This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft File: 4iUB2aQBcJg48z0a4nm85xALPM8.mft (raw, json) Hash identifier: Ynve6+iZrIG2Kelpo7JLN1yIETkI4mCv7Q8aGsYBgu8= Subject key identifier: 88:7D:79:6B:6D:A3:B6:8F:88:42:64:16:A4:3D:79:3C:22:1C:8C:C3 Authority key identifier: E2:25:01:D9:A4:01:70:98:38:F3:3D:1A:E2:79:BC:E7:10:0B:3C:CF Certificate issuer: /CN=e22501d9a401709838f33d1ae279bce7100b3ccf Certificate serial: 019C4321CA51C2C9B6BDFD5983A6BFC32A3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4iUB2aQBcJg48z0a4nm85xALPM8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft Manifest number: 1287 Signing time: Mon 09 Feb 2026 16:00:13 +0000 Manifest this update: Mon 09 Feb 2026 16:00:13 +0000 Manifest next update: Tue 10 Feb 2026 16:00:13 +0000 Files and hashes: 1: 4iUB2aQBcJg48z0a4nm85xALPM8.crl (hash: 449iCflPzKdSEdIz9q75Aeaw4jbtuzg4m1whK0XNxXk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.crl rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft rsync://rpki.ripe.net/repository/DEFAULT/4iUB2aQBcJg48z0a4nm85xALPM8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:ca:51:c2:c9:b6:bd:fd:59:83:a6:bf:c3:2a:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e22501d9a401709838f33d1ae279bce7100b3ccf Validity Not Before: Feb 9 16:00:13 2026 GMT Not After : Feb 10 16:00:13 2026 GMT Subject: CN=887d796b6da3b68f88426416a43d793c221c8cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:60:a3:56:05:fc:66:f2:3c:41:3d:b6:99:fb: a5:f0:ca:9b:d9:ef:f1:17:06:5a:1d:71:0d:f3:6c: 4c:e0:71:b1:de:bc:c7:5a:6d:18:da:c6:55:d4:76: 26:e7:bb:20:84:62:b3:6b:5b:34:50:de:50:11:f0: 0b:7e:0d:50:d7:a4:40:22:da:52:60:65:96:19:2a: 8e:ca:36:1e:de:11:59:70:6d:94:83:2e:38:3e:88: bf:cb:42:e1:6a:b7:ed:cc:35:ef:6f:80:88:f4:c8: 47:36:3b:b9:d1:d7:52:e7:ef:22:c8:e5:35:60:72: 5c:7a:d8:cb:67:2e:a0:d5:4a:08:27:2b:31:6a:55: 68:5a:c9:d2:41:fc:34:77:a9:c2:44:0f:d9:10:a9: 73:09:af:32:f3:48:f2:a8:b5:00:1f:3c:ea:24:10: 84:85:59:68:57:10:d4:cf:3c:74:83:cd:f9:aa:4f: ec:e9:7b:cf:3c:2d:c7:5a:71:85:b2:73:19:50:3a: ed:0c:43:b0:8b:c0:51:7c:5f:ff:22:fd:fb:96:11: 81:13:3b:78:e9:6c:4d:41:b8:b7:f9:4b:41:81:a3: 71:2c:1e:79:e2:d1:64:01:d8:b5:3c:5b:f8:44:fe: 3b:94:30:f6:b2:ce:30:ec:5c:e0:bc:a6:f5:93:68: e8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:7D:79:6B:6D:A3:B6:8F:88:42:64:16:A4:3D:79:3C:22:1C:8C:C3 X509v3 Authority Key Identifier: keyid:E2:25:01:D9:A4:01:70:98:38:F3:3D:1A:E2:79:BC:E7:10:0B:3C:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4iUB2aQBcJg48z0a4nm85xALPM8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:4e:e4:cb:79:d0:26:5b:e9:e5:b6:61:82:5c:b2:24:d8:0c: 6f:99:1e:e4:33:75:a7:d4:da:17:2e:cf:d6:46:97:03:dc:42: 2f:4c:80:95:fe:8f:e9:26:8e:35:37:b1:81:b8:00:3a:d3:89: c5:b3:90:1a:52:1d:92:a0:27:a3:02:d3:72:49:d5:8d:ae:77: e3:e1:2b:1d:83:de:8e:c3:c3:d6:6b:d8:ca:50:45:4a:69:19: d7:10:f1:3a:eb:b7:1e:82:6e:d8:e3:e1:b3:fc:47:97:e7:8b: 49:aa:a9:96:1c:50:32:12:05:f8:79:18:7c:2f:03:87:9e:bf: e2:e2:f9:94:92:6f:11:da:fe:a1:40:d4:af:79:06:98:71:93: bf:61:c3:76:92:6d:7d:d3:ed:52:02:b1:51:32:fa:28:8b:a7: 38:71:9f:9d:69:ab:c1:e8:a1:a3:77:e4:07:c9:2d:94:20:e6: 3c:18:ad:7f:c8:01:94:29:f2:3d:8c:40:e1:99:29:e2:9e:a9: c8:03:2f:76:65:5e:58:b1:cf:21:1e:96:a7:bf:e5:e7:5b:0f: 90:6d:08:89:49:a9:40:84:1a:e8:fd:28:7f:88:65:49:d0:9f: 3e:21:f6:6a:7e:51:2a:25:db:79:54:3a:52:ac:6d:a6:4f:92: 12:bb:6f:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIcpRwsm2vf1Zg6a/wyo/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyMjUwMWQ5YTQwMTcwOTgzOGYzM2QxYWUyNzliY2U3MTAw YjNjY2YwHhcNMjYwMjA5MTYwMDEzWhcNMjYwMjEwMTYwMDEzWjAzMTEwLwYDVQQD Eyg4ODdkNzk2YjZkYTNiNjhmODg0MjY0MTZhNDNkNzkzYzIyMWM4Y2MzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGCjVgX8ZvI8QT22mful8Mqb2e/x FwZaHXEN82xM4HGx3rzHWm0Y2sZV1HYm57sghGKza1s0UN5QEfALfg1Q16RAItpS YGWWGSqOyjYe3hFZcG2Ugy44Poi/y0LharftzDXvb4CI9MhHNju50ddS5+8iyOU1 YHJcetjLZy6g1UoIJysxalVoWsnSQfw0d6nCRA/ZEKlzCa8y80jyqLUAHzzqJBCE hVloVxDUzzx0g835qk/s6XvPPC3HWnGFsnMZUDrtDEOwi8BRfF//Iv37lhGBEzt4 6WxNQbi3+UtBgaNxLB554tFkAdi1PFv4RP47lDD2ss4w7FzgvKb1k2jocwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIh9eWtto7aPiEJkFqQ9eTwiHIzDMB8GA1UdIwQY MBaAFOIlAdmkAXCYOPM9GuJ5vOcQCzzPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGlVQjJhUUJjSmc0OHowYTRubTg1eEFMUE04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My82M2ZhZTktNDk5Zi00M2Q1LTg3Njgt Zjk4MTFlZTNmYTg3LzEvNGlVQjJhUUJjSmc0OHowYTRubTg1eEFMUE04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My82M2ZhZTktNDk5Zi00M2Q1LTg3NjgtZjk4MTFlZTNmYTg3 LzEvNGlVQjJhUUJjSmc0OHowYTRubTg1eEFMUE04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh07ky3nQ Jlvp5bZhglyyJNgMb5ke5DN1p9TaFy7P1kaXA9xCL0yAlf6P6SaONTexgbgAOtOJ xbOQGlIdkqAnowLTcknVja534+ErHYPejsPD1mvYylBFSmkZ1xDxOuu3HoJu2OPh s/xHl+eLSaqplhxQMhIF+HkYfC8Dh56/4uL5lJJvEdr+oUDUr3kGmHGTv2HDdpJt fdPtUgKxUTL6KIunOHGfnWmrweiho3fkB8ktlCDmPBitf8gBlCnyPYxA4Zkp4p6p yAMvdmVeWLHPIR6Wp7/l51sPkG0IiUmpQIQa6P0of4hlSdCfPiH2an5RKiXbeVQ6 Uqxtpk+SErtvAA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:47 2026 by rpki-client