This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft File: 1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft (raw, json) Hash identifier: YKU9+DTzOfVfJCteW2zQgTWTU0o9rZwlzayY3frUCEM= Subject key identifier: 05:34:6A:45:42:EC:70:D4:E0:94:74:74:79:56:E0:83:94:5C:F4:8A Authority key identifier: D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72 Certificate issuer: /CN=d422367433765b541a37390a998997b737c46472 Certificate serial: 019C45114642E22DB441A80003363CF18CB1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft Manifest number: 17A4 Signing time: Tue 10 Feb 2026 01:01:25 +0000 Manifest this update: Tue 10 Feb 2026 01:01:25 +0000 Manifest next update: Wed 11 Feb 2026 01:01:25 +0000 Files and hashes: 1: 1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl (hash: vFqKS/A3nL6qjLbLG7IKrHePD3h1wGVvIptHFO4clg4=) 2: nmpthTHAT4WUcq8Q3IMochngGiw.roa (hash: WMNeejxSLtwCCkkRDHZIffdNUGROwkauBCQwzToW+EM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:11:46:42:e2:2d:b4:41:a8:00:03:36:3c:f1:8c:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d422367433765b541a37390a998997b737c46472 Validity Not Before: Feb 10 01:01:25 2026 GMT Not After : Feb 11 01:01:25 2026 GMT Subject: CN=05346a4542ec70d4e09474747956e083945cf48a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c6:ef:c2:e3:2e:31:d8:18:bb:65:d2:c4:60: 5e:4c:d8:39:a7:2c:a1:9e:ec:d8:33:09:99:92:97: cd:f6:dc:90:2b:9c:6c:37:69:31:a9:33:fb:f8:98: 93:22:7d:14:e3:61:8f:84:68:04:1d:3d:cf:97:9a: 21:65:75:d4:8a:2d:be:f5:1e:3b:54:34:ae:9f:f6: f1:42:b0:9e:e9:4d:d1:89:07:7f:5c:1a:48:f4:00: 77:b7:51:f4:46:b8:4c:40:10:f6:36:d5:80:78:6a: db:75:97:46:3e:5c:8e:ff:d0:69:f4:e7:a5:7c:22: f1:87:d4:5d:35:5e:70:38:a6:05:61:87:b1:f3:b8: 23:ca:28:a7:c5:15:0e:70:ca:31:ca:42:5c:09:5d: bb:50:d4:cc:e0:ca:0a:9c:ed:d8:c9:d3:c8:55:1b: 74:69:a5:8a:b4:44:11:ee:c1:af:3a:e1:64:75:b5: 0a:2c:2d:c3:18:37:e8:8e:9e:7f:2c:90:f8:37:87: 9f:7c:2f:f9:db:6e:71:48:82:51:f1:e2:41:95:18: 71:bd:76:12:7d:ea:ae:a0:3f:3c:ad:c4:e5:91:86: 08:2e:33:4f:93:77:26:bf:69:03:30:fb:69:f8:b3: 61:9e:48:90:1e:8a:c3:de:bd:9a:70:d3:8d:65:4e: 03:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:34:6A:45:42:EC:70:D4:E0:94:74:74:79:56:E0:83:94:5C:F4:8A X509v3 Authority Key Identifier: keyid:D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:a3:5a:49:0d:b3:db:41:6e:cc:db:92:92:ef:1b:4f:7f:7b: b0:84:55:21:28:dc:6a:b1:8e:94:34:7a:bb:72:9e:95:12:c3: 64:db:36:98:2a:83:0c:72:4d:e7:62:a2:e5:dc:24:59:4f:5d: 56:eb:f7:c2:70:2f:c8:dd:1a:50:ff:2c:0f:1b:78:ec:c7:5b: b1:41:9b:cc:a6:99:b1:16:4d:cb:9b:d4:71:b6:b1:28:8b:ec: 20:61:e6:35:97:8a:c8:89:59:81:58:b2:5f:65:97:44:38:08: 85:e0:50:b7:8e:91:68:0a:70:9f:44:2c:b6:84:de:cf:96:06: c7:62:6c:36:82:25:9e:cc:fb:cd:25:d3:bb:ea:0a:8c:70:96: 7b:12:83:f7:dc:5b:25:c8:86:90:5d:96:86:88:f6:88:d9:ef: e3:17:79:07:a0:85:33:34:18:5b:46:0b:68:1e:d6:d0:9e:2f: 1b:f8:3d:18:a1:56:8f:39:1b:18:91:a7:72:f4:cf:23:bc:44: 08:00:5d:39:7e:e2:b2:f9:c0:9d:76:70:13:9b:de:6f:fa:01: 59:b7:65:9d:ce:a8:21:0f:f7:28:3b:cf:8f:b1:e9:db:61:d6: b4:2e:1b:80:73:bc:f2:45:be:de:eb:96:cc:a0:10:e8:bf:8c: f0:60:88:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEUZC4i20QagAAzY88YyxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MjIzNjc0MzM3NjViNTQxYTM3MzkwYTk5ODk5N2I3Mzdj NDY0NzIwHhcNMjYwMjEwMDEwMTI1WhcNMjYwMjExMDEwMTI1WjAzMTEwLwYDVQQD EygwNTM0NmE0NTQyZWM3MGQ0ZTA5NDc0NzQ3OTU2ZTA4Mzk0NWNmNDhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAncbvwuMuMdgYu2XSxGBeTNg5pyyh nuzYMwmZkpfN9tyQK5xsN2kxqTP7+JiTIn0U42GPhGgEHT3Pl5ohZXXUii2+9R47 VDSun/bxQrCe6U3RiQd/XBpI9AB3t1H0RrhMQBD2NtWAeGrbdZdGPlyO/9Bp9Oel fCLxh9RdNV5wOKYFYYex87gjyiinxRUOcMoxykJcCV27UNTM4MoKnO3YydPIVRt0 aaWKtEQR7sGvOuFkdbUKLC3DGDfojp5/LJD4N4effC/5225xSIJR8eJBlRhxvXYS fequoD88rcTlkYYILjNPk3cmv2kDMPtp+LNhnkiQHorD3r2acNONZU4D9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAU0akVC7HDU4JR0dHlW4IOUXPSKMB8GA1UdIwQY MBaAFNQiNnQzdltUGjc5CpmJl7c3xGRyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUNJMmRETjJXMVFhTnprS21ZbVh0emZFWkhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy80NWJlMzItODIxZi00NTE0LWFhMzEt YmM3NTQ2NjA0N2M5LzEvMUNJMmRETjJXMVFhTnprS21ZbVh0emZFWkhJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy80NWJlMzItODIxZi00NTE0LWFhMzEtYmM3NTQ2NjA0N2M5 LzEvMUNJMmRETjJXMVFhTnprS21ZbVh0emZFWkhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnKNaSQ2z 20FuzNuSku8bT397sIRVISjcarGOlDR6u3KelRLDZNs2mCqDDHJN52Ki5dwkWU9d Vuv3wnAvyN0aUP8sDxt47MdbsUGbzKaZsRZNy5vUcbaxKIvsIGHmNZeKyIlZgViy X2WXRDgIheBQt46RaApwn0QstoTez5YGx2JsNoIlnsz7zSXTu+oKjHCWexKD99xb JciGkF2Whoj2iNnv4xd5B6CFMzQYW0YLaB7W0J4vG/g9GKFWjzkbGJGncvTPI7xE CABdOX7isvnAnXZwE5veb/oBWbdlnc6oIQ/3KDvPj7Hp22HWtC4bgHO88kW+3uuW zKAQ6L+M8GCIiQ== -----END CERTIFICATE-----Generated at Tue Feb 10 02:52:02 2026 by rpki-client