This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft File: IOagEH1ompNwtiKVGkSWRsw4tZA.mft (raw, json) Hash identifier: tbkAZCcoZX+87Zu7MOYpRV3v3Dk4hOJ+Qav9Wd+0gc0= Subject key identifier: 1E:32:8D:D9:12:07:49:68:EE:65:1B:B1:2E:A8:8C:81:C0:B2:5B:24 Authority key identifier: 20:E6:A0:10:7D:68:9A:93:70:B6:22:95:1A:44:96:46:CC:38:B5:90 Certificate issuer: /CN=20e6a0107d689a9370b622951a449646cc38b590 Certificate serial: 019C435931F8C5A7AEBFB7276FE39FD66FAA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft Manifest number: 1391 Signing time: Mon 09 Feb 2026 17:00:44 +0000 Manifest this update: Mon 09 Feb 2026 17:00:44 +0000 Manifest next update: Tue 10 Feb 2026 17:00:44 +0000 Files and hashes: 1: DWHWORrS3BHCdKCom2SvJuOOFgQ.roa (hash: neZrwsmxWjbB3VimASaWthX1wVXWiR6atISt14XcKo0=) 2: IOagEH1ompNwtiKVGkSWRsw4tZA.crl (hash: gLoJWaK5ghFJUfw5ohacWCB+iihnFlVkbTFidz9OmaQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.crl rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:31:f8:c5:a7:ae:bf:b7:27:6f:e3:9f:d6:6f:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20e6a0107d689a9370b622951a449646cc38b590 Validity Not Before: Feb 9 17:00:44 2026 GMT Not After : Feb 10 17:00:44 2026 GMT Subject: CN=1e328dd912074968ee651bb12ea88c81c0b25b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d9:85:29:e8:9b:4f:ac:6a:4e:7b:39:84:16: a3:62:04:e3:4f:8c:94:35:1c:59:9a:52:1b:6b:7e: 92:a5:6e:d3:7d:5b:50:17:53:5f:1a:c8:d1:eb:f9: dd:a9:3b:a0:eb:e6:ee:2c:28:9d:ef:e1:d9:f1:40: cf:e1:6b:86:4e:2d:5a:f6:0b:e0:03:10:70:1d:66: 3e:04:43:35:47:29:64:9a:c1:5d:de:1d:60:29:d4: ae:ed:c1:c6:e3:74:10:09:cf:08:bf:e0:6e:f7:54: f3:db:b6:46:ce:df:2b:82:1a:c3:de:7e:bb:ef:38: 3d:31:4f:61:dd:6a:77:df:03:5d:ab:bc:96:89:42: e3:35:3d:f6:8d:4c:bd:ed:d3:4e:ae:fc:92:8c:e3: 75:88:35:c4:5a:51:82:44:52:fc:20:ca:7c:ad:a3: 9f:65:18:5c:30:80:1d:67:5e:3c:5c:91:f9:b4:a2: ca:23:3d:ac:a7:ba:4e:46:d2:65:3f:36:36:c8:ed: c1:28:cf:e0:6e:71:84:2c:c3:f1:57:40:3f:2f:44: 10:7e:04:fe:3d:f4:ed:d6:97:45:cc:81:e9:3b:32: fe:18:2a:68:e2:02:4c:4c:67:4c:47:68:11:5a:e9: 09:78:55:57:69:fc:e8:18:0e:72:7a:41:ff:69:de: 16:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:32:8D:D9:12:07:49:68:EE:65:1B:B1:2E:A8:8C:81:C0:B2:5B:24 X509v3 Authority Key Identifier: keyid:20:E6:A0:10:7D:68:9A:93:70:B6:22:95:1A:44:96:46:CC:38:B5:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOagEH1ompNwtiKVGkSWRsw4tZA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/e84e8f-8bb2-4054-b495-125eedf8d9f1/1/IOagEH1ompNwtiKVGkSWRsw4tZA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:80:5d:7b:d6:cd:e5:ee:37:5e:ee:21:58:d2:4a:fe:1f:3d: eb:c9:74:2f:a6:11:9b:47:90:fb:f8:37:3b:b2:1b:82:5e:24: af:08:2c:91:87:ef:67:ef:f0:99:52:98:bb:42:05:68:1a:3c: 00:08:e5:aa:01:02:4a:57:c4:c7:1c:83:fe:9a:2d:7a:d4:c8: 17:b8:d5:6f:44:0e:59:ae:78:cc:9d:99:8a:5c:42:8c:95:6f: 33:91:1c:18:bc:e8:1b:5b:52:29:14:b2:3f:35:8f:3b:c6:4a: b7:2c:36:ac:75:a1:84:25:0f:a7:9c:7c:ac:a8:6e:75:d5:85: 9b:a3:41:fd:bf:58:4c:9d:cb:79:25:63:ac:7b:00:08:9f:8c: fa:c1:6c:a6:c1:99:b4:36:29:7a:31:e7:38:7e:3a:97:ee:1c: 99:65:5a:8f:50:4b:4c:1c:88:83:46:1b:75:a0:3e:2e:7f:65: 11:8a:54:0d:b0:fb:da:d4:9c:65:43:3a:3a:7b:d2:93:e4:dd: f2:d1:ee:89:f7:15:74:b4:9b:22:06:f0:97:34:7d:dc:73:6d: 71:7a:10:df:1e:1f:d9:83:e5:64:3a:f3:22:d6:84:95:5d:99: 31:cc:0a:4d:32:45:79:fc:84:84:b5:4c:cf:ae:f5:d1:bb:97: 30:7d:b4:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWTH4xaeuv7cnb+Of1m+qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZTZhMDEwN2Q2ODlhOTM3MGI2MjI5NTFhNDQ5NjQ2Y2Mz OGI1OTAwHhcNMjYwMjA5MTcwMDQ0WhcNMjYwMjEwMTcwMDQ0WjAzMTEwLwYDVQQD EygxZTMyOGRkOTEyMDc0OTY4ZWU2NTFiYjEyZWE4OGM4MWMwYjI1YjI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNmFKeibT6xqTns5hBajYgTjT4yU NRxZmlIba36SpW7TfVtQF1NfGsjR6/ndqTug6+buLCid7+HZ8UDP4WuGTi1a9gvg AxBwHWY+BEM1RylkmsFd3h1gKdSu7cHG43QQCc8Iv+Bu91Tz27ZGzt8rghrD3n67 7zg9MU9h3Wp33wNdq7yWiULjNT32jUy97dNOrvySjON1iDXEWlGCRFL8IMp8raOf ZRhcMIAdZ148XJH5tKLKIz2sp7pORtJlPzY2yO3BKM/gbnGELMPxV0A/L0QQfgT+ PfTt1pdFzIHpOzL+GCpo4gJMTGdMR2gRWukJeFVXafzoGA5yekH/ad4WTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB4yjdkSB0lo7mUbsS6ojIHAslskMB8GA1UdIwQY MBaAFCDmoBB9aJqTcLYilRpElkbMOLWQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU9hZ0VIMW9tcE53dGlLVkdrU1dSc3c0dFpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9lODRlOGYtOGJiMi00MDU0LWI0OTUt MTI1ZWVkZjhkOWYxLzEvSU9hZ0VIMW9tcE53dGlLVkdrU1dSc3c0dFpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9lODRlOGYtOGJiMi00MDU0LWI0OTUtMTI1ZWVkZjhkOWYx LzEvSU9hZ0VIMW9tcE53dGlLVkdrU1dSc3c0dFpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeoBde9bN 5e43Xu4hWNJK/h8968l0L6YRm0eQ+/g3O7Ibgl4krwgskYfvZ+/wmVKYu0IFaBo8 AAjlqgECSlfExxyD/potetTIF7jVb0QOWa54zJ2ZilxCjJVvM5EcGLzoG1tSKRSy PzWPO8ZKtyw2rHWhhCUPp5x8rKhuddWFm6NB/b9YTJ3LeSVjrHsACJ+M+sFspsGZ tDYpejHnOH46l+4cmWVaj1BLTByIg0YbdaA+Ln9lEYpUDbD72tScZUM6OnvSk+Td 8tHuifcVdLSbIgbwlzR93HNtcXoQ3x4f2YPlZDrzItaElV2ZMcwKTTJFefyEhLVM z6710buXMH20dw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:19 2026 by rpki-client