This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft File: rRIanMsoPqIejQoHCi4LakDph30.mft (raw, json) Hash identifier: mkKkE0geuHH8xbaXDW+IWra5lEEF+wloYxLkydhvHLs= Subject key identifier: 1D:15:75:C8:21:19:34:20:83:7F:47:13:C1:49:F9:06:C4:FA:DF:C1 Authority key identifier: AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D Certificate issuer: /CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d Certificate serial: 019C4321CA528AD9758129A5992D80F52B2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:13 +0000 Manifest this update: Mon 09 Feb 2026 16:00:13 +0000 Manifest next update: Tue 10 Feb 2026 16:00:13 +0000 Files and hashes: 1: rRIanMsoPqIejQoHCi4LakDph30.crl (hash: /LyjTFQQVKO/JyjmBDEUzcpVFmHraXzVhUKbBjiEvJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:ca:52:8a:d9:75:81:29:a5:99:2d:80:f5:2b:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d Validity Not Before: Feb 9 16:00:13 2026 GMT Not After : Feb 10 16:00:13 2026 GMT Subject: CN=1d1575c821193420837f4713c149f906c4fadfc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:21:61:ca:1f:0e:bd:41:28:02:13:d2:73:ed: 13:e6:70:ab:e0:db:9a:9a:d5:5b:1a:0e:47:69:9d: 90:6c:45:e7:e1:e4:0b:1e:95:2e:dd:e6:49:37:72: 45:47:dc:3a:33:95:7f:a6:6e:9d:ce:e3:ab:93:61: 13:dd:62:a7:fe:ff:1e:cd:ce:1e:d6:8a:1a:f8:73: d7:a6:97:7e:20:08:10:e9:c3:a6:ff:a8:3b:c5:ee: 0a:52:03:6b:2d:ab:28:60:2c:a5:c2:a7:8e:ec:2f: d1:3d:c1:7f:76:a7:f1:26:6d:93:9b:8f:85:69:54: 0f:ef:0b:90:28:d6:28:78:b3:d5:5e:bb:29:bc:29: 83:f7:56:5e:f8:65:da:13:f0:af:61:98:f9:1d:34: 27:ba:19:a7:58:a3:79:1a:92:ce:d5:b4:18:53:79: 33:41:6f:bd:06:25:9d:da:99:2d:18:00:97:e4:27: 38:2e:6e:90:9a:bd:39:b6:a4:86:12:0e:fa:00:25: 44:8b:55:c7:36:b1:27:2a:48:b8:57:41:87:79:73: e8:65:1b:aa:41:e7:51:b2:b0:5c:26:f5:5c:56:30: 91:5d:c1:8e:1c:f9:88:17:7e:f4:5f:a7:b6:25:2e: b9:5d:98:0c:43:2c:a6:99:b3:70:73:d5:88:f3:8a: 21:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:15:75:C8:21:19:34:20:83:7F:47:13:C1:49:F9:06:C4:FA:DF:C1 X509v3 Authority Key Identifier: keyid:AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:bc:14:06:e4:98:d4:17:10:b6:63:51:3b:7a:09:6c:a2:7c: ec:86:0f:08:f3:b4:48:51:d5:a7:eb:0a:b3:a2:df:f0:6e:08: e6:d8:65:d7:fe:c8:0e:89:8a:3d:22:bc:3c:91:45:d0:32:86: 30:94:ce:da:1c:5c:a2:ed:64:ab:70:ca:ca:e2:e4:77:0e:7c: 0c:91:cb:10:6b:8e:2f:3d:2b:a6:42:84:66:88:d9:8b:81:87: ea:0d:d5:c6:e1:87:3a:19:06:16:dd:13:fc:1b:c3:b2:ae:c4: cf:e6:a6:8b:6c:76:45:04:87:0f:b3:18:75:a6:32:b3:17:cc: ac:a4:4b:65:ff:e0:03:c1:b9:01:0c:a0:5f:54:bd:15:06:67: 2e:34:f6:7a:27:ff:a6:26:65:92:fd:7d:f5:c5:df:df:9f:58: cd:aa:9b:a3:76:28:a3:c2:f8:82:15:09:a9:e5:2b:7d:9e:6c: 43:67:99:37:4e:1f:38:6f:42:f7:85:e5:5e:4a:fc:d9:c7:78: ad:c4:e9:05:e6:9b:41:c6:d6:d0:45:f6:5a:7c:23:00:e5:87: f7:5a:24:ae:ad:d2:73:a3:32:01:c9:88:3a:f4:3a:5d:72:06: c5:55:0a:68:f9:fe:fd:97:36:17:4e:17:ca:19:cf:f8:e9:f9: 0b:9d:85:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIcpSitl1gSmlmS2A9SsqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMTIxYTljY2IyODNlYTIxZThkMGEwNzBhMmUwYjZhNDBl OTg3N2QwHhcNMjYwMjA5MTYwMDEzWhcNMjYwMjEwMTYwMDEzWjAzMTEwLwYDVQQD EygxZDE1NzVjODIxMTkzNDIwODM3ZjQ3MTNjMTQ5ZjkwNmM0ZmFkZmMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAySFhyh8OvUEoAhPSc+0T5nCr4Nua mtVbGg5HaZ2QbEXn4eQLHpUu3eZJN3JFR9w6M5V/pm6dzuOrk2ET3WKn/v8ezc4e 1ooa+HPXppd+IAgQ6cOm/6g7xe4KUgNrLasoYCylwqeO7C/RPcF/dqfxJm2Tm4+F aVQP7wuQKNYoeLPVXrspvCmD91Ze+GXaE/CvYZj5HTQnuhmnWKN5GpLO1bQYU3kz QW+9BiWd2pktGACX5Cc4Lm6Qmr05tqSGEg76ACVEi1XHNrEnKki4V0GHeXPoZRuq QedRsrBcJvVcVjCRXcGOHPmIF370X6e2JS65XZgMQyymmbNwc9WI84ohKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB0VdcghGTQgg39HE8FJ+QbE+t/BMB8GA1UdIwQY MBaAFK0SGpzLKD6iHo0KBwouC2pA6Yd9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclJJYW5Nc29QcUllalFvSENpNExha0RwaDMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8yN2Y3ZmEtYjAxOS00ODQyLWE2YTYt NTlkZjczZDNiYjkxLzEvclJJYW5Nc29QcUllalFvSENpNExha0RwaDMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8yN2Y3ZmEtYjAxOS00ODQyLWE2YTYtNTlkZjczZDNiYjkx LzEvclJJYW5Nc29QcUllalFvSENpNExha0RwaDMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAubwUBuSY 1BcQtmNRO3oJbKJ87IYPCPO0SFHVp+sKs6Lf8G4I5thl1/7IDomKPSK8PJFF0DKG MJTO2hxcou1kq3DKyuLkdw58DJHLEGuOLz0rpkKEZojZi4GH6g3VxuGHOhkGFt0T /BvDsq7Ez+ami2x2RQSHD7MYdaYysxfMrKRLZf/gA8G5AQygX1S9FQZnLjT2eif/ piZlkv199cXf359Yzaqbo3Yoo8L4ghUJqeUrfZ5sQ2eZN04fOG9C94XlXkr82cd4 rcTpBeabQcbW0EX2WnwjAOWH91okrq3Sc6MyAcmIOvQ6XXIGxVUKaPn+/Zc2F04X yhnP+On5C52FTA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:10 2026 by rpki-client