This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json) Hash identifier: W+BDkOpVXKZnGJGxFfhXSqm7iIAt5uq3cKQbhANzz/k= Subject key identifier: 44:58:8B:9B:A0:F0:EF:28:10:57:85:BD:FD:F8:CC:FB:CA:50:CF:A6 Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71 Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171 Certificate serial: 019C4547479B173D89132A9D3F68D339149E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft Manifest number: 0F5A Signing time: Tue 10 Feb 2026 02:00:25 +0000 Manifest this update: Tue 10 Feb 2026 02:00:25 +0000 Manifest next update: Wed 11 Feb 2026 02:00:25 +0000 Files and hashes: 1: 5qOXZsZ0BHNAbp3kT3SWOZkhYW4.roa (hash: DBxKLTH87HKe59x6vClNlaxgF86/cqJNz234XOYz+0Y=) 2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: fLMH4erzxjKew05LkvsT7wsxYxET2qfe4/O1obMelj8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:47:47:9b:17:3d:89:13:2a:9d:3f:68:d3:39:14:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b8801543812040477d4744229466c8537d45171 Validity Not Before: Feb 10 02:00:25 2026 GMT Not After : Feb 11 02:00:25 2026 GMT Subject: CN=44588b9ba0f0ef28105785bdfdf8ccfbca50cfa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5e:7c:30:7a:13:67:f0:42:47:16:50:4b:9a: 1c:12:db:6e:ee:fd:c0:a8:d9:d8:b1:06:52:b6:3d: 3f:fc:c7:44:99:69:3b:63:09:51:c7:87:44:5a:31: 13:10:c2:12:83:b4:6c:5d:d6:0a:a1:f7:13:8d:ff: b6:97:b1:a0:eb:65:a0:cb:e3:e6:29:c4:4a:c7:f0: 18:4d:14:01:91:06:8b:38:41:2c:5b:14:22:5b:d1: 87:cc:d2:84:36:5c:ef:b9:42:e2:ac:09:e4:d5:99: 50:99:cd:2e:4b:ab:89:a8:c0:b1:07:47:82:3b:3d: db:f4:3a:85:01:1f:78:0a:28:89:f0:39:ee:09:2c: ae:0f:60:3a:f0:ae:4b:ad:02:38:14:d5:84:fb:6e: 60:e6:45:23:7c:25:d5:9d:36:0e:72:7e:1f:f0:5f: eb:84:6f:d6:eb:12:8a:b7:f7:40:ca:e7:2e:44:d0: 5e:52:64:c6:4c:0b:b5:01:48:29:42:a1:f7:03:3a: 04:20:99:8a:c9:93:a1:2c:e8:3d:75:7f:8a:9f:1f: 72:42:b3:54:46:64:32:6f:74:87:ab:53:54:74:2d: 81:7d:ff:26:a7:6a:09:15:39:09:be:74:ac:17:f2: 32:98:24:f4:33:3a:c5:2b:1f:53:da:65:fb:30:db: 59:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:58:8B:9B:A0:F0:EF:28:10:57:85:BD:FD:F8:CC:FB:CA:50:CF:A6 X509v3 Authority Key Identifier: keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:dd:60:08:72:2f:92:26:97:e6:9b:d6:eb:8a:91:c7:5f:3f: 0a:3b:5f:71:c3:0f:86:0b:0d:58:98:6a:bd:cf:06:0e:aa:df: b4:96:65:c4:45:3a:63:40:6f:48:49:ca:8b:8a:a6:62:0c:71: 48:1d:35:99:39:14:e3:6f:6a:03:eb:73:a9:ca:0b:71:72:21: 2d:ca:bb:49:94:d8:80:df:03:d8:5b:56:f9:e6:4c:49:a4:55: 6d:9e:04:c6:48:06:53:3d:71:28:51:5a:59:53:06:fa:8a:4a: 3d:3a:fa:c3:b1:82:16:e2:56:d1:ca:fa:c5:6e:2a:cd:03:42: f7:0a:03:70:19:e0:1f:c1:62:c6:13:a2:36:3e:d7:16:6b:12: 3f:0d:26:0f:a3:1c:9d:4b:97:ea:ae:68:20:66:4e:14:4e:7f: 43:79:b3:d4:af:6b:fe:00:6d:44:8f:d5:2a:43:68:c0:4c:f5: ef:e2:aa:79:ed:fe:95:31:71:a1:5a:c8:67:4a:b7:97:82:4a: f3:03:77:65:b7:d1:fa:cc:b0:61:50:9b:3d:b1:59:89:5b:95: 10:db:1d:ec:2c:f3:ea:5a:ed:0e:e0:07:21:c4:6c:97:ba:54: 89:1c:3f:a4:ab:56:ea:e7:24:96:d9:e9:b8:28:55:47:a5:fc: ad:89:29:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFR0ebFz2JEyqdP2jTORSeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiODgwMTU0MzgxMjA0MDQ3N2Q0NzQ0MjI5NDY2Yzg1Mzdk NDUxNzEwHhcNMjYwMjEwMDIwMDI1WhcNMjYwMjExMDIwMDI1WjAzMTEwLwYDVQQD Eyg0NDU4OGI5YmEwZjBlZjI4MTA1Nzg1YmRmZGY4Y2NmYmNhNTBjZmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu158MHoTZ/BCRxZQS5ocEttu7v3A qNnYsQZStj0//MdEmWk7YwlRx4dEWjETEMISg7RsXdYKofcTjf+2l7Gg62Wgy+Pm KcRKx/AYTRQBkQaLOEEsWxQiW9GHzNKENlzvuULirAnk1ZlQmc0uS6uJqMCxB0eC Oz3b9DqFAR94CiiJ8DnuCSyuD2A68K5LrQI4FNWE+25g5kUjfCXVnTYOcn4f8F/r hG/W6xKKt/dAyucuRNBeUmTGTAu1AUgpQqH3AzoEIJmKyZOhLOg9dX+Knx9yQrNU RmQyb3SHq1NUdC2Bff8mp2oJFTkJvnSsF/IymCT0MzrFKx9T2mX7MNtZ3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFERYi5ug8O8oEFeFvf34zPvKUM+mMB8GA1UdIwQY MBaAFIuIAVQ4EgQEd9R0QilGbIU31FFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS84OWJiNzEtM2ZlOS00MmQyLWE3M2It MTNhZTk4YWE3ZDMzLzEvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS84OWJiNzEtM2ZlOS00MmQyLWE3M2ItMTNhZTk4YWE3ZDMz LzEvaTRnQlZEZ1NCQVIzMUhSQ0tVWnNoVGZVVVhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgd1gCHIv kiaX5pvW64qRx18/CjtfccMPhgsNWJhqvc8GDqrftJZlxEU6Y0BvSEnKi4qmYgxx SB01mTkU429qA+tzqcoLcXIhLcq7SZTYgN8D2FtW+eZMSaRVbZ4ExkgGUz1xKFFa WVMG+opKPTr6w7GCFuJW0cr6xW4qzQNC9woDcBngH8FixhOiNj7XFmsSPw0mD6Mc nUuX6q5oIGZOFE5/Q3mz1K9r/gBtRI/VKkNowEz17+Kqee3+lTFxoVrIZ0q3l4JK 8wN3ZbfR+sywYVCbPbFZiVuVENsd7Czz6lrtDuAHIcRsl7pUiRw/pKtW6uckltnp uChVR6X8rYkphw== -----END CERTIFICATE-----Generated at Tue Feb 10 04:19:45 2026 by rpki-client