This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft File: i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft (raw, json) Hash identifier: HDYl0V6YNJf03dSlOmuDyyFKFCUDKkVghPmY4q8BsuQ= Subject key identifier: 73:7A:3C:1D:CA:95:9A:28:93:E5:27:A4:FE:6C:9E:AE:07:81:96:75 Authority key identifier: 8B:7B:E7:A4:76:06:AB:38:39:1F:B2:15:42:B5:F4:06:1F:02:A8:52 Certificate issuer: /CN=8b7be7a47606ab38391fb21542b5f4061f02a852 Certificate serial: 019C4133D17E51D470E7100F6B5FA44E7867 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft Manifest number: 0E88 Signing time: Mon 09 Feb 2026 07:00:40 +0000 Manifest this update: Mon 09 Feb 2026 07:00:40 +0000 Manifest next update: Tue 10 Feb 2026 07:00:40 +0000 Files and hashes: 1: i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl (hash: azxj5gzigNAEDT32zaNE/wIMj9GHIhV3sA7JpTxDLUA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:d1:7e:51:d4:70:e7:10:0f:6b:5f:a4:4e:78:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b7be7a47606ab38391fb21542b5f4061f02a852 Validity Not Before: Feb 9 07:00:40 2026 GMT Not After : Feb 10 07:00:40 2026 GMT Subject: CN=737a3c1dca959a2893e527a4fe6c9eae07819675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:49:65:b5:57:9a:d7:b6:2f:af:f8:4f:01:a1: 73:f4:37:a5:b4:da:f1:35:46:f0:eb:bc:6b:64:b8: df:7e:7b:5b:10:a3:ed:6d:f2:86:ff:3c:62:1a:cb: 3e:33:25:3a:b7:82:cb:1c:e9:f5:51:f4:da:0e:cf: 4f:bc:08:66:c2:44:0e:89:a9:51:ca:86:a9:1e:81: 86:ac:3e:ee:c7:9e:58:0f:92:c4:f2:de:46:5a:b6: 19:1c:83:4e:9c:81:99:0b:ce:18:1d:c5:e9:e4:66: 3b:23:96:51:5c:86:42:09:01:64:c3:d0:3b:3d:b2: eb:2d:a9:52:f8:41:4d:93:03:14:25:55:bf:73:f2: 6f:68:79:4e:32:fc:b1:98:f6:f1:94:ea:aa:0f:b9: 91:d2:d9:d6:59:96:de:77:f7:df:a9:b7:38:58:62: 05:86:0c:b9:65:6c:b9:27:d2:43:f4:69:84:d2:a3: 27:2e:25:af:5b:82:26:b9:18:df:9e:92:6a:0b:ae: 11:9d:67:93:a9:1e:df:85:b4:4a:da:da:5a:aa:7c: fe:37:3d:a6:37:83:0f:d3:9c:99:37:6b:a3:e3:ba: 64:97:7f:3a:f4:b5:e7:cb:f1:6e:76:63:38:b7:3a: 60:2d:bd:19:18:2b:52:cd:65:ca:02:2e:ab:c5:ed: 11:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:7A:3C:1D:CA:95:9A:28:93:E5:27:A4:FE:6C:9E:AE:07:81:96:75 X509v3 Authority Key Identifier: keyid:8B:7B:E7:A4:76:06:AB:38:39:1F:B2:15:42:B5:F4:06:1F:02:A8:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:83:b2:50:ed:af:d8:25:a3:32:14:ee:bf:60:bf:d2:3f:b6: a5:4e:8c:60:52:7e:40:dc:29:a3:a1:be:5f:eb:36:36:37:d9: ae:32:2a:f9:6e:8e:1b:0b:ba:88:25:29:cb:4d:6e:8b:c8:fc: 0f:f6:7f:aa:a4:1f:2c:c9:77:e4:c7:16:76:3c:24:8b:cd:63: 80:7a:33:a4:59:61:ad:87:1b:6b:aa:2b:3e:01:ab:69:64:bd: 87:d0:a0:5c:8b:b0:64:ea:26:93:a7:4e:09:24:22:eb:fd:fd: 48:78:4f:eb:67:d3:74:c2:91:23:95:b0:3d:5e:70:3d:93:1d: 6d:91:67:79:61:3d:e9:a9:38:0f:e7:71:52:50:32:53:b2:ec: dc:6f:c1:8c:84:ed:a7:2a:59:ae:b5:71:bc:9c:0f:82:55:d5: 0c:93:12:f7:50:0e:7d:4c:c6:db:c9:32:a1:cc:33:54:a5:2d: 6b:32:3e:f6:21:87:06:80:be:e5:ad:2c:85:1d:5f:37:3f:cb: 4a:67:cc:08:f7:6b:da:df:c7:7a:10:a7:ef:2e:a6:b0:a8:c8: 25:9c:5d:aa:db:86:e8:0f:1d:78:bf:5a:68:51:5b:5c:7c:ff: 21:12:c2:10:b4:cb:ef:30:1d:17:22:c4:84:87:2a:7a:fb:a4: f2:83:b8:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM9F+UdRw5xAPa1+kTnhnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiN2JlN2E0NzYwNmFiMzgzOTFmYjIxNTQyYjVmNDA2MWYw MmE4NTIwHhcNMjYwMjA5MDcwMDQwWhcNMjYwMjEwMDcwMDQwWjAzMTEwLwYDVQQD Eyg3MzdhM2MxZGNhOTU5YTI4OTNlNTI3YTRmZTZjOWVhZTA3ODE5Njc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ElltVea17Yvr/hPAaFz9DeltNrx NUbw67xrZLjffntbEKPtbfKG/zxiGss+MyU6t4LLHOn1UfTaDs9PvAhmwkQOialR yoapHoGGrD7ux55YD5LE8t5GWrYZHINOnIGZC84YHcXp5GY7I5ZRXIZCCQFkw9A7 PbLrLalS+EFNkwMUJVW/c/JvaHlOMvyxmPbxlOqqD7mR0tnWWZbed/ffqbc4WGIF hgy5ZWy5J9JD9GmE0qMnLiWvW4ImuRjfnpJqC64RnWeTqR7fhbRK2tpaqnz+Nz2m N4MP05yZN2uj47pkl3869LXny/FudmM4tzpgLb0ZGCtSzWXKAi6rxe0RJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHN6PB3KlZook+UnpP5snq4HgZZ1MB8GA1UdIwQY MBaAFIt756R2Bqs4OR+yFUK19AYfAqhSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTN2bnBIWUdxemc1SDdJVlFyWDBCaDhDcUZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yNDdjNWQtYTI3Mi00ODJiLTljOGUt MzdmZTM5NWQ0MmYwLzEvaTN2bnBIWUdxemc1SDdJVlFyWDBCaDhDcUZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8yNDdjNWQtYTI3Mi00ODJiLTljOGUtMzdmZTM5NWQ0MmYw LzEvaTN2bnBIWUdxemc1SDdJVlFyWDBCaDhDcUZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdYOyUO2v 2CWjMhTuv2C/0j+2pU6MYFJ+QNwpo6G+X+s2NjfZrjIq+W6OGwu6iCUpy01ui8j8 D/Z/qqQfLMl35McWdjwki81jgHozpFlhrYcba6orPgGraWS9h9CgXIuwZOomk6dO CSQi6/39SHhP62fTdMKRI5WwPV5wPZMdbZFneWE96ak4D+dxUlAyU7Ls3G/BjITt pypZrrVxvJwPglXVDJMS91AOfUzG28kyocwzVKUtazI+9iGHBoC+5a0shR1fNz/L SmfMCPdr2t/HehCn7y6msKjIJZxdqtuG6A8deL9aaFFbXHz/IRLCELTL7zAdFyLE hIcqevuk8oO4XQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:02 2026 by rpki-client