This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft File: iH0wEZNRUA8lmlfi_2hQeX0bTho.mft (raw, json) Hash identifier: DiGAP3q7/LZ8RArX8bBnqDWWH4Y+tEFjw6jIIphGbVA= Subject key identifier: 3E:74:62:EE:FB:16:81:AD:B9:3C:45:6B:6C:E7:5B:26:4A:DD:D4:4A Authority key identifier: 88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A Certificate issuer: /CN=887d30119351500f259a57e2ff6850797d1b4e1a Certificate serial: 019C2F64617FBFE946ECF3B323570B19E259 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft Manifest number: 1808 Signing time: Thu 05 Feb 2026 20:00:33 +0000 Manifest this update: Thu 05 Feb 2026 20:00:33 +0000 Manifest next update: Fri 06 Feb 2026 20:00:33 +0000 Files and hashes: 1: cFtA2whI-5eSAd_xz6FflVfrfcA.roa (hash: rjwPdM8tVlnPByunwjAWM9HihlVqQjzJw824S3HbwPc=) 2: iH0wEZNRUA8lmlfi_2hQeX0bTho.crl (hash: ewoBx7zufZ4A8lUl+ovhPWT+VkzqXrNT/oWK3ritwQ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 20:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2f:64:61:7f:bf:e9:46:ec:f3:b3:23:57:0b:19:e2:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=887d30119351500f259a57e2ff6850797d1b4e1a Validity Not Before: Feb 5 20:00:33 2026 GMT Not After : Feb 6 20:00:33 2026 GMT Subject: CN=3e7462eefb1681adb93c456b6ce75b264addd44a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6e:a8:df:bb:8e:1b:88:f4:ee:15:6e:2d:f6: e8:ba:bb:ea:1c:0c:e1:87:ff:5b:6b:06:5b:b0:77: 29:d0:3f:99:6a:6d:d0:fd:cc:f6:9b:af:a6:85:7f: c7:a4:e0:dc:33:07:10:ef:34:09:9a:9d:cf:e3:4e: a7:03:05:8b:8b:49:44:ff:40:50:42:be:a4:4c:22: 2d:f3:91:39:24:60:36:e2:01:55:96:07:ef:40:b5: 99:0c:6c:fd:08:9c:fe:34:3f:78:f1:ad:b8:d8:6f: 78:ef:49:d6:56:7e:1b:62:b6:2f:80:38:55:fb:78: 48:9f:17:7f:c9:32:e4:17:a3:f7:37:ae:03:2a:94: 34:38:98:dc:70:e9:4b:a3:1c:57:c2:75:99:8a:bb: 27:db:59:a1:de:f7:12:63:1e:ff:75:4f:71:d0:71: 82:26:c2:b7:cd:99:49:bc:92:6d:2d:0f:92:57:96: 26:43:cc:cc:ca:85:87:07:12:5f:20:b5:dc:09:1d: 7f:f4:f0:1d:5e:81:be:9d:ab:df:4e:ba:87:a1:6f: 50:d3:08:6d:d5:ba:af:03:3d:1b:de:6e:2e:62:2a: 51:db:94:27:19:03:ea:a8:73:f7:cd:d1:ec:3d:d2: d7:39:09:24:4a:d6:7b:9a:69:ea:73:07:1a:a0:29: 36:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:74:62:EE:FB:16:81:AD:B9:3C:45:6B:6C:E7:5B:26:4A:DD:D4:4A X509v3 Authority Key Identifier: keyid:88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:1a:a7:b6:5c:df:1c:2c:06:5b:f9:76:aa:06:76:dd:12:e1: c9:eb:68:f9:89:c6:76:e0:ea:03:d4:a8:84:d5:07:78:4b:bc: ec:ba:9b:19:5b:f5:82:30:5d:41:2a:04:48:b1:16:aa:07:48: 91:4d:a7:2a:a2:1b:71:47:ef:cf:4a:f4:2c:c2:4f:ec:c8:2f: 00:df:09:92:02:a7:38:2a:6b:72:0f:c8:6c:2b:cc:06:4f:6a: 73:0a:6b:8f:91:67:c4:00:c6:a8:13:f6:85:3d:d1:cd:fb:63: 33:18:44:db:c0:a2:61:be:28:9d:63:a6:a5:74:09:29:12:a0: 8d:fc:55:57:47:d0:d1:14:5e:8d:d3:10:ba:9f:c8:53:30:e2: 1b:83:99:52:70:9e:d2:cd:a7:9c:ad:8d:46:5a:95:fe:bf:bb: a3:31:9a:b8:0a:c3:fa:5f:a5:36:71:55:9b:ad:66:6a:da:69: c9:b7:1a:92:88:1c:6f:60:c1:00:bb:d0:cf:d7:5e:c6:79:5a: 58:1b:a1:2c:d6:39:45:10:01:54:a1:49:4a:77:8f:68:c2:7f: f6:6f:12:71:f7:89:09:84:c5:d7:77:44:21:2d:b8:54:0b:81: f4:89:c1:18:dc:3a:38:9d:ff:68:cf:84:67:50:0e:49:7f:9f: 95:c4:0e:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwvZGF/v+lG7POzI1cLGeJZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4N2QzMDExOTM1MTUwMGYyNTlhNTdlMmZmNjg1MDc5N2Qx YjRlMWEwHhcNMjYwMjA1MjAwMDMzWhcNMjYwMjA2MjAwMDMzWjAzMTEwLwYDVQQD EygzZTc0NjJlZWZiMTY4MWFkYjkzYzQ1NmI2Y2U3NWIyNjRhZGRkNDRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuG6o37uOG4j07hVuLfbourvqHAzh h/9bawZbsHcp0D+Zam3Q/cz2m6+mhX/HpODcMwcQ7zQJmp3P406nAwWLi0lE/0BQ Qr6kTCIt85E5JGA24gFVlgfvQLWZDGz9CJz+ND948a242G9470nWVn4bYrYvgDhV +3hInxd/yTLkF6P3N64DKpQ0OJjccOlLoxxXwnWZirsn21mh3vcSYx7/dU9x0HGC JsK3zZlJvJJtLQ+SV5YmQ8zMyoWHBxJfILXcCR1/9PAdXoG+navfTrqHoW9Q0wht 1bqvAz0b3m4uYipR25QnGQPqqHP3zdHsPdLXOQkkStZ7mmnqcwcaoCk29QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD50Yu77FoGtuTxFa2znWyZK3dRKMB8GA1UdIwQY MBaAFIh9MBGTUVAPJZpX4v9oUHl9G04aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUgwd0VaTlJVQThsbWxmaV8yaFFlWDBiVGhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9mZWJiMmUtZjBkYS00ZDc0LWI1NDct Zjc0MDFiNGU0YjRhLzEvaUgwd0VaTlJVQThsbWxmaV8yaFFlWDBiVGhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC9mZWJiMmUtZjBkYS00ZDc0LWI1NDctZjc0MDFiNGU0YjRh LzEvaUgwd0VaTlJVQThsbWxmaV8yaFFlWDBiVGhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoBqntlzf HCwGW/l2qgZ23RLhyeto+YnGduDqA9SohNUHeEu87LqbGVv1gjBdQSoESLEWqgdI kU2nKqIbcUfvz0r0LMJP7MgvAN8JkgKnOCprcg/IbCvMBk9qcwprj5FnxADGqBP2 hT3RzftjMxhE28CiYb4onWOmpXQJKRKgjfxVV0fQ0RRejdMQup/IUzDiG4OZUnCe 0s2nnK2NRlqV/r+7ozGauArD+l+lNnFVm61matppybcakogcb2DBALvQz9dexnla WBuhLNY5RRABVKFJSnePaMJ/9m8ScfeJCYTF13dEIS24VAuB9InBGNw6OJ3/aM+E Z1AOSX+flcQOSg== -----END CERTIFICATE-----Generated at Fri Feb 6 00:34:36 2026 by rpki-client