This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft File: IhQgnik48W3KWTVwH6aG2Q_De54.mft (raw, json) Hash identifier: 0mkgrcP8l02xmSklVfZDj51vERjY86SPiPUq1hOYYTo= Subject key identifier: C0:C6:17:64:3A:C7:3E:B2:8A:8C:4A:F6:71:BA:C0:23:C7:B4:62:77 Authority key identifier: 22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E Certificate issuer: /CN=2214209e2938f16dca5935701fa686d90fc37b9e Certificate serial: 019C4322B4228614A645BA7515AD791AE358 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft Manifest number: 069C Signing time: Mon 09 Feb 2026 16:01:13 +0000 Manifest this update: Mon 09 Feb 2026 16:01:13 +0000 Manifest next update: Tue 10 Feb 2026 16:01:13 +0000 Files and hashes: 1: IhQgnik48W3KWTVwH6aG2Q_De54.crl (hash: drOlRO4W/PuHQ4jaSzeJMAbbKKSUBlBbYov/ujPtUnA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:b4:22:86:14:a6:45:ba:75:15:ad:79:1a:e3:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2214209e2938f16dca5935701fa686d90fc37b9e Validity Not Before: Feb 9 16:01:13 2026 GMT Not After : Feb 10 16:01:13 2026 GMT Subject: CN=c0c617643ac73eb28a8c4af671bac023c7b46277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6c:a4:ea:3f:d4:4f:8c:f6:81:fe:7d:6b:04: 68:e2:ad:60:55:64:35:8d:2a:82:b3:7c:96:3e:c9: f3:24:ae:68:40:75:ff:9e:48:69:39:5f:d3:69:12: 8b:87:8b:52:0d:a2:50:21:d7:1a:a0:f8:78:08:8a: 61:0c:f9:2e:48:25:89:eb:79:63:45:fa:6e:83:5b: 99:e2:80:22:31:0a:6e:81:3d:9c:a3:60:27:13:b0: 7f:11:89:95:90:94:5e:91:f1:37:ca:63:2b:71:55: 6d:7b:4c:86:ac:e1:67:c9:74:2c:9e:61:3c:4b:d5: 64:f1:72:bc:4e:70:18:7b:23:e3:bf:78:8e:58:ed: ae:1e:17:5e:25:08:11:25:20:9c:df:53:c0:77:20: 14:75:57:3d:51:bf:57:1e:a5:95:d4:98:25:e8:fa: 27:27:01:f8:37:f0:73:39:8b:f4:d6:c5:4b:68:58: d0:33:ba:31:7c:16:94:2a:d3:40:76:e7:dc:df:9f: 0d:8f:43:7f:67:13:37:d1:f1:8e:48:90:3e:96:ee: 10:aa:7d:0a:26:4e:01:86:08:f4:7a:86:89:cf:9b: 4c:bc:a4:59:1a:7e:ea:ff:59:ac:fe:af:59:2c:1b: b2:84:60:06:8e:f6:65:e6:6e:17:a7:aa:61:ef:8b: c2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:C6:17:64:3A:C7:3E:B2:8A:8C:4A:F6:71:BA:C0:23:C7:B4:62:77 X509v3 Authority Key Identifier: keyid:22:14:20:9E:29:38:F1:6D:CA:59:35:70:1F:A6:86:D9:0F:C3:7B:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhQgnik48W3KWTVwH6aG2Q_De54.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9f46c0-90be-41cc-ad5d-4add393a723e/1/IhQgnik48W3KWTVwH6aG2Q_De54.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:d7:0e:f1:7a:23:f1:3e:39:63:c3:2d:d0:d1:e3:13:90:7c: 67:98:47:f3:64:54:b5:5b:c8:74:bd:fb:24:dd:56:73:40:c3: 21:ca:36:02:ff:40:2f:d6:37:04:87:c9:f7:2b:f1:17:8b:bb: 06:0e:2b:82:29:e8:0a:27:19:b5:0e:0f:2e:2b:bb:7c:36:c9: 0b:15:03:6b:7c:b6:ea:c2:d5:e8:48:3f:ca:e7:1b:47:d5:4e: cf:40:01:ae:11:4b:63:c6:6e:c9:c7:10:0d:c8:c4:c9:e9:89: 8b:fb:aa:b9:aa:06:1f:fc:4b:83:15:bd:a1:9f:12:df:60:a8: 32:bd:44:bf:e7:e6:12:d2:fa:33:d0:65:a4:c7:b5:31:d4:1e: db:5e:a8:80:44:0a:4d:bd:af:0b:f6:bf:47:59:ed:83:e5:68: 4e:42:3c:82:ac:dc:dc:3d:e2:2d:88:ec:04:e5:df:41:a9:0d: a0:6e:a0:a8:5d:e7:1c:94:cd:26:d9:b8:bd:85:c0:81:c8:17: bf:12:6a:40:80:53:2a:07:6f:40:b1:fc:8d:24:53:fb:66:6c: 82:45:d2:eb:eb:ed:0d:50:70:2f:6e:71:fb:bc:7f:11:73:80: 5a:ba:4b:33:70:3d:6a:44:e2:26:43:47:41:f6:0e:de:69:80: 3f:19:5a:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIrQihhSmRbp1Fa15GuNYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMTQyMDllMjkzOGYxNmRjYTU5MzU3MDFmYTY4NmQ5MGZj MzdiOWUwHhcNMjYwMjA5MTYwMTEzWhcNMjYwMjEwMTYwMTEzWjAzMTEwLwYDVQQD EyhjMGM2MTc2NDNhYzczZWIyOGE4YzRhZjY3MWJhYzAyM2M3YjQ2Mjc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGyk6j/UT4z2gf59awRo4q1gVWQ1 jSqCs3yWPsnzJK5oQHX/nkhpOV/TaRKLh4tSDaJQIdcaoPh4CIphDPkuSCWJ63lj Rfpug1uZ4oAiMQpugT2co2AnE7B/EYmVkJRekfE3ymMrcVVte0yGrOFnyXQsnmE8 S9Vk8XK8TnAYeyPjv3iOWO2uHhdeJQgRJSCc31PAdyAUdVc9Ub9XHqWV1Jgl6Pon JwH4N/BzOYv01sVLaFjQM7oxfBaUKtNAdufc358Nj0N/ZxM30fGOSJA+lu4Qqn0K Jk4Bhgj0eoaJz5tMvKRZGn7q/1ms/q9ZLBuyhGAGjvZl5m4Xp6ph74vC4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMDGF2Q6xz6yioxK9nG6wCPHtGJ3MB8GA1UdIwQY MBaAFCIUIJ4pOPFtylk1cB+mhtkPw3ueMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWhRZ25pazQ4VzNLV1RWd0g2YUcyUV9EZTU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi85ZjQ2YzAtOTBiZS00MWNjLWFkNWQt NGFkZDM5M2E3MjNlLzEvSWhRZ25pazQ4VzNLV1RWd0g2YUcyUV9EZTU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi85ZjQ2YzAtOTBiZS00MWNjLWFkNWQtNGFkZDM5M2E3MjNl LzEvSWhRZ25pazQ4VzNLV1RWd0g2YUcyUV9EZTU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfNcO8Xoj 8T45Y8Mt0NHjE5B8Z5hH82RUtVvIdL37JN1Wc0DDIco2Av9AL9Y3BIfJ9yvxF4u7 Bg4rginoCicZtQ4PLiu7fDbJCxUDa3y26sLV6Eg/yucbR9VOz0ABrhFLY8ZuyccQ DcjEyemJi/uquaoGH/xLgxW9oZ8S32CoMr1Ev+fmEtL6M9BlpMe1MdQe216ogEQK Tb2vC/a/R1ntg+VoTkI8gqzc3D3iLYjsBOXfQakNoG6gqF3nHJTNJtm4vYXAgcgX vxJqQIBTKgdvQLH8jSRT+2ZsgkXS6+vtDVBwL25x+7x/EXOAWrpLM3A9akTiJkNH QfYO3mmAPxlaKg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:22 2026 by rpki-client