This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json) Hash identifier: 3trUxHPf57DKW8B3WXHCXhEA02wEu5K23Fy4A24ppjs= Subject key identifier: D0:A3:A0:D5:AE:D8:A2:B4:69:28:91:5F:52:67:6E:9B:E8:73:8E:27 Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64 Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864 Certificate serial: 019C427DF7ACE72109047FB1069B403D9BC1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft Manifest number: 0BA1 Signing time: Mon 09 Feb 2026 13:01:17 +0000 Manifest this update: Mon 09 Feb 2026 13:01:17 +0000 Manifest next update: Tue 10 Feb 2026 13:01:17 +0000 Files and hashes: 1: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: Zzt50PpwO7Vip3qTd6lQRXpo8SHZOO3LsVo1dnWX9eY=) 2: xMgS7QD9_G9EOx5x98EDuY-9yGs.roa (hash: hMlsCv6vl96geP53LLF12LxkGDU69mGZggpEWqFm3G4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:f7:ac:e7:21:09:04:7f:b1:06:9b:40:3d:9b:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864 Validity Not Before: Feb 9 13:01:17 2026 GMT Not After : Feb 10 13:01:17 2026 GMT Subject: CN=d0a3a0d5aed8a2b46928915f52676e9be8738e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:50:b1:84:e4:15:35:33:f7:ee:df:9c:41:65: 2c:47:59:59:04:ad:75:ec:42:a6:cd:bf:50:87:a7: 86:f8:9e:a3:21:bc:88:38:fd:97:70:1c:99:c8:d4: 62:37:ba:3e:bc:94:f4:6e:95:02:a9:f2:bd:4d:e7: aa:54:82:8f:2b:bd:6f:6b:9a:9f:2d:b5:1d:e0:ae: 65:af:3b:92:62:13:d3:97:4c:bb:f3:98:94:f9:38: 3c:72:30:2a:17:b1:08:4b:9b:9d:41:90:ea:bf:f7: f0:51:86:3c:14:f1:a8:c0:81:3f:d8:a9:5b:ca:61: 73:cb:d8:ec:c5:dd:74:75:d6:21:4e:3c:e8:87:13: 9a:b0:71:81:7f:72:4b:44:1f:41:e5:79:fa:62:f3: 67:9d:e9:ed:5f:f0:18:6f:a0:f0:30:c6:08:95:4d: aa:2a:e2:18:6d:9d:a4:ba:13:ca:42:89:6d:e2:0d: 1d:42:95:b3:ae:3f:99:33:5f:9c:d2:bc:4a:c0:25: 63:28:23:7f:f3:07:61:e0:6f:ea:c0:77:ad:9d:47: 4f:dc:fd:76:ee:5f:d0:28:fa:30:39:f4:1b:43:b6: de:ce:e1:1d:ed:36:62:a6:67:5c:7e:bd:83:1d:7d: ca:c1:96:1f:d0:f9:34:3f:14:7c:76:60:67:87:2c: 76:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:A3:A0:D5:AE:D8:A2:B4:69:28:91:5F:52:67:6E:9B:E8:73:8E:27 X509v3 Authority Key Identifier: keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:0d:78:79:29:01:d9:0d:29:d9:32:86:9a:68:d4:5c:99:f8: df:ef:e8:59:ea:a2:87:dc:8c:9b:4d:28:3e:85:5c:8c:d9:4c: 24:28:7d:8f:c1:9d:3c:fc:17:f6:96:75:99:3c:52:b8:c6:5f: 4c:67:dc:09:d4:df:4e:c9:7b:d6:a6:af:8a:80:ea:a9:48:bd: 76:40:27:7f:0d:16:ba:ce:7d:4b:7d:8a:33:da:fe:98:29:dc: 74:03:d2:b7:93:03:4f:f0:d4:45:51:46:22:99:39:28:e2:45: 89:3a:08:6b:e5:68:6e:a1:fd:8c:81:86:47:4e:cf:69:2a:75: 71:bd:ba:ab:34:bd:28:09:a5:1a:20:e0:bc:28:69:a6:72:f5: f0:23:fc:98:3c:c7:4e:b4:5c:c4:6c:75:24:1b:21:2e:2f:38: 54:ef:5a:0a:8c:18:80:1d:96:2f:14:5a:b3:40:df:22:e7:90: 12:2e:a5:da:9e:14:15:95:be:d1:ee:95:23:12:a0:ef:6c:c4: 13:2d:52:a5:d6:96:21:33:db:71:d3:d0:ec:ef:1f:65:08:4b: fc:31:e8:a1:2b:98:68:f4:47:6f:8a:46:2c:7a:80:a3:33:88: 5f:6d:97:30:27:98:73:b9:f9:04:c2:0a:b1:85:11:fc:6b:9c: 58:35:e6:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCffes5yEJBH+xBptAPZvBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhMWYwYWQ1NTcyYmFlMjZlMzljODc0MGM2OGE4ZmJiNDZl ZTQ4NjQwHhcNMjYwMjA5MTMwMTE3WhcNMjYwMjEwMTMwMTE3WjAzMTEwLwYDVQQD EyhkMGEzYTBkNWFlZDhhMmI0NjkyODkxNWY1MjY3NmU5YmU4NzM4ZTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA01CxhOQVNTP37t+cQWUsR1lZBK11 7EKmzb9Qh6eG+J6jIbyIOP2XcByZyNRiN7o+vJT0bpUCqfK9TeeqVIKPK71va5qf LbUd4K5lrzuSYhPTl0y785iU+Tg8cjAqF7EIS5udQZDqv/fwUYY8FPGowIE/2Klb ymFzy9jsxd10ddYhTjzohxOasHGBf3JLRB9B5Xn6YvNnnentX/AYb6DwMMYIlU2q KuIYbZ2kuhPKQolt4g0dQpWzrj+ZM1+c0rxKwCVjKCN/8wdh4G/qwHetnUdP3P12 7l/QKPowOfQbQ7bezuEd7TZipmdcfr2DHX3KwZYf0Pk0PxR8dmBnhyx27wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNCjoNWu2KK0aSiRX1Jnbpvoc44nMB8GA1UdIwQY MBaAFIofCtVXK64m45yHQMaKj7tG7khkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzkt MDNmMjNhNzM5NDFkLzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzktMDNmMjNhNzM5NDFk LzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYA14eSkB 2Q0p2TKGmmjUXJn43+/oWeqih9yMm00oPoVcjNlMJCh9j8GdPPwX9pZ1mTxSuMZf TGfcCdTfTsl71qavioDqqUi9dkAnfw0Wus59S32KM9r+mCncdAPSt5MDT/DURVFG Ipk5KOJFiToIa+VobqH9jIGGR07PaSp1cb26qzS9KAmlGiDgvChppnL18CP8mDzH TrRcxGx1JBshLi84VO9aCowYgB2WLxRas0DfIueQEi6l2p4UFZW+0e6VIxKg72zE Ey1SpdaWITPbcdPQ7O8fZQhL/DHooSuYaPRHb4pGLHqAozOIX22XMCeYc7n5BMIK sYUR/GucWDXmkw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:47 2026 by rpki-client