This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.mft File: ia4iC0do2m4nbmpi7dZ0bY_Dwfs.mft (raw, json) Hash identifier: Mp1lAQNJ6MFzuAozZWjOGp1JBdxeN9atJoko27k0j4A= Subject key identifier: ED:32:53:2D:6B:E7:0B:CF:A9:39:4F:8F:17:68:EA:69:49:05:4A:CA Authority key identifier: 89:AE:22:0B:47:68:DA:6E:27:6E:6A:62:ED:D6:74:6D:8F:C3:C1:FB Certificate issuer: /CN=89ae220b4768da6e276e6a62edd6746d8fc3c1fb Certificate serial: 019C420FFDEAA6570F58860F58B2CB463C2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.mft Manifest number: 0FC5 Signing time: Mon 09 Feb 2026 11:01:10 +0000 Manifest this update: Mon 09 Feb 2026 11:01:10 +0000 Manifest next update: Tue 10 Feb 2026 11:01:10 +0000 Files and hashes: 1: ia4iC0do2m4nbmpi7dZ0bY_Dwfs.crl (hash: vHyThZ/+fmVjf9ZulbjMkHYynKNQnaG5jV7lF/GcBTI=) 2: swlvSyg5P2tG5hf6QszpyWKMn_k.roa (hash: bb3L+IeAkS1sZt2NMi7C0qunZyUMt8jC260rx3ny2gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.mft rsync://rpki.ripe.net/repository/DEFAULT/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:fd:ea:a6:57:0f:58:86:0f:58:b2:cb:46:3c:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89ae220b4768da6e276e6a62edd6746d8fc3c1fb Validity Not Before: Feb 9 11:01:10 2026 GMT Not After : Feb 10 11:01:10 2026 GMT Subject: CN=ed32532d6be70bcfa9394f8f1768ea6949054aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c4:8b:29:90:57:8c:3d:a9:b6:6e:86:82:d8: e4:cd:71:86:67:aa:c2:a0:02:37:9f:bf:10:6f:71: 55:6a:f3:73:75:26:d4:75:25:7d:e9:d3:25:88:1e: 73:83:cf:71:5e:73:81:1e:3f:26:de:e3:37:27:3e: 5c:ac:a1:41:2e:6b:a9:a7:a6:c1:5f:76:f7:be:18: 6c:18:9d:82:db:2f:5b:08:14:c2:3d:7f:19:e4:94: bb:47:c1:26:c8:17:67:b2:a2:04:db:26:e5:72:7d: f1:12:f6:b2:9b:57:34:9d:ee:f0:82:ad:86:c9:9a: a2:87:e8:a3:22:cc:8a:bc:89:81:e1:aa:6b:79:a7: 9f:cf:18:b3:bf:07:c5:06:42:51:bf:55:3d:47:65: f0:36:cc:1b:e3:22:d7:ee:1c:fe:f2:64:12:5f:64: 76:0f:15:08:56:82:75:64:8a:3d:07:50:d9:35:c2: f1:a5:3a:62:87:6f:6e:a3:90:49:d0:fa:00:17:8d: e0:a0:53:2a:32:3e:89:8d:aa:91:60:16:0a:fd:66: a3:a5:00:56:9f:3b:ba:85:df:ce:6c:c6:e0:fa:6e: 5e:61:14:1b:02:67:9d:31:43:81:4d:f4:02:95:ce: d6:a4:e0:d2:2d:a5:62:e5:40:3a:9a:79:f7:9e:1d: ff:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:32:53:2D:6B:E7:0B:CF:A9:39:4F:8F:17:68:EA:69:49:05:4A:CA X509v3 Authority Key Identifier: keyid:89:AE:22:0B:47:68:DA:6E:27:6E:6A:62:ED:D6:74:6D:8F:C3:C1:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3b8a40-7610-4e4d-9b37-741fa4e10e36/1/ia4iC0do2m4nbmpi7dZ0bY_Dwfs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:00:dd:6c:a1:22:c1:56:3d:44:a9:16:5d:b4:a4:c0:74:47: 7b:7f:73:49:a8:ec:32:89:a1:ff:6d:0a:9c:bd:4c:57:91:61: a2:eb:f8:64:19:67:77:c4:d5:4b:81:2b:ec:f4:4d:19:38:0d: 9b:38:e7:bb:e2:33:45:1a:c9:20:7a:ab:a2:a9:79:1d:1a:ca: 47:f2:76:d0:c8:ff:a1:aa:50:06:b2:4a:f2:3f:58:7c:39:60: 63:16:2f:9d:40:d0:89:66:d3:f5:85:a3:05:75:60:36:c4:f9: 20:4a:15:e8:6e:ad:ba:de:00:c2:a0:83:a4:98:0a:0a:49:48: 54:42:0d:53:f2:96:9f:6a:a6:be:7b:ce:46:8e:1c:8e:2b:2d: 5e:d4:4c:5b:b9:87:3a:52:1c:ea:c0:ec:12:84:2c:b6:0a:32: 0b:93:66:4c:ff:1c:6c:68:32:a8:f2:7b:c5:86:0b:07:e2:ec: c3:d7:04:04:00:4b:57:be:d6:c6:29:1d:bd:c0:14:90:15:ad: 98:cb:69:03:af:99:5e:e0:ab:76:f7:05:6e:07:f2:f6:c4:fe: 5b:61:21:27:df:17:e2:61:54:4c:fe:10:93:20:f1:2c:4f:0e: 9b:cc:d2:e4:9b:e9:fa:65:50:95:69:95:00:02:34:70:67:2e: 7f:fa:25:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD/3qplcPWIYPWLLLRjwuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWUyMjBiNDc2OGRhNmUyNzZlNmE2MmVkZDY3NDZkOGZj M2MxZmIwHhcNMjYwMjA5MTEwMTEwWhcNMjYwMjEwMTEwMTEwWjAzMTEwLwYDVQQD EyhlZDMyNTMyZDZiZTcwYmNmYTkzOTRmOGYxNzY4ZWE2OTQ5MDU0YWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsSLKZBXjD2ptm6GgtjkzXGGZ6rC oAI3n78Qb3FVavNzdSbUdSV96dMliB5zg89xXnOBHj8m3uM3Jz5crKFBLmupp6bB X3b3vhhsGJ2C2y9bCBTCPX8Z5JS7R8EmyBdnsqIE2yblcn3xEvaym1c0ne7wgq2G yZqih+ijIsyKvImB4apreaefzxizvwfFBkJRv1U9R2XwNswb4yLX7hz+8mQSX2R2 DxUIVoJ1ZIo9B1DZNcLxpTpih29uo5BJ0PoAF43goFMqMj6JjaqRYBYK/WajpQBW nzu6hd/ObMbg+m5eYRQbAmedMUOBTfQClc7WpODSLaVi5UA6mnn3nh3/7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO0yUy1r5wvPqTlPjxdo6mlJBUrKMB8GA1UdIwQY MBaAFImuIgtHaNpuJ25qYu3WdG2Pw8H7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWE0aUMwZG8ybTRuYm1waTdkWjBiWV9Ed2ZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8zYjhhNDAtNzYxMC00ZTRkLTliMzct NzQxZmE0ZTEwZTM2LzEvaWE0aUMwZG8ybTRuYm1waTdkWjBiWV9Ed2ZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC8zYjhhNDAtNzYxMC00ZTRkLTliMzctNzQxZmE0ZTEwZTM2 LzEvaWE0aUMwZG8ybTRuYm1waTdkWjBiWV9Ed2ZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPQDdbKEi wVY9RKkWXbSkwHRHe39zSajsMomh/20KnL1MV5Fhouv4ZBlnd8TVS4Er7PRNGTgN mzjnu+IzRRrJIHqroql5HRrKR/J20Mj/oapQBrJK8j9YfDlgYxYvnUDQiWbT9YWj BXVgNsT5IEoV6G6tut4AwqCDpJgKCklIVEINU/KWn2qmvnvORo4cjistXtRMW7mH OlIc6sDsEoQstgoyC5NmTP8cbGgyqPJ7xYYLB+Lsw9cEBABLV77WxikdvcAUkBWt mMtpA6+ZXuCrdvcFbgfy9sT+W2EhJ98X4mFUTP4QkyDxLE8Om8zS5Jvp+mVQlWmV AAI0cGcuf/olSw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:56 2026 by rpki-client