This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft File: iLda7v6O6hrFwhnYdQXS58XzL0g.mft (raw, json) Hash identifier: 4E3zGMSzO5RIfaPUrCZEACnQKn7VAgBzpOuzYLhCvTE= Subject key identifier: 02:06:8E:45:09:01:A8:03:7C:24:58:76:AF:00:53:42:0B:00:FA:DC Authority key identifier: 88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48 Certificate issuer: /CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48 Certificate serial: 019C41D90213BDECDB8AA5F498649CA3048C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 10:01:06 +0000 Manifest this update: Mon 09 Feb 2026 10:01:06 +0000 Manifest next update: Tue 10 Feb 2026 10:01:06 +0000 Files and hashes: 1: XCD8aXlAzGnzxXRVOLV38VoENzs.roa (hash: nXyOSXVfXWMbU4dphXnH7dDUeGh2mNE9IwSEdv2yiZs=) 2: iLda7v6O6hrFwhnYdQXS58XzL0g.crl (hash: ylBmNeopUMNPR2wBSENdjoKmQ3607djCv2b3+PGc0Qk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d9:02:13:bd:ec:db:8a:a5:f4:98:64:9c:a3:04:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48 Validity Not Before: Feb 9 10:01:06 2026 GMT Not After : Feb 10 10:01:06 2026 GMT Subject: CN=02068e450901a8037c245876af0053420b00fadc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3b:bc:8e:6a:7b:44:17:5f:6d:4f:f1:b1:b9: 84:da:1d:89:7a:67:45:fc:3f:2f:79:a6:27:d3:1a: db:36:2e:83:66:4a:03:a3:ed:2b:8f:f4:1d:e0:ff: 95:d8:9d:49:1b:d3:98:0a:d9:08:ab:81:12:2e:05: 86:08:4b:36:b4:63:99:94:3e:8f:32:c8:17:62:bb: 34:42:e5:58:80:f6:11:43:98:a3:cf:de:e6:5f:11: 64:bf:e9:7c:00:d1:3e:ef:02:ec:4c:40:db:98:d0: 05:42:b2:28:fa:30:3f:15:10:1f:5e:0d:14:96:64: 52:84:69:b4:df:f5:dc:ac:b2:5d:a1:a1:cf:09:99: 1c:9e:c1:c2:c1:b5:7d:a4:b6:11:7b:52:b8:27:e7: 8c:04:79:96:48:6a:44:3f:08:9a:0f:2b:98:fc:56: 52:dc:b8:39:bf:d1:99:fa:89:c1:58:f5:fd:de:3a: 26:3c:1c:7e:d3:07:3b:8a:d6:ad:8c:79:ee:e7:f7: 7c:63:35:4e:de:54:3c:19:dc:87:d6:fd:b2:fb:ce: 74:e7:9e:0d:1f:5d:de:ca:03:e0:00:34:eb:30:97: 95:3d:9e:59:88:bb:f1:f5:c4:fb:a0:87:99:bf:9e: 60:64:85:1d:da:64:66:47:0a:5e:39:e4:1e:7e:1b: f9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:06:8E:45:09:01:A8:03:7C:24:58:76:AF:00:53:42:0B:00:FA:DC X509v3 Authority Key Identifier: keyid:88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:44:9c:8f:54:41:9a:12:4b:cd:e3:92:cc:ca:aa:a1:b7:bc: 2b:4e:d4:f3:c4:b5:9e:c6:c5:15:45:80:31:ff:99:89:55:c9: 12:2d:83:46:6b:91:28:c2:03:04:4b:ca:2a:d1:b7:1f:43:f7: 80:35:c1:75:33:a2:79:bb:09:ca:c1:31:b6:ae:da:65:5f:3d: ab:61:66:ef:a2:c8:82:45:89:ed:c9:66:44:3a:0a:03:43:1e: 45:a2:45:f9:05:cc:08:91:0f:13:82:97:92:83:06:30:b8:41: 2f:39:45:c3:54:ac:d4:40:ee:19:62:16:57:29:14:ca:28:f9: 4a:32:91:9a:f8:ec:54:71:62:4a:56:27:2d:31:1f:d8:22:86: 3c:90:28:67:dd:05:3a:94:7f:39:cc:5e:26:73:5e:89:e2:b7: ff:87:64:2d:40:34:e7:3f:24:61:d0:38:e1:4f:1e:82:9d:ae: 9a:34:48:3d:9c:3f:40:97:c5:d4:85:d3:fb:66:42:10:30:ad: c6:ab:a9:bb:fa:aa:8b:fd:95:7c:1e:c6:59:04:a6:ed:de:a2: 14:0a:c8:cb:e9:2f:69:0a:9c:6b:6a:12:00:d4:88:11:c9:4e: 53:61:63:79:79:e4:28:ac:4c:31:26:dc:8f:d6:63:9e:95:d3: 2d:b6:b6:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2QITvezbiqX0mGScowSMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4Yjc1YWVlZmU4ZWVhMWFjNWMyMTlkODc1MDVkMmU3YzVm MzJmNDgwHhcNMjYwMjA5MTAwMTA2WhcNMjYwMjEwMTAwMTA2WjAzMTEwLwYDVQQD EygwMjA2OGU0NTA5MDFhODAzN2MyNDU4NzZhZjAwNTM0MjBiMDBmYWRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvTu8jmp7RBdfbU/xsbmE2h2JemdF /D8veaYn0xrbNi6DZkoDo+0rj/Qd4P+V2J1JG9OYCtkIq4ESLgWGCEs2tGOZlD6P MsgXYrs0QuVYgPYRQ5ijz97mXxFkv+l8ANE+7wLsTEDbmNAFQrIo+jA/FRAfXg0U lmRShGm03/XcrLJdoaHPCZkcnsHCwbV9pLYRe1K4J+eMBHmWSGpEPwiaDyuY/FZS 3Lg5v9GZ+onBWPX93jomPBx+0wc7itatjHnu5/d8YzVO3lQ8GdyH1v2y+850554N H13eygPgADTrMJeVPZ5ZiLvx9cT7oIeZv55gZIUd2mRmRwpeOeQefhv5WwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAIGjkUJAagDfCRYdq8AU0ILAPrcMB8GA1UdIwQY MBaAFIi3Wu7+juoaxcIZ2HUF0ufF8y9IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUxkYTd2Nk82aHJGd2huWWRRWFM1OFh6TDBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS80ZDI4MzEtMTJlYy00NzcwLTljZWEt OWFjMDhjM2VhYWExLzEvaUxkYTd2Nk82aHJGd2huWWRRWFM1OFh6TDBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS80ZDI4MzEtMTJlYy00NzcwLTljZWEtOWFjMDhjM2VhYWEx LzEvaUxkYTd2Nk82aHJGd2huWWRRWFM1OFh6TDBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABEScj1RB mhJLzeOSzMqqobe8K07U88S1nsbFFUWAMf+ZiVXJEi2DRmuRKMIDBEvKKtG3H0P3 gDXBdTOiebsJysExtq7aZV89q2Fm76LIgkWJ7clmRDoKA0MeRaJF+QXMCJEPE4KX koMGMLhBLzlFw1Ss1EDuGWIWVykUyij5SjKRmvjsVHFiSlYnLTEf2CKGPJAoZ90F OpR/OcxeJnNeieK3/4dkLUA05z8kYdA44U8egp2umjRIPZw/QJfF1IXT+2ZCEDCt xqupu/qqi/2VfB7GWQSm7d6iFArIy+kvaQqca2oSANSIEclOU2FjeXnkKKxMMSbc j9ZjnpXTLba2LA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:26 2026 by rpki-client