This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft File: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft (raw, json) Hash identifier: hxrEpX9uJXdAS24OPaDrxRQg4s1S4uZzAaLel2asmqk= Subject key identifier: 48:C9:7F:C3:B3:F7:87:ED:E1:DC:34:D1:A1:78:F8:82:29:A6:97:36 Authority key identifier: 89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75 Certificate issuer: /CN=89aed2cff8ce31b334f83a0b305feef01d71da75 Certificate serial: 019C43C749B443840AA5AD52247B41615F37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft Manifest number: 17CB Signing time: Mon 09 Feb 2026 19:00:59 +0000 Manifest this update: Mon 09 Feb 2026 19:00:59 +0000 Manifest next update: Tue 10 Feb 2026 19:00:59 +0000 Files and hashes: 1: FwqF1yEFG7mKuQRa7RkSyKPz0W0.roa (hash: arAr0Lk0kEre21H8drvKyvd7aUFHvFqu0QRUk2zIk0Y=) 2: ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl (hash: jqeS+kLkjwQtqYXGDCCRb4ITmOlwUb1HjaJXQ+FJ2vk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:49:b4:43:84:0a:a5:ad:52:24:7b:41:61:5f:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89aed2cff8ce31b334f83a0b305feef01d71da75 Validity Not Before: Feb 9 19:00:59 2026 GMT Not After : Feb 10 19:00:59 2026 GMT Subject: CN=48c97fc3b3f787ede1dc34d1a178f88229a69736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e1:6a:cb:f4:c3:55:ab:a4:5c:35:3f:8b:35: fc:e8:88:f8:0d:14:b6:9c:09:9b:d8:7a:b5:28:57: 72:a1:35:a1:94:75:82:6c:f8:68:77:87:80:62:cd: f5:07:a6:90:79:1a:5e:c1:a6:7e:22:8e:61:f8:d9: 1a:39:90:2d:82:cd:a8:2c:2a:fe:1b:21:59:eb:9f: d3:4d:b1:05:1e:93:ef:e3:86:02:06:ca:93:78:8b: c8:3d:d3:40:a4:8d:db:3f:71:10:22:be:7e:95:86: 92:21:b7:fa:61:42:37:36:da:1d:5c:98:7f:fe:c3: 42:93:f5:dd:c1:a6:9f:dd:4a:b7:3f:4c:1b:a3:da: e0:a6:41:a3:ff:6b:70:52:fa:0e:73:7e:95:87:d9: 1a:a1:f4:28:1b:3f:10:2b:c3:82:ed:24:bd:da:13: e2:d5:f1:d0:a0:68:ac:18:d8:93:0a:ab:f7:6c:ac: 4e:53:ad:a3:75:40:c8:40:a9:b9:ce:e2:a6:d9:9e: 92:65:c2:95:7f:02:fd:09:ff:21:6b:28:4d:d6:f4: 43:59:d7:55:e8:22:a3:58:46:52:66:f1:5c:28:c2: 73:24:02:f3:08:25:36:3b:38:b7:c8:ca:47:ff:31: 1e:86:4f:7d:aa:f3:5b:26:1e:46:6b:49:4a:a0:1a: 5a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C9:7F:C3:B3:F7:87:ED:E1:DC:34:D1:A1:78:F8:82:29:A6:97:36 X509v3 Authority Key Identifier: keyid:89:AE:D2:CF:F8:CE:31:B3:34:F8:3A:0B:30:5F:EE:F0:1D:71:DA:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e90f51-89aa-49eb-9ea6-fbe8bc5a29fa/1/ia7Sz_jOMbM0-DoLMF_u8B1x2nU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:a8:2b:1a:cf:54:7e:77:7b:2e:1a:ef:11:4e:c2:71:f5:17: e9:5c:cb:5f:c5:a4:35:92:f8:6b:0d:f6:ba:1d:d8:dd:97:b1: be:89:1a:c6:35:67:b7:79:be:08:cb:5c:a6:70:da:92:a3:99: 26:f6:6a:7c:c1:82:29:63:19:0b:e8:66:32:02:40:ad:d1:25: 7e:38:c0:b2:8a:42:6c:5c:b4:0e:61:76:9b:49:0f:8c:ee:12: 8f:51:57:e5:1c:50:2d:c7:42:f6:1e:79:ec:12:34:f0:55:e8: d5:e0:a3:cb:de:50:f0:3c:aa:50:06:cc:e0:9f:ea:75:87:b3: 37:93:2e:ed:f0:7c:0c:94:a5:70:c5:a4:47:14:75:79:ab:26: 3c:99:51:a2:d3:b3:71:b3:1d:f3:e8:24:cb:04:0d:82:46:00: 03:10:b3:da:21:12:0b:13:75:f2:83:ce:a2:b5:b8:e1:07:14: c3:26:c1:22:d8:15:ef:f0:6c:78:b5:91:46:ca:83:9b:ef:2c: be:d2:9a:12:af:a1:79:db:71:8b:32:a6:2e:2b:a9:22:60:35: b3:da:66:0e:f4:91:ce:ab:c9:fe:4d:d8:e4:b3:e5:42:bf:e4: a1:e5:19:cf:44:9c:a3:34:c8:8a:5b:89:cf:40:3b:30:69:e7: 0c:c5:a7:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx0m0Q4QKpa1SJHtBYV83MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWVkMmNmZjhjZTMxYjMzNGY4M2EwYjMwNWZlZWYwMWQ3 MWRhNzUwHhcNMjYwMjA5MTkwMDU5WhcNMjYwMjEwMTkwMDU5WjAzMTEwLwYDVQQD Eyg0OGM5N2ZjM2IzZjc4N2VkZTFkYzM0ZDFhMTc4Zjg4MjI5YTY5NzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5uFqy/TDVaukXDU/izX86Ij4DRS2 nAmb2Hq1KFdyoTWhlHWCbPhod4eAYs31B6aQeRpewaZ+Io5h+NkaOZAtgs2oLCr+ GyFZ65/TTbEFHpPv44YCBsqTeIvIPdNApI3bP3EQIr5+lYaSIbf6YUI3NtodXJh/ /sNCk/Xdwaaf3Uq3P0wbo9rgpkGj/2twUvoOc36Vh9kaofQoGz8QK8OC7SS92hPi 1fHQoGisGNiTCqv3bKxOU62jdUDIQKm5zuKm2Z6SZcKVfwL9Cf8hayhN1vRDWddV 6CKjWEZSZvFcKMJzJALzCCU2Ozi3yMpH/zEehk99qvNbJh5Ga0lKoBpaMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEjJf8Oz94ft4dw00aF4+IIpppc2MB8GA1UdIwQY MBaAFImu0s/4zjGzNPg6CzBf7vAdcdp1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWE3U3pfak9NYk0wLURvTE1GX3U4QjF4Mm5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lOTBmNTEtODlhYS00OWViLTllYTYt ZmJlOGJjNWEyOWZhLzEvaWE3U3pfak9NYk0wLURvTE1GX3U4QjF4Mm5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9lOTBmNTEtODlhYS00OWViLTllYTYtZmJlOGJjNWEyOWZh LzEvaWE3U3pfak9NYk0wLURvTE1GX3U4QjF4Mm5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApagrGs9U fnd7LhrvEU7CcfUX6VzLX8WkNZL4aw32uh3Y3ZexvokaxjVnt3m+CMtcpnDakqOZ JvZqfMGCKWMZC+hmMgJArdElfjjAsopCbFy0DmF2m0kPjO4Sj1FX5RxQLcdC9h55 7BI08FXo1eCjy95Q8DyqUAbM4J/qdYezN5Mu7fB8DJSlcMWkRxR1easmPJlRotOz cbMd8+gkywQNgkYAAxCz2iESCxN18oPOorW44QcUwybBItgV7/BseLWRRsqDm+8s vtKaEq+hedtxizKmLiupImA1s9pmDvSRzqvJ/k3Y5LPlQr/koeUZz0ScozTIiluJ z0A7MGnnDMWncw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:12 2026 by rpki-client