This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft File: IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft (raw, json) Hash identifier: HJ6pTrJWdpJjIsPHTEPbHnPSxOKp4tQY/bJxPl4D0Yc= Subject key identifier: 3A:05:A4:8C:16:12:CF:41:E9:CF:10:96:30:30:89:81:FF:74:E8:51 Authority key identifier: 23:07:65:21:44:C9:12:7D:D6:26:79:60:56:C9:EC:29:32:A4:F2:05 Certificate issuer: /CN=2307652144c9127dd626796056c9ec2932a4f205 Certificate serial: 019C43229D2069BC7DB4F2E44BDF86337627 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwdlIUTJEn3WJnlgVsnsKTKk8gU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft Manifest number: 02EF Signing time: Mon 09 Feb 2026 16:01:07 +0000 Manifest this update: Mon 09 Feb 2026 16:01:07 +0000 Manifest next update: Tue 10 Feb 2026 16:01:07 +0000 Files and hashes: 1: IwdlIUTJEn3WJnlgVsnsKTKk8gU.crl (hash: H+/6Rgh1vwNuHSDqjLEuybi/SybsEWtRUX4e4Q0fYeA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.crl rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft rsync://rpki.ripe.net/repository/DEFAULT/IwdlIUTJEn3WJnlgVsnsKTKk8gU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:9d:20:69:bc:7d:b4:f2:e4:4b:df:86:33:76:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2307652144c9127dd626796056c9ec2932a4f205 Validity Not Before: Feb 9 16:01:07 2026 GMT Not After : Feb 10 16:01:07 2026 GMT Subject: CN=3a05a48c1612cf41e9cf109630308981ff74e851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:05:71:20:0c:16:74:4a:7a:4f:0c:99:2c:44: 58:8c:93:39:95:48:eb:ed:14:11:2c:de:b3:fa:26: 63:f2:4e:0a:42:ea:66:74:5e:73:85:ae:f6:f5:f5: 38:0b:53:69:0c:62:fd:2a:37:d8:e7:2e:27:96:3c: 77:9e:7f:d0:b3:15:b6:02:37:53:32:db:e8:9f:0b: ef:6f:a1:ee:0e:9f:f3:7e:1c:97:b4:21:8a:ae:7c: ee:27:28:14:76:29:0e:42:4c:8a:16:e0:79:2b:49: fb:35:0c:68:0f:a8:5c:cb:2f:fb:07:53:22:b8:9b: 0d:61:9b:f9:56:b5:96:2d:24:7c:38:e1:95:d0:3e: 86:dd:8a:53:c8:bb:7e:da:ba:a0:9f:c8:0b:e6:06: 0c:81:ba:26:12:26:5b:2b:55:81:05:19:4b:f6:5a: c1:e2:ce:f3:b7:e9:64:cb:bf:d1:8b:72:db:98:23: 99:5b:b9:35:21:10:b2:b8:fd:92:fa:f7:5f:b2:d8: 0a:1c:09:4f:fd:96:80:11:f2:3c:60:c8:a6:49:3d: 06:62:ee:b2:21:58:f5:8a:2b:9a:c0:0a:c2:6d:a1: a8:94:3c:57:55:cc:0c:5c:ff:1b:ff:0d:0c:6f:81: d8:fa:89:bd:9d:83:18:ea:1f:13:ac:8d:9b:d2:0e: aa:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:05:A4:8C:16:12:CF:41:E9:CF:10:96:30:30:89:81:FF:74:E8:51 X509v3 Authority Key Identifier: keyid:23:07:65:21:44:C9:12:7D:D6:26:79:60:56:C9:EC:29:32:A4:F2:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwdlIUTJEn3WJnlgVsnsKTKk8gU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:45:95:f1:41:43:63:c6:d1:f2:5b:f9:a6:6a:1d:49:d6:03: c6:2a:64:f2:7d:05:ae:62:1c:82:f4:de:ae:0b:75:74:c8:74: 59:5e:d0:39:17:5d:68:45:0a:f1:6f:e5:4b:f5:d5:02:3c:cd: 2d:51:7f:a3:92:90:43:30:83:ff:45:45:e0:c4:df:66:f5:a1: c6:62:8d:d9:d1:91:88:46:b0:d7:bf:3b:05:6f:4c:69:b5:d3: ba:15:0e:9a:96:36:ab:7a:e2:0f:a9:66:d7:3f:c8:8e:4b:18: 20:0b:97:9a:e2:6a:5b:b5:c2:f1:cb:6a:64:f5:6e:ca:c9:11: 0a:41:0f:73:67:bf:46:37:f0:90:7c:b5:ea:ae:d6:d8:20:01: 19:a9:39:5e:18:5f:3d:99:b3:85:02:80:e0:24:e4:ac:6a:c1: 24:79:52:b0:20:f7:66:c0:c7:ec:81:50:47:fa:c4:83:6d:d8: eb:1b:9a:6d:af:e2:9c:c5:77:03:48:e9:a0:1c:52:5c:a9:ea: 13:2c:93:17:71:f1:27:bf:ec:81:ac:e5:d6:83:fe:e1:07:bb: 28:ba:4f:63:73:77:e4:f7:27:09:ee:73:28:ab:d0:4a:63:38: cf:8a:98:fc:8a:49:6c:f7:24:4c:b9:48:a4:87:4e:84:cb:bf: 6c:25:25:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIp0gabx9tPLkS9+GM3YnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMDc2NTIxNDRjOTEyN2RkNjI2Nzk2MDU2YzllYzI5MzJh NGYyMDUwHhcNMjYwMjA5MTYwMTA3WhcNMjYwMjEwMTYwMTA3WjAzMTEwLwYDVQQD EygzYTA1YTQ4YzE2MTJjZjQxZTljZjEwOTYzMDMwODk4MWZmNzRlODUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgVxIAwWdEp6TwyZLERYjJM5lUjr 7RQRLN6z+iZj8k4KQupmdF5zha729fU4C1NpDGL9KjfY5y4nljx3nn/QsxW2AjdT Mtvonwvvb6HuDp/zfhyXtCGKrnzuJygUdikOQkyKFuB5K0n7NQxoD6hcyy/7B1Mi uJsNYZv5VrWWLSR8OOGV0D6G3YpTyLt+2rqgn8gL5gYMgbomEiZbK1WBBRlL9lrB 4s7zt+lky7/Ri3LbmCOZW7k1IRCyuP2S+vdfstgKHAlP/ZaAEfI8YMimST0GYu6y IVj1iiuawArCbaGolDxXVcwMXP8b/w0Mb4HY+om9nYMY6h8TrI2b0g6qtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDoFpIwWEs9B6c8QljAwiYH/dOhRMB8GA1UdIwQY MBaAFCMHZSFEyRJ91iZ5YFbJ7CkypPIFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXdkbElVVEpFbjNXSm5sZ1ZzbnNLVEtrOGdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC85OWQxNzctOGMwMy00OThmLWIyMDIt N2E3OGFlMDU0YjRjLzEvSXdkbElVVEpFbjNXSm5sZ1ZzbnNLVEtrOGdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC85OWQxNzctOGMwMy00OThmLWIyMDItN2E3OGFlMDU0YjRj LzEvSXdkbElVVEpFbjNXSm5sZ1ZzbnNLVEtrOGdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKkWV8UFD Y8bR8lv5pmodSdYDxipk8n0FrmIcgvTergt1dMh0WV7QORddaEUK8W/lS/XVAjzN LVF/o5KQQzCD/0VF4MTfZvWhxmKN2dGRiEaw1787BW9MabXTuhUOmpY2q3riD6lm 1z/IjksYIAuXmuJqW7XC8ctqZPVuyskRCkEPc2e/RjfwkHy16q7W2CABGak5Xhhf PZmzhQKA4CTkrGrBJHlSsCD3ZsDH7IFQR/rEg23Y6xuaba/inMV3A0jpoBxSXKnq EyyTF3HxJ7/sgazl1oP+4Qe7KLpPY3N35PcnCe5zKKvQSmM4z4qY/IpJbPckTLlI pIdOhMu/bCUlCw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:49 2026 by rpki-client