This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft File: iKVZ3N1bxLZssklvLm-w6PlUqus.mft (raw, json) Hash identifier: Kx90m17DdUabvl3GR4NPHpnNehJTCwiRtyZP3vra6a4= Subject key identifier: F5:D2:12:44:12:0D:AB:81:5F:1D:CB:A5:F2:2C:8B:6D:CF:49:7F:04 Authority key identifier: 88:A5:59:DC:DD:5B:C4:B6:6C:B2:49:6F:2E:6F:B0:E8:F9:54:AA:EB Certificate issuer: /CN=88a559dcdd5bc4b66cb2496f2e6fb0e8f954aaeb Certificate serial: 019C42EB37DCE22C2D91C968DC4446C8A7FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft Manifest number: 1178 Signing time: Mon 09 Feb 2026 15:00:37 +0000 Manifest this update: Mon 09 Feb 2026 15:00:37 +0000 Manifest next update: Tue 10 Feb 2026 15:00:37 +0000 Files and hashes: 1: NMCu69roYebbta4TgeF6AUxwckA.roa (hash: ONrUSUgYIaBZ/uTENX+3YgLDxjUCXiWtMPwugRV2lg4=) 2: iKVZ3N1bxLZssklvLm-w6PlUqus.crl (hash: o0/CevCbMm78QtQNMwXdKHnacdnNGRXl8pWI1U8pZU8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.crl rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:37:dc:e2:2c:2d:91:c9:68:dc:44:46:c8:a7:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88a559dcdd5bc4b66cb2496f2e6fb0e8f954aaeb Validity Not Before: Feb 9 15:00:37 2026 GMT Not After : Feb 10 15:00:37 2026 GMT Subject: CN=f5d21244120dab815f1dcba5f22c8b6dcf497f04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:58:ce:90:19:ef:4c:43:2e:ed:07:ae:bb:0e: e5:a4:ee:83:af:34:e7:29:10:52:3e:d2:74:3b:cb: 05:6c:0f:4f:a1:de:5f:0c:fa:c1:8c:f9:33:d0:05: 8b:08:e8:d1:ac:12:3d:7d:f7:19:76:33:db:89:32: ac:f3:62:a8:b0:68:a0:7e:0d:c9:7d:c8:12:63:7d: 48:95:49:c8:88:73:f4:1d:b6:43:c0:01:26:a5:c2: 93:78:dc:4c:2e:8d:49:0e:32:61:9a:19:f1:e3:54: 04:d2:fd:4b:3b:aa:2f:fb:d3:28:9c:f6:84:6d:d1: 8e:d0:d7:0f:de:ac:3e:5c:35:64:57:d5:43:d5:54: 61:9c:f5:fd:6d:2d:0f:4c:43:ee:f8:33:06:e5:0c: ca:89:a8:9e:18:b6:3e:d4:17:82:ff:56:b1:1e:e8: 08:77:13:7c:46:37:39:84:4b:66:70:08:f6:5e:a4: 5e:55:82:10:5e:ea:99:b2:0e:fe:c9:46:22:e5:5c: 56:7a:42:b1:24:75:89:aa:32:c9:b4:58:20:59:5d: d9:c2:6c:0f:a2:1e:90:2a:28:2b:6b:35:91:0f:94: df:76:0b:7c:3c:1c:a1:6e:0a:16:27:be:4e:ff:aa: 79:54:0d:df:b6:af:fd:8c:fb:ce:ef:28:e3:84:76: 85:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D2:12:44:12:0D:AB:81:5F:1D:CB:A5:F2:2C:8B:6D:CF:49:7F:04 X509v3 Authority Key Identifier: keyid:88:A5:59:DC:DD:5B:C4:B6:6C:B2:49:6F:2E:6F:B0:E8:F9:54:AA:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:24:a5:2a:04:f2:c9:3a:7a:b6:4d:ae:1d:d0:0d:a1:5b:50: e4:53:1b:12:57:c5:dd:48:29:5e:2b:90:84:4f:6e:91:7b:7a: 4c:48:ce:fd:5e:98:ef:22:14:6f:6c:ba:d9:21:5e:f6:5d:be: 03:33:8a:e5:56:6d:06:3f:9b:4d:c7:81:97:85:7f:b5:5c:be: 02:f3:11:05:67:02:00:a9:fe:92:db:7a:09:77:c7:b6:b9:43: 9a:63:a8:3e:b1:25:4d:71:ed:d3:89:a7:2c:2c:bd:79:63:40: ac:50:f3:1c:9f:c0:e2:e7:1d:22:ed:29:98:72:c9:4f:eb:05: b3:18:87:bf:3f:4d:be:73:c3:d8:8d:72:87:47:62:cd:15:3e: 8a:fc:a9:c6:87:73:cc:bd:61:d4:8a:7a:5e:7b:a2:df:6b:30: 7c:f1:2f:26:1c:ff:b7:16:69:97:ef:f1:5e:67:1f:43:d3:c3: d9:58:cb:f3:e7:51:0c:a4:26:f9:e3:1b:c2:d0:ad:3d:5c:03: 2c:df:b1:f6:01:40:8f:8a:75:7e:31:63:b5:4e:e1:b9:24:aa: 4e:f8:4b:6f:4b:50:02:32:c1:56:3a:ed:b7:bb:71:98:60:87: 1b:b3:ff:56:ea:0f:32:33:89:32:a6:8d:e2:93:7c:32:5b:37: c1:d6:79:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6zfc4iwtkclo3ERGyKf+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4YTU1OWRjZGQ1YmM0YjY2Y2IyNDk2ZjJlNmZiMGU4Zjk1 NGFhZWIwHhcNMjYwMjA5MTUwMDM3WhcNMjYwMjEwMTUwMDM3WjAzMTEwLwYDVQQD EyhmNWQyMTI0NDEyMGRhYjgxNWYxZGNiYTVmMjJjOGI2ZGNmNDk3ZjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1jOkBnvTEMu7Qeuuw7lpO6DrzTn KRBSPtJ0O8sFbA9Pod5fDPrBjPkz0AWLCOjRrBI9ffcZdjPbiTKs82KosGigfg3J fcgSY31IlUnIiHP0HbZDwAEmpcKTeNxMLo1JDjJhmhnx41QE0v1LO6ov+9MonPaE bdGO0NcP3qw+XDVkV9VD1VRhnPX9bS0PTEPu+DMG5QzKiaieGLY+1BeC/1axHugI dxN8Rjc5hEtmcAj2XqReVYIQXuqZsg7+yUYi5VxWekKxJHWJqjLJtFggWV3ZwmwP oh6QKigrazWRD5Tfdgt8PByhbgoWJ75O/6p5VA3ftq/9jPvO7yjjhHaFgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPXSEkQSDauBXx3LpfIsi23PSX8EMB8GA1UdIwQY MBaAFIilWdzdW8S2bLJJby5vsOj5VKrrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9hODRjZDItNDVkOS00MTc5LWE5OTct OTIwZDJhNjIwN2E0LzEvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC9hODRjZDItNDVkOS00MTc5LWE5OTctOTIwZDJhNjIwN2E0 LzEvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQSSlKgTy yTp6tk2uHdANoVtQ5FMbElfF3UgpXiuQhE9ukXt6TEjO/V6Y7yIUb2y62SFe9l2+ AzOK5VZtBj+bTceBl4V/tVy+AvMRBWcCAKn+ktt6CXfHtrlDmmOoPrElTXHt04mn LCy9eWNArFDzHJ/A4ucdIu0pmHLJT+sFsxiHvz9NvnPD2I1yh0dizRU+ivypxodz zL1h1Ip6Xnui32swfPEvJhz/txZpl+/xXmcfQ9PD2VjL8+dRDKQm+eMbwtCtPVwD LN+x9gFAj4p1fjFjtU7huSSqTvhLb0tQAjLBVjrtt7txmGCHG7P/VuoPMjOJMqaN 4pN8Mls3wdZ5VQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:43 2026 by rpki-client