This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.mft File: I6IOrOflZNlFaAhkd3q-nCu41NY.mft (raw, json) Hash identifier: SEbCjAbTtQVmbY84glGcyiLi2IHZUWYk5vukp5FrtPA= Subject key identifier: 23:D3:46:02:71:47:CF:82:B8:F5:C7:C6:6C:2F:0F:4D:B5:3F:4C:46 Authority key identifier: 23:A2:0E:AC:E7:E5:64:D9:45:68:08:64:77:7A:BE:9C:2B:B8:D4:D6 Certificate issuer: /CN=23a20eace7e564d945680864777abe9c2bb8d4d6 Certificate serial: 019C41A144D8EB00B0DEF90C4B1087148C1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6IOrOflZNlFaAhkd3q-nCu41NY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.mft Manifest number: 025D Signing time: Mon 09 Feb 2026 09:00:13 +0000 Manifest this update: Mon 09 Feb 2026 09:00:13 +0000 Manifest next update: Tue 10 Feb 2026 09:00:13 +0000 Files and hashes: 1: I6IOrOflZNlFaAhkd3q-nCu41NY.crl (hash: OLG9cc3or4eVs5ZUnuYP3TEUEeyjfpeYQ5sRHKolw4w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.crl rsync://rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.mft rsync://rpki.ripe.net/repository/DEFAULT/I6IOrOflZNlFaAhkd3q-nCu41NY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:44:d8:eb:00:b0:de:f9:0c:4b:10:87:14:8c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23a20eace7e564d945680864777abe9c2bb8d4d6 Validity Not Before: Feb 9 09:00:13 2026 GMT Not After : Feb 10 09:00:13 2026 GMT Subject: CN=23d346027147cf82b8f5c7c66c2f0f4db53f4c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:cf:9d:50:a7:3f:84:f7:44:3f:86:81:1b:8d: 70:a4:3d:a3:ca:c2:02:e3:5a:f0:ae:32:15:5f:5f: 72:66:c3:90:49:4f:62:1c:09:2d:1c:12:6e:f2:28: f3:6c:b3:6a:bc:aa:f4:db:e4:75:73:ed:65:f8:76: 7a:4d:ac:0d:46:9d:bd:56:9a:10:24:5e:62:27:61: 4a:7b:79:c3:73:c5:cd:05:2d:92:79:f1:8a:4e:8f: 67:52:ac:f4:1e:56:ff:82:f5:2b:72:32:74:6d:a0: 95:41:ec:2d:d0:8e:36:8c:29:58:04:a9:0f:c9:ea: ab:9d:9c:dd:85:e5:b3:2c:f2:35:89:39:57:d1:1c: 25:7e:be:5c:6f:69:e5:0f:77:2f:91:07:22:49:b8: e5:df:71:e3:0d:bf:0a:e4:c4:90:e0:ba:c9:3b:ec: 0c:c3:3d:25:8c:a6:e5:08:5f:ac:ff:aa:55:76:46: be:0c:ae:4c:00:4d:3d:d8:0e:fe:0b:c5:fc:73:4c: 3c:28:ae:e0:01:b4:01:04:a4:7a:03:88:b6:8c:db: e5:f8:aa:4f:36:ea:54:57:70:1a:60:65:f0:78:43: 8d:b5:39:a4:ef:3f:58:a1:42:7a:26:52:b8:3c:9a: 16:42:b2:99:b1:f5:c7:6a:51:be:01:e2:e5:40:a5: 0d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D3:46:02:71:47:CF:82:B8:F5:C7:C6:6C:2F:0F:4D:B5:3F:4C:46 X509v3 Authority Key Identifier: keyid:23:A2:0E:AC:E7:E5:64:D9:45:68:08:64:77:7A:BE:9C:2B:B8:D4:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6IOrOflZNlFaAhkd3q-nCu41NY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/9a0aa5-5bd3-4e87-9d2f-75e0d479753f/1/I6IOrOflZNlFaAhkd3q-nCu41NY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:da:32:3e:e2:31:98:31:0a:2a:0d:2e:cd:b9:59:2d:85:f1: da:35:2d:2a:27:e9:d0:7f:cd:a1:81:2e:1b:ea:02:0c:ad:e1: 3f:e8:6a:e7:36:db:76:ae:0c:38:30:27:7a:cf:1b:18:92:84: cf:e0:2c:42:e5:77:49:41:43:fd:8f:5e:f0:06:5f:3d:6c:00: 9f:25:72:e9:18:9e:c6:38:64:db:79:41:0d:a9:5c:56:3a:02: 75:96:d4:0b:71:07:75:29:3a:68:0e:4d:17:44:f9:7c:56:01: b1:d8:50:93:ab:b5:69:2c:95:0e:2c:39:5d:f7:51:0f:1b:ab: e2:aa:e2:65:c9:e1:9e:f1:60:e1:da:1a:2c:a7:25:5d:b7:ae: e2:a9:c7:f0:9c:f6:8f:d7:af:c2:4b:fb:a8:1b:2f:7e:f9:15: 20:fa:9f:88:a5:68:85:f9:4b:6c:89:4e:3e:52:1b:cf:4a:d0: 8f:25:ed:62:64:ae:69:ef:ce:06:b7:39:ee:bc:7e:af:96:5b: 06:4c:38:b3:bd:a8:34:68:a3:ca:4b:4e:a9:64:1d:c2:7f:05: ee:fb:6d:5d:f7:fa:d5:59:12:98:7b:22:b1:06:fb:4b:d4:2f: 7e:4e:2d:f1:55:0f:f0:3f:88:3a:6f:09:9d:6f:9a:3d:ac:28: 9c:13:bd:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoUTY6wCw3vkMSxCHFIwdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzYTIwZWFjZTdlNTY0ZDk0NTY4MDg2NDc3N2FiZTljMmJi OGQ0ZDYwHhcNMjYwMjA5MDkwMDEzWhcNMjYwMjEwMDkwMDEzWjAzMTEwLwYDVQQD EygyM2QzNDYwMjcxNDdjZjgyYjhmNWM3YzY2YzJmMGY0ZGI1M2Y0YzQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAks+dUKc/hPdEP4aBG41wpD2jysIC 41rwrjIVX19yZsOQSU9iHAktHBJu8ijzbLNqvKr02+R1c+1l+HZ6TawNRp29VpoQ JF5iJ2FKe3nDc8XNBS2SefGKTo9nUqz0Hlb/gvUrcjJ0baCVQewt0I42jClYBKkP yeqrnZzdheWzLPI1iTlX0Rwlfr5cb2nlD3cvkQciSbjl33HjDb8K5MSQ4LrJO+wM wz0ljKblCF+s/6pVdka+DK5MAE092A7+C8X8c0w8KK7gAbQBBKR6A4i2jNvl+KpP NupUV3AaYGXweEONtTmk7z9YoUJ6JlK4PJoWQrKZsfXHalG+AeLlQKUNdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCPTRgJxR8+CuPXHxmwvD021P0xGMB8GA1UdIwQY MBaAFCOiDqzn5WTZRWgIZHd6vpwruNTWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTZJT3JPZmxaTmxGYUFoa2QzcS1uQ3U0MU5ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS85YTBhYTUtNWJkMy00ZTg3LTlkMmYt NzVlMGQ0Nzk3NTNmLzEvSTZJT3JPZmxaTmxGYUFoa2QzcS1uQ3U0MU5ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS85YTBhYTUtNWJkMy00ZTg3LTlkMmYtNzVlMGQ0Nzk3NTNm LzEvSTZJT3JPZmxaTmxGYUFoa2QzcS1uQ3U0MU5ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANdoyPuIx mDEKKg0uzblZLYXx2jUtKifp0H/NoYEuG+oCDK3hP+hq5zbbdq4MODAnes8bGJKE z+AsQuV3SUFD/Y9e8AZfPWwAnyVy6Riexjhk23lBDalcVjoCdZbUC3EHdSk6aA5N F0T5fFYBsdhQk6u1aSyVDiw5XfdRDxur4qriZcnhnvFg4doaLKclXbeu4qnH8Jz2 j9evwkv7qBsvfvkVIPqfiKVohflLbIlOPlIbz0rQjyXtYmSuae/OBrc57rx+r5Zb Bkw4s72oNGijyktOqWQdwn8F7vttXff61VkSmHsisQb7S9Qvfk4t8VUP8D+IOm8J nW+aPawonBO9EA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:40:42 2026 by rpki-client