This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json) Hash identifier: eUdKy561Mc/RIymM36lghuEeKldtZSI3w2iJI95875k= Subject key identifier: BE:5D:42:10:3D:42:24:63:79:48:DD:E5:C7:20:3B:BD:73:00:E5:44 Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30 Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030 Certificate serial: 019C43C6C1A65D16982620D868A3A9B50C48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft Manifest number: 05BF Signing time: Mon 09 Feb 2026 19:00:24 +0000 Manifest this update: Mon 09 Feb 2026 19:00:24 +0000 Manifest next update: Tue 10 Feb 2026 19:00:24 +0000 Files and hashes: 1: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: ZqoG9fOVlTHRUyVj4+NOKZir846RXwwdNv++P7drO7w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:c1:a6:5d:16:98:26:20:d8:68:a3:a9:b5:0c:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030 Validity Not Before: Feb 9 19:00:24 2026 GMT Not After : Feb 10 19:00:24 2026 GMT Subject: CN=be5d42103d4224637948dde5c7203bbd7300e544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:17:e7:d8:50:46:8b:4c:8f:ab:46:8d:c5:a9: 9b:13:dc:05:fd:f7:b5:fc:3e:ad:51:c5:9c:7a:9c: 44:3b:af:60:40:b9:58:8b:0d:50:a5:f7:a7:5f:d6: ac:a6:15:0e:30:48:de:9e:b9:c7:49:3d:d5:92:b7: dc:c1:d0:1b:9d:43:9e:7c:80:e9:06:4e:ba:d9:86: 25:f3:ac:76:f2:5e:ab:25:7a:88:0f:07:85:24:9c: 44:89:43:7e:0d:7f:12:7e:1b:50:7c:0f:49:8a:2b: fd:7e:78:26:29:18:65:38:8e:47:a3:51:e7:44:a2: 79:84:fa:68:1d:dc:b9:78:93:0e:6c:78:59:af:d7: 22:ce:79:12:f9:b7:26:92:66:db:83:d5:1e:89:cd: be:2f:ca:22:34:ba:4f:c3:95:8b:8e:ca:4e:7d:a3: fb:5f:66:72:af:c0:ca:35:2d:ee:13:d4:1c:ff:dc: 2d:95:45:4f:85:9b:80:d1:b3:50:29:dc:7e:30:00: 02:ee:f0:d6:0f:32:48:0f:06:32:40:0c:fd:16:4e: 92:f6:41:37:5c:cc:93:a6:2b:aa:d0:1f:81:a1:22: c4:fc:4c:e1:92:7e:e8:d5:01:21:b9:0c:6a:84:47: ad:1e:fa:49:49:94:56:81:1a:27:72:be:f8:f1:54: 3f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5D:42:10:3D:42:24:63:79:48:DD:E5:C7:20:3B:BD:73:00:E5:44 X509v3 Authority Key Identifier: keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:88:8c:31:0b:ff:59:ad:88:5b:83:8f:f2:64:68:0a:90:01: 14:db:ca:3d:0c:3d:08:d1:90:e1:96:7a:71:a7:01:38:ca:fd: 9e:79:b4:a3:23:64:00:df:ee:ad:2f:f9:89:a2:ca:b1:a0:60: bf:1b:9d:f8:2a:3b:44:8d:45:f6:e4:1c:3d:e0:14:05:3b:a5: 93:6a:0e:a6:6a:c4:a5:50:11:df:9d:2a:09:a1:e5:8b:07:93: 88:cd:b3:4d:43:48:24:d2:96:ca:1f:6a:44:ea:72:f8:c1:42: 1f:16:e8:ee:cc:6f:15:93:74:c2:d9:9b:94:50:28:93:d1:a6: f5:c9:2b:d6:a9:3b:ed:17:42:cf:7a:cd:fe:23:42:44:57:52: cf:52:3a:74:ff:13:18:0e:a0:28:6a:9e:d6:e0:15:e2:b2:41: 7f:11:d5:7b:e1:69:0b:8f:4a:45:20:36:de:82:70:c5:e4:9a: 7d:14:d2:79:8e:c4:15:f1:0e:a1:9e:a3:ea:9f:f9:6c:95:b6: ba:31:00:43:bb:df:d3:b5:fd:23:fd:16:e9:f2:78:60:63:11: b0:61:db:7c:f1:52:54:5e:7d:d3:0a:3f:44:cc:ac:de:be:d8: bf:ac:e0:ea:88:ac:59:6d:25:85:a3:e4:07:3e:af:89:a7:15: 5b:f6:08:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxsGmXRaYJiDYaKOptQxIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZjc1MDY5YmQ1NmVmYzUxNzAzODNlZDMxY2FkMjI0NjRm ZGYwMzAwHhcNMjYwMjA5MTkwMDI0WhcNMjYwMjEwMTkwMDI0WjAzMTEwLwYDVQQD EyhiZTVkNDIxMDNkNDIyNDYzNzk0OGRkZTVjNzIwM2JiZDczMDBlNTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhfn2FBGi0yPq0aNxambE9wF/fe1 /D6tUcWcepxEO69gQLlYiw1QpfenX9asphUOMEjenrnHST3VkrfcwdAbnUOefIDp Bk662YYl86x28l6rJXqIDweFJJxEiUN+DX8SfhtQfA9Jiiv9fngmKRhlOI5Ho1Hn RKJ5hPpoHdy5eJMObHhZr9ciznkS+bcmkmbbg9Ueic2+L8oiNLpPw5WLjspOfaP7 X2Zyr8DKNS3uE9Qc/9wtlUVPhZuA0bNQKdx+MAAC7vDWDzJIDwYyQAz9Fk6S9kE3 XMyTpiuq0B+BoSLE/Ezhkn7o1QEhuQxqhEetHvpJSZRWgRoncr748VQ/mQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL5dQhA9QiRjeUjd5ccgO71zAOVEMB8GA1UdIwQY MBaAFCD3UGm9Vu/FFwOD7THK0iRk/fAwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVBkUWFiMVc3OFVYQTRQdE1jclNKR1Q5OERBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC85NWNkNzAtNTBjZC00NmJkLThlMDYt Yjk3MDVkN2QzNTc5LzEvSVBkUWFiMVc3OFVYQTRQdE1jclNKR1Q5OERBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC85NWNkNzAtNTBjZC00NmJkLThlMDYtYjk3MDVkN2QzNTc5 LzEvSVBkUWFiMVc3OFVYQTRQdE1jclNKR1Q5OERBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo4iMMQv/ Wa2IW4OP8mRoCpABFNvKPQw9CNGQ4ZZ6cacBOMr9nnm0oyNkAN/urS/5iaLKsaBg vxud+Co7RI1F9uQcPeAUBTulk2oOpmrEpVAR350qCaHliweTiM2zTUNIJNKWyh9q ROpy+MFCHxbo7sxvFZN0wtmblFAok9Gm9ckr1qk77RdCz3rN/iNCRFdSz1I6dP8T GA6gKGqe1uAV4rJBfxHVe+FpC49KRSA23oJwxeSafRTSeY7EFfEOoZ6j6p/5bJW2 ujEAQ7vf07X9I/0W6fJ4YGMRsGHbfPFSVF590wo/RMys3r7Yv6zg6oisWW0lhaPk Bz6viacVW/YIDA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:53:35 2026 by rpki-client