This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json) Hash identifier: DcV1YYhiw6Y25Y2b8O5OOj3qloQpT8VkrIEZWempc4w= Subject key identifier: 7C:AB:CB:CC:1F:96:49:F9:6B:2F:8E:34:CC:AF:6B:47:DC:7F:D1:FB Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d Certificate serial: 019C4322F0B343653793D0BA0CC0A570237B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 16:01:29 +0000 Manifest this update: Mon 09 Feb 2026 16:01:29 +0000 Manifest next update: Tue 10 Feb 2026 16:01:29 +0000 Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: DreaAByzw22Ef7zRtRaAGeAcb6b4IS7x6NmqfBgXH4g=) 2: DaaeybnDDjVMgv8BbWZFPTyNFo4.roa (hash: QK+KxPGbli7LVnH/RtIUSITsGkxuycBQ6YKL9fWLh6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:f0:b3:43:65:37:93:d0:ba:0c:c0:a5:70:23:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d Validity Not Before: Feb 9 16:01:29 2026 GMT Not After : Feb 10 16:01:29 2026 GMT Subject: CN=7cabcbcc1f9649f96b2f8e34ccaf6b47dc7fd1fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:49:3a:2a:46:3c:b4:9b:7c:a3:6e:19:0a:7f: bf:c9:4e:c9:be:b7:a0:25:ba:6f:f9:80:28:be:cd: 4b:ee:d4:a6:0f:57:14:f7:d0:70:69:04:9d:87:c7: 53:74:b9:b7:fb:02:35:46:df:a7:3e:ca:e4:9d:7a: 46:d4:d0:96:7e:12:a5:43:b0:53:5d:15:e0:58:75: c2:6d:82:90:38:92:ec:a9:95:eb:9c:d5:43:f9:b2: 36:47:20:02:7f:1c:ff:02:74:f5:44:64:f3:8c:60: 58:7b:d2:8c:b6:a2:bd:97:4b:71:38:b5:cd:98:3b: f2:c3:e1:1d:1c:1d:5e:b8:45:3a:c3:54:85:72:23: 64:d5:00:c5:7b:2a:ec:ec:72:12:18:71:39:26:a1: e1:54:6f:dd:32:0c:98:f3:bd:a5:bb:85:32:1b:61: 69:9b:69:fa:74:f9:d5:30:bf:fd:f2:df:7e:41:60: b6:0d:0c:c2:b9:5b:60:8d:38:4a:f7:24:ca:b2:4b: 17:1d:ef:55:c9:98:67:27:d5:27:23:ef:5f:ed:43: 19:be:5f:83:78:7a:d4:15:6e:89:a6:14:e2:51:01: b1:df:0d:7c:f4:3e:02:df:8a:80:a7:41:d7:1c:16: 99:5c:b9:c1:e5:3e:e7:5b:33:05:2e:08:da:3e:74: c3:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AB:CB:CC:1F:96:49:F9:6B:2F:8E:34:CC:AF:6B:47:DC:7F:D1:FB X509v3 Authority Key Identifier: keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:d8:fd:52:f7:c2:a5:4c:7c:c0:0e:99:ed:44:11:1c:8f:e8: 84:b4:5b:a1:c1:50:ec:28:19:e9:08:de:7e:1c:31:a2:28:3c: 0c:6b:6e:7c:e4:66:30:4b:32:2b:59:16:24:4a:c1:e2:4c:64: f3:9c:5b:b9:6b:26:f7:d0:af:70:fd:0a:4f:c5:50:60:5b:e1: 51:5f:fc:22:ed:c1:7c:9b:4d:3a:f9:4f:0a:d4:39:db:ae:77: 6b:0b:52:1c:5b:00:5a:27:51:ba:01:e4:45:b5:a0:e7:08:ab: b1:a9:c4:8a:33:35:f0:ae:64:cd:1a:f4:b2:c2:88:99:23:e7: 48:5e:ad:56:b0:31:97:01:db:67:f9:93:b3:c0:a0:6b:6c:4d: ab:f5:3d:0b:55:de:31:7b:0a:87:a2:15:c8:f9:a5:c8:9e:6a: fc:59:12:43:df:ea:04:db:79:f1:4b:c1:ab:9c:5f:c6:87:6e: 54:56:29:97:ad:db:49:75:be:46:14:f5:d6:db:6e:81:ac:65: 83:af:6f:ad:0e:dc:a9:37:60:63:be:32:db:ae:79:84:a9:d5: b5:1f:01:5d:30:28:13:d9:17:b5:63:fa:09:4e:48:3d:15:47: 3f:7d:18:65:91:e9:95:bc:37:50:cc:22:8d:12:72:63:4c:0b: 8d:24:e6:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIvCzQ2U3k9C6DMClcCN7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ODlhNWRkZDMwMDJlODAwOTk5YjVjMTg2N2Y3ODY3ODFi YWYxM2QwHhcNMjYwMjA5MTYwMTI5WhcNMjYwMjEwMTYwMTI5WjAzMTEwLwYDVQQD Eyg3Y2FiY2JjYzFmOTY0OWY5NmIyZjhlMzRjY2FmNmI0N2RjN2ZkMWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEk6KkY8tJt8o24ZCn+/yU7Jvreg Jbpv+YAovs1L7tSmD1cU99BwaQSdh8dTdLm3+wI1Rt+nPsrknXpG1NCWfhKlQ7BT XRXgWHXCbYKQOJLsqZXrnNVD+bI2RyACfxz/AnT1RGTzjGBYe9KMtqK9l0txOLXN mDvyw+EdHB1euEU6w1SFciNk1QDFeyrs7HISGHE5JqHhVG/dMgyY872lu4UyG2Fp m2n6dPnVML/98t9+QWC2DQzCuVtgjThK9yTKsksXHe9VyZhnJ9UnI+9f7UMZvl+D eHrUFW6JphTiUQGx3w189D4C34qAp0HXHBaZXLnB5T7nWzMFLgjaPnTDRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHyry8wflkn5ay+ONMyva0fcf9H7MB8GA1UdIwQY MBaAFNSJpd3TAC6ACZm1wYZ/eGeBuvE9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUltbDNkTUFMb0FKbWJYQmhuOTRaNEc2OFQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iZmQyZDQtNmQ0NS00NGJiLWFlNmIt NTI1OWVlZGNhMDdjLzEvMUltbDNkTUFMb0FKbWJYQmhuOTRaNEc2OFQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9iZmQyZDQtNmQ0NS00NGJiLWFlNmItNTI1OWVlZGNhMDdj LzEvMUltbDNkTUFMb0FKbWJYQmhuOTRaNEc2OFQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd9j9UvfC pUx8wA6Z7UQRHI/ohLRbocFQ7CgZ6Qjefhwxoig8DGtufORmMEsyK1kWJErB4kxk 85xbuWsm99CvcP0KT8VQYFvhUV/8Iu3BfJtNOvlPCtQ52653awtSHFsAWidRugHk RbWg5wirsanEijM18K5kzRr0ssKImSPnSF6tVrAxlwHbZ/mTs8Cga2xNq/U9C1Xe MXsKh6IVyPmlyJ5q/FkSQ9/qBNt58UvBq5xfxoduVFYpl63bSXW+RhT11ttugaxl g69vrQ7cqTdgY74y2655hKnVtR8BXTAoE9kXtWP6CU5IPRVHP30YZZHplbw3UMwi jRJyY0wLjSTmPA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:50 2026 by rpki-client