This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.mft File: iFeQ87X0pUUjTzIwv4lmOFbge8c.mft (raw, json) Hash identifier: 8qQAkb8F0mNLsXfVTSlyVcS9Wv1At5iD6HZtk2VAFu4= Subject key identifier: 07:33:FA:BE:D3:F0:7F:50:4A:3F:A9:48:00:32:26:44:B5:89:1B:88 Authority key identifier: 88:57:90:F3:B5:F4:A5:45:23:4F:32:30:BF:89:66:38:56:E0:7B:C7 Certificate issuer: /CN=885790f3b5f4a545234f3230bf89663856e07bc7 Certificate serial: 019C43222C28D18CB63B1DD19A2707146904 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFeQ87X0pUUjTzIwv4lmOFbge8c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:38 +0000 Manifest this update: Mon 09 Feb 2026 16:00:38 +0000 Manifest next update: Tue 10 Feb 2026 16:00:38 +0000 Files and hashes: 1: iFeQ87X0pUUjTzIwv4lmOFbge8c.crl (hash: DdPU5qsjfyTOKTlUlXsVZGPrqp0F1Ad1oi75AafLl90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.mft rsync://rpki.ripe.net/repository/DEFAULT/iFeQ87X0pUUjTzIwv4lmOFbge8c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:2c:28:d1:8c:b6:3b:1d:d1:9a:27:07:14:69:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=885790f3b5f4a545234f3230bf89663856e07bc7 Validity Not Before: Feb 9 16:00:38 2026 GMT Not After : Feb 10 16:00:38 2026 GMT Subject: CN=0733fabed3f07f504a3fa94800322644b5891b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9b:a2:a6:04:c9:3c:b6:c9:c4:fa:f9:d8:84: 39:0e:23:46:5f:a4:de:d6:d8:4e:e1:3d:bb:66:e4: 55:d0:98:92:e0:fb:6e:20:05:d1:9a:72:e1:1c:47: 01:31:73:55:71:8c:3b:7a:02:3c:03:24:f5:6e:6c: bb:90:35:f7:c9:f9:be:3b:f3:98:30:53:7b:1c:d9: 44:74:71:87:97:08:24:53:10:55:42:48:7e:ab:2e: f3:07:ef:c5:61:e6:74:e2:c8:93:7c:59:f2:32:fa: 7d:78:69:9d:90:f1:31:f9:e6:dc:c4:a0:26:06:90: ad:aa:03:76:3b:67:73:6b:c0:7c:76:0b:da:64:d1: a6:3d:ad:63:4f:2f:93:84:99:b7:c3:1f:ab:5d:68: 98:13:57:aa:d8:0e:32:6e:28:df:e2:64:2a:0a:a2: d6:3c:a8:6c:ee:4a:da:95:cf:8e:56:8b:47:b9:d9: d9:c5:54:7d:40:83:99:92:0a:07:b2:73:01:bf:72: 08:f5:3c:76:7d:29:b8:5b:3b:94:dd:11:3d:9e:c3: 5a:5a:14:1e:d8:f5:a0:49:0c:d6:0e:68:fd:bc:b6: 35:59:59:b7:dd:98:f2:7a:ea:9c:d0:22:2b:e9:c9: f4:89:8e:c9:5f:9e:06:c5:a4:68:a8:83:0c:60:e7: b6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:33:FA:BE:D3:F0:7F:50:4A:3F:A9:48:00:32:26:44:B5:89:1B:88 X509v3 Authority Key Identifier: keyid:88:57:90:F3:B5:F4:A5:45:23:4F:32:30:BF:89:66:38:56:E0:7B:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFeQ87X0pUUjTzIwv4lmOFbge8c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a40bbb-556a-40c5-b97c-32b2be06222c/1/iFeQ87X0pUUjTzIwv4lmOFbge8c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:0c:15:64:9b:ed:d1:87:af:e0:89:b9:b3:a2:de:29:bb:90: e0:fb:6a:b1:b9:6b:0f:18:0c:f7:c4:69:fe:91:ff:64:1d:82: b0:72:b7:2f:6a:60:d2:69:e6:32:31:a7:78:ee:c2:49:e7:79: a0:4b:32:56:89:25:78:68:7c:fb:7e:0e:6e:55:26:69:84:18: 31:34:af:29:cc:2a:1d:89:e9:3a:ae:c4:ad:08:b6:e8:55:d7: e7:26:c7:a5:03:72:f9:b0:a2:d2:8f:ad:3b:e4:6c:c7:c9:cb: f4:84:85:ad:4c:70:0a:2e:2f:e1:5c:f1:cb:53:63:75:05:87: f4:53:05:a2:76:05:81:eb:39:14:ad:7e:2f:c7:94:0a:3e:ed: aa:a7:c9:31:94:7f:3f:b5:fb:68:4c:65:60:e5:b2:6a:77:b8: df:a2:69:1a:bb:48:c5:76:a1:1f:eb:b3:49:21:34:ec:54:70: ec:23:78:67:a4:d7:d8:ba:3e:7e:f7:05:2f:4c:b3:0f:2b:6c: f3:e5:34:7d:5e:cf:de:a8:2c:50:9d:0f:60:24:71:bf:73:4c: 23:8c:c2:fa:7e:be:11:b1:f0:a4:93:92:46:6a:0e:b5:37:39: bd:d4:f4:1b:c7:84:6e:66:3c:ad:f0:df:03:84:1d:9b:25:fc: 77:6d:36:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIiwo0Yy2Ox3RmicHFGkEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4NTc5MGYzYjVmNGE1NDUyMzRmMzIzMGJmODk2NjM4NTZl MDdiYzcwHhcNMjYwMjA5MTYwMDM4WhcNMjYwMjEwMTYwMDM4WjAzMTEwLwYDVQQD EygwNzMzZmFiZWQzZjA3ZjUwNGEzZmE5NDgwMDMyMjY0NGI1ODkxYjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpuipgTJPLbJxPr52IQ5DiNGX6Te 1thO4T27ZuRV0JiS4PtuIAXRmnLhHEcBMXNVcYw7egI8AyT1bmy7kDX3yfm+O/OY MFN7HNlEdHGHlwgkUxBVQkh+qy7zB+/FYeZ04siTfFnyMvp9eGmdkPEx+ebcxKAm BpCtqgN2O2dza8B8dgvaZNGmPa1jTy+ThJm3wx+rXWiYE1eq2A4ybijf4mQqCqLW PKhs7kralc+OVotHudnZxVR9QIOZkgoHsnMBv3II9Tx2fSm4WzuU3RE9nsNaWhQe 2PWgSQzWDmj9vLY1WVm33Zjyeuqc0CIr6cn0iY7JX54GxaRoqIMMYOe2eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAcz+r7T8H9QSj+pSAAyJkS1iRuIMB8GA1UdIwQY MBaAFIhXkPO19KVFI08yML+JZjhW4HvHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUZlUTg3WDBwVVVqVHpJd3Y0bG1PRmJnZThjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hNDBiYmItNTU2YS00MGM1LWI5N2Mt MzJiMmJlMDYyMjJjLzEvaUZlUTg3WDBwVVVqVHpJd3Y0bG1PRmJnZThjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9hNDBiYmItNTU2YS00MGM1LWI5N2MtMzJiMmJlMDYyMjJj LzEvaUZlUTg3WDBwVVVqVHpJd3Y0bG1PRmJnZThjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArgwVZJvt 0Yev4Im5s6LeKbuQ4PtqsblrDxgM98Rp/pH/ZB2CsHK3L2pg0mnmMjGneO7CSed5 oEsyVokleGh8+34OblUmaYQYMTSvKcwqHYnpOq7ErQi26FXX5ybHpQNy+bCi0o+t O+Rsx8nL9ISFrUxwCi4v4Vzxy1NjdQWH9FMFonYFges5FK1+L8eUCj7tqqfJMZR/ P7X7aExlYOWyane436JpGrtIxXahH+uzSSE07FRw7CN4Z6TX2Lo+fvcFL0yzDyts 8+U0fV7P3qgsUJ0PYCRxv3NMI4zC+n6+EbHwpJOSRmoOtTc5vdT0G8eEbmY8rfDf A4QdmyX8d202lA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:13 2026 by rpki-client