This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft File: 1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft (raw, json) Hash identifier: E5jqtODe0k6V++FCIg3NDs/nj3hmHF/UnFT/lrmGQbs= Subject key identifier: F1:EA:8F:11:F3:36:D0:EA:42:2C:1B:74:30:63:DC:F8:B9:3E:EC:26 Authority key identifier: D5:F6:23:DA:4C:D2:EE:DD:C2:C8:7C:51:5C:62:51:8C:43:1D:3F:B5 Certificate issuer: /CN=d5f623da4cd2eeddc2c87c515c62518c431d3fb5 Certificate serial: 019C43FD817751693CDEE0EE7BDBF09DFAF7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft Manifest number: 0528 Signing time: Mon 09 Feb 2026 20:00:13 +0000 Manifest this update: Mon 09 Feb 2026 20:00:13 +0000 Manifest next update: Tue 10 Feb 2026 20:00:13 +0000 Files and hashes: 1: 1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl (hash: RtUTLUo1TwkgMQBpr1p2OdSAP6/27hSiEbBxDZO68a8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:81:77:51:69:3c:de:e0:ee:7b:db:f0:9d:fa:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5f623da4cd2eeddc2c87c515c62518c431d3fb5 Validity Not Before: Feb 9 20:00:13 2026 GMT Not After : Feb 10 20:00:13 2026 GMT Subject: CN=f1ea8f11f336d0ea422c1b743063dcf8b93eec26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c3:1c:e0:90:28:fd:3c:af:f8:1a:cb:67:7e: 28:ba:86:78:bd:ad:29:93:1a:54:3c:50:9b:08:40: 4a:b2:e9:a1:c1:3c:6a:a0:a1:5f:84:94:51:0d:e9: 94:2d:0f:96:22:9f:e1:4a:25:c2:de:18:36:45:2f: b8:ee:d5:cf:26:65:a1:89:70:69:26:3f:8c:d0:a8: f4:df:2d:2f:40:b1:62:5e:2a:76:70:00:24:e7:f5: 9b:19:04:f0:fd:6a:5e:46:10:0d:93:1e:c8:e2:d9: bb:68:b1:19:ea:ae:78:95:7c:fc:0d:fc:c8:56:5f: 54:51:e1:38:43:79:e6:6b:cd:2c:04:52:e2:44:31: 4a:16:fc:f6:d6:b8:3d:34:54:21:8d:4b:84:e7:dc: ae:42:15:0e:4d:89:94:f3:d4:e4:5d:6f:48:17:6f: f3:a9:6d:18:2d:ef:57:e7:15:92:9e:57:b5:f3:11: ea:5a:11:bf:08:06:ec:1b:09:63:3f:04:5e:7b:a3: 29:5e:0b:9f:e6:a6:f7:06:57:6b:50:15:83:bb:d8: 42:ec:5c:c5:95:65:51:59:95:5b:d2:a5:5b:46:f6: 60:9c:5b:74:1e:b4:09:74:3a:9c:ea:25:6b:fd:86: cf:79:2e:54:28:ed:4b:2e:22:37:02:f9:62:cd:4e: e2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:EA:8F:11:F3:36:D0:EA:42:2C:1B:74:30:63:DC:F8:B9:3E:EC:26 X509v3 Authority Key Identifier: keyid:D5:F6:23:DA:4C:D2:EE:DD:C2:C8:7C:51:5C:62:51:8C:43:1D:3F:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:dd:97:89:60:8e:a9:d9:9f:3b:0b:a3:d3:76:5b:29:21:21: 48:a4:28:ed:b0:2b:6b:fc:fe:4e:cd:57:f3:7a:fb:1b:52:50: 5d:b0:38:a1:87:fc:2f:30:5f:d2:34:7d:23:74:4c:d1:1d:0f: 83:5a:37:99:98:08:38:01:3d:5b:22:6f:72:0b:05:b3:6a:39: 34:61:1c:31:6b:da:48:1b:15:b5:ca:8a:89:37:ad:30:11:35: b3:91:9e:7b:e7:a9:fa:9a:ad:dd:24:e0:1d:12:69:a5:79:3c: 19:5c:f9:cc:84:65:bd:5e:c1:ca:48:82:c5:92:2d:86:dd:13: 0a:99:86:96:ad:82:94:4d:e0:3c:3f:ac:c3:fb:83:6e:2c:8d: d3:b4:9e:5d:e7:a0:07:d1:e7:fb:62:58:11:24:16:f6:3a:2f: e1:a1:f9:3b:ff:9b:17:a3:f6:cf:8c:24:93:18:9a:2c:3e:72: 1d:21:97:68:50:ac:41:67:62:1d:38:19:14:c7:ef:70:ba:bc: 6d:93:e6:a3:04:20:b7:1c:9d:0a:93:28:18:5d:6a:98:55:e4: 9a:af:f0:1d:79:3b:7c:57:14:3b:c0:bd:cd:13:7b:62:f1:83: 6e:51:9b:c7:53:aa:d1:e8:64:98:ef:5d:d7:af:a6:ff:68:13: 85:09:b9:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/YF3UWk83uDue9vwnfr3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1ZjYyM2RhNGNkMmVlZGRjMmM4N2M1MTVjNjI1MThjNDMx ZDNmYjUwHhcNMjYwMjA5MjAwMDEzWhcNMjYwMjEwMjAwMDEzWjAzMTEwLwYDVQQD EyhmMWVhOGYxMWYzMzZkMGVhNDIyYzFiNzQzMDYzZGNmOGI5M2VlYzI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8Mc4JAo/Tyv+BrLZ34ouoZ4va0p kxpUPFCbCEBKsumhwTxqoKFfhJRRDemULQ+WIp/hSiXC3hg2RS+47tXPJmWhiXBp Jj+M0Kj03y0vQLFiXip2cAAk5/WbGQTw/WpeRhANkx7I4tm7aLEZ6q54lXz8DfzI Vl9UUeE4Q3nma80sBFLiRDFKFvz21rg9NFQhjUuE59yuQhUOTYmU89TkXW9IF2/z qW0YLe9X5xWSnle18xHqWhG/CAbsGwljPwRee6MpXguf5qb3BldrUBWDu9hC7FzF lWVRWZVb0qVbRvZgnFt0HrQJdDqc6iVr/YbPeS5UKO1LLiI3AvlizU7i5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPHqjxHzNtDqQiwbdDBj3Pi5PuwmMB8GA1UdIwQY MBaAFNX2I9pM0u7dwsh8UVxiUYxDHT+1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWZZajJrelM3dDNDeUh4UlhHSlJqRU1kUDdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8zMTNjMTEtZGY4Ny00ZDc3LTg3Mzkt MDRmMWRjZWMzMjBlLzEvMWZZajJrelM3dDNDeUh4UlhHSlJqRU1kUDdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8zMTNjMTEtZGY4Ny00ZDc3LTg3MzktMDRmMWRjZWMzMjBl LzEvMWZZajJrelM3dDNDeUh4UlhHSlJqRU1kUDdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo92XiWCO qdmfOwuj03ZbKSEhSKQo7bAra/z+Ts1X83r7G1JQXbA4oYf8LzBf0jR9I3RM0R0P g1o3mZgIOAE9WyJvcgsFs2o5NGEcMWvaSBsVtcqKiTetMBE1s5Gee+ep+pqt3STg HRJppXk8GVz5zIRlvV7BykiCxZItht0TCpmGlq2ClE3gPD+sw/uDbiyN07SeXeeg B9Hn+2JYESQW9jov4aH5O/+bF6P2z4wkkxiaLD5yHSGXaFCsQWdiHTgZFMfvcLq8 bZPmowQgtxydCpMoGF1qmFXkmq/wHXk7fFcUO8C9zRN7YvGDblGbx1Oq0ehkmO9d 16+m/2gThQm5IQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:26 2026 by rpki-client