This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft File: IT2HNcFEzxJWWEO2nrQKTRowGqU.mft (raw, json) Hash identifier: EASLAQI9jW6oNH+GkSHiXigYxdqCyTqJONEA3N17ASI= Subject key identifier: AB:2C:58:AD:CF:5D:66:02:56:C5:45:48:A6:59:47:7D:78:8E:80:9E Authority key identifier: 21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5 Certificate issuer: /CN=213d8735c144cf12565843b69eb40a4d1a301aa5 Certificate serial: 019C45EC5480BAE3DB72418189CBBE924070 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft Manifest number: 1183 Signing time: Tue 10 Feb 2026 05:00:41 +0000 Manifest this update: Tue 10 Feb 2026 05:00:41 +0000 Manifest next update: Wed 11 Feb 2026 05:00:41 +0000 Files and hashes: 1: IT2HNcFEzxJWWEO2nrQKTRowGqU.crl (hash: ofMTyus88E/4dH4gU2t4lsbhibW8F8Fn4nMEl9Qaan4=) 2: NLcXQyarZMLPShqbum_K4HREfn4.roa (hash: mjratVtRdhgBM6Hy0uvO9ymB77guClAbYNO1DYJFQTM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:ec:54:80:ba:e3:db:72:41:81:89:cb:be:92:40:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=213d8735c144cf12565843b69eb40a4d1a301aa5 Validity Not Before: Feb 10 05:00:41 2026 GMT Not After : Feb 11 05:00:41 2026 GMT Subject: CN=ab2c58adcf5d660256c54548a659477d788e809e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fa:43:9f:ac:5d:19:27:db:4b:8b:a6:3a:d6: 47:a1:59:12:6c:61:7d:33:f0:f8:89:61:f2:5f:fa: e9:ba:fe:0c:94:76:e2:25:e1:47:5a:52:90:c0:32: 60:49:8f:2e:87:be:de:6e:6d:ac:cd:28:87:44:6d: 65:70:70:2c:7c:34:c8:d2:79:08:d5:22:dc:48:7e: e4:53:e5:13:ed:a2:92:97:b5:43:e7:39:f5:9e:10: bf:95:30:a0:45:fa:ae:9c:07:f4:50:5e:74:88:ce: 6e:aa:60:c1:3a:4b:dc:d5:3e:23:84:51:0e:74:51: 4b:38:ae:8c:6b:42:b5:39:4f:90:63:99:42:8d:d2: 68:78:de:81:52:f1:45:b5:05:65:f5:b5:c6:27:2a: d1:74:b1:ce:2f:a5:5b:ad:e6:b3:e0:0e:2b:6d:14: c5:ae:53:87:4d:a2:c0:46:72:5f:b2:ba:3a:6b:18: 0c:ca:c0:97:b7:4a:c2:ac:d9:74:7d:c9:fe:3a:b6: a4:8b:c8:8e:f4:0a:8e:86:70:77:37:56:1f:d2:db: ef:5f:6a:0e:df:97:d5:00:c2:97:c0:90:81:c4:7c: 03:e1:2e:7c:98:be:ba:0a:8a:ba:c7:1b:ee:bb:b5: f1:b8:fc:96:c3:4b:8c:20:c1:51:d3:56:59:ab:29: a1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2C:58:AD:CF:5D:66:02:56:C5:45:48:A6:59:47:7D:78:8E:80:9E X509v3 Authority Key Identifier: keyid:21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:07:b4:8f:1b:7a:a0:fc:b8:d7:54:42:59:48:5f:85:4d:64: 0b:be:ee:4f:8f:ab:0a:61:d6:3e:2c:76:d6:ea:34:7e:a9:48: 04:69:eb:6a:ce:a5:21:8b:c1:24:c0:3e:70:21:80:6e:ee:5c: 66:64:37:50:6b:e9:75:da:dd:60:cc:26:c6:5b:bc:57:ab:1b: dd:49:ec:05:5b:a3:37:f2:90:50:4b:09:55:a4:a2:28:24:41: 12:48:5b:42:49:f8:02:4d:63:a9:ce:4f:5a:b0:ef:fd:ae:ce: 54:99:ba:37:ff:11:d1:b9:80:96:05:29:bd:30:26:12:73:67: 0f:bd:45:b7:34:fc:22:d6:b5:dd:c9:dc:1b:5b:0f:11:07:34: 65:e3:3e:44:68:57:6e:a2:2d:84:87:af:e5:69:99:9a:68:3b: 74:8a:52:9c:bb:98:65:8a:7a:50:e2:eb:4b:c6:a9:9e:85:47: 39:73:9a:44:e3:34:08:2b:01:ab:a5:19:a2:8e:10:05:e8:c3: a9:6d:74:ae:cf:8b:51:11:53:84:f5:9f:93:ad:ec:d2:9b:a5: d7:8a:c4:9e:be:d7:d9:26:40:ad:31:7b:65:8e:a6:f2:d1:82: 89:33:12:3e:ac:44:cb:bf:37:fd:67:3c:6c:4d:49:0a:6b:8a: 07:c4:96:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxF7FSAuuPbckGBicu+kkBwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxM2Q4NzM1YzE0NGNmMTI1NjU4NDNiNjllYjQwYTRkMWEz MDFhYTUwHhcNMjYwMjEwMDUwMDQxWhcNMjYwMjExMDUwMDQxWjAzMTEwLwYDVQQD EyhhYjJjNThhZGNmNWQ2NjAyNTZjNTQ1NDhhNjU5NDc3ZDc4OGU4MDllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufpDn6xdGSfbS4umOtZHoVkSbGF9 M/D4iWHyX/rpuv4MlHbiJeFHWlKQwDJgSY8uh77ebm2szSiHRG1lcHAsfDTI0nkI 1SLcSH7kU+UT7aKSl7VD5zn1nhC/lTCgRfqunAf0UF50iM5uqmDBOkvc1T4jhFEO dFFLOK6Ma0K1OU+QY5lCjdJoeN6BUvFFtQVl9bXGJyrRdLHOL6Vbreaz4A4rbRTF rlOHTaLARnJfsro6axgMysCXt0rCrNl0fcn+Oraki8iO9AqOhnB3N1Yf0tvvX2oO 35fVAMKXwJCBxHwD4S58mL66Coq6xxvuu7XxuPyWw0uMIMFR01ZZqymhAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKssWK3PXWYCVsVFSKZZR314joCeMB8GA1UdIwQY MBaAFCE9hzXBRM8SVlhDtp60Ck0aMBqlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVQySE5jRkV6eEpXV0VPMm5yUUtUUm93R3FVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iMDQzYWYtYjQ5Mi00YjViLWEyNTAt MzAxNDMzZWJlNDM2LzEvSVQySE5jRkV6eEpXV0VPMm5yUUtUUm93R3FVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9iMDQzYWYtYjQ5Mi00YjViLWEyNTAtMzAxNDMzZWJlNDM2 LzEvSVQySE5jRkV6eEpXV0VPMm5yUUtUUm93R3FVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdwe0jxt6 oPy411RCWUhfhU1kC77uT4+rCmHWPix21uo0fqlIBGnras6lIYvBJMA+cCGAbu5c ZmQ3UGvpddrdYMwmxlu8V6sb3UnsBVujN/KQUEsJVaSiKCRBEkhbQkn4Ak1jqc5P WrDv/a7OVJm6N/8R0bmAlgUpvTAmEnNnD71FtzT8Ita13cncG1sPEQc0ZeM+RGhX bqIthIev5WmZmmg7dIpSnLuYZYp6UOLrS8apnoVHOXOaROM0CCsBq6UZoo4QBejD qW10rs+LURFThPWfk63s0pul14rEnr7X2SZArTF7ZY6m8tGCiTMSPqxEy783/Wc8 bE1JCmuKB8SWfA== -----END CERTIFICATE-----Generated at Tue Feb 10 08:41:17 2026 by rpki-client