This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft File: IwQieKfGvGylbuevokosgfPcvvs.mft (raw, json) Hash identifier: FO87PAlXgWuxzMIlLLzJMhcQfKTWAabJl4hbm2iLOTM= Subject key identifier: B5:5E:AA:13:1A:37:BF:D2:0E:0A:11:5D:83:48:FE:A3:99:7A:E0:72 Authority key identifier: 23:04:22:78:A7:C6:BC:6C:A5:6E:E7:AF:A2:4A:2C:81:F3:DC:BE:FB Certificate issuer: /CN=23042278a7c6bc6ca56ee7afa24a2c81f3dcbefb Certificate serial: 019C43FE84D07F384129194638C8BE9D84A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft Manifest number: 01C3 Signing time: Mon 09 Feb 2026 20:01:19 +0000 Manifest this update: Mon 09 Feb 2026 20:01:19 +0000 Manifest next update: Tue 10 Feb 2026 20:01:19 +0000 Files and hashes: 1: IwQieKfGvGylbuevokosgfPcvvs.crl (hash: qj55DU+yZXC7RONy6f9fKTQ3fa40EE7GCfBTWGLkwfE=) 2: bbIN0Dzg266kgD3gaOLxYwDdIGk.roa (hash: UrKnfGvjgujZo+TnNEkx5AvYr9F7seRK/OurdxNlQvY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:84:d0:7f:38:41:29:19:46:38:c8:be:9d:84:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23042278a7c6bc6ca56ee7afa24a2c81f3dcbefb Validity Not Before: Feb 9 20:01:19 2026 GMT Not After : Feb 10 20:01:19 2026 GMT Subject: CN=b55eaa131a37bfd20e0a115d8348fea3997ae072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d1:52:a8:0c:e5:67:82:63:d6:d9:4c:87:67: dc:92:a0:05:a7:f7:fc:94:16:b0:a6:5c:1b:00:0c: 84:75:dd:6d:40:f6:0c:72:bb:69:71:d3:9f:c2:40: 7c:89:03:11:e3:1c:39:31:4e:b9:9c:3d:86:30:83: 74:38:82:39:24:f0:89:9a:54:a8:d7:d0:f3:d3:34: da:93:bc:81:6a:5b:84:70:d6:2a:f8:80:0c:d4:88: 8d:ec:58:b9:41:cf:68:ec:20:0a:5a:fe:f0:1c:b2: d3:32:4a:63:26:8d:39:32:56:85:1e:0f:3c:2a:32: 08:59:d9:0b:3f:84:60:d7:59:ef:7c:92:e0:6c:00: f4:3c:b9:bc:a2:7b:9c:73:38:41:f1:67:00:43:36: ad:6a:60:7a:ea:6d:e4:78:57:80:26:eb:2d:6d:85: e6:36:9b:3e:83:2e:b9:98:39:70:ac:df:37:05:20: 46:56:fc:1d:9e:99:71:fc:7e:40:9e:e0:b4:eb:31: 28:35:19:ef:40:95:90:3e:4f:9a:35:d4:72:c7:82: 0e:5d:b1:d9:d2:87:2b:7b:90:a4:28:bd:3f:40:da: ce:ef:e5:fc:4a:f3:05:ac:11:0b:fc:b6:d0:73:f5: ae:a8:5d:65:a9:01:1c:54:cd:a2:dc:44:f3:09:28: 5c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5E:AA:13:1A:37:BF:D2:0E:0A:11:5D:83:48:FE:A3:99:7A:E0:72 X509v3 Authority Key Identifier: keyid:23:04:22:78:A7:C6:BC:6C:A5:6E:E7:AF:A2:4A:2C:81:F3:DC:BE:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:8d:2d:ee:0b:e1:a1:39:fd:e7:5e:58:2e:97:d7:05:20:49: a5:a6:1e:1d:45:b1:e3:65:e1:b2:be:89:88:89:72:b8:93:e5: f7:64:2b:42:75:a7:6d:07:66:99:6e:f3:b5:84:69:32:03:8e: 88:22:07:eb:f2:6c:7a:75:e8:4c:4c:6e:c0:1a:4f:aa:95:c6: 26:89:ad:d3:8d:41:5c:f8:a2:ce:8f:48:fd:dc:5c:25:86:26: b9:3e:cf:55:13:7e:fc:94:20:c0:a7:5d:89:37:b8:fe:ae:20: e3:fa:60:68:3a:4f:2d:85:ef:d7:a4:23:11:9c:b6:17:93:bc: 21:dd:c6:d8:5b:7f:a7:b4:34:d3:87:0e:81:77:8a:48:6d:20: c4:f3:5b:40:98:2c:0b:92:dd:94:5b:7d:b7:11:33:a8:cb:75: b0:19:11:10:62:46:1f:86:eb:b9:8a:90:3e:0c:1d:d2:ca:e4: 1e:8a:79:c2:82:b6:fe:26:fe:63:df:e4:fb:28:72:76:fe:05: 42:22:af:47:4f:e1:e9:65:dc:ac:b2:ac:03:1b:2a:d9:da:e7: bf:d6:95:2e:15:81:ba:6f:86:36:9d:3a:7a:2c:25:91:c4:bc: b2:30:b1:62:6c:65:df:83:5c:ce:79:0f:31:51:82:ed:6b:31: a3:91:99:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/oTQfzhBKRlGOMi+nYSjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMDQyMjc4YTdjNmJjNmNhNTZlZTdhZmEyNGEyYzgxZjNk Y2JlZmIwHhcNMjYwMjA5MjAwMTE5WhcNMjYwMjEwMjAwMTE5WjAzMTEwLwYDVQQD EyhiNTVlYWExMzFhMzdiZmQyMGUwYTExNWQ4MzQ4ZmVhMzk5N2FlMDcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNFSqAzlZ4Jj1tlMh2fckqAFp/f8 lBawplwbAAyEdd1tQPYMcrtpcdOfwkB8iQMR4xw5MU65nD2GMIN0OII5JPCJmlSo 19Dz0zTak7yBaluEcNYq+IAM1IiN7Fi5Qc9o7CAKWv7wHLLTMkpjJo05MlaFHg88 KjIIWdkLP4Rg11nvfJLgbAD0PLm8onucczhB8WcAQzatamB66m3keFeAJustbYXm Nps+gy65mDlwrN83BSBGVvwdnplx/H5AnuC06zEoNRnvQJWQPk+aNdRyx4IOXbHZ 0ocre5CkKL0/QNrO7+X8SvMFrBEL/LbQc/WuqF1lqQEcVM2i3ETzCShc+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLVeqhMaN7/SDgoRXYNI/qOZeuByMB8GA1UdIwQY MBaAFCMEIninxrxspW7nr6JKLIHz3L77MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXdRaWVLZkd2R3lsYnVldm9rb3NnZlBjdnZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS83OGViY2ItZGNhOC00MmQ2LWFmODIt M2FkNmU1ZGMwN2Q3LzEvSXdRaWVLZkd2R3lsYnVldm9rb3NnZlBjdnZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS83OGViY2ItZGNhOC00MmQ2LWFmODItM2FkNmU1ZGMwN2Q3 LzEvSXdRaWVLZkd2R3lsYnVldm9rb3NnZlBjdnZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWo0t7gvh oTn9515YLpfXBSBJpaYeHUWx42Xhsr6JiIlyuJPl92QrQnWnbQdmmW7ztYRpMgOO iCIH6/JsenXoTExuwBpPqpXGJomt041BXPiizo9I/dxcJYYmuT7PVRN+/JQgwKdd iTe4/q4g4/pgaDpPLYXv16QjEZy2F5O8Id3G2Ft/p7Q004cOgXeKSG0gxPNbQJgs C5LdlFt9txEzqMt1sBkREGJGH4bruYqQPgwd0srkHop5woK2/ib+Y9/k+yhydv4F QiKvR0/h6WXcrLKsAxsq2drnv9aVLhWBum+GNp06eiwlkcS8sjCxYmxl34NcznkP MVGC7Wsxo5GZtg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:15 2026 by rpki-client