This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft File: I8Aq9PWPETIK8xlpRuH86dBQyQY.mft (raw, json) Hash identifier: OojlEMuxvAcvtzhoh7AIwf/0bxOZCvgmbJ++2Y5b7T4= Subject key identifier: 52:0C:17:DE:1D:3E:4C:A4:5A:21:5E:FD:D6:CD:81:EC:B9:DE:90:DD Authority key identifier: 23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06 Certificate issuer: /CN=23c02af4f58f11320af3196946e1fce9d050c906 Certificate serial: 019C427D8ACC207F82972FC4D6585662C4D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 13:00:49 +0000 Manifest this update: Mon 09 Feb 2026 13:00:49 +0000 Manifest next update: Tue 10 Feb 2026 13:00:49 +0000 Files and hashes: 1: 1QjvKCsvTR0ccDdXAfoDfJPSyJE.roa (hash: qPTH0R4OHCDFXj8DShsOufuFq2W68jfp5X6XHwRILiE=) 2: I8Aq9PWPETIK8xlpRuH86dBQyQY.crl (hash: ws8YSj+4g3BKzyqmjRIn7Bhq/g64ewl+8gnOhrPC3PU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:8a:cc:20:7f:82:97:2f:c4:d6:58:56:62:c4:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23c02af4f58f11320af3196946e1fce9d050c906 Validity Not Before: Feb 9 13:00:49 2026 GMT Not After : Feb 10 13:00:49 2026 GMT Subject: CN=520c17de1d3e4ca45a215efdd6cd81ecb9de90dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:48:66:ff:3e:1c:ac:47:57:95:91:79:d4:5b: a0:d0:9f:09:69:8d:c2:6e:24:c5:65:60:39:dd:56: c3:a0:60:81:7c:14:69:c5:6f:f4:43:55:75:71:11: 7a:51:d9:35:eb:47:40:f7:99:fc:bc:f4:b9:66:2c: a0:32:90:8c:3a:31:d4:3c:dc:8d:92:8b:86:3d:14: 67:56:ad:22:78:7f:eb:4c:f1:65:f7:7e:48:4e:6d: 9f:9d:56:12:9e:1d:42:7e:32:e0:a0:7c:cd:e4:56: ce:4d:32:e7:5a:62:d0:10:8b:58:59:af:d0:94:8c: 81:21:1c:67:50:3c:97:6b:18:8e:6d:74:ff:2b:54: 71:83:5a:6b:97:31:73:4c:3d:7f:ff:53:ee:d2:2b: e6:8b:9f:82:7e:2f:25:d4:49:09:62:bf:4d:a1:9f: 40:3a:05:7a:96:43:10:27:9e:9a:55:9c:dc:b4:31: 64:a1:25:b5:4d:d9:e2:a6:00:eb:6c:ab:ef:1d:3a: 07:91:94:45:d2:60:be:38:e8:1c:98:ff:7f:b7:da: a6:b3:c2:89:aa:ea:d3:bb:13:6f:9e:34:72:9e:b7: 91:06:56:f7:03:45:a6:e9:5f:f7:8d:4c:ef:b7:f8: 82:45:13:97:36:8f:cd:a4:33:5c:87:0d:b3:05:c5: af:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:0C:17:DE:1D:3E:4C:A4:5A:21:5E:FD:D6:CD:81:EC:B9:DE:90:DD X509v3 Authority Key Identifier: keyid:23:C0:2A:F4:F5:8F:11:32:0A:F3:19:69:46:E1:FC:E9:D0:50:C9:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8Aq9PWPETIK8xlpRuH86dBQyQY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/81068c-aed7-4127-88e4-62cb8aca9618/1/I8Aq9PWPETIK8xlpRuH86dBQyQY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:a2:ba:f8:f6:4e:3b:c4:a0:29:fe:cd:8f:01:9f:c4:c1:f7: eb:5d:99:34:49:45:43:d1:35:eb:b1:e4:d8:a7:2a:fa:6d:3c: b0:ab:f3:9f:c1:ba:ef:01:0f:1b:46:5b:50:3f:9b:49:c3:c2: e0:4d:0c:c8:ba:22:5f:ef:c9:ed:1a:13:d7:54:0f:3a:e6:4d: 4f:03:a1:f0:81:1d:e8:99:d8:a3:c5:37:dd:c0:6b:cf:8f:e2: 60:d4:3d:bf:a9:3e:3d:d9:2d:cf:71:66:c4:9c:87:52:28:a6: 9f:42:ab:0a:b3:26:4a:54:c1:41:d3:0b:a5:35:eb:46:c5:63: ef:ea:9b:c8:b3:d1:ed:f0:1e:b6:e8:14:b0:0a:0e:d4:a2:44: 1c:f1:c1:28:95:85:67:6c:4f:d7:9c:ca:92:80:2f:e0:66:aa: 1a:a2:97:83:15:92:04:b1:02:11:2f:bf:46:39:e7:89:c9:5d: f4:a6:00:19:98:5a:70:89:63:6a:a9:66:5b:fc:04:41:61:33: eb:65:06:9f:66:f9:e9:89:df:7c:22:29:27:e0:5d:ca:03:a0: a5:52:ea:de:e6:12:82:48:8f:d0:fb:1d:76:b0:6b:ec:6a:03: ee:a9:db:e0:fb:12:b3:b4:8e:65:92:c1:41:6e:c1:e4:36:46: 7b:39:78:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfYrMIH+Cly/E1lhWYsTWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzYzAyYWY0ZjU4ZjExMzIwYWYzMTk2OTQ2ZTFmY2U5ZDA1 MGM5MDYwHhcNMjYwMjA5MTMwMDQ5WhcNMjYwMjEwMTMwMDQ5WjAzMTEwLwYDVQQD Eyg1MjBjMTdkZTFkM2U0Y2E0NWEyMTVlZmRkNmNkODFlY2I5ZGU5MGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUhm/z4crEdXlZF51Fug0J8JaY3C biTFZWA53VbDoGCBfBRpxW/0Q1V1cRF6Udk160dA95n8vPS5ZiygMpCMOjHUPNyN kouGPRRnVq0ieH/rTPFl935ITm2fnVYSnh1CfjLgoHzN5FbOTTLnWmLQEItYWa/Q lIyBIRxnUDyXaxiObXT/K1Rxg1prlzFzTD1//1Pu0ivmi5+Cfi8l1EkJYr9NoZ9A OgV6lkMQJ56aVZzctDFkoSW1TdnipgDrbKvvHToHkZRF0mC+OOgcmP9/t9qms8KJ qurTuxNvnjRynreRBlb3A0Wm6V/3jUzvt/iCRROXNo/NpDNchw2zBcWvZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFIMF94dPkykWiFe/dbNgey53pDdMB8GA1UdIwQY MBaAFCPAKvT1jxEyCvMZaUbh/OnQUMkGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSThBcTlQV1BFVElLOHhscFJ1SDg2ZEJReVFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy84MTA2OGMtYWVkNy00MTI3LTg4ZTQt NjJjYjhhY2E5NjE4LzEvSThBcTlQV1BFVElLOHhscFJ1SDg2ZEJReVFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy84MTA2OGMtYWVkNy00MTI3LTg4ZTQtNjJjYjhhY2E5NjE4 LzEvSThBcTlQV1BFVElLOHhscFJ1SDg2ZEJReVFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcqK6+PZO O8SgKf7NjwGfxMH3612ZNElFQ9E167Hk2Kcq+m08sKvzn8G67wEPG0ZbUD+bScPC 4E0MyLoiX+/J7RoT11QPOuZNTwOh8IEd6JnYo8U33cBrz4/iYNQ9v6k+Pdktz3Fm xJyHUiimn0KrCrMmSlTBQdMLpTXrRsVj7+qbyLPR7fAetugUsAoO1KJEHPHBKJWF Z2xP15zKkoAv4GaqGqKXgxWSBLECES+/Rjnnicld9KYAGZhacIljaqlmW/wEQWEz 62UGn2b56YnffCIpJ+BdygOgpVLq3uYSgkiP0PsddrBr7GoD7qnb4PsSs7SOZZLB QW7B5DZGezl4Gw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:37 2026 by rpki-client