This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft File: IOI90FhJzIEyVauNG4U_ucRdhpQ.mft (raw, json) Hash identifier: hkiNUEQR4Irwd4bJQn5AEByQmFPbAoUIAp4rCz/84Qw= Subject key identifier: 20:79:4D:02:6E:86:CD:28:6A:17:46:55:C8:3F:92:B9:3F:56:79:9E Authority key identifier: 20:E2:3D:D0:58:49:CC:81:32:55:AB:8D:1B:85:3F:B9:C4:5D:86:94 Certificate issuer: /CN=20e23dd05849cc813255ab8d1b853fb9c45d8694 Certificate serial: 019C43596A46385FADE0008E155FA7642F3B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft Manifest number: 0210 Signing time: Mon 09 Feb 2026 17:00:59 +0000 Manifest this update: Mon 09 Feb 2026 17:00:59 +0000 Manifest next update: Tue 10 Feb 2026 17:00:59 +0000 Files and hashes: 1: G06i-715DWwzIGeO7ozFvpuVglo.roa (hash: NAlau0Ue6s6TBIRjFefwCaMBe6vvRr2rxlG4HQ5m2NM=) 2: IOI90FhJzIEyVauNG4U_ucRdhpQ.crl (hash: ZghPRn3D5m7kajzap7Wx1vaRkk6/J59IdYsWDPhbzZU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:6a:46:38:5f:ad:e0:00:8e:15:5f:a7:64:2f:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20e23dd05849cc813255ab8d1b853fb9c45d8694 Validity Not Before: Feb 9 17:00:59 2026 GMT Not After : Feb 10 17:00:59 2026 GMT Subject: CN=20794d026e86cd286a174655c83f92b93f56799e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:64:4c:19:a0:fb:00:ac:27:e0:a5:ab:04:eb: 92:d8:0e:c5:8c:86:bb:a9:fa:32:4c:91:50:db:b4: 91:96:ee:27:f7:fa:2f:31:ad:a1:86:3a:16:c2:65: d8:da:1a:b7:a3:87:05:af:ad:80:6f:56:83:64:ed: e1:e7:03:37:fe:e2:fe:7b:78:47:03:bc:2e:48:fb: 25:7e:56:d6:cf:8c:d1:00:dd:c1:32:71:dc:b2:27: d2:c3:7a:33:0b:9f:3d:32:c6:e8:7c:ce:c3:fe:58: cd:d3:68:92:8f:51:b4:27:aa:99:40:82:22:04:64: 79:60:ce:80:2c:14:3e:77:7a:ee:55:b0:b3:28:38: ee:dc:2f:6d:7d:cf:c2:b0:c3:e1:04:11:50:a3:ca: 52:73:ae:af:08:75:87:ee:cb:29:96:8f:78:93:e2: 23:82:43:9b:d9:f7:f6:4b:d3:8b:5e:f5:82:bb:3f: 1e:b1:52:a8:11:7b:b6:66:3a:53:79:52:49:c9:45: 5c:8f:c8:03:ea:86:b8:f9:3d:44:06:2d:cf:b2:25: f1:03:a6:3d:5a:c9:8d:ab:83:8d:7d:20:c0:76:63: c6:ac:f6:6d:97:b4:aa:ae:60:13:6d:50:1c:bb:8f: a9:12:74:bf:cc:63:d7:04:e9:cd:34:69:10:d1:98: b0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:79:4D:02:6E:86:CD:28:6A:17:46:55:C8:3F:92:B9:3F:56:79:9E X509v3 Authority Key Identifier: keyid:20:E2:3D:D0:58:49:CC:81:32:55:AB:8D:1B:85:3F:B9:C4:5D:86:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:f8:4e:c3:f4:3f:1c:30:a5:f6:9e:eb:1c:af:9e:dc:f5:ab: 76:ca:ed:bd:5c:bd:6a:de:41:5e:c4:5a:c9:22:ec:cf:b9:1b: 74:f1:b5:01:91:01:88:de:ca:aa:82:5b:f3:a9:34:be:78:a4: 25:49:0e:84:de:65:07:7c:9f:07:77:f6:60:f4:6e:0a:8c:49: 01:35:4e:08:cf:1f:54:fa:98:c8:92:b0:d0:3c:e1:e7:a6:d7: 6f:59:c5:1c:58:05:f2:c8:2a:7f:7e:17:96:22:19:24:1e:5f: 62:f7:5b:7b:97:cc:ab:c2:93:87:05:23:23:df:89:2d:8d:40: f5:49:c1:3b:23:fb:1b:20:77:25:94:e8:d0:2c:6a:86:c5:a6: 87:b4:a6:4e:25:01:7c:90:ea:9e:bf:36:10:66:fa:50:4b:7c: d1:5e:f0:1e:39:5f:bd:c8:63:04:c7:ea:12:d3:72:be:04:a5: 39:57:f8:c5:77:4a:73:8a:da:48:3f:f1:43:7e:57:fb:78:9e: f1:a5:04:ba:4a:8b:42:91:47:00:91:c7:f4:37:bf:87:8b:b8: db:11:03:55:4b:c8:9e:15:cd:15:f2:4f:60:9f:ca:cc:6d:5f: 0b:fb:5f:12:83:3a:ac:39:91:f4:02:04:3b:9e:46:51:e8:d8: 48:2c:0f:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWpGOF+t4ACOFV+nZC87MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZTIzZGQwNTg0OWNjODEzMjU1YWI4ZDFiODUzZmI5YzQ1 ZDg2OTQwHhcNMjYwMjA5MTcwMDU5WhcNMjYwMjEwMTcwMDU5WjAzMTEwLwYDVQQD EygyMDc5NGQwMjZlODZjZDI4NmExNzQ2NTVjODNmOTJiOTNmNTY3OTllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh2RMGaD7AKwn4KWrBOuS2A7FjIa7 qfoyTJFQ27SRlu4n9/ovMa2hhjoWwmXY2hq3o4cFr62Ab1aDZO3h5wM3/uL+e3hH A7wuSPslflbWz4zRAN3BMnHcsifSw3ozC589MsbofM7D/ljN02iSj1G0J6qZQIIi BGR5YM6ALBQ+d3ruVbCzKDju3C9tfc/CsMPhBBFQo8pSc66vCHWH7ssplo94k+Ij gkOb2ff2S9OLXvWCuz8esVKoEXu2ZjpTeVJJyUVcj8gD6oa4+T1EBi3PsiXxA6Y9 WsmNq4ONfSDAdmPGrPZtl7SqrmATbVAcu4+pEnS/zGPXBOnNNGkQ0ZiwyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCB5TQJuhs0oahdGVcg/krk/VnmeMB8GA1UdIwQY MBaAFCDiPdBYScyBMlWrjRuFP7nEXYaUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jMTY3MTctODU1ZC00MzkxLWI3OWYt Yjg4OGEzMTI0NDU0LzEvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9jMTY3MTctODU1ZC00MzkxLWI3OWYtYjg4OGEzMTI0NDU0 LzEvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiPhOw/Q/ HDCl9p7rHK+e3PWrdsrtvVy9at5BXsRaySLsz7kbdPG1AZEBiN7KqoJb86k0vnik JUkOhN5lB3yfB3f2YPRuCoxJATVOCM8fVPqYyJKw0Dzh56bXb1nFHFgF8sgqf34X liIZJB5fYvdbe5fMq8KThwUjI9+JLY1A9UnBOyP7GyB3JZTo0CxqhsWmh7SmTiUB fJDqnr82EGb6UEt80V7wHjlfvchjBMfqEtNyvgSlOVf4xXdKc4raSD/xQ35X+3ie 8aUEukqLQpFHAJHH9De/h4u42xEDVUvInhXNFfJPYJ/KzG1fC/tfEoM6rDmR9AIE O55GUejYSCwP/Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:54 2026 by rpki-client