This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft File: ICNzDgbEv7_6ypBeUxJldCwXirQ.mft (raw, json) Hash identifier: uTwul8vJ2o1UDC3bo/5yjfbTaHf/dHgpguyQOrC0JF0= Subject key identifier: 8D:8F:D1:99:F6:02:94:2E:18:64:83:97:BD:74:73:51:89:C2:62:6E Authority key identifier: 20:23:73:0E:06:C4:BF:BF:FA:CA:90:5E:53:12:65:74:2C:17:8A:B4 Certificate issuer: /CN=2023730e06c4bfbffaca905e531265742c178ab4 Certificate serial: 019C43227C28F84D5552014EF6B194AE7305 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft Manifest number: 11E4 Signing time: Mon 09 Feb 2026 16:00:59 +0000 Manifest this update: Mon 09 Feb 2026 16:00:59 +0000 Manifest next update: Tue 10 Feb 2026 16:00:59 +0000 Files and hashes: 1: ICNzDgbEv7_6ypBeUxJldCwXirQ.crl (hash: yNF5AD5HzGJhUeWb2zl1Pz5mQ6zI20ElAwEOaRBHXc8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.crl rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:7c:28:f8:4d:55:52:01:4e:f6:b1:94:ae:73:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2023730e06c4bfbffaca905e531265742c178ab4 Validity Not Before: Feb 9 16:00:59 2026 GMT Not After : Feb 10 16:00:59 2026 GMT Subject: CN=8d8fd199f602942e18648397bd74735189c2626e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7c:bc:68:7d:07:56:5e:9e:e0:8d:79:a0:3e: 67:17:9c:66:7d:33:aa:f0:4c:59:e3:78:a6:6c:a5: e8:55:ab:28:c0:d5:ed:90:28:d5:e4:c1:5c:43:af: d8:81:f6:2c:22:08:e9:54:4c:0c:9a:4b:ec:93:df: dc:09:f1:ca:56:da:4c:96:2d:03:0a:cf:14:90:23: a7:c6:58:17:7a:89:f1:63:2b:b3:11:82:6a:18:13: 08:d1:89:05:86:b6:fc:31:47:a8:4b:0a:7b:b4:31: 33:01:12:8c:1d:14:3d:8a:e8:77:80:0a:33:42:59: 4f:81:57:3f:a7:da:d9:b1:5d:80:58:9b:e1:09:80: 16:0f:c8:38:d8:11:68:2b:c7:8f:4f:84:ad:07:a1: 27:90:4a:82:c6:03:d1:d7:df:68:1a:6b:26:81:6a: 93:f0:c1:e9:f6:5d:e7:fb:2c:32:c4:e3:d1:74:42: 97:eb:77:3f:c0:9a:19:33:c3:29:c0:aa:ed:c8:8f: a6:d2:28:c4:90:5a:ef:c8:a4:51:17:0c:bd:6e:ee: 5b:4a:fa:06:07:99:5f:3f:ac:f0:17:12:be:4a:7b: ca:47:c7:a4:38:23:f9:ac:ca:d2:3f:dd:5a:c9:fd: 7b:2b:72:10:5c:31:cc:96:b6:28:24:59:53:b8:29: 63:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8F:D1:99:F6:02:94:2E:18:64:83:97:BD:74:73:51:89:C2:62:6E X509v3 Authority Key Identifier: keyid:20:23:73:0E:06:C4:BF:BF:FA:CA:90:5E:53:12:65:74:2C:17:8A:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:d2:47:94:eb:23:41:74:a5:d9:18:19:50:78:90:0b:87:ea: c1:4e:e4:89:38:9c:2b:e1:51:81:ae:07:f6:d9:68:5f:99:d8: 77:3c:9a:3c:f2:64:bd:d7:a5:96:3e:a5:a8:b2:6a:58:74:38: 48:46:32:7e:6f:72:e1:37:d2:c0:4e:bc:e7:5d:58:ea:ad:f0: 78:ce:ae:d6:0c:d6:ae:55:3f:de:f7:c5:4c:7a:a7:2e:8f:74: 1a:9c:1d:92:43:b9:a4:b6:1e:28:25:54:0c:6d:be:a7:04:a9: 7d:41:c0:e6:01:93:23:0c:ff:59:d4:b2:f9:c7:08:5e:1b:d9: a5:3c:e9:9e:77:37:4e:d0:56:a5:76:48:cf:fc:4a:91:7d:f8: c7:19:79:61:e0:af:a4:de:ad:52:3c:a9:d4:e5:cc:26:8d:8b: 19:c5:b6:5f:51:1d:af:ed:70:4c:3b:75:15:5b:0d:92:f5:c1: 90:3a:35:c9:1b:44:a3:63:09:69:66:a2:28:b8:9a:78:f0:1d: e6:9e:ca:f9:a2:aa:3c:cd:2e:65:47:47:06:e4:51:a6:64:0c: cd:10:cc:7d:9a:1b:1a:be:d1:0a:b3:dc:3e:41:02:ad:ac:ba: 4b:61:58:f9:e5:ca:ff:3f:27:10:2c:fb:48:1e:af:1f:1c:44: 10:37:1b:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDInwo+E1VUgFO9rGUrnMFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMjM3MzBlMDZjNGJmYmZmYWNhOTA1ZTUzMTI2NTc0MmMx NzhhYjQwHhcNMjYwMjA5MTYwMDU5WhcNMjYwMjEwMTYwMDU5WjAzMTEwLwYDVQQD Eyg4ZDhmZDE5OWY2MDI5NDJlMTg2NDgzOTdiZDc0NzM1MTg5YzI2MjZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsny8aH0HVl6e4I15oD5nF5xmfTOq 8ExZ43imbKXoVasowNXtkCjV5MFcQ6/YgfYsIgjpVEwMmkvsk9/cCfHKVtpMli0D Cs8UkCOnxlgXeonxYyuzEYJqGBMI0YkFhrb8MUeoSwp7tDEzARKMHRQ9iuh3gAoz QllPgVc/p9rZsV2AWJvhCYAWD8g42BFoK8ePT4StB6EnkEqCxgPR199oGmsmgWqT 8MHp9l3n+ywyxOPRdEKX63c/wJoZM8MpwKrtyI+m0ijEkFrvyKRRFwy9bu5bSvoG B5lfP6zwFxK+SnvKR8ekOCP5rMrSP91ayf17K3IQXDHMlrYoJFlTuCljCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI2P0Zn2ApQuGGSDl710c1GJwmJuMB8GA1UdIwQY MBaAFCAjcw4GxL+/+sqQXlMSZXQsF4q0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUNOekRnYkV2N182eXBCZVV4SmxkQ3dYaXJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny80NWQ3YzEtYzRmMC00ODM1LWI0NjYt YjAzMzViYTNlMGMyLzEvSUNOekRnYkV2N182eXBCZVV4SmxkQ3dYaXJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny80NWQ3YzEtYzRmMC00ODM1LWI0NjYtYjAzMzViYTNlMGMy LzEvSUNOekRnYkV2N182eXBCZVV4SmxkQ3dYaXJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARtJHlOsj QXSl2RgZUHiQC4fqwU7kiTicK+FRga4H9tloX5nYdzyaPPJkvdellj6lqLJqWHQ4 SEYyfm9y4TfSwE68511Y6q3weM6u1gzWrlU/3vfFTHqnLo90GpwdkkO5pLYeKCVU DG2+pwSpfUHA5gGTIwz/WdSy+ccIXhvZpTzpnnc3TtBWpXZIz/xKkX34xxl5YeCv pN6tUjyp1OXMJo2LGcW2X1Edr+1wTDt1FVsNkvXBkDo1yRtEo2MJaWaiKLiaePAd 5p7K+aKqPM0uZUdHBuRRpmQMzRDMfZobGr7RCrPcPkECray6S2FY+eXK/z8nECz7 SB6vHxxEEDcbDA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:37:52 2026 by rpki-client