This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft File: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft (raw, json) Hash identifier: LZmzMl+Ik69/6PmXfAA+AhG+0W7om8sQsfkC9vyMduU= Subject key identifier: AB:C9:3A:59:E6:AA:C7:B5:91:9B:4A:37:7F:DC:8E:EC:F3:31:02:4F Authority key identifier: D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D Certificate issuer: /CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d Certificate serial: 019C438FDA759F9AEC612A021916F678AE3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft Manifest number: 0528 Signing time: Mon 09 Feb 2026 18:00:26 +0000 Manifest this update: Mon 09 Feb 2026 18:00:26 +0000 Manifest next update: Tue 10 Feb 2026 18:00:26 +0000 Files and hashes: 1: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl (hash: 5uaKybBPmihsVW8bfwf2sTuLwOl6tzLsZWXcwW2s9es=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:da:75:9f:9a:ec:61:2a:02:19:16:f6:78:ae:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d Validity Not Before: Feb 9 18:00:26 2026 GMT Not After : Feb 10 18:00:26 2026 GMT Subject: CN=abc93a59e6aac7b5919b4a377fdc8eecf331024f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b7:a3:d5:d1:51:fb:f2:85:ef:9e:f4:77:af: 8b:bb:4b:51:2d:b6:f4:4f:d2:f4:ad:bd:c4:da:f3: dd:09:bf:31:de:11:5a:e7:2f:f2:cd:ae:a9:a8:46: c3:dd:9e:c7:23:ec:26:8e:d7:d8:bf:87:d3:1e:6c: fe:5d:5f:ce:78:4d:9e:5d:af:0b:55:be:ca:6d:e0: 80:4f:bf:f6:e5:48:ce:3c:2a:96:63:24:8c:4e:27: 4a:41:60:6d:9c:a7:ec:9f:03:7c:b4:ad:25:8a:d6: 9b:1c:ea:c9:18:70:ee:d2:9c:1c:96:37:17:d1:9f: c5:a7:3c:e6:f8:d9:f3:e1:24:5e:33:94:fe:dd:9e: a8:6e:52:89:cd:04:81:b6:60:56:fb:d3:5e:6b:44: 7a:0c:0c:26:5c:1f:c2:1c:69:d3:0f:4e:a6:8d:0a: 79:4f:84:09:23:a9:5a:85:29:f0:75:14:26:a0:2d: 24:8f:4c:1d:65:34:a0:66:1b:e4:09:79:ac:95:ac: f5:a2:6b:28:8d:b2:08:8f:44:96:72:1f:16:ed:6a: 35:e5:bb:80:22:18:ed:6c:f4:60:e4:b5:25:13:5c: c2:7e:85:8a:e7:21:0e:ec:d5:ef:66:48:95:5f:a7: 34:1f:21:51:d9:d2:56:d2:49:6b:2e:20:a9:70:ec: 2f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C9:3A:59:E6:AA:C7:B5:91:9B:4A:37:7F:DC:8E:EC:F3:31:02:4F X509v3 Authority Key Identifier: keyid:D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:02:f2:dd:68:05:5b:e4:c7:24:76:84:e6:59:08:86:98:3d: bd:b7:54:ad:c9:2d:8a:3d:e0:a5:02:c2:c0:98:29:4a:64:e4: bd:18:51:50:eb:d9:5e:da:a5:8f:10:69:b7:f3:87:87:be:dd: 2e:97:60:4f:71:b1:ef:39:ff:68:6a:9d:0b:45:9f:32:7c:22: 2f:2a:44:d9:35:08:05:98:24:7d:09:ec:e2:1d:4e:d2:ea:a1: 4b:20:db:45:9f:74:20:c5:13:bb:d7:bb:90:e4:ef:0f:83:56: 27:d6:c4:80:51:60:1f:49:2f:f1:65:bd:37:1c:99:3c:42:22: af:9b:7e:7f:88:f5:d1:e2:0d:59:66:46:6f:a9:ab:3c:25:c0: 8c:8c:6d:f1:a7:a0:34:ab:9a:c5:f8:76:96:dd:b4:4b:e1:3a: 2d:23:29:63:8c:e4:4d:29:de:15:30:de:d3:15:aa:25:3a:e1: f3:df:5f:5a:9b:ea:aa:c2:e1:03:a2:b0:7a:bd:b9:7f:09:09: 33:99:16:de:12:66:b6:21:bd:84:ee:56:77:24:e5:43:17:ce: 83:a6:3b:70:03:fc:ad:f0:5e:14:9a:8c:ae:55:5f:46:b6:b0: 8e:94:d0:bf:fb:c6:0b:be:59:6d:ce:7c:bb:e8:97:12:01:72: 45:33:b8:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj9p1n5rsYSoCGRb2eK48MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MmNjNDAyNjdlMzU5MmUxYjUyZjBmMDA5NmNiMWYyZjBh ZjE2N2QwHhcNMjYwMjA5MTgwMDI2WhcNMjYwMjEwMTgwMDI2WjAzMTEwLwYDVQQD EyhhYmM5M2E1OWU2YWFjN2I1OTE5YjRhMzc3ZmRjOGVlY2YzMzEwMjRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbej1dFR+/KF7570d6+Lu0tRLbb0 T9L0rb3E2vPdCb8x3hFa5y/yza6pqEbD3Z7HI+wmjtfYv4fTHmz+XV/OeE2eXa8L Vb7KbeCAT7/25UjOPCqWYySMTidKQWBtnKfsnwN8tK0litabHOrJGHDu0pwcljcX 0Z/Fpzzm+Nnz4SReM5T+3Z6oblKJzQSBtmBW+9Nea0R6DAwmXB/CHGnTD06mjQp5 T4QJI6lahSnwdRQmoC0kj0wdZTSgZhvkCXmslaz1omsojbIIj0SWch8W7Wo15buA IhjtbPRg5LUlE1zCfoWK5yEO7NXvZkiVX6c0HyFR2dJW0klrLiCpcOwvMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKvJOlnmqse1kZtKN3/cjuzzMQJPMB8GA1UdIwQY MBaAFNQsxAJn41kuG1Lw8AlssfLwrxZ9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUN6RUFtZmpXUzRiVXZEd0NXeXg4dkN2Rm4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83MTM0NWQtMmYyZC00YjU5LTllNjct MTZlMTMwODczN2IwLzEvMUN6RUFtZmpXUzRiVXZEd0NXeXg4dkN2Rm4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My83MTM0NWQtMmYyZC00YjU5LTllNjctMTZlMTMwODczN2Iw LzEvMUN6RUFtZmpXUzRiVXZEd0NXeXg4dkN2Rm4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIALy3WgF W+THJHaE5lkIhpg9vbdUrcktij3gpQLCwJgpSmTkvRhRUOvZXtqljxBpt/OHh77d LpdgT3Gx7zn/aGqdC0WfMnwiLypE2TUIBZgkfQns4h1O0uqhSyDbRZ90IMUTu9e7 kOTvD4NWJ9bEgFFgH0kv8WW9NxyZPEIir5t+f4j10eINWWZGb6mrPCXAjIxt8aeg NKuaxfh2lt20S+E6LSMpY4zkTSneFTDe0xWqJTrh899fWpvqqsLhA6Kwer25fwkJ M5kW3hJmtiG9hO5WdyTlQxfOg6Y7cAP8rfBeFJqMrlVfRrawjpTQv/vGC75Zbc58 u+iXEgFyRTO46Q== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:58 2026 by rpki-client