This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft File: IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft (raw, json) Hash identifier: uhuvTPfSQfxr4OgpnzW5MMMFZ9fcGPkbklRw/k5o9TA= Subject key identifier: D7:17:EA:DE:0F:EF:51:6A:E5:CA:F9:09:CA:D5:0E:AF:41:74:48:2A Authority key identifier: 22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B Certificate issuer: /CN=2224fd65003c39490abeaa9e1efe5f20246dc77b Certificate serial: 019C43904421D4993CD3C75779D74DA6B2C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft Manifest number: 0E8D Signing time: Mon 09 Feb 2026 18:00:53 +0000 Manifest this update: Mon 09 Feb 2026 18:00:53 +0000 Manifest next update: Tue 10 Feb 2026 18:00:53 +0000 Files and hashes: 1: 9gPhrTVXXrWCqCjsm71By0RzzoI.roa (hash: 7vmmrUGhqUOQFhjNyWVb6vw1/SSr/8CDWs1hZa2ebfU=) 2: IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl (hash: GMZxsAMQ5RwcjaztOhNDUhH8ls+JoxeJq9o6J5KnuSs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:44:21:d4:99:3c:d3:c7:57:79:d7:4d:a6:b2:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2224fd65003c39490abeaa9e1efe5f20246dc77b Validity Not Before: Feb 9 18:00:53 2026 GMT Not After : Feb 10 18:00:53 2026 GMT Subject: CN=d717eade0fef516ae5caf909cad50eaf4174482a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1b:41:ec:03:87:88:60:d3:01:ca:b1:32:3a: 59:52:1f:2e:13:a3:5a:dc:40:88:24:04:8c:43:b4: 15:b9:96:ce:5a:d3:ce:82:8d:eb:54:65:42:fa:2f: cf:2a:77:fe:63:bf:54:81:27:7e:ff:98:4c:91:c4: 4f:bd:ec:6b:59:6e:13:f9:f6:22:c0:70:b9:9e:51: 00:3f:f0:9d:79:65:ba:f8:2e:60:b7:b1:bb:2d:da: 7c:10:8c:48:cb:35:82:4f:a2:59:38:b3:ff:16:91: 55:c5:4d:03:ad:c4:75:20:c4:41:10:97:0e:1d:0c: c6:ee:dd:fc:c2:59:4e:10:a7:c1:19:6a:c6:1d:c0: ba:fd:3b:67:21:d5:3e:25:a6:f0:20:17:ee:e8:d2: 4b:0c:83:a3:2e:79:5c:e7:e7:a8:5d:b4:e7:8b:e3: c3:1f:8c:86:1f:ef:ac:a6:86:24:58:3c:ca:fc:c5: 60:3b:ea:aa:fb:11:60:1f:93:6c:93:f5:11:01:13: 66:00:0b:3e:6e:46:81:ff:1b:26:87:9b:fd:8f:7d: c8:4d:a0:de:fe:c2:1e:c7:54:0a:73:d7:3e:e9:fa: e2:a5:70:19:bb:5c:4b:4d:f6:1c:66:0a:68:6c:67: 37:7c:ea:e7:66:50:f9:c0:9f:a9:b3:4a:00:a1:4e: af:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:17:EA:DE:0F:EF:51:6A:E5:CA:F9:09:CA:D5:0E:AF:41:74:48:2A X509v3 Authority Key Identifier: keyid:22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:cf:de:e5:f4:8e:8d:c6:ed:f2:0b:ad:70:71:62:ec:df:24: 78:06:e8:f1:ed:10:ef:8d:3a:a7:36:bf:17:3d:34:5a:ba:85: e6:c5:78:4c:fa:89:4f:d0:d8:ff:17:fd:3e:24:92:9d:04:6f: f2:74:54:93:2b:63:74:38:4e:72:3c:53:1c:c7:ea:d9:2e:0a: c9:b8:1a:f4:69:94:a1:80:8e:f9:04:ea:75:5c:39:2f:97:3b: 6b:44:3b:ba:d2:1a:5b:85:d5:79:a3:a1:ae:c0:6d:e0:03:e3: 5d:bf:f1:71:93:ad:69:3a:23:68:dd:fe:8c:43:43:f6:73:0a: 9e:bf:27:08:db:34:77:05:96:4c:d0:c8:64:b0:32:f7:a4:92: 90:21:39:44:8f:26:6e:72:39:1e:e5:1c:ca:b7:d9:97:06:31: 8c:3d:4c:7e:05:af:de:82:fe:aa:de:6c:c7:d2:91:09:13:62: b4:25:95:3a:be:ec:ab:45:94:df:68:1b:e3:9e:79:39:08:0f: 12:49:13:f5:7f:69:1b:7d:1c:5e:80:44:9c:1a:74:03:37:0e: 94:cb:82:8a:11:7f:0d:c7:11:46:ea:66:cd:e8:5e:81:78:d7: 84:43:3d:b4:e9:71:a8:0d:3d:4d:ca:7a:88:10:d7:8a:3a:02: 7e:5a:d6:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkEQh1Jk808dXeddNprLIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMjRmZDY1MDAzYzM5NDkwYWJlYWE5ZTFlZmU1ZjIwMjQ2 ZGM3N2IwHhcNMjYwMjA5MTgwMDUzWhcNMjYwMjEwMTgwMDUzWjAzMTEwLwYDVQQD EyhkNzE3ZWFkZTBmZWY1MTZhZTVjYWY5MDljYWQ1MGVhZjQxNzQ0ODJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxtB7AOHiGDTAcqxMjpZUh8uE6Na 3ECIJASMQ7QVuZbOWtPOgo3rVGVC+i/PKnf+Y79UgSd+/5hMkcRPvexrWW4T+fYi wHC5nlEAP/CdeWW6+C5gt7G7Ldp8EIxIyzWCT6JZOLP/FpFVxU0DrcR1IMRBEJcO HQzG7t38wllOEKfBGWrGHcC6/TtnIdU+JabwIBfu6NJLDIOjLnlc5+eoXbTni+PD H4yGH++spoYkWDzK/MVgO+qq+xFgH5Nsk/URARNmAAs+bkaB/xsmh5v9j33ITaDe /sIex1QKc9c+6fripXAZu1xLTfYcZgpobGc3fOrnZlD5wJ+ps0oAoU6vywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNcX6t4P71Fq5cr5CcrVDq9BdEgqMB8GA1UdIwQY MBaAFCIk/WUAPDlJCr6qnh7+XyAkbcd7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWlUOVpRQThPVWtLdnFxZUh2NWZJQ1J0eDNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS85YjQ5MDAtMDg1YS00YTBlLWE5OGYt YzZkYjM0YzJmN2U5LzEvSWlUOVpRQThPVWtLdnFxZUh2NWZJQ1J0eDNzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS85YjQ5MDAtMDg1YS00YTBlLWE5OGYtYzZkYjM0YzJmN2U5 LzEvSWlUOVpRQThPVWtLdnFxZUh2NWZJQ1J0eDNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEM/e5fSO jcbt8gutcHFi7N8keAbo8e0Q7406pza/Fz00WrqF5sV4TPqJT9DY/xf9PiSSnQRv 8nRUkytjdDhOcjxTHMfq2S4Kybga9GmUoYCO+QTqdVw5L5c7a0Q7utIaW4XVeaOh rsBt4APjXb/xcZOtaTojaN3+jEND9nMKnr8nCNs0dwWWTNDIZLAy96SSkCE5RI8m bnI5HuUcyrfZlwYxjD1MfgWv3oL+qt5sx9KRCRNitCWVOr7sq0WU32gb4555OQgP EkkT9X9pG30cXoBEnBp0AzcOlMuCihF/DccRRupmzehegXjXhEM9tOlxqA09Tcp6 iBDXijoCflrW3w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:36 2026 by rpki-client