This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft File: IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft (raw, json) Hash identifier: cK8jUEwUguFGK6TXI7lk4JD0BTrQsoTRNR9g7aci0GA= Subject key identifier: A5:24:AF:7F:9B:73:16:2E:CC:90:A3:E2:AC:E9:9E:50:76:14:AA:B4 Authority key identifier: 21:9B:7C:14:5E:0A:CF:81:48:41:8D:54:24:7D:FD:DF:FC:19:FA:4C Certificate issuer: /CN=219b7c145e0acf8148418d54247dfddffc19fa4c Certificate serial: 019C435906D991F044475C747E330835F375 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZt8FF4Kz4FIQY1UJH393_wZ-kw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft Manifest number: 03C3 Signing time: Mon 09 Feb 2026 17:00:33 +0000 Manifest this update: Mon 09 Feb 2026 17:00:33 +0000 Manifest next update: Tue 10 Feb 2026 17:00:33 +0000 Files and hashes: 1: IZt8FF4Kz4FIQY1UJH393_wZ-kw.crl (hash: Z0vbwWYn39xyj3jo2RuKf/d3MkfuUR7SCMBVItoosk8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft rsync://rpki.ripe.net/repository/DEFAULT/IZt8FF4Kz4FIQY1UJH393_wZ-kw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:06:d9:91:f0:44:47:5c:74:7e:33:08:35:f3:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=219b7c145e0acf8148418d54247dfddffc19fa4c Validity Not Before: Feb 9 17:00:33 2026 GMT Not After : Feb 10 17:00:33 2026 GMT Subject: CN=a524af7f9b73162ecc90a3e2ace99e507614aab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:63:b7:c6:c8:75:27:4f:02:6f:ba:43:bf:30: 69:20:b8:a9:83:e5:38:81:12:a3:b5:e3:09:f7:13: 44:d6:54:17:99:31:27:53:aa:0d:1a:fd:db:f2:e3: 7d:71:aa:20:76:c8:78:51:3d:2b:47:b3:75:60:b7: 95:b9:d9:f4:93:b2:3d:db:b3:84:1c:d1:17:62:11: 21:eb:d3:50:b3:c3:b4:d0:66:58:6a:ea:bf:61:46: 10:41:95:43:1c:7a:96:9b:d2:88:33:ec:12:6e:af: 94:1d:55:05:49:39:26:16:a0:9b:56:9c:e6:7f:c9: f9:ff:38:de:a1:df:7c:bf:88:74:50:b6:ea:b4:a0: 32:f3:88:fa:6b:4e:cc:89:b6:2c:2e:86:7b:51:6f: 6b:6b:f9:1f:ad:a0:e5:bd:9e:0d:cd:f2:1b:ee:3e: 92:92:11:d4:f7:82:e5:90:ab:2e:e1:8e:80:1a:b8: 72:8f:2b:cc:b4:7b:ba:fa:18:c2:c1:50:1b:1d:a7: 26:fd:ee:9f:0f:43:1a:1b:ca:57:62:57:2c:d4:cd: 8a:cd:66:b7:63:a0:a7:a5:4e:5a:49:a0:b0:d9:3c: 76:45:a4:67:10:a4:b8:a1:49:9b:3e:1a:9b:b6:4f: c4:5e:96:4a:52:c0:e0:63:fb:cc:43:ee:fc:95:30: c5:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:24:AF:7F:9B:73:16:2E:CC:90:A3:E2:AC:E9:9E:50:76:14:AA:B4 X509v3 Authority Key Identifier: keyid:21:9B:7C:14:5E:0A:CF:81:48:41:8D:54:24:7D:FD:DF:FC:19:FA:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZt8FF4Kz4FIQY1UJH393_wZ-kw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/fa1004-e450-41ec-9d5e-4a1f7c1bdf78/1/IZt8FF4Kz4FIQY1UJH393_wZ-kw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:6e:af:58:c6:03:a8:d9:c6:99:17:55:e0:5b:50:f2:51:96: 59:17:dc:19:87:fa:a9:11:8d:8f:e0:aa:b2:e4:1e:6a:aa:52: a5:eb:0f:ed:bf:30:64:9c:73:a3:ec:cd:d7:9d:f0:65:c9:31: 87:4d:47:22:6a:e9:48:79:3a:bf:d0:a5:6b:05:7b:dc:4c:df: e6:6f:53:cc:85:74:19:93:cf:bf:a8:39:31:37:58:fa:06:f2: 25:10:87:fa:e5:b4:6a:91:43:ea:25:8c:a2:ed:c6:f8:17:04: 54:7d:0e:df:09:e1:3c:40:1d:8e:99:66:e1:00:29:f3:cb:11: 71:25:4e:35:56:81:40:ce:2d:ab:93:ab:cd:81:02:7e:82:0e: 5a:6c:4b:43:a1:21:c6:c4:86:82:5e:6d:d6:65:8f:2d:dc:80: c7:1e:8e:fc:6d:00:03:36:96:e3:25:16:5b:a7:2d:63:d4:31: 0a:06:ca:b1:b5:a9:0d:5d:19:1d:82:63:aa:00:ab:93:c1:fd: 46:fc:94:11:8e:1c:5d:ba:7a:c3:da:84:aa:cd:e7:2c:b4:b7: 5b:38:af:af:e8:89:21:03:75:f4:d2:63:b5:52:6a:d1:c1:ce: 05:d4:a0:62:3d:6f:fc:91:1b:eb:5c:1f:de:ff:df:3c:c4:54: fc:cf:81:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWQbZkfBER1x0fjMINfN1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxOWI3YzE0NWUwYWNmODE0ODQxOGQ1NDI0N2RmZGRmZmMx OWZhNGMwHhcNMjYwMjA5MTcwMDMzWhcNMjYwMjEwMTcwMDMzWjAzMTEwLwYDVQQD EyhhNTI0YWY3ZjliNzMxNjJlY2M5MGEzZTJhY2U5OWU1MDc2MTRhYWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6WO3xsh1J08Cb7pDvzBpILipg+U4 gRKjteMJ9xNE1lQXmTEnU6oNGv3b8uN9caogdsh4UT0rR7N1YLeVudn0k7I927OE HNEXYhEh69NQs8O00GZYauq/YUYQQZVDHHqWm9KIM+wSbq+UHVUFSTkmFqCbVpzm f8n5/zjeod98v4h0ULbqtKAy84j6a07MibYsLoZ7UW9ra/kfraDlvZ4NzfIb7j6S khHU94LlkKsu4Y6AGrhyjyvMtHu6+hjCwVAbHacm/e6fD0MaG8pXYlcs1M2KzWa3 Y6CnpU5aSaCw2Tx2RaRnEKS4oUmbPhqbtk/EXpZKUsDgY/vMQ+78lTDFvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKUkr3+bcxYuzJCj4qzpnlB2FKq0MB8GA1UdIwQY MBaAFCGbfBReCs+BSEGNVCR9/d/8GfpMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVp0OEZGNEt6NEZJUVkxVUpIMzkzX3daLWt3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9mYTEwMDQtZTQ1MC00MWVjLTlkNWUt NGExZjdjMWJkZjc4LzEvSVp0OEZGNEt6NEZJUVkxVUpIMzkzX3daLWt3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9mYTEwMDQtZTQ1MC00MWVjLTlkNWUtNGExZjdjMWJkZjc4 LzEvSVp0OEZGNEt6NEZJUVkxVUpIMzkzX3daLWt3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGm6vWMYD qNnGmRdV4FtQ8lGWWRfcGYf6qRGNj+CqsuQeaqpSpesP7b8wZJxzo+zN153wZckx h01HImrpSHk6v9ClawV73Ezf5m9TzIV0GZPPv6g5MTdY+gbyJRCH+uW0apFD6iWM ou3G+BcEVH0O3wnhPEAdjplm4QAp88sRcSVONVaBQM4tq5OrzYECfoIOWmxLQ6Eh xsSGgl5t1mWPLdyAxx6O/G0AAzaW4yUWW6ctY9QxCgbKsbWpDV0ZHYJjqgCrk8H9 RvyUEY4cXbp6w9qEqs3nLLS3Wzivr+iJIQN19NJjtVJq0cHOBdSgYj1v/JEb61wf 3v/fPMRU/M+Bzw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:40:37 2026 by rpki-client