This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft File: tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft (raw, json) Hash identifier: PLqqOOQvsmQDQYawoZoWxOVBcWU6e9vn3TLJ/SbtLcc= Subject key identifier: 34:53:2E:8B:81:A5:30:A7:2D:D0:3E:2F:A9:1D:18:F8:40:94:7B:00 Authority key identifier: B4:83:BC:0A:71:A5:2D:0C:F3:98:95:22:36:75:75:95:9E:BD:CE:F5 Certificate issuer: /CN=b483bc0a71a52d0cf3989522367575959ebdcef5 Certificate serial: 019C41A27328CE75312BDE911D0F6086204E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft Manifest number: 179D Signing time: Mon 09 Feb 2026 09:01:31 +0000 Manifest this update: Mon 09 Feb 2026 09:01:31 +0000 Manifest next update: Tue 10 Feb 2026 09:01:31 +0000 Files and hashes: 1: tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl (hash: 0FWNzxxAkVeHNJ50CTwQYW2FJ9xAbCIwMwYzBqSPFt4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:73:28:ce:75:31:2b:de:91:1d:0f:60:86:20:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b483bc0a71a52d0cf3989522367575959ebdcef5 Validity Not Before: Feb 9 09:01:31 2026 GMT Not After : Feb 10 09:01:31 2026 GMT Subject: CN=34532e8b81a530a72dd03e2fa91d18f840947b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ba:7a:9a:11:99:be:2b:f8:81:1f:e8:9e:4e: 9e:9c:22:02:eb:4d:f4:ce:78:81:59:c9:40:e7:b7: 46:3f:74:57:6b:13:67:74:d4:d0:f9:53:6b:fa:1b: bc:5c:26:58:b8:80:2a:41:ad:b6:52:18:98:06:0c: a7:b3:05:e3:65:eb:55:a4:af:69:58:10:f2:7c:2b: 58:a5:f9:70:5a:d5:02:09:2a:8d:39:78:3f:42:a5: 92:0a:63:b1:f8:d5:21:d7:af:80:c9:fc:d2:4a:62: e0:6c:be:c8:2d:3c:fa:39:37:7e:d1:38:3d:8f:b6: 05:da:db:8b:54:cf:08:15:99:8b:eb:9d:ca:37:c7: 0f:a5:84:8c:a9:7d:60:59:de:d2:9e:4d:01:43:03: 3b:05:45:59:cf:e2:6b:1d:9d:12:44:5d:46:5f:e0: 8a:8e:a9:e6:fb:32:98:a7:44:c5:3a:d7:b6:f5:83: be:0a:db:12:26:7a:6a:bf:41:9e:49:4e:57:1d:2a: 17:cc:05:7f:c7:1f:09:fd:38:e6:c8:8e:ef:2e:02: 01:dd:fb:98:46:7b:98:e6:fb:d0:dd:cd:02:ac:8d: 55:4b:18:ef:ac:20:5b:36:fe:e6:4a:c6:c8:3d:52: 90:9d:08:08:7e:a7:15:85:39:9c:79:76:43:df:24: 3a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:53:2E:8B:81:A5:30:A7:2D:D0:3E:2F:A9:1D:18:F8:40:94:7B:00 X509v3 Authority Key Identifier: keyid:B4:83:BC:0A:71:A5:2D:0C:F3:98:95:22:36:75:75:95:9E:BD:CE:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:08:20:7b:8a:3d:37:2b:e0:b2:f5:5f:df:f5:8e:cd:3c:57: ed:14:d6:a5:24:0d:59:fc:8a:84:81:ec:f0:01:7b:43:a1:0f: ee:30:05:38:ac:3c:8a:79:7c:57:4f:c6:bc:5c:ea:8e:c6:6b: 5d:9f:03:e0:87:65:61:06:fa:62:9b:43:6c:97:49:71:09:8a: fa:41:83:dd:39:ec:66:2a:03:be:d4:c6:fb:60:8b:05:eb:a2: 8a:f1:97:26:b3:6e:4f:27:1b:85:c0:7f:22:02:8b:ce:a6:ae: fd:b1:40:f9:94:4e:12:b1:e9:96:79:74:83:59:24:95:3e:34: f0:ef:a6:d6:bd:2c:5e:10:80:4e:cd:bb:0f:34:33:c0:15:cf: 8f:6a:62:7f:05:dc:17:10:4c:fd:c0:4a:bd:46:88:5f:1a:f7: 1d:0d:fc:18:86:46:28:03:b2:1d:74:22:44:08:10:4c:31:60: 43:b0:8b:1f:de:e1:ba:32:87:46:33:f1:c7:50:39:8b:bd:d8: c2:1e:91:85:49:bb:e8:cb:99:97:48:32:f0:df:23:86:b0:bf: df:1d:0b:b5:27:ce:ae:d6:f6:cc:a1:aa:17:1d:70:77:cc:96: 65:88:2e:1f:19:08:e8:13:d1:26:a4:28:25:e1:26:04:ba:ec: 69:6c:93:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBonMoznUxK96RHQ9ghiBOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0ODNiYzBhNzFhNTJkMGNmMzk4OTUyMjM2NzU3NTk1OWVi ZGNlZjUwHhcNMjYwMjA5MDkwMTMxWhcNMjYwMjEwMDkwMTMxWjAzMTEwLwYDVQQD EygzNDUzMmU4YjgxYTUzMGE3MmRkMDNlMmZhOTFkMThmODQwOTQ3YjAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA37p6mhGZviv4gR/onk6enCIC6030 zniBWclA57dGP3RXaxNndNTQ+VNr+hu8XCZYuIAqQa22UhiYBgynswXjZetVpK9p WBDyfCtYpflwWtUCCSqNOXg/QqWSCmOx+NUh16+AyfzSSmLgbL7ILTz6OTd+0Tg9 j7YF2tuLVM8IFZmL653KN8cPpYSMqX1gWd7Snk0BQwM7BUVZz+JrHZ0SRF1GX+CK jqnm+zKYp0TFOte29YO+CtsSJnpqv0GeSU5XHSoXzAV/xx8J/TjmyI7vLgIB3fuY RnuY5vvQ3c0CrI1VSxjvrCBbNv7mSsbIPVKQnQgIfqcVhTmceXZD3yQ67wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDRTLouBpTCnLdA+L6kdGPhAlHsAMB8GA1UdIwQY MBaAFLSDvApxpS0M85iVIjZ1dZWevc71MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdElPOENuR2xMUXp6bUpVaU5uVjFsWjY5enZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9mODlmYmQtNTE0Mi00YmNjLWJhYjEt OTk0ZWY4N2RiM2EzLzEvdElPOENuR2xMUXp6bUpVaU5uVjFsWjY5enZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS9mODlmYmQtNTE0Mi00YmNjLWJhYjEtOTk0ZWY4N2RiM2Ez LzEvdElPOENuR2xMUXp6bUpVaU5uVjFsWjY5enZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALwgge4o9 NyvgsvVf3/WOzTxX7RTWpSQNWfyKhIHs8AF7Q6EP7jAFOKw8inl8V0/GvFzqjsZr XZ8D4IdlYQb6YptDbJdJcQmK+kGD3TnsZioDvtTG+2CLBeuiivGXJrNuTycbhcB/ IgKLzqau/bFA+ZROErHplnl0g1kklT408O+m1r0sXhCATs27DzQzwBXPj2pifwXc FxBM/cBKvUaIXxr3HQ38GIZGKAOyHXQiRAgQTDFgQ7CLH97hujKHRjPxx1A5i73Y wh6RhUm76MuZl0gy8N8jhrC/3x0LtSfOrtb2zKGqFx1wd8yWZYguHxkI6BPRJqQo JeEmBLrsaWyTcA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:08 2026 by rpki-client