This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft File: iq94tpd0pVUH3qv4xMlpQunvDSA.mft (raw, json) Hash identifier: wKDOvZ8A/pp86/UE8DOjJqZSvEKVIefg1d61ESxbfW0= Subject key identifier: E1:AE:7A:25:5E:2F:16:B2:E2:06:A0:6D:77:8D:A3:28:AD:7E:AD:8B Authority key identifier: 8A:AF:78:B6:97:74:A5:55:07:DE:AB:F8:C4:C9:69:42:E9:EF:0D:20 Certificate issuer: /CN=8aaf78b69774a55507deabf8c4c96942e9ef0d20 Certificate serial: 019C40FD8C647FA03CB27F4BF6D5E9A5FA03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft Manifest number: 0F0B Signing time: Mon 09 Feb 2026 06:01:24 +0000 Manifest this update: Mon 09 Feb 2026 06:01:24 +0000 Manifest next update: Tue 10 Feb 2026 06:01:24 +0000 Files and hashes: 1: AOuKaEFuAus3hz3w0WC3j7I2mqc.roa (hash: YMOsepey7pZcM4gw70d5HgYaXkzZjfvaKQx2Aill38c=) 2: iq94tpd0pVUH3qv4xMlpQunvDSA.crl (hash: 8HzUu+yUZ3N20BJ1RxekmbaSGC31HHW1m7NxaYhl1E8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:8c:64:7f:a0:3c:b2:7f:4b:f6:d5:e9:a5:fa:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8aaf78b69774a55507deabf8c4c96942e9ef0d20 Validity Not Before: Feb 9 06:01:24 2026 GMT Not After : Feb 10 06:01:24 2026 GMT Subject: CN=e1ae7a255e2f16b2e206a06d778da328ad7ead8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4c:e8:41:5f:dc:ad:55:1b:e7:6b:f7:c0:be: f5:f2:a9:9b:b0:ba:bb:d1:72:a9:d2:c6:f0:1e:75: 95:37:d6:1e:83:9c:1c:55:1b:bf:85:39:8d:5b:07: 6b:ab:d9:25:6c:eb:a2:af:d9:fd:de:75:c3:60:1a: 66:1b:43:b7:f9:c0:29:41:55:8f:4f:df:4c:6e:52: 5b:8e:6b:81:31:76:6f:03:8a:c9:48:05:e9:27:4b: a8:1c:d0:4b:ac:d5:b4:35:d3:e0:dc:32:fc:20:14: 80:99:f2:88:62:fc:2e:71:17:0b:89:30:c6:72:fc: cd:c0:8a:48:02:90:b1:4f:f1:75:bc:4f:a6:4e:47: cb:cd:44:32:df:9f:6a:79:b7:dc:e4:a3:fe:56:9d: 92:7c:65:cd:da:21:64:c8:32:a7:76:fd:10:54:b3: cf:bc:47:e2:b4:39:38:f7:3c:2f:e1:03:7c:f8:7c: 2e:f0:42:2a:ae:a4:e9:d0:45:ec:5c:67:74:a3:79: c0:91:36:34:c0:23:30:45:3a:28:77:04:02:28:bd: 50:2a:ca:3c:d8:4e:94:bc:37:4a:a2:62:06:bf:6d: 27:0f:e8:f7:84:73:b9:dc:7f:c1:52:bf:47:7a:9c: 21:57:4f:f6:c3:48:85:e6:91:df:07:e5:15:d9:25: 04:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:AE:7A:25:5E:2F:16:B2:E2:06:A0:6D:77:8D:A3:28:AD:7E:AD:8B X509v3 Authority Key Identifier: keyid:8A:AF:78:B6:97:74:A5:55:07:DE:AB:F8:C4:C9:69:42:E9:EF:0D:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq94tpd0pVUH3qv4xMlpQunvDSA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/797390-81d4-4c5d-ab71-7088568c51c0/1/iq94tpd0pVUH3qv4xMlpQunvDSA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:9a:f9:db:a8:a1:43:6c:92:ea:67:37:80:73:09:91:90:5e: 94:ef:91:d3:5d:d5:be:09:cf:13:23:b8:10:4f:64:a3:90:95: 06:8a:4c:da:8f:0c:16:a7:16:9e:59:6a:c9:c1:17:0b:d0:66: 11:42:f8:41:5d:5a:df:85:7c:34:28:2d:42:98:60:f4:51:d5: 3c:8a:1a:00:18:a1:7d:67:a2:74:7e:16:22:d3:e6:03:ef:07: 8f:89:58:37:09:30:bb:78:72:0b:5e:5c:29:9d:40:86:44:bc: 88:c0:7d:84:77:c1:3f:cb:56:0f:08:67:30:51:13:31:79:d9: 2b:81:77:da:ff:0e:e6:7c:68:ee:9c:5e:59:89:dd:6f:60:33: 7b:d2:2b:9e:d8:f3:b8:b3:15:cc:b4:07:55:b9:a9:19:62:2c: 72:68:ae:57:e1:b4:d0:4c:c3:eb:1c:ec:50:79:45:a5:d7:0d: f0:5a:f7:36:4d:2c:13:81:43:f0:ad:3c:02:d2:1f:8f:d0:77: c3:db:63:f0:c7:3a:bd:e1:91:ec:b5:35:8d:28:0a:d4:8a:40: 47:be:6e:da:f7:1f:43:52:5f:4b:05:e8:38:05:31:ec:31:68: fe:9a:c3:e1:6b:c8:1a:94:62:3c:72:7d:6e:5f:cc:ea:2a:47: af:c6:a5:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/Yxkf6A8sn9L9tXppfoDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhYWY3OGI2OTc3NGE1NTUwN2RlYWJmOGM0Yzk2OTQyZTll ZjBkMjAwHhcNMjYwMjA5MDYwMTI0WhcNMjYwMjEwMDYwMTI0WjAzMTEwLwYDVQQD EyhlMWFlN2EyNTVlMmYxNmIyZTIwNmEwNmQ3NzhkYTMyOGFkN2VhZDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUzoQV/crVUb52v3wL718qmbsLq7 0XKp0sbwHnWVN9Yeg5wcVRu/hTmNWwdrq9klbOuir9n93nXDYBpmG0O3+cApQVWP T99MblJbjmuBMXZvA4rJSAXpJ0uoHNBLrNW0NdPg3DL8IBSAmfKIYvwucRcLiTDG cvzNwIpIApCxT/F1vE+mTkfLzUQy359qebfc5KP+Vp2SfGXN2iFkyDKndv0QVLPP vEfitDk49zwv4QN8+Hwu8EIqrqTp0EXsXGd0o3nAkTY0wCMwRToodwQCKL1QKso8 2E6UvDdKomIGv20nD+j3hHO53H/BUr9HepwhV0/2w0iF5pHfB+UV2SUEfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOGueiVeLxay4gagbXeNoyitfq2LMB8GA1UdIwQY MBaAFIqveLaXdKVVB96r+MTJaULp7w0gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXE5NHRwZDBwVlVIM3F2NHhNbHBRdW52RFNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS83OTczOTAtODFkNC00YzVkLWFiNzEt NzA4ODU2OGM1MWMwLzEvaXE5NHRwZDBwVlVIM3F2NHhNbHBRdW52RFNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS83OTczOTAtODFkNC00YzVkLWFiNzEtNzA4ODU2OGM1MWMw LzEvaXE5NHRwZDBwVlVIM3F2NHhNbHBRdW52RFNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHJr526ih Q2yS6mc3gHMJkZBelO+R013VvgnPEyO4EE9ko5CVBopM2o8MFqcWnllqycEXC9Bm EUL4QV1a34V8NCgtQphg9FHVPIoaABihfWeidH4WItPmA+8Hj4lYNwkwu3hyC15c KZ1AhkS8iMB9hHfBP8tWDwhnMFETMXnZK4F32v8O5nxo7pxeWYndb2Aze9Irntjz uLMVzLQHVbmpGWIscmiuV+G00EzD6xzsUHlFpdcN8Fr3Nk0sE4FD8K08AtIfj9B3 w9tj8Mc6veGR7LU1jSgK1IpAR75u2vcfQ1JfSwXoOAUx7DFo/prD4WvIGpRiPHJ9 bl/M6ipHr8alyA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:36 2026 by rpki-client