This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft File: iPdXItsls3I97Npdhw32m_DYZa4.mft (raw, json) Hash identifier: GyuMWmdgcMt6kRgAqD+GEuV5rK+KO+QQZ2p2fThIz+M= Subject key identifier: 1E:66:A9:0B:7F:2E:61:B3:3F:DD:2B:7F:AF:E8:1C:16:D8:72:CD:DB Authority key identifier: 88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE Certificate issuer: /CN=88f75722db25b3723decda5d870df69bf0d865ae Certificate serial: 019C4322C926FE3FDF65E4936BFE74204E9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft Manifest number: 1208 Signing time: Mon 09 Feb 2026 16:01:18 +0000 Manifest this update: Mon 09 Feb 2026 16:01:18 +0000 Manifest next update: Tue 10 Feb 2026 16:01:18 +0000 Files and hashes: 1: iPdXItsls3I97Npdhw32m_DYZa4.crl (hash: R25mbBFA+3dyHazDYQKORkxb6QDpfboshDdlu8bG/80=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:c9:26:fe:3f:df:65:e4:93:6b:fe:74:20:4e:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88f75722db25b3723decda5d870df69bf0d865ae Validity Not Before: Feb 9 16:01:18 2026 GMT Not After : Feb 10 16:01:18 2026 GMT Subject: CN=1e66a90b7f2e61b33fdd2b7fafe81c16d872cddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:36:bc:b0:04:e5:5e:58:c5:db:3f:db:ce:0c: bf:a1:75:25:a1:cf:e1:25:24:ba:3b:c9:a7:6f:1c: 97:71:a8:f0:0c:ed:0b:bd:4d:a7:b6:bf:56:33:a8: d2:77:54:82:d5:2c:09:ad:5e:9c:b9:27:da:fd:5c: 8a:f5:bd:cb:ef:8b:29:03:43:ce:51:1a:d3:c6:2e: c1:e1:ea:8b:dd:c5:84:05:8a:34:cf:02:b4:c7:fe: 85:0c:25:f0:e6:19:1f:90:05:8f:4d:74:ab:2d:b6: 8b:ba:4f:39:28:32:06:f1:ce:a4:f8:ed:a2:43:c2: bf:cd:d7:d0:6a:23:86:ab:71:ce:71:76:21:39:65: 43:c2:bf:2f:a4:51:44:8b:8b:8d:05:7f:98:fe:73: e2:4a:87:c4:83:0b:33:bc:81:21:12:0f:ac:ac:53: 17:9c:d8:f9:39:8c:f3:a6:36:6e:a9:7e:d2:29:a3: 31:6b:fb:60:e2:ad:53:16:35:db:e1:8f:17:fb:d9: ad:30:d5:05:42:6b:10:7d:7e:a4:d9:fe:d4:c4:f6: 1e:cf:81:d0:19:af:c3:be:59:9c:e1:38:76:6a:0e: fb:07:fe:e4:fc:69:d4:40:94:d3:e6:bc:6b:18:d8: f2:44:2e:36:3c:d6:2c:13:5d:fa:de:56:d5:ee:ae: 77:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:66:A9:0B:7F:2E:61:B3:3F:DD:2B:7F:AF:E8:1C:16:D8:72:CD:DB X509v3 Authority Key Identifier: keyid:88:F7:57:22:DB:25:B3:72:3D:EC:DA:5D:87:0D:F6:9B:F0:D8:65:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPdXItsls3I97Npdhw32m_DYZa4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2fa725-945c-48df-b629-2d140e4c5a3f/1/iPdXItsls3I97Npdhw32m_DYZa4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:76:14:bd:e9:e2:50:c9:90:c0:4b:de:36:f2:48:6a:4e:bc: 0d:10:2b:94:9f:0b:11:fd:00:fb:81:d9:69:8c:91:57:fb:4d: 06:bf:36:52:23:d9:8f:19:0a:85:f0:af:a3:f6:68:a8:b3:39: 9b:fe:f7:b8:5f:65:be:56:5b:4f:83:7c:ae:03:c7:6c:a0:f1: 7a:57:43:9b:f9:b7:94:7a:73:63:e4:d8:df:ba:e1:59:be:44: 22:0f:03:f6:fe:13:28:56:37:1d:98:7b:24:80:e2:89:42:57: c2:78:62:00:d6:5b:7e:45:5f:26:d7:8e:74:f8:6d:d7:b8:c5: bb:a4:6f:5d:9e:9a:4a:27:bc:20:4e:12:d8:82:aa:54:9e:0b: e8:86:56:6b:57:fa:54:16:3e:f7:42:6d:b4:14:a2:f9:dc:ab: 91:d8:0d:70:f3:17:d7:a0:10:fd:30:79:65:2a:75:37:58:6d: cb:46:db:47:c6:46:93:98:19:d2:fb:1c:d5:b6:22:26:b9:98: 22:45:1e:0e:b4:fc:15:e3:7b:38:74:01:72:9e:81:61:b7:3f: 88:89:d5:d4:04:c4:85:f1:43:67:12:f4:40:29:9d:21:6f:eb: 48:e8:63:e6:de:0a:e1:01:c1:9a:07:5e:3e:f3:6e:33:34:f1: 61:59:ad:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIskm/j/fZeSTa/50IE6cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4Zjc1NzIyZGIyNWIzNzIzZGVjZGE1ZDg3MGRmNjliZjBk ODY1YWUwHhcNMjYwMjA5MTYwMTE4WhcNMjYwMjEwMTYwMTE4WjAzMTEwLwYDVQQD EygxZTY2YTkwYjdmMmU2MWIzM2ZkZDJiN2ZhZmU4MWMxNmQ4NzJjZGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtja8sATlXljF2z/bzgy/oXUloc/h JSS6O8mnbxyXcajwDO0LvU2ntr9WM6jSd1SC1SwJrV6cuSfa/VyK9b3L74spA0PO URrTxi7B4eqL3cWEBYo0zwK0x/6FDCXw5hkfkAWPTXSrLbaLuk85KDIG8c6k+O2i Q8K/zdfQaiOGq3HOcXYhOWVDwr8vpFFEi4uNBX+Y/nPiSofEgwszvIEhEg+srFMX nNj5OYzzpjZuqX7SKaMxa/tg4q1TFjXb4Y8X+9mtMNUFQmsQfX6k2f7UxPYez4HQ Ga/Dvlmc4Th2ag77B/7k/GnUQJTT5rxrGNjyRC42PNYsE1363lbV7q539wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB5mqQt/LmGzP90rf6/oHBbYcs3bMB8GA1UdIwQY MBaAFIj3VyLbJbNyPezaXYcN9pvw2GWuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVBkWEl0c2xzM0k5N05wZGh3MzJtX0RZWmE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yZmE3MjUtOTQ1Yy00OGRmLWI2Mjkt MmQxNDBlNGM1YTNmLzEvaVBkWEl0c2xzM0k5N05wZGh3MzJtX0RZWmE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8yZmE3MjUtOTQ1Yy00OGRmLWI2MjktMmQxNDBlNGM1YTNm LzEvaVBkWEl0c2xzM0k5N05wZGh3MzJtX0RZWmE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFXYUveni UMmQwEveNvJIak68DRArlJ8LEf0A+4HZaYyRV/tNBr82UiPZjxkKhfCvo/ZoqLM5 m/73uF9lvlZbT4N8rgPHbKDxeldDm/m3lHpzY+TY37rhWb5EIg8D9v4TKFY3HZh7 JIDiiUJXwnhiANZbfkVfJteOdPht17jFu6RvXZ6aSie8IE4S2IKqVJ4L6IZWa1f6 VBY+90JttBSi+dyrkdgNcPMX16AQ/TB5ZSp1N1hty0bbR8ZGk5gZ0vsc1bYiJrmY IkUeDrT8FeN7OHQBcp6BYbc/iInV1ATEhfFDZxL0QCmdIW/rSOhj5t4K4QHBmgde PvNuMzTxYVmthw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:03 2026 by rpki-client