This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft File: icKIUyrvyGlxuY1bTR2YGW2ey4U.mft (raw, json) Hash identifier: dsj6qBl0adJLYvUOphqpJO3C6l3bVWwNpWABsCkjJ4U= Subject key identifier: B8:BC:1B:41:9F:0F:93:4E:31:A0:64:D5:D6:53:3D:57:F1:BD:7B:31 Authority key identifier: 89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85 Certificate issuer: /CN=89c288532aefc86971b98d5b4d1d98196d9ecb85 Certificate serial: 019C4133794F7A3D68DB5910D6EAD657F793 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft Manifest number: 097F Signing time: Mon 09 Feb 2026 07:00:18 +0000 Manifest this update: Mon 09 Feb 2026 07:00:18 +0000 Manifest next update: Tue 10 Feb 2026 07:00:18 +0000 Files and hashes: 1: icKIUyrvyGlxuY1bTR2YGW2ey4U.crl (hash: YRxevsCDW6QvHNudbhq/Rxh86q0b1VOT4XuWtqnQ6rY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:79:4f:7a:3d:68:db:59:10:d6:ea:d6:57:f7:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89c288532aefc86971b98d5b4d1d98196d9ecb85 Validity Not Before: Feb 9 07:00:18 2026 GMT Not After : Feb 10 07:00:18 2026 GMT Subject: CN=b8bc1b419f0f934e31a064d5d6533d57f1bd7b31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:33:e8:c3:b6:c8:52:3a:52:95:ae:7c:18:23: 8a:de:25:ad:53:73:99:77:c5:ba:b5:d1:b9:b1:df: 38:b3:cc:db:5f:37:f7:22:8e:97:65:fb:36:63:0d: ad:96:e4:4c:00:77:5b:17:06:6a:10:b2:e6:86:26: 07:fa:8e:e9:ea:8f:30:cb:6b:5d:d1:3e:0d:5d:16: 3e:6a:09:e6:0c:cc:63:1c:6d:a4:23:0b:e1:1f:b6: 8c:74:fa:8d:04:aa:42:80:60:d4:21:9c:d3:0d:db: 3f:48:08:64:c0:21:59:3b:29:56:b3:1c:96:c3:be: 33:12:a7:57:4d:7b:34:c4:44:62:88:5f:db:d1:b8: 94:d0:53:0c:6b:7f:ee:11:8d:89:5b:47:de:e8:4f: d1:f6:a4:f3:63:63:09:04:55:49:8a:a2:1f:85:3b: 5c:07:61:46:f9:3b:d2:0b:f6:df:23:6b:1d:92:b0: 24:7b:e2:1a:db:d8:07:f4:d0:6e:3a:24:5e:c8:e0: 68:c6:90:96:08:58:5d:46:ef:95:e2:57:d4:34:aa: 9b:38:ed:6a:8a:bd:6c:e6:50:e4:0a:15:ea:83:08: 28:52:4c:94:d6:7e:8a:da:fc:c7:cd:09:0c:62:7f: f1:95:c8:34:96:5b:c1:ba:63:54:3e:e6:7d:5e:f7: c4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:BC:1B:41:9F:0F:93:4E:31:A0:64:D5:D6:53:3D:57:F1:BD:7B:31 X509v3 Authority Key Identifier: keyid:89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:c5:15:a9:77:7c:59:51:6c:80:e9:24:25:63:74:de:69:04: db:7f:04:40:1e:72:f2:ea:40:62:fd:78:5e:88:bc:21:84:3b: cd:f9:f5:26:13:56:f9:cf:ef:02:73:e0:dd:d8:43:b0:6c:e4: 41:6f:35:92:94:73:01:83:23:46:9f:fe:60:8c:9e:37:81:30: 9f:ac:cb:e4:7d:e3:42:a6:ab:c7:c4:4f:c8:64:22:56:07:98: 74:5c:ea:f5:6c:b3:83:fd:7d:10:20:fc:2e:4d:18:96:25:46: 2a:65:ab:bc:46:23:1b:f6:bc:46:3a:39:8f:86:b7:ae:c0:e2: fb:bc:73:5e:1e:ab:3f:e5:af:56:b8:fb:29:42:9f:b2:8e:3f: 25:10:ff:0d:29:2b:ea:0c:94:e0:db:3b:af:7b:12:e4:43:8d: f2:95:9e:90:af:19:70:d6:37:4b:b8:16:20:70:30:0f:15:bd: 68:b9:36:de:8d:aa:22:19:4e:e0:1e:72:07:4d:16:5e:f8:53: 02:48:d2:74:9c:1a:bb:63:ee:4c:df:b2:ab:0c:83:5c:6d:b2: 8a:bc:fd:9b:68:35:54:88:f7:17:31:c0:b3:45:14:33:cd:93: f6:c5:21:a0:98:10:cd:ae:ac:99:92:c9:4c:9c:4d:52:09:ce: 33:76:7a:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM3lPej1o21kQ1urWV/eTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YzI4ODUzMmFlZmM4Njk3MWI5OGQ1YjRkMWQ5ODE5NmQ5 ZWNiODUwHhcNMjYwMjA5MDcwMDE4WhcNMjYwMjEwMDcwMDE4WjAzMTEwLwYDVQQD EyhiOGJjMWI0MTlmMGY5MzRlMzFhMDY0ZDVkNjUzM2Q1N2YxYmQ3YjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDPow7bIUjpSla58GCOK3iWtU3OZ d8W6tdG5sd84s8zbXzf3Io6XZfs2Yw2tluRMAHdbFwZqELLmhiYH+o7p6o8wy2td 0T4NXRY+agnmDMxjHG2kIwvhH7aMdPqNBKpCgGDUIZzTDds/SAhkwCFZOylWsxyW w74zEqdXTXs0xERiiF/b0biU0FMMa3/uEY2JW0fe6E/R9qTzY2MJBFVJiqIfhTtc B2FG+TvSC/bfI2sdkrAke+Ia29gH9NBuOiReyOBoxpCWCFhdRu+V4lfUNKqbOO1q ir1s5lDkChXqgwgoUkyU1n6K2vzHzQkMYn/xlcg0llvBumNUPuZ9XvfE0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLi8G0GfD5NOMaBk1dZTPVfxvXsxMB8GA1UdIwQY MBaAFInCiFMq78hpcbmNW00dmBltnsuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWNLSVV5cnZ5R2x4dVkxYlRSMllHVzJleTRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8xOGRkOGItYTAxMC00MmNhLWJjOTkt MGY4NjdkOWZmNThlLzEvaWNLSVV5cnZ5R2x4dVkxYlRSMllHVzJleTRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS8xOGRkOGItYTAxMC00MmNhLWJjOTktMGY4NjdkOWZmNThl LzEvaWNLSVV5cnZ5R2x4dVkxYlRSMllHVzJleTRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD8UVqXd8 WVFsgOkkJWN03mkE238EQB5y8upAYv14Xoi8IYQ7zfn1JhNW+c/vAnPg3dhDsGzk QW81kpRzAYMjRp/+YIyeN4Ewn6zL5H3jQqarx8RPyGQiVgeYdFzq9Wyzg/19ECD8 Lk0YliVGKmWrvEYjG/a8Rjo5j4a3rsDi+7xzXh6rP+WvVrj7KUKfso4/JRD/DSkr 6gyU4Ns7r3sS5EON8pWekK8ZcNY3S7gWIHAwDxW9aLk23o2qIhlO4B5yB00WXvhT AkjSdJwau2PuTN+yqwyDXG2yirz9m2g1VIj3FzHAs0UUM82T9sUhoJgQza6smZLJ TJxNUgnOM3Z6uA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:21 2026 by rpki-client