This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft File: I_IfcxbhvXj4bupkJdXCKbmA-aw.mft (raw, json) Hash identifier: B67HFIj2PCOrTV8HgYAA+Y2OOg717L874GcP+6aYLUc= Subject key identifier: C9:04:7B:A7:DF:2D:45:52:0C:3F:60:23:D2:77:30:9C:06:ED:86:EA Authority key identifier: 23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC Certificate issuer: /CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac Certificate serial: 019C42B4A1F099768458EC6758A462E64729 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 14:01:00 +0000 Manifest this update: Mon 09 Feb 2026 14:01:00 +0000 Manifest next update: Tue 10 Feb 2026 14:01:00 +0000 Files and hashes: 1: 5nqAIjs4Map_dmOK-D_BzJ5dduI.roa (hash: YmgmK05MQj5RQuP0mkk06fEYlISXZEUPrlooDAX79Gc=) 2: I_IfcxbhvXj4bupkJdXCKbmA-aw.crl (hash: opeHq8bCurag6iRdMHpf78jEkqP37On0jpKUsryJwOo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:a1:f0:99:76:84:58:ec:67:58:a4:62:e6:47:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac Validity Not Before: Feb 9 14:01:00 2026 GMT Not After : Feb 10 14:01:00 2026 GMT Subject: CN=c9047ba7df2d45520c3f6023d277309c06ed86ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1b:f7:31:fb:af:67:06:91:0b:86:69:f2:c8: f3:85:f8:9e:f2:50:93:fe:cd:bd:da:01:6c:75:f0: 05:ee:62:38:a7:f7:e8:35:74:bd:4e:69:e2:a0:a0: 3a:bb:f7:be:27:58:86:13:8f:08:4a:df:83:df:07: 0d:1a:b7:a7:cd:36:59:45:ca:41:02:aa:f4:93:fc: 31:37:9e:b1:68:6a:9d:2e:d3:42:04:d3:3b:62:fe: 25:91:69:79:51:92:1e:8c:d6:37:f7:24:46:0c:70: 4d:b7:69:1b:d2:6a:7d:47:de:ea:8e:19:0e:4d:26: 35:bd:b7:0b:dc:43:46:6b:4f:bc:ba:71:30:f9:fe: 8c:93:63:9a:17:cb:fa:d7:60:ce:9c:af:f4:85:95: dd:f4:f0:23:1f:35:2d:cf:e8:41:d1:9d:04:3e:7f: 59:57:eb:6d:f6:21:36:c6:a3:53:86:68:c0:63:86: a7:5d:c2:7b:95:96:e8:33:7a:66:f2:46:71:c1:bb: be:b3:b1:f9:1b:bf:84:19:2e:0b:67:39:39:36:6d: 09:fb:90:14:71:99:a2:0e:25:14:26:65:d4:2d:8d: 80:dc:68:78:ef:68:d7:9d:20:bf:27:b1:55:61:96: 99:1a:ce:23:6b:0c:49:a7:58:d2:58:aa:e0:20:e9: 36:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:04:7B:A7:DF:2D:45:52:0C:3F:60:23:D2:77:30:9C:06:ED:86:EA X509v3 Authority Key Identifier: keyid:23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:73:e8:8e:5f:de:fd:50:62:eb:02:99:06:26:c3:4f:44:b4: a5:42:37:49:6f:d4:b7:a9:56:18:b9:5b:56:0c:7a:45:f6:68: d2:d8:86:f5:0a:8e:41:12:32:26:69:0d:ab:78:57:2a:0d:80: b7:de:44:c6:27:58:f0:6c:43:ad:92:45:c2:39:6c:1b:6e:20: 93:1c:a2:98:09:26:cd:c1:9d:f9:ac:3a:6f:72:1c:3f:d0:79: ad:9c:29:71:b5:d1:e5:59:e0:5f:5c:f2:35:ab:00:7a:95:d1: df:df:0b:28:57:8c:8f:69:af:bc:7b:e1:d8:9a:38:0d:5c:8d: b6:1b:5a:4a:12:d0:65:da:23:bd:28:43:b2:95:fe:c5:e4:fd: d9:77:82:89:98:1d:45:9e:30:19:31:87:47:05:e0:d9:ed:5c: a0:4c:d5:0c:fe:4c:f3:90:75:64:b1:52:b1:5a:61:5c:2e:b3: 05:16:2b:a1:67:8c:d1:89:46:86:d7:0f:83:d4:78:d9:69:fa: f4:e6:b6:10:6b:c2:02:74:aa:74:2a:ab:25:b7:3f:76:6f:60: b6:21:ea:01:59:de:47:73:69:03:4e:56:73:2d:57:e5:5e:69: 70:4c:8d:4b:5d:ae:c0:53:ef:d4:46:7d:49:e6:e2:e6:71:c2: 5a:1d:75:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtKHwmXaEWOxnWKRi5kcpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZjIxZjczMTZlMWJkNzhmODZlZWE2NDI1ZDVjMjI5Yjk4 MGY5YWMwHhcNMjYwMjA5MTQwMTAwWhcNMjYwMjEwMTQwMTAwWjAzMTEwLwYDVQQD EyhjOTA0N2JhN2RmMmQ0NTUyMGMzZjYwMjNkMjc3MzA5YzA2ZWQ4NmVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBv3MfuvZwaRC4Zp8sjzhfie8lCT /s292gFsdfAF7mI4p/foNXS9TmnioKA6u/e+J1iGE48ISt+D3wcNGrenzTZZRcpB Aqr0k/wxN56xaGqdLtNCBNM7Yv4lkWl5UZIejNY39yRGDHBNt2kb0mp9R97qjhkO TSY1vbcL3ENGa0+8unEw+f6Mk2OaF8v612DOnK/0hZXd9PAjHzUtz+hB0Z0EPn9Z V+tt9iE2xqNThmjAY4anXcJ7lZboM3pm8kZxwbu+s7H5G7+EGS4LZzk5Nm0J+5AU cZmiDiUUJmXULY2A3Gh472jXnSC/J7FVYZaZGs4jawxJp1jSWKrgIOk2swIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMkEe6ffLUVSDD9gI9J3MJwG7YbqMB8GA1UdIwQY MBaAFCPyH3MW4b14+G7qZCXVwim5gPmsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSV9JZmN4Ymh2WGo0YnVwa0pkWENLYm1BLWF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84YTU5Y2YtNTA5Mi00NzRkLTgxY2Yt OTc0YzMxZjI2NjBiLzEvSV9JZmN4Ymh2WGo0YnVwa0pkWENLYm1BLWF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC84YTU5Y2YtNTA5Mi00NzRkLTgxY2YtOTc0YzMxZjI2NjBi LzEvSV9JZmN4Ymh2WGo0YnVwa0pkWENLYm1BLWF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMnPojl/e /VBi6wKZBibDT0S0pUI3SW/Ut6lWGLlbVgx6RfZo0tiG9QqOQRIyJmkNq3hXKg2A t95ExidY8GxDrZJFwjlsG24gkxyimAkmzcGd+aw6b3IcP9B5rZwpcbXR5VngX1zy NasAepXR398LKFeMj2mvvHvh2Jo4DVyNthtaShLQZdojvShDspX+xeT92XeCiZgd RZ4wGTGHRwXg2e1coEzVDP5M85B1ZLFSsVphXC6zBRYroWeM0YlGhtcPg9R42Wn6 9Oa2EGvCAnSqdCqrJbc/dm9gtiHqAVneR3NpA05Wcy1X5V5pcEyNS12uwFPv1EZ9 Sebi5nHCWh11jw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:25 2026 by rpki-client