This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft File: IKDFQA4CP5P1GOQwBMM7x50vayE.mft (raw, json) Hash identifier: hDQvQNBUriF5hY1WQPCvYfqBnIogBgtDt91XJGOvnsA= Subject key identifier: 0B:14:66:9C:90:51:A9:D5:05:09:AC:BD:C7:84:15:14:DD:DB:31:B9 Authority key identifier: 20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21 Certificate issuer: /CN=20a0c5400e023f93f518e43004c33bc79d2f6b21 Certificate serial: 019C42EAE05DD02E9ABF5C13C520C1F6FADD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 15:00:14 +0000 Manifest this update: Mon 09 Feb 2026 15:00:14 +0000 Manifest next update: Tue 10 Feb 2026 15:00:14 +0000 Files and hashes: 1: C79YUpU2iklV_OJjs4h8ac-OjrQ.roa (hash: //CGGQm4W2A3kMycLE3Ro2hRaxk4J3N4m94O7KPhors=) 2: IKDFQA4CP5P1GOQwBMM7x50vayE.crl (hash: 9OS04Wo0BOh/8Nc2hbmbUgK6XbJqdU1UqYVfGaJTBsY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:e0:5d:d0:2e:9a:bf:5c:13:c5:20:c1:f6:fa:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20a0c5400e023f93f518e43004c33bc79d2f6b21 Validity Not Before: Feb 9 15:00:14 2026 GMT Not After : Feb 10 15:00:14 2026 GMT Subject: CN=0b14669c9051a9d50509acbdc7841514dddb31b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1a:7a:b8:41:5c:b9:ae:70:5e:f9:57:47:e5: 0b:13:a7:de:62:10:24:28:f1:32:f7:7b:5f:f9:4c: f7:20:23:b4:2a:f9:b7:ae:3a:f2:c4:de:cb:8c:88: fe:39:5a:f7:ff:08:94:02:64:52:58:b9:a3:e8:8e: b9:07:a0:24:fc:13:60:ce:52:29:56:a4:b6:78:72: 1c:74:2e:8d:56:cc:e3:72:6a:11:bc:9c:45:44:80: de:08:6c:d3:2d:4a:21:7b:c8:e2:17:0d:c0:56:df: a6:70:4e:12:6a:86:c9:03:0e:79:fe:17:bc:e2:ee: 62:d5:a5:f9:76:29:39:a6:62:f2:d8:71:5a:50:0f: f1:cb:19:0a:0f:a7:ee:7e:7a:99:76:be:17:b9:cc: 9f:60:67:35:4c:2e:66:75:f3:3c:18:44:f4:95:23: 68:90:8e:26:76:17:b2:6d:b3:fd:d1:29:88:47:de: b3:a6:75:84:a2:46:fa:7f:f1:2d:57:df:38:86:28: 55:a3:8c:a2:36:1c:d4:33:b2:72:db:72:6a:69:51: 48:e0:2f:84:d7:c5:6e:77:f1:d2:08:b1:fa:8c:fb: 88:d4:22:30:59:80:65:d8:4b:3d:82:92:4f:76:81: 6a:10:f8:09:09:f8:7f:3f:2a:7e:1d:62:52:74:9f: 57:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:14:66:9C:90:51:A9:D5:05:09:AC:BD:C7:84:15:14:DD:DB:31:B9 X509v3 Authority Key Identifier: keyid:20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:f8:12:1f:19:e9:f5:5a:1f:ff:c5:c1:d9:3c:d2:fe:a2:fc: 28:3e:1f:e2:cb:5e:b1:50:5a:fc:51:e7:f2:1c:4d:ab:1f:c3: 5c:ae:ab:87:a4:9d:5b:de:b7:05:a9:3b:46:a5:25:fe:d4:2a: 64:ba:26:c3:d6:0e:1d:10:a8:e8:4f:e6:2f:91:ff:cf:d3:5c: 22:a1:2a:35:c3:2d:37:8f:2d:b3:ab:1a:89:4c:8d:c8:94:dc: eb:ab:82:dc:55:da:86:e3:9a:bf:1e:c7:c4:bf:4e:00:b6:29: 16:91:d9:17:15:0e:97:5f:40:7c:da:89:10:52:63:35:00:fb: 22:83:69:36:13:8d:52:9f:63:14:1c:2b:f6:0f:29:07:80:61: 6f:13:07:7d:33:71:e6:ff:9e:5e:64:9b:97:c1:6c:e3:0a:33: 3f:92:0a:74:2e:99:9c:d6:5d:ed:53:f3:d0:45:a0:5e:cb:9a: 05:f0:ff:cb:7a:b6:f2:43:c8:16:ce:99:84:f0:8c:8f:1d:e4: 05:9d:33:aa:34:05:3d:3e:4c:29:df:f8:7f:85:40:af:cf:ad: a6:9b:9f:b7:7e:00:01:e7:f2:9e:57:76:8a:5d:d2:54:dd:c0: af:5c:77:12:d7:28:07:f9:bd:9b:10:ef:d8:b6:75:88:fb:30: db:16:23:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6uBd0C6av1wTxSDB9vrdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwYTBjNTQwMGUwMjNmOTNmNTE4ZTQzMDA0YzMzYmM3OWQy ZjZiMjEwHhcNMjYwMjA5MTUwMDE0WhcNMjYwMjEwMTUwMDE0WjAzMTEwLwYDVQQD EygwYjE0NjY5YzkwNTFhOWQ1MDUwOWFjYmRjNzg0MTUxNGRkZGIzMWI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Rp6uEFcua5wXvlXR+ULE6feYhAk KPEy93tf+Uz3ICO0Kvm3rjryxN7LjIj+OVr3/wiUAmRSWLmj6I65B6Ak/BNgzlIp VqS2eHIcdC6NVszjcmoRvJxFRIDeCGzTLUohe8jiFw3AVt+mcE4SaobJAw55/he8 4u5i1aX5dik5pmLy2HFaUA/xyxkKD6fufnqZdr4XucyfYGc1TC5mdfM8GET0lSNo kI4mdheybbP90SmIR96zpnWEokb6f/EtV984hihVo4yiNhzUM7Jy23JqaVFI4C+E 18Vud/HSCLH6jPuI1CIwWYBl2Es9gpJPdoFqEPgJCfh/Pyp+HWJSdJ9X2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAsUZpyQUanVBQmsvceEFRTd2zG5MB8GA1UdIwQY MBaAFCCgxUAOAj+T9RjkMATDO8edL2shMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUtERlFBNENQNVAxR09Rd0JNTTd4NTB2YXlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9kZmViMTAtOTUyNC00MWE1LWJiZDMt MDc2OWFhNjI3MWU2LzEvSUtERlFBNENQNVAxR09Rd0JNTTd4NTB2YXlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9kZmViMTAtOTUyNC00MWE1LWJiZDMtMDc2OWFhNjI3MWU2 LzEvSUtERlFBNENQNVAxR09Rd0JNTTd4NTB2YXlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbvgSHxnp 9Vof/8XB2TzS/qL8KD4f4stesVBa/FHn8hxNqx/DXK6rh6SdW963Bak7RqUl/tQq ZLomw9YOHRCo6E/mL5H/z9NcIqEqNcMtN48ts6saiUyNyJTc66uC3FXahuOavx7H xL9OALYpFpHZFxUOl19AfNqJEFJjNQD7IoNpNhONUp9jFBwr9g8pB4BhbxMHfTNx 5v+eXmSbl8Fs4wozP5IKdC6ZnNZd7VPz0EWgXsuaBfD/y3q28kPIFs6ZhPCMjx3k BZ0zqjQFPT5MKd/4f4VAr8+tppuft34AAefynld2il3SVN3Ar1x3EtcoB/m9mxDv 2LZ1iPsw2xYjJQ== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:42 2026 by rpki-client