This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft File: IClZ7xuVPXmKoPVkMafxG2vhltY.mft (raw, json) Hash identifier: lK1isF7wrtyTqffQXYJkVxORZZ66EFb4V8+xbdGuzlE= Subject key identifier: F2:D4:8F:6F:98:2C:39:73:28:18:9C:0F:6F:A1:A2:0D:4A:89:3B:85 Authority key identifier: 20:29:59:EF:1B:95:3D:79:8A:A0:F5:64:31:A7:F1:1B:6B:E1:96:D6 Certificate issuer: /CN=202959ef1b953d798aa0f56431a7f11b6be196d6 Certificate serial: 019C420F4D443FAEB734FECC6F8A990E71DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IClZ7xuVPXmKoPVkMafxG2vhltY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft Manifest number: 1408 Signing time: Mon 09 Feb 2026 11:00:24 +0000 Manifest this update: Mon 09 Feb 2026 11:00:24 +0000 Manifest next update: Tue 10 Feb 2026 11:00:24 +0000 Files and hashes: 1: IClZ7xuVPXmKoPVkMafxG2vhltY.crl (hash: wn8os7XC+Z+GP0kJyzYEdQFuiAdsA1+15YGuNuHTA6w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft rsync://rpki.ripe.net/repository/DEFAULT/IClZ7xuVPXmKoPVkMafxG2vhltY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:4d:44:3f:ae:b7:34:fe:cc:6f:8a:99:0e:71:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202959ef1b953d798aa0f56431a7f11b6be196d6 Validity Not Before: Feb 9 11:00:24 2026 GMT Not After : Feb 10 11:00:24 2026 GMT Subject: CN=f2d48f6f982c397328189c0f6fa1a20d4a893b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f4:79:9b:87:cb:5e:a0:c3:e7:e0:a5:f5:a4: 05:10:01:39:d4:d2:e2:75:d2:c9:51:bb:4c:52:8f: 03:12:a7:e9:f6:42:17:48:d7:7a:1d:ab:d4:01:86: cf:06:bf:0a:a8:4d:1c:30:fd:de:75:41:62:ea:1a: f7:30:98:08:ca:9f:b9:f6:83:44:e2:7b:6a:f1:78: a8:13:24:40:c7:94:0b:e6:2a:c4:73:1c:12:cf:03: 73:23:64:e0:b0:99:21:85:dd:79:8d:b2:ba:70:4f: 4f:27:3e:d9:c9:df:d3:8f:22:46:ca:c7:5c:d4:c5: 15:02:ba:85:4d:ee:7d:a7:a0:be:60:86:c6:3c:79: 9a:ba:97:5b:ef:82:4c:c2:a4:b7:c4:83:f8:25:fc: e3:62:cf:50:d4:df:e2:40:6d:0c:b1:78:c3:71:5d: 22:36:4e:2b:84:16:81:1b:c2:ff:7d:f4:b2:bc:63: 33:2e:53:e5:04:27:af:cb:b1:6b:ee:08:16:ff:84: b0:b2:93:eb:ce:1c:49:c6:dd:89:91:7c:8b:ff:e3: b1:52:a2:59:44:ec:19:00:bf:48:7a:1b:7d:dc:b6: 90:96:dc:65:9d:da:0b:83:cd:14:69:95:3a:5c:63: 55:28:d3:d7:6b:6d:89:b0:18:b6:5f:9d:52:4f:a8: 72:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D4:8F:6F:98:2C:39:73:28:18:9C:0F:6F:A1:A2:0D:4A:89:3B:85 X509v3 Authority Key Identifier: keyid:20:29:59:EF:1B:95:3D:79:8A:A0:F5:64:31:A7:F1:1B:6B:E1:96:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IClZ7xuVPXmKoPVkMafxG2vhltY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f2ccc0-3732-4351-b770-6b0da9e4fb10/1/IClZ7xuVPXmKoPVkMafxG2vhltY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:d3:e9:0c:b4:cf:78:a7:7d:3d:25:f7:73:74:7f:eb:1d:1c: 02:04:1e:fb:96:da:90:e6:75:e8:83:57:48:a4:c5:43:04:f4: 56:4b:8a:eb:71:46:be:f2:aa:e5:d5:52:81:91:b3:87:16:e0: ac:6d:7f:b6:8a:48:c5:68:c3:3a:ec:e7:35:fd:9e:08:51:cd: 14:34:94:8d:ea:e8:55:f4:81:a6:35:9f:5c:8b:42:41:2c:75: a3:46:0a:2d:90:8f:c3:2a:02:91:08:79:0a:40:7d:bb:2d:81: b5:49:0b:15:4b:b6:d8:c5:97:f6:24:6f:fa:8c:d8:42:8c:ab: d7:4d:af:3c:ae:40:a7:48:cb:e4:9e:c7:a1:f9:bc:13:0d:53: 7b:0f:a6:5f:bc:58:76:68:5d:34:85:8e:0d:9d:22:ec:ec:45: b7:42:85:f6:67:ab:7a:12:7f:a5:56:a2:20:33:d3:2d:be:d4: 38:6d:65:22:ab:73:87:85:3e:a5:7d:61:ca:77:f9:a3:16:90: 15:8e:0e:53:91:41:08:08:77:56:ea:58:05:0e:29:aa:92:de: 2f:e9:e7:1f:c4:83:bb:2c:7f:c7:b6:ec:eb:cd:b2:1f:b6:5c: 15:e9:c8:81:1d:5f:09:b4:3d:70:fe:67:0c:24:d9:c7:6c:5e: 0a:ba:37:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD01EP663NP7Mb4qZDnHaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMjk1OWVmMWI5NTNkNzk4YWEwZjU2NDMxYTdmMTFiNmJl MTk2ZDYwHhcNMjYwMjA5MTEwMDI0WhcNMjYwMjEwMTEwMDI0WjAzMTEwLwYDVQQD EyhmMmQ0OGY2Zjk4MmMzOTczMjgxODljMGY2ZmExYTIwZDRhODkzYjg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/R5m4fLXqDD5+Cl9aQFEAE51NLi ddLJUbtMUo8DEqfp9kIXSNd6HavUAYbPBr8KqE0cMP3edUFi6hr3MJgIyp+59oNE 4ntq8XioEyRAx5QL5irEcxwSzwNzI2TgsJkhhd15jbK6cE9PJz7Zyd/TjyJGysdc 1MUVArqFTe59p6C+YIbGPHmaupdb74JMwqS3xIP4JfzjYs9Q1N/iQG0MsXjDcV0i Nk4rhBaBG8L/ffSyvGMzLlPlBCevy7Fr7ggW/4SwspPrzhxJxt2JkXyL/+OxUqJZ ROwZAL9Ieht93LaQltxlndoLg80UaZU6XGNVKNPXa22JsBi2X51ST6hyywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPLUj2+YLDlzKBicD2+hog1KiTuFMB8GA1UdIwQY MBaAFCApWe8blT15iqD1ZDGn8Rtr4ZbWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUNsWjd4dVZQWG1Lb1BWa01hZnhHMnZobHRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9mMmNjYzAtMzczMi00MzUxLWI3NzAt NmIwZGE5ZTRmYjEwLzEvSUNsWjd4dVZQWG1Lb1BWa01hZnhHMnZobHRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9mMmNjYzAtMzczMi00MzUxLWI3NzAtNmIwZGE5ZTRmYjEw LzEvSUNsWjd4dVZQWG1Lb1BWa01hZnhHMnZobHRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVtPpDLTP eKd9PSX3c3R/6x0cAgQe+5bakOZ16INXSKTFQwT0VkuK63FGvvKq5dVSgZGzhxbg rG1/topIxWjDOuznNf2eCFHNFDSUjeroVfSBpjWfXItCQSx1o0YKLZCPwyoCkQh5 CkB9uy2BtUkLFUu22MWX9iRv+ozYQoyr102vPK5Ap0jL5J7Hofm8Ew1Tew+mX7xY dmhdNIWODZ0i7OxFt0KF9merehJ/pVaiIDPTLb7UOG1lIqtzh4U+pX1hynf5oxaQ FY4OU5FBCAh3VupYBQ4pqpLeL+nnH8SDuyx/x7bs682yH7ZcFenIgR1fCbQ9cP5n DCTZx2xeCro3vQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:18 2026 by rpki-client