This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft File: I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft (raw, json) Hash identifier: jWm4R6uMWx07rZdp92Wttz8WcNr0r/Lntkn4fcL1yfU= Subject key identifier: 3B:4B:20:43:CA:E0:72:41:A5:B9:81:F2:E7:88:23:B2:AF:4D:47:9C Authority key identifier: 23:A4:24:97:97:0D:65:54:1D:DB:15:96:58:E3:B0:A6:E2:F5:16:B7 Certificate issuer: /CN=23a42497970d65541ddb159658e3b0a6e2f516b7 Certificate serial: 019C43901F4A164DCDBE304279942AC54B39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 18:00:44 +0000 Manifest this update: Mon 09 Feb 2026 18:00:44 +0000 Manifest next update: Tue 10 Feb 2026 18:00:44 +0000 Files and hashes: 1: I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl (hash: NWgmf4WV+um7r8v0PPk1MpOt0ljpRsbHSljTxKukxBg=) 2: iJzZtljWIar5Fy83XWae5YmptnU.roa (hash: J8Td44gvEJyFMk2Q3nnnz2KQYHmuhOMCV+hhX1uovQ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:1f:4a:16:4d:cd:be:30:42:79:94:2a:c5:4b:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23a42497970d65541ddb159658e3b0a6e2f516b7 Validity Not Before: Feb 9 18:00:44 2026 GMT Not After : Feb 10 18:00:44 2026 GMT Subject: CN=3b4b2043cae07241a5b981f2e78823b2af4d479c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:49:97:85:a6:62:29:24:f2:84:6d:1b:d2:5b: 22:b4:4a:11:47:c7:81:88:91:5f:f6:aa:08:e0:69: 1e:21:a3:a3:49:67:54:d9:ba:2a:21:c4:84:88:2c: c3:2f:27:70:58:fd:84:f5:f9:9e:bf:78:81:8e:71: 6c:38:0d:cc:5f:ec:65:4a:a5:7b:46:db:91:11:22: b8:c2:54:7e:6b:64:6f:29:78:f4:6e:1e:ef:36:f1: d6:a9:b9:79:cd:55:37:09:43:dd:45:aa:93:38:31: 48:06:be:52:b0:e7:1b:ed:79:5d:75:59:5a:b9:07: 75:fc:63:11:0e:e9:da:a9:49:34:28:79:3f:e1:5b: 15:f9:db:0a:57:10:a3:05:91:51:34:3d:a2:e8:0c: 55:f7:31:2e:4c:49:fc:05:c8:5f:8c:86:7d:92:8b: 46:9d:70:02:ca:95:a6:f3:cf:28:bc:3e:22:01:70: df:80:c7:98:44:eb:60:79:0a:29:70:ae:d5:ba:e0: af:f7:b0:f0:fc:42:b1:33:2c:6c:27:4f:59:33:c2: 53:0c:b2:9e:9b:79:17:d8:87:be:92:d1:62:e9:fe: 8b:48:83:a4:48:0b:5b:28:b8:e1:98:2c:27:71:f9: f9:d5:83:fd:da:6f:f4:a5:91:20:43:36:2c:4f:4e: 01:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:4B:20:43:CA:E0:72:41:A5:B9:81:F2:E7:88:23:B2:AF:4D:47:9C X509v3 Authority Key Identifier: keyid:23:A4:24:97:97:0D:65:54:1D:DB:15:96:58:E3:B0:A6:E2:F5:16:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:e3:f3:2c:54:7b:cf:c0:e1:51:4c:6e:03:f6:73:e7:22:34: 13:73:1f:50:9d:0e:e0:8e:c7:da:cb:eb:08:c1:48:76:bf:90: 5f:2c:55:5f:a0:5a:2b:53:2b:de:6e:67:e4:fa:2f:e0:cf:7f: 92:b5:82:e0:ce:f5:41:b6:1f:2a:b1:8a:a7:cf:d8:13:f5:82: a0:b2:57:29:ac:20:d8:0b:6e:d2:fd:e9:8f:84:45:6c:8a:16: e5:db:61:8b:b8:7c:f1:e6:18:ea:e5:de:4f:85:7f:d8:9c:bd: 79:06:a8:68:c0:0d:02:9f:0e:1c:39:39:ab:b2:9c:91:f1:5d: f2:3c:27:b3:78:ba:7c:d8:77:0f:19:84:b5:f8:18:bf:90:d2: ee:13:97:2d:92:a2:42:15:b9:c8:e9:67:a9:71:8d:38:65:71: 39:d2:d8:56:d6:7f:db:5f:8a:0a:71:33:f6:bb:4b:d4:fc:b4: d3:85:68:41:24:a0:f4:57:d0:92:3f:2d:95:ca:85:a7:32:95: 03:6b:52:bc:ea:53:19:e3:ba:61:1b:e1:85:b0:5b:b0:ac:fb: 59:3b:99:e3:30:b1:4b:e7:37:b5:91:4c:64:10:5b:1e:25:db: 48:55:0c:0c:f2:b1:a7:a9:1a:22:0c:a1:cf:77:7b:18:a1:5d: d7:73:00:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkB9KFk3NvjBCeZQqxUs5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzYTQyNDk3OTcwZDY1NTQxZGRiMTU5NjU4ZTNiMGE2ZTJm NTE2YjcwHhcNMjYwMjA5MTgwMDQ0WhcNMjYwMjEwMTgwMDQ0WjAzMTEwLwYDVQQD EygzYjRiMjA0M2NhZTA3MjQxYTViOTgxZjJlNzg4MjNiMmFmNGQ0NzljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjUmXhaZiKSTyhG0b0lsitEoRR8eB iJFf9qoI4GkeIaOjSWdU2boqIcSEiCzDLydwWP2E9fmev3iBjnFsOA3MX+xlSqV7 RtuRESK4wlR+a2RvKXj0bh7vNvHWqbl5zVU3CUPdRaqTODFIBr5SsOcb7XlddVla uQd1/GMRDunaqUk0KHk/4VsV+dsKVxCjBZFRND2i6AxV9zEuTEn8BchfjIZ9kotG nXACypWm888ovD4iAXDfgMeYROtgeQopcK7VuuCv97Dw/EKxMyxsJ09ZM8JTDLKe m3kX2Ie+ktFi6f6LSIOkSAtbKLjhmCwncfn51YP92m/0pZEgQzYsT04B2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDtLIEPK4HJBpbmB8ueII7KvTUecMB8GA1UdIwQY MBaAFCOkJJeXDWVUHdsVlljjsKbi9Ra3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTZRa2w1Y05aVlFkMnhXV1dPT3dwdUwxRnJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9iYTI4NTctYzA5OC00NGQyLTljMDEt ZTcyMGZlYjEwMTAzLzEvSTZRa2w1Y05aVlFkMnhXV1dPT3dwdUwxRnJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9iYTI4NTctYzA5OC00NGQyLTljMDEtZTcyMGZlYjEwMTAz LzEvSTZRa2w1Y05aVlFkMnhXV1dPT3dwdUwxRnJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASOPzLFR7 z8DhUUxuA/Zz5yI0E3MfUJ0O4I7H2svrCMFIdr+QXyxVX6BaK1Mr3m5n5Pov4M9/ krWC4M71QbYfKrGKp8/YE/WCoLJXKawg2Atu0v3pj4RFbIoW5dthi7h88eYY6uXe T4V/2Jy9eQaoaMANAp8OHDk5q7KckfFd8jwns3i6fNh3DxmEtfgYv5DS7hOXLZKi QhW5yOlnqXGNOGVxOdLYVtZ/21+KCnEz9rtL1Py004VoQSSg9FfQkj8tlcqFpzKV A2tSvOpTGeO6YRvhhbBbsKz7WTuZ4zCxS+c3tZFMZBBbHiXbSFUMDPKxp6kaIgyh z3d7GKFd13MA+w== -----END CERTIFICATE-----Generated at Tue Feb 10 01:43:01 2026 by rpki-client