This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json) Hash identifier: ri9Rrn2/Cl/7jgwLuxb0R95J/kO9VM+BD0H+oH8RG1s= Subject key identifier: AB:D5:70:51:50:F2:10:F3:B5:73:8D:28:FA:54:D7:DD:5F:38:60:6B Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38 Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938 Certificate serial: 019C43596C178077899E2BA40EB0825AEADA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft Manifest number: 084D Signing time: Mon 09 Feb 2026 17:00:59 +0000 Manifest this update: Mon 09 Feb 2026 17:00:59 +0000 Manifest next update: Tue 10 Feb 2026 17:00:59 +0000 Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: VoXVClQieacyqNmJHYcioMUg+RaycjeDby0OgFKS8q4=) 2: dshUZvB4McXbpCwuJto_ABAOvNQ.roa (hash: V5ln1lpZELvPyBOpg3oQ56WAm93C6lBYruWQT9Rpyxo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:6c:17:80:77:89:9e:2b:a4:0e:b0:82:5a:ea:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938 Validity Not Before: Feb 9 17:00:59 2026 GMT Not After : Feb 10 17:00:59 2026 GMT Subject: CN=abd5705150f210f3b5738d28fa54d7dd5f38606b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:00:06:ed:73:11:4c:3f:a0:cd:c1:eb:52:f2: 76:f6:08:ac:ca:a6:0f:f7:9e:3f:0a:3f:32:2e:b1: 68:ec:7d:53:32:fb:e2:2e:b3:1a:60:95:c7:84:82: 8a:d6:22:1c:09:d6:00:a2:c6:a0:80:f7:8e:8a:23: d7:b9:53:54:61:d2:37:93:ba:fd:ac:26:90:8b:96: 25:4d:22:76:c5:29:14:50:03:cf:1b:68:14:14:69: f2:ec:59:c1:b4:10:7d:a4:f6:6f:98:a4:ef:75:8b: 1b:d4:ae:56:72:6f:9e:01:1d:99:04:11:fd:82:59: a9:33:8e:4a:b4:43:98:45:c2:88:65:dc:fd:2d:bf: 0f:80:b7:3e:e6:93:2e:7b:a7:eb:a4:ba:02:7e:13: c6:33:a4:54:c7:5d:80:6a:a8:1f:fc:75:ea:88:97: 20:8b:fa:a1:6d:4b:46:8c:f4:e0:7f:8f:7b:58:22: 77:37:4d:44:d8:5d:95:b9:dc:23:9b:6c:d9:9d:8d: e2:4d:3f:56:2c:05:fc:6b:8f:ea:27:70:33:00:d0: 5d:d8:81:c1:63:ae:88:d2:36:33:59:24:33:6d:72: f5:b3:bf:02:c8:3c:b5:7d:c1:6d:1c:83:a2:7b:df: f4:ff:29:3b:1e:91:6f:89:f7:2a:01:6a:6f:c3:25: 65:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D5:70:51:50:F2:10:F3:B5:73:8D:28:FA:54:D7:DD:5F:38:60:6B X509v3 Authority Key Identifier: keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:45:e9:d4:71:36:b5:e9:00:8c:48:7c:4c:7e:b2:bf:6a:74: f4:7d:84:93:25:f5:2c:46:0c:6e:77:8c:77:87:6d:f2:b3:50: d6:10:e2:f6:7e:b9:88:0e:63:f3:50:85:09:58:3a:c1:60:13: 06:d8:27:06:bd:f1:71:08:8e:c9:a1:43:03:e2:aa:bf:6a:28: 35:25:10:00:78:68:30:ac:7c:2c:ee:12:a5:0e:9a:af:de:c6: ab:f2:9d:b1:a3:54:d9:d0:98:f6:32:3b:d8:e6:a8:cd:f7:67: 10:08:d2:44:8e:4e:a2:98:2f:6f:62:c2:81:6f:c4:35:1c:04: aa:ff:69:8a:e8:57:66:2e:64:67:3c:4b:1d:35:c7:f5:92:4d: bc:b8:9a:a3:eb:c9:98:f8:7c:bb:ca:ce:95:bb:be:7e:34:6f: 1a:3c:79:04:ba:40:24:82:d4:6d:2e:61:bd:ca:c0:c5:10:df: 98:ce:25:1b:e5:a5:a1:65:75:57:f7:0e:30:25:cd:c8:10:b5: ae:99:00:1f:e4:fb:50:a2:9e:ea:80:81:4b:42:f5:00:29:f8: 62:9a:fe:76:df:14:43:da:6e:66:8d:e9:85:0a:66:a0:3b:d4: a8:6e:68:23:a9:05:fe:de:61:6c:38:25:fd:f0:df:34:29:86: c7:4e:45:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWwXgHeJniukDrCCWuraMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZTM3Mjg1ZWFhNjIzMTBiYzllNzcyYjQ5M2Q5ZDYyYmE4 YTc5MzgwHhcNMjYwMjA5MTcwMDU5WhcNMjYwMjEwMTcwMDU5WjAzMTEwLwYDVQQD EyhhYmQ1NzA1MTUwZjIxMGYzYjU3MzhkMjhmYTU0ZDdkZDVmMzg2MDZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgAG7XMRTD+gzcHrUvJ29gisyqYP 954/Cj8yLrFo7H1TMvviLrMaYJXHhIKK1iIcCdYAosaggPeOiiPXuVNUYdI3k7r9 rCaQi5YlTSJ2xSkUUAPPG2gUFGny7FnBtBB9pPZvmKTvdYsb1K5Wcm+eAR2ZBBH9 glmpM45KtEOYRcKIZdz9Lb8PgLc+5pMue6frpLoCfhPGM6RUx12Aaqgf/HXqiJcg i/qhbUtGjPTgf497WCJ3N01E2F2Vudwjm2zZnY3iTT9WLAX8a4/qJ3AzANBd2IHB Y66I0jYzWSQzbXL1s78CyDy1fcFtHIOie9/0/yk7HpFvifcqAWpvwyVlrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKvVcFFQ8hDztXONKPpU191fOGBrMB8GA1UdIwQY MBaAFCDjcoXqpiMQvJ53K0k9nWK6ink4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU9OeWhlcW1JeEM4bm5jclNUMmRZcnFLZVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8xNzdmMWQtYWMzOS00YTlkLTk0MWQt ZmE4ZDhjYTk0OTViLzEvSU9OeWhlcW1JeEM4bm5jclNUMmRZcnFLZVRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8xNzdmMWQtYWMzOS00YTlkLTk0MWQtZmE4ZDhjYTk0OTVi LzEvSU9OeWhlcW1JeEM4bm5jclNUMmRZcnFLZVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADUXp1HE2 tekAjEh8TH6yv2p09H2EkyX1LEYMbneMd4dt8rNQ1hDi9n65iA5j81CFCVg6wWAT BtgnBr3xcQiOyaFDA+Kqv2ooNSUQAHhoMKx8LO4SpQ6ar97Gq/KdsaNU2dCY9jI7 2OaozfdnEAjSRI5Oopgvb2LCgW/ENRwEqv9piuhXZi5kZzxLHTXH9ZJNvLiao+vJ mPh8u8rOlbu+fjRvGjx5BLpAJILUbS5hvcrAxRDfmM4lG+WloWV1V/cOMCXNyBC1 rpkAH+T7UKKe6oCBS0L1ACn4Ypr+dt8UQ9puZo3phQpmoDvUqG5oI6kF/t5hbDgl /fDfNCmGx05F2Q== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:04 2026 by rpki-client