This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft File: goIekswnAHYZMDmOI4DCOqR1XxY.mft (raw, json) Hash identifier: tGrOd5wmIb0UOY0vERFAsQ2SVZ1F+DMuNHwNgTQscZo= Subject key identifier: 5E:B7:1F:91:E3:9F:F3:46:7D:78:10:53:0B:8C:20:23:32:E8:05:AE Authority key identifier: 82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16 Certificate issuer: /CN=82821e92cc2700761930398e2380c23aa4755f16 Certificate serial: 019C4321F0D2A836DB57E83819225AFD8BB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft Manifest number: 08C5 Signing time: Mon 09 Feb 2026 16:00:23 +0000 Manifest this update: Mon 09 Feb 2026 16:00:23 +0000 Manifest next update: Tue 10 Feb 2026 16:00:23 +0000 Files and hashes: 1: goIekswnAHYZMDmOI4DCOqR1XxY.crl (hash: xm4UI+/JTaokAJQvAMBvvi2Z4JB6hDTQkXNvGgYbG3s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:f0:d2:a8:36:db:57:e8:38:19:22:5a:fd:8b:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82821e92cc2700761930398e2380c23aa4755f16 Validity Not Before: Feb 9 16:00:23 2026 GMT Not After : Feb 10 16:00:23 2026 GMT Subject: CN=5eb71f91e39ff3467d7810530b8c202332e805ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:b8:93:7c:ff:91:42:7d:c7:5a:6e:dc:60:59: 62:b6:f7:84:12:02:84:e2:41:ee:43:47:28:6f:91: 24:59:a8:a2:d3:e0:9e:19:04:f4:b7:4d:e9:93:89: 83:e6:a0:b0:54:75:da:2b:a3:8f:d1:e9:9b:e3:b2: fc:f2:d7:a2:7e:ff:3d:84:bc:a3:e6:dd:81:72:51: b1:52:5c:e6:db:6e:7c:06:f8:f4:4f:8f:22:15:16: 37:1c:e6:58:d8:e7:33:d5:28:c9:57:c4:ea:29:75: e1:88:68:4e:e2:b6:70:4f:9f:56:e8:7e:e1:df:0f: 46:40:51:0e:e3:cf:98:cc:47:7c:46:88:05:a9:47: f6:9b:f1:02:1b:65:65:f1:41:fd:5d:92:2d:e2:79: cb:19:86:0d:af:ee:27:76:e6:fd:16:79:ef:bd:24: 8e:60:e1:2a:52:91:b5:77:7a:94:de:e8:f7:2a:95: 98:76:ad:54:79:90:6c:7e:45:9d:03:fe:c7:63:3c: 68:b0:82:30:6e:74:17:aa:2e:74:be:af:41:ab:61: 41:6c:07:ae:fe:d9:22:b6:ab:1b:89:79:8b:df:7c: e1:72:7b:68:80:21:82:80:32:4a:20:af:f3:c6:a9: c3:6b:17:8f:90:ce:b8:43:67:b4:49:16:05:8d:41: 43:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B7:1F:91:E3:9F:F3:46:7D:78:10:53:0B:8C:20:23:32:E8:05:AE X509v3 Authority Key Identifier: keyid:82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:2e:15:c3:f9:a5:71:0e:08:84:71:b4:92:80:cc:eb:41:02: ae:f2:4c:00:b7:6f:8a:ec:be:55:d4:5f:23:42:d7:ad:92:34: ea:da:c4:8b:76:b5:4e:a4:e6:de:05:4e:e0:cd:3e:ce:50:c7: d7:11:f4:06:23:05:a1:dc:ad:4c:bd:f9:28:e6:e0:0b:e6:39: 7d:f4:8a:2d:4e:be:fe:e7:c1:0a:ab:0f:bf:98:6d:62:22:bd: 69:e5:5f:0e:79:99:ce:9c:7b:08:e8:5e:ba:5f:4c:42:3f:5b: 4f:2c:34:d5:61:f7:9a:27:3c:f1:ad:99:c8:54:49:62:b7:75: 73:a5:9d:d2:0e:d7:4d:58:f2:7a:4c:da:9e:dc:22:30:e7:b2: 8d:95:eb:e6:55:9f:b1:c3:64:2e:46:5e:8d:e3:b5:7d:ff:25: 02:e7:2a:24:38:d4:39:e4:9e:63:bd:34:ef:59:93:6a:60:a0: d1:0c:a2:51:0e:b3:bc:be:cb:31:0e:b8:19:1b:62:51:a3:0a: f4:11:51:1b:f7:85:61:ce:1f:96:e8:0d:58:87:40:11:00:64: f5:7a:9f:2b:c4:ae:a3:76:0f:4a:a5:c1:be:cf:fe:14:f2:36: 29:75:ba:d6:c7:fe:d2:88:9e:ca:7d:bd:37:58:34:36:79:3c: 63:7c:4e:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIfDSqDbbV+g4GSJa/YuwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyODIxZTkyY2MyNzAwNzYxOTMwMzk4ZTIzODBjMjNhYTQ3 NTVmMTYwHhcNMjYwMjA5MTYwMDIzWhcNMjYwMjEwMTYwMDIzWjAzMTEwLwYDVQQD Eyg1ZWI3MWY5MWUzOWZmMzQ2N2Q3ODEwNTMwYjhjMjAyMzMyZTgwNWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7biTfP+RQn3HWm7cYFlitveEEgKE 4kHuQ0cob5EkWaii0+CeGQT0t03pk4mD5qCwVHXaK6OP0emb47L88teifv89hLyj 5t2BclGxUlzm2258Bvj0T48iFRY3HOZY2Ocz1SjJV8TqKXXhiGhO4rZwT59W6H7h 3w9GQFEO48+YzEd8RogFqUf2m/ECG2Vl8UH9XZIt4nnLGYYNr+4ndub9FnnvvSSO YOEqUpG1d3qU3uj3KpWYdq1UeZBsfkWdA/7HYzxosIIwbnQXqi50vq9Bq2FBbAeu /tkitqsbiXmL33zhcntogCGCgDJKIK/zxqnDaxePkM64Q2e0SRYFjUFD1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF63H5Hjn/NGfXgQUwuMICMy6AWuMB8GA1UdIwQY MBaAFIKCHpLMJwB2GTA5jiOAwjqkdV8WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ29JZWtzd25BSFlaTURtT0k0RENPcVIxWHhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8xYjNiYzAtZmFlZC00OGZiLWIzZjAt MDhiNjJiOGVmZTcxLzEvZ29JZWtzd25BSFlaTURtT0k0RENPcVIxWHhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8xYjNiYzAtZmFlZC00OGZiLWIzZjAtMDhiNjJiOGVmZTcx LzEvZ29JZWtzd25BSFlaTURtT0k0RENPcVIxWHhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAly4Vw/ml cQ4IhHG0koDM60ECrvJMALdviuy+VdRfI0LXrZI06trEi3a1TqTm3gVO4M0+zlDH 1xH0BiMFodytTL35KObgC+Y5ffSKLU6+/ufBCqsPv5htYiK9aeVfDnmZzpx7COhe ul9MQj9bTyw01WH3mic88a2ZyFRJYrd1c6Wd0g7XTVjyekzantwiMOeyjZXr5lWf scNkLkZejeO1ff8lAucqJDjUOeSeY70071mTamCg0QyiUQ6zvL7LMQ64GRtiUaMK 9BFRG/eFYc4flugNWIdAEQBk9XqfK8Suo3YPSqXBvs/+FPI2KXW61sf+0oieyn29 N1g0Nnk8Y3xOZw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:12 2026 by rpki-client