This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json) Hash identifier: MWdCzOL4fOShm9Tip7zIQuevRjMyL9OvG8t/s5zgvHM= Subject key identifier: C2:D8:24:48:55:10:D2:72:62:C2:0E:E0:D9:D4:01:D5:DA:65:54:8B Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8 Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8 Certificate serial: 019C438FD60A80308CFFAF19373DDF33BF1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft Manifest number: 03F8 Signing time: Mon 09 Feb 2026 18:00:25 +0000 Manifest this update: Mon 09 Feb 2026 18:00:25 +0000 Manifest next update: Tue 10 Feb 2026 18:00:25 +0000 Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: d2wDPHjUI5Vgn8iBiFp2T+12ggFU9v2moe/wyw4pJcc=) 2: PPCzo4aoB52WIulHl2b-W42AOQQ.roa (hash: v7GTmELXw/VVFQyWL5TMg5z0A0nUbHsal/nQ+BR/mNg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:d6:0a:80:30:8c:ff:af:19:37:3d:df:33:bf:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8 Validity Not Before: Feb 9 18:00:25 2026 GMT Not After : Feb 10 18:00:25 2026 GMT Subject: CN=c2d824485510d27262c20ee0d9d401d5da65548b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:1f:ac:4d:75:59:44:a0:fb:ed:a2:7c:8b:39: 75:1b:12:0e:d8:02:c1:30:3c:01:34:0d:3d:6d:05: 1a:46:73:c9:b4:70:d7:1e:80:e4:53:ca:d2:64:1a: ca:82:f6:d9:57:24:1b:33:fa:9f:78:60:bb:85:fc: d8:1d:0b:5a:fb:66:79:f7:62:6f:bf:8f:4e:2f:89: 83:71:b2:5d:0d:7f:77:b2:76:d7:ba:e6:a9:e9:ee: c1:ad:04:b7:d3:b4:19:c9:bf:5a:dc:05:d0:ac:03: e1:b9:bd:48:0d:40:d2:b0:03:54:2f:09:6a:b1:52: e2:18:63:a5:c8:fa:0a:ea:03:5c:87:6a:54:ef:da: d4:34:0b:ce:23:00:37:41:ae:42:43:02:af:51:30: 85:2d:55:93:f2:28:32:f1:5a:5f:a9:dd:dd:c1:88: 0d:7a:ca:54:96:1d:24:65:df:64:e8:62:70:c8:ba: a0:a5:ba:39:74:2c:98:f7:94:ca:10:9f:b0:b3:08: b7:c0:5c:5e:89:d8:f4:2c:0b:fa:5e:16:7e:22:fc: e3:5a:27:e2:42:90:cf:a9:bb:57:ec:24:8e:d1:ad: 60:49:56:31:93:a8:08:05:c2:7a:59:cf:52:e4:d8: f7:03:bc:44:7a:f6:26:61:d7:cb:e0:d2:78:b7:e2: b4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:D8:24:48:55:10:D2:72:62:C2:0E:E0:D9:D4:01:D5:DA:65:54:8B X509v3 Authority Key Identifier: keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:6a:20:52:a7:47:0a:44:94:ed:34:83:a0:f5:c0:8d:36:3f: 4d:5a:c4:7d:dc:86:b7:61:46:c3:2f:c9:b5:03:f8:2b:c2:87: cf:13:20:f9:a8:8e:52:c5:5c:6d:99:53:9a:df:63:cc:12:ad: 17:a9:d2:12:11:d0:e7:ee:dc:7c:d4:25:92:18:15:85:4f:7d: cc:38:78:d2:c7:0c:23:06:ad:c5:af:69:c9:39:ab:ea:3c:df: 18:b7:dd:70:b1:2a:ac:d3:df:f2:ee:11:6c:30:c7:fc:7b:3a: c7:94:1e:ea:1d:41:82:a9:24:56:e9:4c:5a:b0:13:89:3e:28: e1:c5:32:11:52:66:5c:26:8a:70:ff:8b:0a:6a:7e:15:bb:a4: da:17:8d:3d:d3:85:f1:17:0a:0f:91:fa:cd:b8:4a:68:22:22: fd:5b:04:63:ec:85:af:ea:0b:7f:65:85:8b:02:b0:ca:de:7c: 56:c8:1b:eb:1b:11:b6:83:e7:47:1f:f4:57:73:91:97:fe:bf: d7:5f:dc:67:e0:84:2e:81:32:a5:ce:1d:fb:6b:dd:de:72:46: e2:2c:23:b1:01:70:a9:22:14:4c:98:0a:e6:15:a0:d1:4f:16: 0c:f6:78:89:bf:54:7b:b1:d0:89:fd:0a:56:9f:ff:18:56:b5: 54:cd:c6:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj9YKgDCM/68ZNz3fM78bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyNDBhMDcxODBmY2YzMzYzNWY3NTdjYzE0NDllMGQ1ZGJk NGZkYjgwHhcNMjYwMjA5MTgwMDI1WhcNMjYwMjEwMTgwMDI1WjAzMTEwLwYDVQQD EyhjMmQ4MjQ0ODU1MTBkMjcyNjJjMjBlZTBkOWQ0MDFkNWRhNjU1NDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjx+sTXVZRKD77aJ8izl1GxIO2ALB MDwBNA09bQUaRnPJtHDXHoDkU8rSZBrKgvbZVyQbM/qfeGC7hfzYHQta+2Z592Jv v49OL4mDcbJdDX93snbXuuap6e7BrQS307QZyb9a3AXQrAPhub1IDUDSsANULwlq sVLiGGOlyPoK6gNch2pU79rUNAvOIwA3Qa5CQwKvUTCFLVWT8igy8Vpfqd3dwYgN espUlh0kZd9k6GJwyLqgpbo5dCyY95TKEJ+wswi3wFxeidj0LAv6XhZ+IvzjWifi QpDPqbtX7CSO0a1gSVYxk6gIBcJ6Wc9S5Nj3A7xEevYmYdfL4NJ4t+K0PwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMLYJEhVENJyYsIO4NnUAdXaZVSLMB8GA1UdIwQY MBaAFCJAoHGA/PM2NfdXzBRJ4NXb1P24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEt ZDBiZDBlODAzZmQxLzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEtZDBiZDBlODAzZmQx LzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARmogUqdH CkSU7TSDoPXAjTY/TVrEfdyGt2FGwy/JtQP4K8KHzxMg+aiOUsVcbZlTmt9jzBKt F6nSEhHQ5+7cfNQlkhgVhU99zDh40scMIwatxa9pyTmr6jzfGLfdcLEqrNPf8u4R bDDH/Hs6x5Qe6h1BgqkkVulMWrATiT4o4cUyEVJmXCaKcP+LCmp+Fbuk2heNPdOF 8RcKD5H6zbhKaCIi/VsEY+yFr+oLf2WFiwKwyt58Vsgb6xsRtoPnRx/0V3ORl/6/ 11/cZ+CELoEypc4d+2vd3nJG4iwjsQFwqSIUTJgK5hWg0U8WDPZ4ib9Ue7HQif0K Vp//GFa1VM3GfQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:39 2026 by rpki-client