This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft File: IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft (raw, json) Hash identifier: KcDPzBAAk5HQEf3pGa+MhXoerBeqUD+OQTcsDN+uB9k= Subject key identifier: E6:C5:C5:62:9A:21:A1:9C:3F:A4:6C:CF:F8:40:36:5C:4C:67:4C:65 Authority key identifier: 21:D8:5D:23:1A:D5:4B:84:39:C2:AA:ED:91:A5:77:58:6A:C4:60:00 Certificate issuer: /CN=21d85d231ad54b8439c2aaed91a577586ac46000 Certificate serial: 019C427D78058A7397F5ECF8170E99C90104 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft Manifest number: 1311 Signing time: Mon 09 Feb 2026 13:00:44 +0000 Manifest this update: Mon 09 Feb 2026 13:00:44 +0000 Manifest next update: Tue 10 Feb 2026 13:00:44 +0000 Files and hashes: 1: IdhdIxrVS4Q5wqrtkaV3WGrEYAA.crl (hash: +QOswsdsRF90M4X0QcuyMZIIKgcDSpnC1I0JW96u0ps=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.crl rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft rsync://rpki.ripe.net/repository/DEFAULT/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:78:05:8a:73:97:f5:ec:f8:17:0e:99:c9:01:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21d85d231ad54b8439c2aaed91a577586ac46000 Validity Not Before: Feb 9 13:00:44 2026 GMT Not After : Feb 10 13:00:44 2026 GMT Subject: CN=e6c5c5629a21a19c3fa46ccff840365c4c674c65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9d:9c:e5:88:cd:07:69:b2:ad:25:47:aa:2b: 03:22:cd:dd:44:44:ec:97:04:00:d6:cb:a1:b0:70: e2:66:50:9a:28:2b:d3:7f:bf:f5:e3:84:ce:3d:ad: 13:98:d0:c2:68:92:80:ed:40:fa:8b:91:47:16:1c: 03:cc:99:cf:73:b8:76:f1:c1:d8:56:72:e5:e4:56: a9:92:66:d5:bc:c2:2f:d7:e6:e3:85:de:7b:85:78: 98:f9:4e:25:dc:7a:2a:3c:3a:c5:7e:5c:3a:af:73: 3e:35:60:ca:c1:d3:b1:fc:72:49:93:13:b5:ce:ff: de:19:34:64:4e:22:db:61:4f:86:0e:8e:2e:f9:7b: d3:3a:45:d0:a2:73:75:b3:74:3a:d1:6d:3d:d6:ef: 4b:6b:93:c4:3c:19:e2:ed:5f:ae:58:c8:50:89:f4: 28:22:70:33:7b:e6:50:27:4c:e6:5e:ba:1a:dc:5a: d2:ff:9f:66:62:f2:9d:91:06:60:f8:e8:e6:c1:1b: 1d:fa:fb:8c:46:8e:8f:9f:4f:09:ce:7d:f7:9b:55: cd:bb:b4:79:01:77:ec:9e:13:64:92:d6:7a:82:26: 9c:d9:55:15:87:ab:b4:e3:f6:f3:93:c7:95:65:20: f7:c6:a4:bf:ef:f4:c3:05:ca:7b:09:c3:ad:0e:fa: e6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:C5:C5:62:9A:21:A1:9C:3F:A4:6C:CF:F8:40:36:5C:4C:67:4C:65 X509v3 Authority Key Identifier: keyid:21:D8:5D:23:1A:D5:4B:84:39:C2:AA:ED:91:A5:77:58:6A:C4:60:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/6a6b55-ca02-458d-8b5d-74d77302b184/1/IdhdIxrVS4Q5wqrtkaV3WGrEYAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:46:f6:1b:ee:6f:47:e4:03:0f:01:9b:5c:6c:cf:1d:34:d9: 13:4b:e0:07:78:01:63:df:08:e6:c6:fe:10:c3:4b:e3:7d:11: b0:06:d5:fe:30:aa:5e:6e:4d:12:e7:62:ed:98:dd:ea:9b:1a: 12:c9:1e:10:93:ca:a8:87:e5:19:bf:1c:5b:a3:7d:0f:1a:d1: 7c:5d:bb:10:50:9d:da:f4:09:11:25:44:2b:ce:a3:ea:1e:8d: df:6d:27:55:85:b1:b6:94:2f:4c:8a:60:6b:9e:4e:5c:32:23: a0:9a:b8:21:74:ce:db:ee:de:ad:d4:0f:43:37:59:08:7e:3c: 2d:f3:47:26:92:3a:ec:0e:ea:f4:b4:2f:ab:2b:9b:9f:b9:1e: 81:78:03:a0:f2:0f:2d:64:92:7a:c4:e2:34:7d:e8:e6:d8:44: 81:19:35:c3:d4:81:f2:d5:9c:ad:32:f5:a7:c2:ea:dc:0e:4d: 75:0b:ba:6b:76:25:91:cf:58:ab:78:a4:4f:1a:ea:14:be:fa: a9:f7:c4:d7:19:8f:08:61:76:27:d2:42:3e:49:26:ee:00:6b: 4c:15:c2:ec:1a:a9:44:91:3a:6b:31:c3:d6:9d:cc:fe:b4:b8: 13:4f:2f:20:16:16:01:5e:ac:5d:58:ff:53:cb:93:52:23:37: 6e:4b:ab:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXgFinOX9ez4Fw6ZyQEEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxZDg1ZDIzMWFkNTRiODQzOWMyYWFlZDkxYTU3NzU4NmFj NDYwMDAwHhcNMjYwMjA5MTMwMDQ0WhcNMjYwMjEwMTMwMDQ0WjAzMTEwLwYDVQQD EyhlNmM1YzU2MjlhMjFhMTljM2ZhNDZjY2ZmODQwMzY1YzRjNjc0YzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqp2c5YjNB2myrSVHqisDIs3dRETs lwQA1suhsHDiZlCaKCvTf7/144TOPa0TmNDCaJKA7UD6i5FHFhwDzJnPc7h28cHY VnLl5FapkmbVvMIv1+bjhd57hXiY+U4l3HoqPDrFflw6r3M+NWDKwdOx/HJJkxO1 zv/eGTRkTiLbYU+GDo4u+XvTOkXQonN1s3Q60W091u9La5PEPBni7V+uWMhQifQo InAze+ZQJ0zmXroa3FrS/59mYvKdkQZg+OjmwRsd+vuMRo6Pn08Jzn33m1XNu7R5 AXfsnhNkktZ6giac2VUVh6u04/bzk8eVZSD3xqS/7/TDBcp7CcOtDvrmmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFObFxWKaIaGcP6Rsz/hANlxMZ0xlMB8GA1UdIwQY MBaAFCHYXSMa1UuEOcKq7ZGld1hqxGAAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWRoZEl4clZTNFE1d3FydGthVjNXR3JFWUFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS82YTZiNTUtY2EwMi00NThkLThiNWQt NzRkNzczMDJiMTg0LzEvSWRoZEl4clZTNFE1d3FydGthVjNXR3JFWUFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS82YTZiNTUtY2EwMi00NThkLThiNWQtNzRkNzczMDJiMTg0 LzEvSWRoZEl4clZTNFE1d3FydGthVjNXR3JFWUFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOkb2G+5v R+QDDwGbXGzPHTTZE0vgB3gBY98I5sb+EMNL430RsAbV/jCqXm5NEudi7Zjd6psa EskeEJPKqIflGb8cW6N9DxrRfF27EFCd2vQJESVEK86j6h6N320nVYWxtpQvTIpg a55OXDIjoJq4IXTO2+7erdQPQzdZCH48LfNHJpI67A7q9LQvqyubn7kegXgDoPIP LWSSesTiNH3o5thEgRk1w9SB8tWcrTL1p8Lq3A5NdQu6a3Ylkc9Yq3ikTxrqFL76 qffE1xmPCGF2J9JCPkkm7gBrTBXC7BqpRJE6azHD1p3M/rS4E08vIBYWAV6sXVj/ U8uTUiM3bkur1Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:30 2026 by rpki-client