This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft File: ICZNUaES0LwizqcxTLBs9aGuM-k.mft (raw, json) Hash identifier: fEJaBEInzzqlHD52P68D3OAu27Q8mw6jqLM8L6M//Yo= Subject key identifier: BC:BE:EE:BA:0C:85:DF:71:3D:1D:5E:30:A0:37:69:23:5B:6F:54:A5 Authority key identifier: 20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9 Certificate issuer: /CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9 Certificate serial: 019C446C6599A4135BB195B9E7FB194BF6CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft Manifest number: 17A4 Signing time: Mon 09 Feb 2026 22:01:20 +0000 Manifest this update: Mon 09 Feb 2026 22:01:20 +0000 Manifest next update: Tue 10 Feb 2026 22:01:20 +0000 Files and hashes: 1: ICZNUaES0LwizqcxTLBs9aGuM-k.crl (hash: sSI6n4bRti335n8oTo5UUmZGZntkEvuviojrcgFdrDY=) 2: TlCjshw48MI80zaCqZRdp10HXmU.roa (hash: IUaeg0F1EJZvlebFMhAdUjihSrKer72rVZfI7a/WmYI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6c:65:99:a4:13:5b:b1:95:b9:e7:fb:19:4b:f6:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9 Validity Not Before: Feb 9 22:01:20 2026 GMT Not After : Feb 10 22:01:20 2026 GMT Subject: CN=bcbeeeba0c85df713d1d5e30a03769235b6f54a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e5:68:18:96:73:9b:5c:8c:34:fc:e0:e5:9d: d1:58:22:f8:3c:31:1b:6b:ce:11:8d:08:24:ed:2a: 8a:f3:81:a5:8a:26:67:70:56:53:25:b3:33:bb:15: 58:27:7c:f4:b6:92:75:04:70:40:e5:e0:cb:47:bf: 1f:4a:ae:3a:0b:ee:be:39:3d:9c:c7:e6:42:45:f4: b3:7f:51:c5:e8:01:79:fa:f2:10:f4:ab:c1:3c:75: 5a:59:43:07:d1:7c:d6:1b:ec:c4:ea:fa:ec:1b:96: 3f:3d:e0:60:34:e1:ac:2a:20:09:e9:ff:3e:89:7c: b4:92:04:18:c1:19:22:3b:2a:22:21:d8:f4:0b:76: 33:12:cc:3a:64:c1:23:84:ad:ed:e3:93:a9:58:e8: d7:3b:86:f7:68:31:68:ef:9a:e5:44:89:17:43:9e: c7:14:fc:0c:62:d2:8a:e1:2e:41:26:49:85:ff:15: f2:73:a6:f6:64:72:58:dc:ae:6b:62:5a:08:74:04: f9:9d:5d:c5:9a:25:8a:de:95:b9:03:af:78:c2:80: 46:41:ad:08:92:db:9a:05:14:48:f4:0c:79:00:ea: b6:bc:03:d3:8c:9e:fa:69:72:53:4a:ad:bb:82:d8: 5e:ec:72:38:4a:1c:b3:a5:96:47:55:e3:f8:e4:33: c1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:BE:EE:BA:0C:85:DF:71:3D:1D:5E:30:A0:37:69:23:5B:6F:54:A5 X509v3 Authority Key Identifier: keyid:20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:e7:c6:8e:52:6a:82:60:78:c7:9d:c3:96:4c:8b:4c:78:e9: ce:8b:76:d9:38:cf:0f:cd:56:c8:ba:8e:5b:83:2b:83:27:f2: 3b:27:8b:80:18:c6:bd:d3:03:50:13:5d:53:57:e0:f7:39:5b: a3:67:86:78:3f:0e:a8:07:0e:9f:d9:9a:6a:a0:85:70:cd:66: d5:1d:80:33:a2:ac:fb:58:1b:c3:9c:82:79:8c:da:3d:72:81: 78:b0:c7:f8:51:2d:63:1c:75:ae:b4:00:97:bc:72:3a:c2:3c: fb:54:f1:b3:8f:e1:0f:78:56:58:c9:92:65:d0:66:7c:e5:bf: 13:b6:2c:15:ee:4b:21:92:f1:aa:1e:08:9a:61:e0:4c:ab:15: db:39:22:c8:49:da:87:d1:8a:62:a5:16:0a:c5:30:68:1b:7e: a2:7c:a9:2c:42:49:e6:e6:41:9e:fe:95:ab:74:dd:1d:b7:7b: 18:b1:65:04:e1:06:c6:1a:12:ce:c9:21:9e:11:e0:37:66:f9: 1b:f8:b8:a5:5c:08:89:2b:6c:ca:23:72:e9:f7:ec:d7:4a:cd: 78:bb:24:53:ac:a6:c0:0c:8c:37:10:6e:8f:68:bc:b6:2f:bd: 14:bf:f5:a9:f3:3d:d6:ec:25:2f:bf:1a:3b:b6:f3:ef:7a:c7: c0:6c:1b:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEbGWZpBNbsZW55/sZS/bNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMjY0ZDUxYTExMmQwYmMyMmNlYTczMTRjYjA2Y2Y1YTFh ZTMzZTkwHhcNMjYwMjA5MjIwMTIwWhcNMjYwMjEwMjIwMTIwWjAzMTEwLwYDVQQD EyhiY2JlZWViYTBjODVkZjcxM2QxZDVlMzBhMDM3NjkyMzViNmY1NGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+VoGJZzm1yMNPzg5Z3RWCL4PDEb a84RjQgk7SqK84GliiZncFZTJbMzuxVYJ3z0tpJ1BHBA5eDLR78fSq46C+6+OT2c x+ZCRfSzf1HF6AF5+vIQ9KvBPHVaWUMH0XzWG+zE6vrsG5Y/PeBgNOGsKiAJ6f8+ iXy0kgQYwRkiOyoiIdj0C3YzEsw6ZMEjhK3t45OpWOjXO4b3aDFo75rlRIkXQ57H FPwMYtKK4S5BJkmF/xXyc6b2ZHJY3K5rYloIdAT5nV3FmiWK3pW5A694woBGQa0I ktuaBRRI9Ax5AOq2vAPTjJ76aXJTSq27gthe7HI4ShyzpZZHVeP45DPBYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLy+7roMhd9xPR1eMKA3aSNbb1SlMB8GA1UdIwQY MBaAFCAmTVGhEtC8Is6nMUywbPWhrjPpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUNaTlVhRVMwTHdpenFjeFRMQnM5YUd1TS1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy84ODc4ZDktNGYxYy00MjZiLThhNDAt NjU4MTIwYWU2OGUxLzEvSUNaTlVhRVMwTHdpenFjeFRMQnM5YUd1TS1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy84ODc4ZDktNGYxYy00MjZiLThhNDAtNjU4MTIwYWU2OGUx LzEvSUNaTlVhRVMwTHdpenFjeFRMQnM5YUd1TS1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArOfGjlJq gmB4x53DlkyLTHjpzot22TjPD81WyLqOW4MrgyfyOyeLgBjGvdMDUBNdU1fg9zlb o2eGeD8OqAcOn9maaqCFcM1m1R2AM6Ks+1gbw5yCeYzaPXKBeLDH+FEtYxx1rrQA l7xyOsI8+1Txs4/hD3hWWMmSZdBmfOW/E7YsFe5LIZLxqh4ImmHgTKsV2zkiyEna h9GKYqUWCsUwaBt+onypLEJJ5uZBnv6Vq3TdHbd7GLFlBOEGxhoSzskhnhHgN2b5 G/i4pVwIiStsyiNy6ffs10rNeLskU6ymwAyMNxBuj2i8ti+9FL/1qfM91uwlL78a O7bz73rHwGwbYw== -----END CERTIFICATE-----Generated at Tue Feb 10 02:51:15 2026 by rpki-client