This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft File: IBBUhPGH8gh9Egytlx1oLbMVmWU.mft (raw, json) Hash identifier: K/MQfzRatTcUvPX3X2RM/2zcdaMe+AByW4OiWj6tEF4= Subject key identifier: 08:0D:3B:13:C7:51:AB:47:9B:BC:80:D7:11:CF:C2:A1:27:2A:13:32 Authority key identifier: 20:10:54:84:F1:87:F2:08:7D:12:0C:AD:97:1D:68:2D:B3:15:99:65 Certificate issuer: /CN=20105484f187f2087d120cad971d682db3159965 Certificate serial: 019C41D8AA24B967943A1DFD55D9B30FFCCF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft Manifest number: 03B2 Signing time: Mon 09 Feb 2026 10:00:44 +0000 Manifest this update: Mon 09 Feb 2026 10:00:44 +0000 Manifest next update: Tue 10 Feb 2026 10:00:44 +0000 Files and hashes: 1: 90vvtkrkAMGYzz8QxxavAe6DrCY.roa (hash: TG20gZKtR2MxO/jwaweSu/ZIE48KIk206vldUHECSqQ=) 2: IBBUhPGH8gh9Egytlx1oLbMVmWU.crl (hash: HDY6bZybPpN5jYvYn8pfneIRzrsiRdzBhEh6yP1M9H4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.crl rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:aa:24:b9:67:94:3a:1d:fd:55:d9:b3:0f:fc:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20105484f187f2087d120cad971d682db3159965 Validity Not Before: Feb 9 10:00:44 2026 GMT Not After : Feb 10 10:00:44 2026 GMT Subject: CN=080d3b13c751ab479bbc80d711cfc2a1272a1332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f1:45:a8:73:4b:23:dc:20:62:09:c1:fb:bd: 2c:90:17:7d:76:1e:0a:34:22:cf:e5:1c:a1:69:b6: 79:e0:fc:31:ed:9a:e0:3d:85:4d:c8:2e:db:1d:a1: 5a:21:09:4a:73:ff:5b:70:3d:5d:68:f4:56:5a:a6: 1c:28:14:93:e1:be:87:c3:bd:c6:e1:b4:e9:bd:66: 4e:50:23:34:60:e5:c0:bc:2b:6d:d9:7d:9d:13:b8: 71:9d:94:b7:a2:a1:94:2c:d5:3a:6f:4a:4a:85:0d: b3:5c:aa:a1:5b:59:96:8c:52:c2:21:18:61:9a:d4: 5a:ac:f9:00:94:bb:bb:bb:2c:6d:af:90:d9:f5:dd: 45:b7:68:0e:64:c4:76:9e:f3:72:74:41:a1:ca:56: a8:04:3a:bf:bd:f7:cc:2d:f2:60:77:2a:33:1e:56: d1:51:8a:60:b5:9f:ea:bf:ee:68:6b:ba:d1:34:fd: 2b:b1:90:6e:64:9d:30:e7:b1:06:a4:e3:27:ca:8b: 50:fc:e5:58:04:ef:ca:e7:fe:49:eb:66:67:8c:db: 40:03:1c:e3:32:88:dc:f7:e2:cb:41:a6:81:ea:d9: 21:5d:be:8b:4b:6b:d0:ae:16:0a:38:a7:fa:41:a0: 08:90:72:20:ff:23:05:f7:77:48:08:e9:a2:0c:cc: 95:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:0D:3B:13:C7:51:AB:47:9B:BC:80:D7:11:CF:C2:A1:27:2A:13:32 X509v3 Authority Key Identifier: keyid:20:10:54:84:F1:87:F2:08:7D:12:0C:AD:97:1D:68:2D:B3:15:99:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IBBUhPGH8gh9Egytlx1oLbMVmWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/cef6d0-f488-4d25-86b5-26aef882f94f/1/IBBUhPGH8gh9Egytlx1oLbMVmWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:07:69:78:de:53:50:4a:2e:8b:79:2f:36:8a:33:fb:7e:a7: f7:68:ac:2c:04:10:5c:d6:a7:e4:ce:dc:1b:15:f7:07:42:b0: 37:fc:21:25:9c:df:34:8c:05:d6:f3:83:fe:a1:7a:97:92:c2: 17:58:09:35:b2:2f:40:09:63:e3:f9:af:3f:11:a8:67:dc:32: cc:67:4d:c2:22:15:8f:a0:c7:70:29:f8:1b:4c:be:5f:74:66: cd:1f:2f:60:f6:4b:62:dd:83:93:32:72:06:df:3a:d7:aa:6c: 8e:d8:71:86:a8:26:3d:02:c0:17:13:9e:63:88:12:6e:3f:ac: 60:08:94:c4:d0:88:a7:d8:6c:38:d0:e8:9a:be:3c:23:7b:a6: a8:30:cf:06:4a:31:03:78:9b:5a:0f:92:6d:89:f9:02:0a:65: 0e:01:79:1b:3a:4b:ce:d6:f9:a1:00:a5:ff:3b:4f:c9:f8:f2: 3c:1d:9c:df:85:6f:d9:e8:57:69:af:82:51:9e:52:28:2c:24: d6:09:03:79:fd:f0:71:1c:db:7c:f0:96:e4:8b:9f:14:64:a9: b5:d0:de:26:01:65:52:7a:36:0c:21:6b:39:e9:58:06:37:41: c0:5f:09:6d:cc:7e:ee:1b:49:11:76:33:a8:ee:d8:ca:ed:19: fc:e4:3f:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2KokuWeUOh39VdmzD/zPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMTA1NDg0ZjE4N2YyMDg3ZDEyMGNhZDk3MWQ2ODJkYjMx NTk5NjUwHhcNMjYwMjA5MTAwMDQ0WhcNMjYwMjEwMTAwMDQ0WjAzMTEwLwYDVQQD EygwODBkM2IxM2M3NTFhYjQ3OWJiYzgwZDcxMWNmYzJhMTI3MmExMzMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmPFFqHNLI9wgYgnB+70skBd9dh4K NCLP5RyhabZ54Pwx7ZrgPYVNyC7bHaFaIQlKc/9bcD1daPRWWqYcKBST4b6Hw73G 4bTpvWZOUCM0YOXAvCtt2X2dE7hxnZS3oqGULNU6b0pKhQ2zXKqhW1mWjFLCIRhh mtRarPkAlLu7uyxtr5DZ9d1Ft2gOZMR2nvNydEGhylaoBDq/vffMLfJgdyozHlbR UYpgtZ/qv+5oa7rRNP0rsZBuZJ0w57EGpOMnyotQ/OVYBO/K5/5J62ZnjNtAAxzj Mojc9+LLQaaB6tkhXb6LS2vQrhYKOKf6QaAIkHIg/yMF93dICOmiDMyV2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAgNOxPHUatHm7yA1xHPwqEnKhMyMB8GA1UdIwQY MBaAFCAQVITxh/IIfRIMrZcdaC2zFZllMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUJCVWhQR0g4Z2g5RWd5dGx4MW9MYk1WbVdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9jZWY2ZDAtZjQ4OC00ZDI1LTg2YjUt MjZhZWY4ODJmOTRmLzEvSUJCVWhQR0g4Z2g5RWd5dGx4MW9MYk1WbVdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9jZWY2ZDAtZjQ4OC00ZDI1LTg2YjUtMjZhZWY4ODJmOTRm LzEvSUJCVWhQR0g4Z2g5RWd5dGx4MW9MYk1WbVdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmgdpeN5T UEoui3kvNooz+36n92isLAQQXNan5M7cGxX3B0KwN/whJZzfNIwF1vOD/qF6l5LC F1gJNbIvQAlj4/mvPxGoZ9wyzGdNwiIVj6DHcCn4G0y+X3RmzR8vYPZLYt2DkzJy Bt8616psjthxhqgmPQLAFxOeY4gSbj+sYAiUxNCIp9hsONDomr48I3umqDDPBkox A3ibWg+SbYn5AgplDgF5GzpLztb5oQCl/ztPyfjyPB2c34Vv2ehXaa+CUZ5SKCwk 1gkDef3wcRzbfPCW5IufFGSptdDeJgFlUno2DCFrOelYBjdBwF8Jbcx+7htJEXYz qO7Yyu0Z/OQ/ww== -----END CERTIFICATE-----Generated at Mon Feb 9 20:14:04 2026 by rpki-client