This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.mft File: 0IpNevM5v1JVcjk3VdHPszzdta0.mft (raw, json) Hash identifier: N6oS2yWoWvESI6DI/q2W+wSmzB6EPVOHTu2A/zvT8CI= Subject key identifier: 41:4E:DB:58:C0:B9:7A:64:68:C6:3A:04:94:F8:07:BD:9E:6F:52:62 Authority key identifier: D0:8A:4D:7A:F3:39:BF:52:55:72:39:37:55:D1:CF:B3:3C:DD:B5:AD Certificate issuer: /CN=d08a4d7af339bf525572393755d1cfb33cddb5ad Certificate serial: 019C427D78DA1B2549BEC4AE6FFC516610D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0IpNevM5v1JVcjk3VdHPszzdta0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 13:00:45 +0000 Manifest this update: Mon 09 Feb 2026 13:00:45 +0000 Manifest next update: Tue 10 Feb 2026 13:00:45 +0000 Files and hashes: 1: 0IpNevM5v1JVcjk3VdHPszzdta0.crl (hash: sejJ5TCiuvcNauQ3f1jwVIDM3DIIQpvZcVy7+6Am6AM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.mft rsync://rpki.ripe.net/repository/DEFAULT/0IpNevM5v1JVcjk3VdHPszzdta0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:78:da:1b:25:49:be:c4:ae:6f:fc:51:66:10:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d08a4d7af339bf525572393755d1cfb33cddb5ad Validity Not Before: Feb 9 13:00:45 2026 GMT Not After : Feb 10 13:00:45 2026 GMT Subject: CN=414edb58c0b97a6468c63a0494f807bd9e6f5262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:cc:41:1a:f1:17:57:24:60:98:bd:b7:7b:a6: eb:69:ec:10:ff:5b:3d:ce:e5:89:d5:16:73:b6:72: 6a:4a:40:e1:53:34:3f:6d:78:7f:cb:ee:df:8a:89: 33:cd:3f:33:ed:fa:1b:a6:de:ec:5e:ad:80:62:96: 0a:d0:d3:7f:9b:9c:d9:aa:c8:ae:45:c0:b8:a8:14: 02:ab:0c:cd:7c:3a:e2:45:e2:f8:9e:08:f1:c7:41: ed:35:d8:cc:7b:b7:02:4a:2f:f6:25:90:09:b7:5a: 28:47:c2:ac:71:a8:c3:41:ae:98:da:3d:4a:d7:b4: 5f:1f:7c:36:68:ec:3e:70:61:2d:c0:2f:94:50:e7: 7f:20:72:ff:eb:25:e5:47:10:ae:64:40:08:bc:c5: 90:95:3f:11:aa:8e:46:90:17:14:6f:a2:8f:2d:89: e6:fe:95:44:78:9c:69:ef:53:a4:d3:b0:8a:d4:bc: 22:55:fc:ab:cb:f5:58:e5:e0:0d:72:d3:32:bf:f5: b5:c8:bb:f9:dc:b8:f3:c6:31:09:30:37:63:91:15: 97:1d:7e:14:26:26:91:70:e5:ca:1a:e4:d5:a1:2d: b4:88:5c:12:d9:ef:6d:0d:56:84:1a:71:64:be:fe: ee:be:1b:bd:88:63:4b:ed:f0:7b:e3:66:b1:f1:3f: b0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:4E:DB:58:C0:B9:7A:64:68:C6:3A:04:94:F8:07:BD:9E:6F:52:62 X509v3 Authority Key Identifier: keyid:D0:8A:4D:7A:F3:39:BF:52:55:72:39:37:55:D1:CF:B3:3C:DD:B5:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0IpNevM5v1JVcjk3VdHPszzdta0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:b9:73:d1:9e:8e:73:3a:52:c2:8a:f1:b6:3c:0b:1f:d0:7f: 4f:b8:fe:c8:38:18:ca:cd:eb:66:5b:6a:02:91:df:2c:ad:31: e2:a1:d0:51:c1:e4:07:05:cb:fc:60:2f:d2:9d:1e:b3:4a:80: a7:23:c1:ad:bc:c2:ad:c8:63:a0:31:f5:a9:16:e7:5b:ac:d0: 1a:d1:b2:f3:4f:0a:72:af:3a:50:e4:61:1e:db:e4:4d:62:e8: e1:ef:f1:a1:c1:8f:ae:32:ba:24:8f:7d:69:ab:81:f6:bb:08: 65:69:98:76:a7:8a:01:58:ad:a0:5c:82:e8:55:78:22:c0:44: 72:42:e4:1d:ea:c2:c4:c8:ca:2a:cc:32:75:f8:4f:02:31:cd: 23:21:68:c8:9d:40:f3:fc:80:9d:9f:37:05:2d:c1:3b:bc:53: 18:25:63:dc:8f:f4:27:84:ec:05:31:09:29:5b:dc:ac:c9:3d: 68:2c:9a:54:20:72:e1:a3:fe:86:65:2b:a7:fe:63:0e:8a:fc: 5e:56:26:cc:09:67:a1:b1:e4:9f:c9:74:49:a2:b4:ca:52:b5: a2:70:84:e4:56:d7:f0:06:c7:53:08:9a:a3:40:b6:b1:29:10: 67:1c:72:6c:36:98:69:31:0b:89:56:00:9a:3e:06:27:22:32: 57:9d:39:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXjaGyVJvsSub/xRZhDQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwOGE0ZDdhZjMzOWJmNTI1NTcyMzkzNzU1ZDFjZmIzM2Nk ZGI1YWQwHhcNMjYwMjA5MTMwMDQ1WhcNMjYwMjEwMTMwMDQ1WjAzMTEwLwYDVQQD Eyg0MTRlZGI1OGMwYjk3YTY0NjhjNjNhMDQ5NGY4MDdiZDllNmY1MjYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcxBGvEXVyRgmL23e6braewQ/1s9 zuWJ1RZztnJqSkDhUzQ/bXh/y+7fiokzzT8z7fobpt7sXq2AYpYK0NN/m5zZqsiu RcC4qBQCqwzNfDriReL4ngjxx0HtNdjMe7cCSi/2JZAJt1ooR8KscajDQa6Y2j1K 17RfH3w2aOw+cGEtwC+UUOd/IHL/6yXlRxCuZEAIvMWQlT8Rqo5GkBcUb6KPLYnm /pVEeJxp71Ok07CK1LwiVfyry/VY5eANctMyv/W1yLv53LjzxjEJMDdjkRWXHX4U JiaRcOXKGuTVoS20iFwS2e9tDVaEGnFkvv7uvhu9iGNL7fB742ax8T+wwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEFO21jAuXpkaMY6BJT4B72eb1JiMB8GA1UdIwQY MBaAFNCKTXrzOb9SVXI5N1XRz7M83bWtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMElwTmV2TTV2MUpWY2prM1ZkSFBzenpkdGEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8xNWZiOGEtOTI2MS00NjJkLWE1YWMt ZDVhMWVhOWVkYjA4LzEvMElwTmV2TTV2MUpWY2prM1ZkSFBzenpkdGEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8xNWZiOGEtOTI2MS00NjJkLWE1YWMtZDVhMWVhOWVkYjA4 LzEvMElwTmV2TTV2MUpWY2prM1ZkSFBzenpkdGEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVrlz0Z6O czpSworxtjwLH9B/T7j+yDgYys3rZltqApHfLK0x4qHQUcHkBwXL/GAv0p0es0qA pyPBrbzCrchjoDH1qRbnW6zQGtGy808Kcq86UORhHtvkTWLo4e/xocGPrjK6JI99 aauB9rsIZWmYdqeKAVitoFyC6FV4IsBEckLkHerCxMjKKswydfhPAjHNIyFoyJ1A 8/yAnZ83BS3BO7xTGCVj3I/0J4TsBTEJKVvcrMk9aCyaVCBy4aP+hmUrp/5jDor8 XlYmzAlnobHkn8l0SaK0ylK1onCE5FbX8AbHUwiao0C2sSkQZxxybDaYaTELiVYA mj4GJyIyV505CQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:31 2026 by rpki-client