This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json) Hash identifier: QVRBmMCscNGoDjuCbZePvwagr91xtTvAyjTIQaq7kfE= Subject key identifier: 38:37:67:01:FC:48:8B:D6:F2:94:15:6C:62:53:38:BC:51:21:C9:0B Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59 Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59 Certificate serial: 019C427DD97D7C91168FEDE153CA51F2C168 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft Manifest number: 091B Signing time: Mon 09 Feb 2026 13:01:09 +0000 Manifest this update: Mon 09 Feb 2026 13:01:09 +0000 Manifest next update: Tue 10 Feb 2026 13:01:09 +0000 Files and hashes: 1: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: UP5qkkzybWv4I8US9ffIIAscIzk6hKN9kc9SyKlhRaE=) 2: rTrNf2BtsL1vlw_R__r7UKcCZJk.roa (hash: lQAxfhbBIAhm99xgTizcCxmFSvD0y0yK3pththJkeEg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:d9:7d:7c:91:16:8f:ed:e1:53:ca:51:f2:c1:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59 Validity Not Before: Feb 9 13:01:09 2026 GMT Not After : Feb 10 13:01:09 2026 GMT Subject: CN=38376701fc488bd6f294156c625338bc5121c90b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1a:18:12:6a:a4:60:90:21:7b:f6:1c:ae:e9: 74:59:3b:4c:1a:4c:31:6c:95:a6:c5:90:cb:ac:74: ae:84:8f:a9:ac:ed:94:8c:63:a1:cb:5b:73:97:66: 61:ae:49:11:e0:cc:16:0f:2d:0e:b4:10:f6:e9:7c: 68:9b:5d:21:e9:8b:8d:c2:ec:89:f7:b9:99:17:76: e7:1b:c2:18:55:52:64:e9:e6:64:48:eb:27:0c:63: c7:c1:b0:7c:a7:17:c5:51:18:43:df:83:af:9f:c5: b3:d1:7e:02:4f:5b:df:75:21:59:33:f5:69:0a:d9: f3:2d:4a:08:a4:75:02:fd:dc:89:b5:6c:64:b4:e2: 17:67:e6:87:08:05:47:9c:37:27:3f:2d:87:14:26: 82:19:65:71:0c:72:21:c5:c5:b6:45:33:87:7e:b7: 3e:dd:f0:ad:7d:6f:91:51:ea:e0:2a:90:9d:95:5a: ae:3a:89:2d:14:50:c3:9d:fe:85:01:25:b2:e0:27: b0:d1:59:9b:2f:bb:3d:75:ad:fb:ff:fd:1b:4e:f5: c1:17:ff:a3:d9:8c:54:98:0b:71:ac:3b:5a:b6:d9: 52:c3:e0:60:7f:74:8e:60:df:69:c1:a6:a0:02:5e: a0:d4:c4:a7:0e:90:c8:b1:e2:72:39:4b:e4:8c:5a: c8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:37:67:01:FC:48:8B:D6:F2:94:15:6C:62:53:38:BC:51:21:C9:0B X509v3 Authority Key Identifier: keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:85:df:1a:65:fa:f4:b5:9d:9b:1b:7f:12:cc:48:70:88:9e: e5:28:fb:f0:fa:6e:99:fe:85:36:b6:44:15:d1:48:4d:bc:b8: 4f:22:ad:9b:77:4a:42:b1:ad:57:58:46:2f:41:79:0a:1c:66: 34:a5:3b:e0:e9:8d:86:9e:c7:f6:ad:5b:ad:bc:39:2f:9e:76: b3:e6:df:af:f6:b3:81:8c:74:6b:bb:1d:ff:06:ba:01:39:16: b6:07:10:1d:9b:db:2d:f5:c0:f5:f6:bb:80:1a:db:24:5a:8a: d5:61:48:53:6b:ba:fd:0c:c2:e6:2a:08:2d:f0:eb:40:39:63: ca:32:d0:c4:09:0a:07:f8:4e:14:7e:c0:2c:dc:8e:7a:54:58: 16:ac:5b:3f:69:01:27:25:ae:f7:d5:96:23:54:63:87:d9:21: 0a:92:b5:c1:10:bb:08:62:59:25:1d:d2:ab:22:8a:c4:a6:52: 4b:3c:5b:63:f6:7a:9b:6c:a6:2d:d4:07:33:6c:12:4b:92:4b: 2a:04:f9:7c:d3:56:35:30:d2:98:69:4e:36:4e:9d:99:5a:fb: be:98:78:30:4f:8a:7a:85:6a:87:9b:80:cf:ac:23:73:a3:c5: fc:14:7c:08:82:fa:db:c3:6f:08:3b:61:55:ce:15:81:00:92: 51:eb:ce:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfdl9fJEWj+3hU8pR8sFoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiMDNkY2E3NjMxOTkwMzE1MmYyNDZlMDVjMDY5ZmQxYTFk YjVjNTkwHhcNMjYwMjA5MTMwMTA5WhcNMjYwMjEwMTMwMTA5WjAzMTEwLwYDVQQD EygzODM3NjcwMWZjNDg4YmQ2ZjI5NDE1NmM2MjUzMzhiYzUxMjFjOTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxoYEmqkYJAhe/Ycrul0WTtMGkwx bJWmxZDLrHSuhI+prO2UjGOhy1tzl2ZhrkkR4MwWDy0OtBD26Xxom10h6YuNwuyJ 97mZF3bnG8IYVVJk6eZkSOsnDGPHwbB8pxfFURhD34Ovn8Wz0X4CT1vfdSFZM/Vp CtnzLUoIpHUC/dyJtWxktOIXZ+aHCAVHnDcnPy2HFCaCGWVxDHIhxcW2RTOHfrc+ 3fCtfW+RUergKpCdlVquOoktFFDDnf6FASWy4Cew0VmbL7s9da37//0bTvXBF/+j 2YxUmAtxrDtattlSw+Bgf3SOYN9pwaagAl6g1MSnDpDIseJyOUvkjFrI4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDg3ZwH8SIvW8pQVbGJTOLxRIckLMB8GA1UdIwQY MBaAFIsD3KdjGZAxUvJG4FwGn9Gh21xZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8zMGNkYmUtMTFlMS00NGNhLWI2NTQt MDI5ZTYzZjA4ODlhLzEvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8zMGNkYmUtMTFlMS00NGNhLWI2NTQtMDI5ZTYzZjA4ODlh LzEvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMYXfGmX6 9LWdmxt/EsxIcIie5Sj78Ppumf6FNrZEFdFITby4TyKtm3dKQrGtV1hGL0F5Chxm NKU74OmNhp7H9q1brbw5L552s+bfr/azgYx0a7sd/wa6ATkWtgcQHZvbLfXA9fa7 gBrbJFqK1WFIU2u6/QzC5ioILfDrQDljyjLQxAkKB/hOFH7ALNyOelRYFqxbP2kB JyWu99WWI1Rjh9khCpK1wRC7CGJZJR3SqyKKxKZSSzxbY/Z6m2ymLdQHM2wSS5JL KgT5fNNWNTDSmGlONk6dmVr7vph4ME+KeoVqh5uAz6wjc6PF/BR8CIL628NvCDth Vc4VgQCSUevOzw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:14 2026 by rpki-client