This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft File: IIP4tbYgnefJQAjzM3vjQ2866-Y.mft (raw, json) Hash identifier: E3VOylnt8etegLa4ViTQeFRryVcB4r2KekFZcjz25Cg= Subject key identifier: 5E:A7:94:AC:A3:F2:2E:CE:A3:9B:F0:74:7D:65:69:84:60:02:E9:5D Authority key identifier: 20:83:F8:B5:B6:20:9D:E7:C9:40:08:F3:33:7B:E3:43:6F:3A:EB:E6 Certificate issuer: /CN=2083f8b5b6209de7c94008f3337be3436f3aebe6 Certificate serial: 019C4246CA73C6562300235B38DFD9D4E8A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft Manifest number: 0864 Signing time: Mon 09 Feb 2026 12:01:01 +0000 Manifest this update: Mon 09 Feb 2026 12:01:01 +0000 Manifest next update: Tue 10 Feb 2026 12:01:01 +0000 Files and hashes: 1: IIP4tbYgnefJQAjzM3vjQ2866-Y.crl (hash: 1VYknuSxCpFz5TtwtN5Z5C4k2jkht/tRVfr2E1MZVzM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:ca:73:c6:56:23:00:23:5b:38:df:d9:d4:e8:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2083f8b5b6209de7c94008f3337be3436f3aebe6 Validity Not Before: Feb 9 12:01:01 2026 GMT Not After : Feb 10 12:01:01 2026 GMT Subject: CN=5ea794aca3f22ecea39bf0747d6569846002e95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:5a:e3:c4:87:0a:70:a1:a6:ec:96:29:43: 53:39:fb:ac:92:a7:75:cb:4f:61:4a:fb:74:af:56: 28:e0:2b:f8:e4:10:ba:72:21:81:b8:6a:b0:1e:63: ea:6d:9b:5d:43:cb:ae:23:40:be:e3:61:98:f8:fd: 34:45:a5:09:d8:8b:7b:8f:4c:90:31:38:17:28:b8: 6a:19:2a:4a:21:60:46:2f:c7:28:5f:e9:62:4d:e8: 79:8a:e7:7f:63:8e:99:f0:75:9c:c7:f5:2a:03:6e: c4:b1:45:49:76:a5:cf:8d:a5:37:94:00:57:6e:58: da:ef:0f:e0:6a:a3:f8:85:b1:1e:5d:0c:b3:b1:e0: b2:92:60:63:c4:d9:4b:4f:10:05:1d:f6:a4:cf:3e: d0:fb:e7:89:1d:f0:46:d6:22:95:ed:5d:39:2e:36: 9f:2e:ad:2c:89:16:1b:56:d3:f4:21:22:2c:6e:47: b8:e9:10:26:9e:66:4c:70:5f:01:38:e5:c0:20:b9: 78:4b:17:61:6d:85:bd:6f:8a:d8:cb:83:d4:13:36: 25:09:86:cc:5c:62:14:14:4b:9e:80:69:9f:f6:bf: a8:a1:ef:6a:a5:b9:4e:58:e8:43:fe:ac:e8:00:d5: 1e:4d:da:47:0d:cc:0b:e4:3b:a6:b9:e1:d6:52:5a: 56:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A7:94:AC:A3:F2:2E:CE:A3:9B:F0:74:7D:65:69:84:60:02:E9:5D X509v3 Authority Key Identifier: keyid:20:83:F8:B5:B6:20:9D:E7:C9:40:08:F3:33:7B:E3:43:6F:3A:EB:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IIP4tbYgnefJQAjzM3vjQ2866-Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/c025e5-399a-4ce8-b5f0-acbef018d03a/1/IIP4tbYgnefJQAjzM3vjQ2866-Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:f1:d3:fa:6c:d7:d6:be:85:e7:b8:ce:26:3f:a8:7c:ec:92: b6:f7:35:09:47:7f:69:94:fa:97:4e:2b:27:37:32:51:67:6c: 25:02:5f:ab:9a:b2:f5:d5:4a:98:89:f5:e5:d7:9b:47:ad:5b: 26:b1:ca:99:76:cf:04:80:12:8e:4b:21:65:0c:aa:13:03:12: b7:8f:a7:9c:aa:a4:50:38:6d:19:24:ec:c7:0d:b4:12:6f:ca: 1c:e6:a1:95:8e:0f:b5:eb:9e:a6:13:03:c2:52:73:4f:e5:6d: d5:58:a6:b8:f1:36:92:d5:43:65:86:f1:24:3d:ed:dc:f5:af: 0c:57:3c:a1:77:92:1b:da:8f:77:7e:fb:ed:9c:08:15:ad:c2: 96:f9:a2:d3:98:9d:22:13:1f:95:ff:d2:80:42:e7:8b:34:4c: d6:de:78:2c:08:ff:36:1c:d6:e2:8d:4b:35:ee:83:82:12:90: 84:7e:6a:8c:77:16:a7:38:65:77:13:82:95:22:78:f0:84:87: 9e:4c:a9:8b:52:cb:8f:55:cf:47:21:df:dc:e4:9d:b5:07:df: 21:b3:7f:ee:b1:42:07:66:ee:70:dd:7a:4c:f4:1a:38:3d:fa: 55:49:f6:57:04:95:b2:b7:8a:34:ed:97:3c:da:28:84:d6:f5: 4d:2e:b1:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRspzxlYjACNbON/Z1OikMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwODNmOGI1YjYyMDlkZTdjOTQwMDhmMzMzN2JlMzQzNmYz YWViZTYwHhcNMjYwMjA5MTIwMTAxWhcNMjYwMjEwMTIwMTAxWjAzMTEwLwYDVQQD Eyg1ZWE3OTRhY2EzZjIyZWNlYTM5YmYwNzQ3ZDY1Njk4NDYwMDJlOTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1zNa48SHCnChpuyWKUNTOfuskqd1 y09hSvt0r1Yo4Cv45BC6ciGBuGqwHmPqbZtdQ8uuI0C+42GY+P00RaUJ2It7j0yQ MTgXKLhqGSpKIWBGL8coX+liTeh5iud/Y46Z8HWcx/UqA27EsUVJdqXPjaU3lABX blja7w/gaqP4hbEeXQyzseCykmBjxNlLTxAFHfakzz7Q++eJHfBG1iKV7V05Ljaf Lq0siRYbVtP0ISIsbke46RAmnmZMcF8BOOXAILl4SxdhbYW9b4rYy4PUEzYlCYbM XGIUFEuegGmf9r+ooe9qpblOWOhD/qzoANUeTdpHDcwL5DumueHWUlpWlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF6nlKyj8i7Oo5vwdH1laYRgAuldMB8GA1UdIwQY MBaAFCCD+LW2IJ3nyUAI8zN740NvOuvmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUlQNHRiWWduZWZKUUFqek0zdmpRMjg2Ni1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9jMDI1ZTUtMzk5YS00Y2U4LWI1ZjAt YWNiZWYwMThkMDNhLzEvSUlQNHRiWWduZWZKUUFqek0zdmpRMjg2Ni1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9jMDI1ZTUtMzk5YS00Y2U4LWI1ZjAtYWNiZWYwMThkMDNh LzEvSUlQNHRiWWduZWZKUUFqek0zdmpRMjg2Ni1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw/HT+mzX 1r6F57jOJj+ofOyStvc1CUd/aZT6l04rJzcyUWdsJQJfq5qy9dVKmIn15debR61b JrHKmXbPBIASjkshZQyqEwMSt4+nnKqkUDhtGSTsxw20Em/KHOahlY4PteuephMD wlJzT+Vt1VimuPE2ktVDZYbxJD3t3PWvDFc8oXeSG9qPd3777ZwIFa3Clvmi05id IhMflf/SgELnizRM1t54LAj/NhzW4o1LNe6DghKQhH5qjHcWpzhldxOClSJ48ISH nkypi1LLj1XPRyHf3OSdtQffIbN/7rFCB2bucN16TPQaOD36VUn2VwSVsreKNO2X PNoohNb1TS6xOw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:38 2026 by rpki-client