b4:50:37:f1:2a:41:f8:a6:69:39:ba:17:35:11: 97:ef:33:a5:61:a3:a3:c4:2b:0b:66:57:b5:90:f0:87:00:e2: 26:81:c2:6e:29:1b:96:97:bf:9d:d8:e4:33:dd:6b:84:ed:d9: 4e:6d:89:3f:cf:44:0c:67:3c:cb:4c:80:6b:4b:3b:70:b9:49: 7a:c2:d0:9a:4d:05:aa:6a:fb:bc:4d:5b:4d:bf:04:6d:db:ff: 3c:09:08:cb:72:be:ea:08:be:68:d0:65:4e:72:48:e9:91:21: a7:6d:7c:b7:13:92:60:40:bf:16:cc:89:e0:dd:a3:7c:41:0b: 2a:38:5d:ec:b6:a0:98:37:de:3c:ef:19:fa:81:bb:c6:3b:9f: a5:f3:f9:d8:59:b9:3f:37:96:05:02:c8:b5:16:8e:aa:fc:44: f1:e1:69:5f:e3:7a:85:d4:16:ba:0f:c3:1a:e8:24:d7:4b:4f: 22:ea:ce:f6:a9:55:be:3f:5c:81:f4:ab:c0:17:de:d3:c2:a4: c9:74:02:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2O6nJTb2EydlfBDMqArXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWFmMDU3YWVlYmNiZjcwNjg3N2UyYWFhNzRhMzk2Mzgw YmUyMTUwHhcNMjYwMjA5MTAwMTAxWhcNMjYwMjEwMTAwMTAxWjAzMTEwLwYDVQQD EygxNzNlYTllOTI1MTZkOTJjZWVjMzUyNjVjZTQyODkwNDdmMzIzYmM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5NEfInqtpiqB51t+4BimrPARjFt uNYfd35L9WwagT+xHyw5YAKUaOaCJNh5NdEZZLU3fl5sxhg6whyLoyX2B59qFZtH jwV/TGqfABIyHYPh4dwHcePDJBXcgHPz9x1gW+xZJAtaM0e6x4zyyq7MkXk/4kN/ 93hC2/cLsBjtX70peRTo2Mo+IEmSUl9ojyMJYNS8ke9jqbpwExDa6b2VoMfjFQM3 RdYKoklZR3Fp4I6DgSW6a4r2igGANouZNuuncsS6nbSoSHkfI6H1hxLXwRFYDrQR eB7gYx0RpoccDHTwud0RWLf2+3fSnK1qJuKaZv5AHALMYVVjxh8X882aIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBc+qeklFtks7sNSZc5CiQR/MjvEMB8GA1UdIwQY MBaAFIqq8Feu68v3Bod+Kqp0o5Y4C+IVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXFyd1Y2N3J5X2NHaDM0cXFuU2psamdMNGhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8yMjQwYTktNTRkNS00YjgyLTg3MzEt NTMwOTBiM2JhYTgxLzEvaXFyd1Y2N3J5X2NHaDM0cXFuU2psamdMNGhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC8yMjQwYTktNTRkNS00YjgyLTg3MzEtNTMwOTBiM2JhYTgx LzEvaXFyd1Y2N3J5X2NHaDM0cXFuU2psamdMNGhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGBAAkeOP /qmGByL8Oz+L//nOX7uXC8vaIMzw6n0uKx0VG3vQMRPmXzUh5XcjUnqLg2x6EPiM WGHBsLRQN/EqQfimaTm6FzURl+8zpWGjo8QrC2ZXtZDwhwDiJoHCbikblpe/ndjk M91rhO3ZTm2JP89EDGc8y0yAa0s7cLlJesLQmk0Fqmr7vE1bTb8Ebdv/PAkIy3K+ 6gi+aNBlTnJI6ZEhp218txOSYEC/FsyJ4N2jfEELKjhd7LagmDfePO8Z+oG7xjuf pfP52Fm5PzeWBQLItRaOqvxE8eFpX+N6hdQWug/DGugk10tPIurO9qlVvj9cgfSr wBfe08KkyXQCfw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:57:17 2026 by rpki-client