This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft File: FYi9izG5XpysnzgSjZW4UvA9V4Q.mft (raw, json) Hash identifier: NCRmQmecgqlStSb/TL6ovCmyWJfxf6q1YKJxlGPQ9V4= Subject key identifier: 00:F3:E8:C5:10:BF:F3:46:2B:02:33:0F:37:B2:3D:19:C0:83:C0:0C Authority key identifier: 15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84 Certificate issuer: /CN=1588bd8b31b95e9cac9f38128d95b852f03d5784 Certificate serial: 019C4321E6049A6F0B0E633F835892FD62F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:20 +0000 Manifest this update: Mon 09 Feb 2026 16:00:20 +0000 Manifest next update: Tue 10 Feb 2026 16:00:20 +0000 Files and hashes: 1: FYi9izG5XpysnzgSjZW4UvA9V4Q.crl (hash: FmfE8JPnAM8v+1aGgw65JR/MyVyfhFaTpQy03qyMMYU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:e6:04:9a:6f:0b:0e:63:3f:83:58:92:fd:62:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1588bd8b31b95e9cac9f38128d95b852f03d5784 Validity Not Before: Feb 9 16:00:20 2026 GMT Not After : Feb 10 16:00:20 2026 GMT Subject: CN=00f3e8c510bff3462b02330f37b23d19c083c00c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0c:de:b4:14:79:42:78:ab:a1:7d:0e:b4:65: 78:a5:09:91:eb:cf:03:d9:7e:47:1c:11:ce:64:00: e2:69:1d:23:86:9c:ff:66:c8:75:8c:1c:1b:04:70: 9c:15:c3:85:e6:bf:f6:05:82:c5:77:82:de:6f:d4: 65:15:fa:10:9f:74:67:12:06:98:78:cb:d4:6b:7a: 88:f1:5c:5b:b7:39:91:e9:c2:47:77:6f:32:d7:05: e5:29:17:63:66:3b:d8:9b:bf:b0:d2:b8:fe:8e:0d: a6:71:58:40:ab:18:67:b7:09:ef:f6:cc:b7:3a:d1: ed:59:8b:61:67:a6:b4:fa:26:44:28:35:bc:4f:18: 01:2f:52:84:81:4c:43:49:75:44:5a:15:e4:88:e2: 70:74:58:2b:38:55:05:f8:52:80:ca:9f:a8:f3:dc: 93:d1:0b:f6:9f:50:bb:b4:36:bf:6e:7e:3a:37:9c: 09:df:bd:98:e8:13:dd:a8:1a:fe:f4:2c:3a:78:95: d2:fb:21:ba:1e:20:1f:1e:fe:be:d7:27:b4:91:a9: 97:60:64:b6:0a:9d:41:06:d9:f6:db:30:37:23:0e: f2:80:01:7d:cf:8d:18:58:e2:d2:13:a7:85:83:65: e3:dc:c9:a3:61:d2:04:61:75:36:a5:f5:fb:58:0b: 34:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F3:E8:C5:10:BF:F3:46:2B:02:33:0F:37:B2:3D:19:C0:83:C0:0C X509v3 Authority Key Identifier: keyid:15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:9e:08:36:d0:0b:da:06:56:09:c6:f4:e4:71:8f:2e:2a:ec: de:c7:bf:96:1a:00:35:83:c4:65:af:75:1f:ac:23:1f:1d:a4: 6e:e4:ca:16:32:a9:bf:7b:57:29:d7:02:eb:86:82:ee:3c:26: 1b:af:0d:07:2c:24:cc:c8:20:2f:fd:b2:c5:c6:e8:7b:1e:bc: 90:38:f0:4d:1a:84:2c:a8:ca:77:41:4b:07:53:5b:04:a6:4d: 36:d9:7f:a8:48:aa:91:8e:ff:62:cc:3b:35:1c:11:97:08:4c: 1d:d4:f5:42:a8:7b:6a:e2:da:cb:1b:07:a4:18:79:e9:4a:a5: 07:81:1d:1e:68:22:93:de:42:6e:fe:df:a5:db:d5:73:88:69: 03:c4:2b:e9:4e:d9:1f:9f:96:e6:b2:da:4a:84:13:bd:10:21: 88:d5:41:15:8f:56:18:02:86:5c:9d:38:37:f9:94:f2:4a:23: 42:8a:d3:c0:f6:b7:18:9e:ad:29:6a:c2:ed:ba:ec:a1:7a:8b: ba:a4:c6:23:25:bc:72:84:e5:e0:ef:eb:3f:cc:60:59:30:15: f0:f3:cb:69:b6:84:05:0c:63:78:d8:30:34:d0:e9:3e:f9:b9: 2b:7f:c2:a7:e9:ca:22:26:b4:62:7b:a6:2e:5d:10:17:d9:ef: ca:8a:eb:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIeYEmm8LDmM/g1iS/WL0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1ODhiZDhiMzFiOTVlOWNhYzlmMzgxMjhkOTViODUyZjAz ZDU3ODQwHhcNMjYwMjA5MTYwMDIwWhcNMjYwMjEwMTYwMDIwWjAzMTEwLwYDVQQD EygwMGYzZThjNTEwYmZmMzQ2MmIwMjMzMGYzN2IyM2QxOWMwODNjMDBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAzetBR5QniroX0OtGV4pQmR688D 2X5HHBHOZADiaR0jhpz/Zsh1jBwbBHCcFcOF5r/2BYLFd4Leb9RlFfoQn3RnEgaY eMvUa3qI8VxbtzmR6cJHd28y1wXlKRdjZjvYm7+w0rj+jg2mcVhAqxhntwnv9sy3 OtHtWYthZ6a0+iZEKDW8TxgBL1KEgUxDSXVEWhXkiOJwdFgrOFUF+FKAyp+o89yT 0Qv2n1C7tDa/bn46N5wJ372Y6BPdqBr+9Cw6eJXS+yG6HiAfHv6+1ye0kamXYGS2 Cp1BBtn22zA3Iw7ygAF9z40YWOLSE6eFg2Xj3MmjYdIEYXU2pfX7WAs0wwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFADz6MUQv/NGKwIzDzeyPRnAg8AMMB8GA1UdIwQY MBaAFBWIvYsxuV6crJ84Eo2VuFLwPVeEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRllpOWl6RzVYcHlzbnpnU2paVzRVdkE5VjRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kMWFhMmUtYjgxOS00MjFjLTg0NTYt YjVhZTgzOWYzMGUyLzEvRllpOWl6RzVYcHlzbnpnU2paVzRVdkE5VjRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9kMWFhMmUtYjgxOS00MjFjLTg0NTYtYjVhZTgzOWYzMGUy LzEvRllpOWl6RzVYcHlzbnpnU2paVzRVdkE5VjRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFp4INtAL 2gZWCcb05HGPLirs3se/lhoANYPEZa91H6wjHx2kbuTKFjKpv3tXKdcC64aC7jwm G68NBywkzMggL/2yxcboex68kDjwTRqELKjKd0FLB1NbBKZNNtl/qEiqkY7/Ysw7 NRwRlwhMHdT1Qqh7auLayxsHpBh56UqlB4EdHmgik95Cbv7fpdvVc4hpA8Qr6U7Z H5+W5rLaSoQTvRAhiNVBFY9WGAKGXJ04N/mU8kojQorTwPa3GJ6tKWrC7brsoXqL uqTGIyW8coTl4O/rP8xgWTAV8PPLabaEBQxjeNgwNNDpPvm5K3/Cp+nKIia0Ynum Ll0QF9nvyorrKA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:39 2026 by rpki-client