This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json) Hash identifier: k6Zy2m6gY0nHXPThXAXlE9E8VFY6e013cyHLQ4BjL2o= Subject key identifier: 24:25:13:E7:24:A6:60:6F:46:3D:BE:D3:58:CE:57:BB:89:3A:96:54 Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2 Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2 Certificate serial: 019C41A14FCEC3D53AB840B7656245E8AC81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft Manifest number: 02C3 Signing time: Mon 09 Feb 2026 09:00:16 +0000 Manifest this update: Mon 09 Feb 2026 09:00:16 +0000 Manifest next update: Tue 10 Feb 2026 09:00:16 +0000 Files and hashes: 1: 3IMviFqKeTkgcM4hJ3DCovEJPT4.roa (hash: PJ8bbhBGDwD8QZsH/L9/+WbI+Jn53tual+W0DILWDvw=) 2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: 61bMg39tZcZaVZ31INc7Atn3V1Hb5PKV0NS/qXG9bjk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:4f:ce:c3:d5:3a:b8:40:b7:65:62:45:e8:ac:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2 Validity Not Before: Feb 9 09:00:16 2026 GMT Not After : Feb 10 09:00:16 2026 GMT Subject: CN=242513e724a6606f463dbed358ce57bb893a9654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4f:58:48:0d:c3:50:f6:18:a8:b2:58:1c:eb: 0b:64:dc:9e:ca:0c:38:6a:6b:b8:78:78:34:5c:2c: 8f:16:d3:4b:9b:07:fd:2d:ff:81:ed:0b:48:8e:4f: 8d:e5:b4:1d:d1:d2:3d:3f:22:1b:9c:c8:b1:48:53: b3:3f:10:c8:9f:f7:09:69:67:98:32:ce:76:ee:4b: 3f:0d:3e:0a:3e:7f:61:e0:b3:c2:f0:1c:80:b3:e7: 8a:85:b2:45:78:5f:7b:eb:7d:7e:65:5c:77:a2:65: 37:d5:78:ca:60:e5:34:33:28:62:1b:de:93:9e:ca: 8f:67:e7:04:5b:bc:cc:c7:94:44:62:dd:33:92:df: 69:97:f9:c3:a6:9e:80:f1:f9:40:7e:89:1f:fa:79: 4b:16:0e:6e:d8:36:65:55:d3:7a:7d:df:ee:a3:5b: a0:e7:7e:e5:7e:47:53:71:49:99:52:76:1e:2c:f7: 09:15:c4:1f:7c:02:b0:30:ca:77:74:eb:40:7a:ae: 23:0e:37:32:90:c6:f8:a7:ff:d9:bc:60:cd:13:bf: 48:ed:a5:76:6e:08:8b:1c:0c:c3:48:6c:b8:18:f8: 67:46:54:65:4f:f9:e1:83:93:87:54:b9:1c:0c:b8: 00:93:22:ac:c4:06:0f:e7:24:88:38:ed:06:e5:e0: 04:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:25:13:E7:24:A6:60:6F:46:3D:BE:D3:58:CE:57:BB:89:3A:96:54 X509v3 Authority Key Identifier: keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:7d:3d:c2:f5:60:a8:4c:be:18:70:c8:05:c4:9c:c5:62:e2: 57:ac:98:ce:21:4b:ee:63:45:41:47:26:27:8a:8e:a9:99:7c: 4c:5b:5d:b2:b1:d5:7c:e8:74:64:d7:d0:3b:e3:30:a1:fe:25: 23:7c:31:bd:5f:8a:43:86:6e:c4:4e:c6:ee:8e:b8:8f:9d:19: a4:e1:60:cc:17:74:ef:eb:8f:69:a9:96:2c:2a:c2:a5:1c:b9: c0:1f:e4:dc:35:91:e9:5a:45:86:21:38:92:0a:20:7c:80:cf: d4:c1:2e:14:00:b9:0e:a8:05:71:eb:6b:13:a1:f8:b9:20:d9: e1:41:30:4d:0f:c3:93:cd:63:ce:11:d8:fb:60:ea:23:3c:41: 90:d0:20:de:57:79:d9:48:92:64:33:b5:ba:fc:20:53:6f:87: 48:79:a3:75:6c:e6:6d:b1:b8:d0:92:c8:a7:fc:cd:04:4d:72: 35:80:b8:02:f8:29:f3:b4:45:51:80:1a:7f:37:34:0c:dc:93: 31:56:29:c3:32:55:d0:72:5b:84:8f:fc:fb:1f:e7:6e:ea:64: 4a:c5:d3:70:dd:2c:03:90:33:46:b9:76:43:ed:d8:50:a3:ac: be:2d:44:13:1e:32:06:a4:4d:e2:5a:a5:72:b0:18:ea:79:74: b0:2f:f7:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoU/Ow9U6uEC3ZWJF6KyBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NWMwOTUyMmY2MzVmY2FmYTI5YmNlYmFjNzJjODk0ZTRm ZmVlZDIwHhcNMjYwMjA5MDkwMDE2WhcNMjYwMjEwMDkwMDE2WjAzMTEwLwYDVQQD EygyNDI1MTNlNzI0YTY2MDZmNDYzZGJlZDM1OGNlNTdiYjg5M2E5NjU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsU9YSA3DUPYYqLJYHOsLZNyeygw4 amu4eHg0XCyPFtNLmwf9Lf+B7QtIjk+N5bQd0dI9PyIbnMixSFOzPxDIn/cJaWeY Ms527ks/DT4KPn9h4LPC8ByAs+eKhbJFeF97631+ZVx3omU31XjKYOU0MyhiG96T nsqPZ+cEW7zMx5REYt0zkt9pl/nDpp6A8flAfokf+nlLFg5u2DZlVdN6fd/uo1ug 537lfkdTcUmZUnYeLPcJFcQffAKwMMp3dOtAeq4jDjcykMb4p//ZvGDNE79I7aV2 bgiLHAzDSGy4GPhnRlRlT/nhg5OHVLkcDLgAkyKsxAYP5ySIOO0G5eAEywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCQlE+ckpmBvRj2+01jOV7uJOpZUMB8GA1UdIwQY MBaAFIhcCVIvY1/K+im866xyyJTk/+7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hMDJjMDgtZjMxYi00OGM1LWFkNDct ZjgzYjhkMDQwODdjLzEvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hMDJjMDgtZjMxYi00OGM1LWFkNDctZjgzYjhkMDQwODdj LzEvaUZ3SlVpOWpYOHI2S2J6cnJITElsT1RfN3RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAn09wvVg qEy+GHDIBcScxWLiV6yYziFL7mNFQUcmJ4qOqZl8TFtdsrHVfOh0ZNfQO+Mwof4l I3wxvV+KQ4ZuxE7G7o64j50ZpOFgzBd07+uPaamWLCrCpRy5wB/k3DWR6VpFhiE4 kgogfIDP1MEuFAC5DqgFcetrE6H4uSDZ4UEwTQ/Dk81jzhHY+2DqIzxBkNAg3ld5 2UiSZDO1uvwgU2+HSHmjdWzmbbG40JLIp/zNBE1yNYC4Avgp87RFUYAafzc0DNyT MVYpwzJV0HJbhI/8+x/nbupkSsXTcN0sA5AzRrl2Q+3YUKOsvi1EEx4yBqRN4lql crAY6nl0sC/3GQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:26 2026 by rpki-client