This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft File: IgTxXPMNc4SLB038rCYTgAYVatQ.mft (raw, json) Hash identifier: RkZi9z8cMmrlUBqR1WRMojdAFsA4HQ6JIRK65uFEC0w= Subject key identifier: 47:A6:F5:1B:27:48:10:1B:03:59:30:FA:A5:2E:01:24:BC:8F:32:4B Authority key identifier: 22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4 Certificate issuer: /CN=2204f15cf30d73848b074dfcac26138006156ad4 Certificate serial: 019C4322879D123DFA847D86939D4280F348 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft Manifest number: 0F1D Signing time: Mon 09 Feb 2026 16:01:02 +0000 Manifest this update: Mon 09 Feb 2026 16:01:02 +0000 Manifest next update: Tue 10 Feb 2026 16:01:02 +0000 Files and hashes: 1: IgTxXPMNc4SLB038rCYTgAYVatQ.crl (hash: XCUEgU8BD8y3YQicaGDpMxzhtXI5aAOrXpxiSZWY7/k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:87:9d:12:3d:fa:84:7d:86:93:9d:42:80:f3:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2204f15cf30d73848b074dfcac26138006156ad4 Validity Not Before: Feb 9 16:01:02 2026 GMT Not After : Feb 10 16:01:02 2026 GMT Subject: CN=47a6f51b2748101b035930faa52e0124bc8f324b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:66:11:25:9f:ce:b4:45:d9:43:0b:cf:2f:90: 5c:df:73:c8:97:cb:34:77:d5:b5:29:68:fc:86:ae: e5:df:04:06:9f:2f:05:7e:be:3b:5c:38:1f:ac:d3: 6f:be:28:f0:81:36:16:3b:aa:95:fb:c6:31:13:18: d3:e0:78:fd:46:ce:fc:f9:22:02:f1:8e:d0:96:77: 58:a7:7c:4b:66:6f:13:ca:4d:b4:8e:29:b5:b8:cc: 64:98:af:27:25:0a:9b:38:81:9a:5a:19:9b:76:ce: 58:06:8f:4f:e2:69:bc:92:65:c9:79:43:d0:43:d9: 8e:42:09:09:e6:25:d6:e1:03:18:be:f1:50:a2:02: 3b:22:59:2e:42:a3:3d:fb:c2:95:2b:2d:cd:69:a7: 36:18:82:46:9c:d3:d5:2f:af:27:b3:17:b4:c7:67: f5:5a:1c:7a:2c:83:10:64:dd:92:14:17:1e:2f:6c: 64:97:20:27:37:d6:c4:c3:86:82:4c:2d:a2:dd:09: 2a:d8:51:45:9f:56:97:0e:e4:f2:70:01:ba:e2:ab: 95:da:ab:af:e4:00:5f:90:a3:20:92:b3:31:48:fd: e5:a8:48:59:49:47:a6:a5:6c:a9:f9:a9:5d:cd:45: 4b:d8:e2:93:64:d4:a4:21:ce:ff:17:bb:fa:5a:a1: ee:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A6:F5:1B:27:48:10:1B:03:59:30:FA:A5:2E:01:24:BC:8F:32:4B X509v3 Authority Key Identifier: keyid:22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:ee:be:3d:64:82:4b:82:38:f9:d7:3a:ff:03:e6:90:21:6f: 28:75:be:05:18:c6:b6:37:6f:69:c7:3a:17:89:88:1b:bb:4f: d8:2d:dc:8a:86:7b:38:05:b2:e8:cf:d0:22:10:dd:15:b6:af: a4:a0:ba:02:f3:9c:b8:8d:02:59:c0:49:13:73:21:d4:24:4c: fe:41:27:04:ae:29:da:6d:70:8e:ac:66:e3:a9:6c:2e:b8:57: db:c5:b1:cb:40:ba:ce:bd:50:15:10:d5:54:31:46:86:7f:8c: 23:4c:6b:ef:55:42:85:74:7b:57:84:13:b6:22:48:f2:10:e3: 61:9c:5a:15:61:79:6a:ca:86:64:cf:d2:93:00:e7:5b:9f:2e: 70:79:22:bb:da:64:66:7e:5a:b5:77:82:a0:99:bb:a4:63:c5: 42:0d:b8:09:45:51:e6:b3:0e:c1:93:c1:f7:04:9f:e5:15:50: 5b:b3:e0:43:bd:06:70:14:b4:5b:ae:b4:2e:2b:aa:b7:43:1f: 8e:29:0a:54:90:ed:b9:74:55:6b:e2:5e:bf:45:f3:b0:d8:d6: 41:f9:d5:66:ec:3a:db:46:bc:76:b7:71:45:f8:f7:8e:88:da: 1a:f5:04:14:ec:13:1a:9c:df:91:5f:8b:55:6f:1b:a2:1c:78: 14:ca:1b:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoedEj36hH2Gk51CgPNIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMDRmMTVjZjMwZDczODQ4YjA3NGRmY2FjMjYxMzgwMDYx NTZhZDQwHhcNMjYwMjA5MTYwMTAyWhcNMjYwMjEwMTYwMTAyWjAzMTEwLwYDVQQD Eyg0N2E2ZjUxYjI3NDgxMDFiMDM1OTMwZmFhNTJlMDEyNGJjOGYzMjRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmYRJZ/OtEXZQwvPL5Bc33PIl8s0 d9W1KWj8hq7l3wQGny8Ffr47XDgfrNNvvijwgTYWO6qV+8YxExjT4Hj9Rs78+SIC 8Y7QlndYp3xLZm8Tyk20jim1uMxkmK8nJQqbOIGaWhmbds5YBo9P4mm8kmXJeUPQ Q9mOQgkJ5iXW4QMYvvFQogI7IlkuQqM9+8KVKy3Naac2GIJGnNPVL68nsxe0x2f1 Whx6LIMQZN2SFBceL2xklyAnN9bEw4aCTC2i3Qkq2FFFn1aXDuTycAG64quV2quv 5ABfkKMgkrMxSP3lqEhZSUempWyp+aldzUVL2OKTZNSkIc7/F7v6WqHu0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEem9RsnSBAbA1kw+qUuASS8jzJLMB8GA1UdIwQY MBaAFCIE8VzzDXOEiwdN/KwmE4AGFWrUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8zODcyY2YtYWE1OS00Yzk4LWI3YTMt YzFiMTAyMzlkZDU4LzEvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS8zODcyY2YtYWE1OS00Yzk4LWI3YTMtYzFiMTAyMzlkZDU4 LzEvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOO6+PWSC S4I4+dc6/wPmkCFvKHW+BRjGtjdvacc6F4mIG7tP2C3cioZ7OAWy6M/QIhDdFbav pKC6AvOcuI0CWcBJE3Mh1CRM/kEnBK4p2m1wjqxm46lsLrhX28Wxy0C6zr1QFRDV VDFGhn+MI0xr71VChXR7V4QTtiJI8hDjYZxaFWF5asqGZM/SkwDnW58ucHkiu9pk Zn5atXeCoJm7pGPFQg24CUVR5rMOwZPB9wSf5RVQW7PgQ70GcBS0W660Liuqt0Mf jikKVJDtuXRVa+Jev0XzsNjWQfnVZuw620a8drdxRfj3jojaGvUEFOwTGpzfkV+L VW8bohx4FMob6w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:34 2026 by rpki-client