This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json) Hash identifier: cAM7HXGi53305UJIVTDeKj+q7EY/aX0CHcLRoHLHfmE= Subject key identifier: 5B:A5:71:17:EC:AD:55:59:26:24:7F:F6:45:39:E7:56:10:7D:65:00 Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44 Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44 Certificate serial: 019C41A23839CDB14CA0C3AB8EE1AB56653E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft Manifest number: 122C Signing time: Mon 09 Feb 2026 09:01:16 +0000 Manifest this update: Mon 09 Feb 2026 09:01:16 +0000 Manifest next update: Tue 10 Feb 2026 09:01:16 +0000 Files and hashes: 1: 3kj2IZUmhg4c3fn_vDNshjS1bYM.roa (hash: F1j+Rw7AK0w/RfaxR+vC5zwL/WwgyQ05RgO+QAvekpY=) 2: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: eS4Bwg98kX8QR3SrdjEU0B2jc/AXW3QWd4tYAhqBRBs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:38:39:cd:b1:4c:a0:c3:ab:8e:e1:ab:56:65:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44 Validity Not Before: Feb 9 09:01:16 2026 GMT Not After : Feb 10 09:01:16 2026 GMT Subject: CN=5ba57117ecad555926247ff64539e756107d6500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2f:dd:98:6f:50:c5:24:80:85:ed:ef:fb:a8: 1f:b9:18:26:d3:2d:b5:cb:96:89:30:e1:5a:67:59: 21:d8:62:49:1b:c0:1b:d8:68:23:be:9e:af:25:83: 68:5f:9d:74:b2:1b:a4:17:8b:6b:c8:23:c9:3e:b2: 8a:78:7c:33:39:50:0b:31:cf:29:49:fc:62:d6:cb: c3:ef:24:f8:d5:d6:ec:6f:e6:7d:ab:dc:06:c2:f7: d8:96:cf:94:77:ad:f9:38:8d:14:ec:7b:03:20:49: a9:f8:28:a4:60:01:2e:0e:73:4d:6c:67:80:73:14: 8d:fa:42:0a:4d:3f:a1:dd:5a:52:d9:b5:8b:5f:95: 1e:75:bc:65:8f:7e:c4:65:b6:cb:e1:7e:1e:ff:0c: d5:cb:59:13:04:92:0b:6e:e8:29:df:4f:1b:f4:13: 2a:62:39:da:92:8c:d7:1b:a5:cf:45:1a:30:f1:fc: ac:24:f5:31:ac:30:16:56:00:82:2b:d3:55:ad:37: fc:5a:73:cb:ea:6d:b4:8c:94:e7:5a:21:b5:21:3a: ca:5e:e8:46:66:1d:44:02:53:a2:92:99:01:d9:ec: 47:81:f5:c5:91:15:be:63:4e:f7:59:a9:ee:72:1a: f2:74:e2:bb:45:b6:5c:05:e6:9b:19:4f:d1:e2:65: b4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A5:71:17:EC:AD:55:59:26:24:7F:F6:45:39:E7:56:10:7D:65:00 X509v3 Authority Key Identifier: keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:1c:ce:24:88:8b:3b:11:89:25:b9:b9:ae:1c:04:67:3b:53: c7:62:f3:e4:6e:52:d8:f7:e8:f6:e6:80:8f:7e:cd:7e:ef:cc: 7b:51:1f:52:7d:68:5b:8e:5d:08:48:f7:db:80:e0:34:1f:7b: 62:31:32:33:11:6a:1b:c8:b2:74:34:03:7e:e1:60:d0:3c:10: 4d:ff:02:44:b7:0d:38:d0:3e:d6:30:1f:23:b6:87:56:92:c8: cf:45:b4:64:09:fc:2c:41:40:c2:3a:72:f4:75:3b:86:82:f0: 20:c5:38:6c:60:d3:e9:07:1a:fa:f7:d5:d0:f5:12:56:05:69: dd:b8:32:84:4c:b9:75:4c:83:78:18:7a:80:76:f2:d5:32:d8: 61:b6:9b:a3:0a:da:65:a7:df:2e:31:a0:38:e6:e5:d7:98:e8: 52:96:4b:5b:38:53:f5:5e:06:18:89:2b:6e:03:8a:40:da:20: da:19:73:b8:10:37:e3:b8:4d:e5:9e:dd:ce:71:3c:83:56:1f: ca:cb:db:fc:e3:57:ab:04:29:d6:f5:2f:2e:6e:10:b1:83:09: 49:5b:10:d5:b6:2a:8e:cd:a7:7a:9f:ac:e0:2a:d6:95:10:3b: f5:f3:cc:58:25:f7:28:8f:5a:68:1b:a3:4e:22:a5:f5:3a:c2: 74:e9:84:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBojg5zbFMoMOrjuGrVmU+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMGQzMTFmYzE5NDYzZmRkMzBhZGVjYzkxN2I1ZjAyOTg3 NDFiNDQwHhcNMjYwMjA5MDkwMTE2WhcNMjYwMjEwMDkwMTE2WjAzMTEwLwYDVQQD Eyg1YmE1NzExN2VjYWQ1NTU5MjYyNDdmZjY0NTM5ZTc1NjEwN2Q2NTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsC/dmG9QxSSAhe3v+6gfuRgm0y21 y5aJMOFaZ1kh2GJJG8Ab2Ggjvp6vJYNoX510shukF4tryCPJPrKKeHwzOVALMc8p Sfxi1svD7yT41dbsb+Z9q9wGwvfYls+Ud635OI0U7HsDIEmp+CikYAEuDnNNbGeA cxSN+kIKTT+h3VpS2bWLX5Uedbxlj37EZbbL4X4e/wzVy1kTBJILbugp308b9BMq YjnakozXG6XPRRow8fysJPUxrDAWVgCCK9NVrTf8WnPL6m20jJTnWiG1ITrKXuhG Zh1EAlOikpkB2exHgfXFkRW+Y073WanuchrydOK7RbZcBeabGU/R4mW0hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFulcRfsrVVZJiR/9kU551YQfWUAMB8GA1UdIwQY MBaAFCMNMR/BlGP90wrezJF7XwKYdBtEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yODFkZmItMzI5My00YmFiLWJhMjIt MWJlY2I1ZGNkN2FhLzEvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8yODFkZmItMzI5My00YmFiLWJhMjItMWJlY2I1ZGNkN2Fh LzEvSXcweEg4R1VZXzNUQ3Q3TWtYdGZBcGgwRzBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZhzOJIiL OxGJJbm5rhwEZztTx2Lz5G5S2Pfo9uaAj37Nfu/Me1EfUn1oW45dCEj324DgNB97 YjEyMxFqG8iydDQDfuFg0DwQTf8CRLcNONA+1jAfI7aHVpLIz0W0ZAn8LEFAwjpy 9HU7hoLwIMU4bGDT6Qca+vfV0PUSVgVp3bgyhEy5dUyDeBh6gHby1TLYYbabowra ZaffLjGgOObl15joUpZLWzhT9V4GGIkrbgOKQNog2hlzuBA347hN5Z7dznE8g1Yf ysvb/ONXqwQp1vUvLm4QsYMJSVsQ1bYqjs2nep+s4CrWlRA79fPMWCX3KI9aaBuj TiKl9TrCdOmEhw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:01 2026 by rpki-client