This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft File: Iycd4-AQWavm0aWTxKJP9uGI1k8.mft (raw, json) Hash identifier: wTIxhzwtJ+kxRXh/mKkVribWdcEY6Q33FWXHt7ZSm7c= Subject key identifier: E1:A8:5C:15:45:4E:F1:DE:4E:03:AF:0F:3A:2A:63:BC:6D:75:1A:08 Authority key identifier: 23:27:1D:E3:E0:10:59:AB:E6:D1:A5:93:C4:A2:4F:F6:E1:88:D6:4F Certificate issuer: /CN=23271de3e01059abe6d1a593c4a24ff6e188d64f Certificate serial: 019C4322E972BF86167C86DB1FC1ECE80F89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft Manifest number: 1010 Signing time: Mon 09 Feb 2026 16:01:27 +0000 Manifest this update: Mon 09 Feb 2026 16:01:27 +0000 Manifest next update: Tue 10 Feb 2026 16:01:27 +0000 Files and hashes: 1: Iycd4-AQWavm0aWTxKJP9uGI1k8.crl (hash: nX2ZZIAXN6kyNZePhlrUPeynekWOtHI5aILQ0NbutLo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:e9:72:bf:86:16:7c:86:db:1f:c1:ec:e8:0f:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23271de3e01059abe6d1a593c4a24ff6e188d64f Validity Not Before: Feb 9 16:01:27 2026 GMT Not After : Feb 10 16:01:27 2026 GMT Subject: CN=e1a85c15454ef1de4e03af0f3a2a63bc6d751a08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:45:ac:13:18:ed:70:2c:94:42:f7:a5:41:35: da:d2:dc:d9:56:37:8a:5d:b9:c5:ac:76:b3:cb:33: 69:dc:a8:cc:2a:3c:cc:e1:28:23:e5:02:cf:7c:66: 2a:92:cd:a3:e0:7b:8f:b9:70:50:6c:e7:42:5d:e2: 18:6c:95:c7:2a:e5:cd:2c:40:bf:0a:6c:61:e3:2c: c7:4b:90:c0:5e:47:b4:94:d1:1f:85:a4:d0:8e:19: be:99:4e:3a:12:79:b0:e6:c4:b8:80:e4:5a:2e:73: b8:eb:b3:65:34:6e:cf:a9:1d:50:50:ba:02:69:58: fd:d0:61:0a:b7:78:44:41:35:13:22:38:23:9c:02: b3:ab:5d:a6:aa:1e:7e:29:c6:5b:20:e9:3a:9b:47: 0e:67:3b:2e:79:bf:50:7e:27:1f:ed:b2:70:b2:3e: 03:28:52:e8:d9:2b:08:b6:8d:cb:55:18:15:a9:1e: ec:0f:35:bd:15:fb:c0:2b:1b:4b:14:9a:68:b6:b9: 22:b8:88:df:2e:08:26:ba:70:7d:52:b8:01:4f:7c: ed:6e:41:74:5b:6e:01:74:d4:bf:9f:af:34:96:69: f5:c7:45:6e:b8:3c:a1:9c:25:a6:d6:33:11:e2:e7: da:3f:39:ea:3f:45:16:5b:3a:14:06:8f:04:f0:27: 54:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A8:5C:15:45:4E:F1:DE:4E:03:AF:0F:3A:2A:63:BC:6D:75:1A:08 X509v3 Authority Key Identifier: keyid:23:27:1D:E3:E0:10:59:AB:E6:D1:A5:93:C4:A2:4F:F6:E1:88:D6:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:9f:94:c6:bc:5b:66:d2:e5:5b:34:55:34:d4:16:0f:0a:95: 7b:22:48:e6:f8:21:eb:19:fb:05:de:e5:2c:64:d1:e8:94:11: f6:24:29:c2:3c:5b:4c:f3:46:18:76:c8:da:3c:79:63:46:73: c2:c2:a6:ec:b0:13:2e:ef:55:20:52:59:5e:fd:bd:d7:9f:06: 16:42:c7:be:5a:66:0a:da:80:fc:1e:bb:bf:e9:db:fe:fa:5d: 91:be:8c:03:0d:d1:48:37:42:87:24:12:07:73:a4:c3:de:89: 66:26:5c:20:12:db:f5:54:33:eb:39:57:17:43:52:ff:0e:71: 6c:3a:25:58:8e:d0:7d:02:cd:2d:f1:53:cd:63:ba:d3:9b:9a: c6:14:ee:ec:15:34:31:d9:7b:e5:70:e4:f5:f6:0d:63:5d:ae: 6a:c4:22:b6:da:e5:29:38:a3:eb:39:39:3f:64:b6:45:89:95: 1f:03:67:f6:40:36:f0:dc:47:a8:74:2f:85:6e:fa:5a:42:23: ab:49:e0:37:94:71:e2:b5:df:8e:b3:81:3c:dd:04:a2:24:80: d6:7c:05:c4:5b:50:aa:af:7f:4a:2b:c0:77:99:f2:18:68:9c: fe:7d:99:bb:51:cd:43:24:18:e0:82:f0:33:2a:ca:9c:b6:41: ed:e0:46:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIulyv4YWfIbbH8Hs6A+JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjcxZGUzZTAxMDU5YWJlNmQxYTU5M2M0YTI0ZmY2ZTE4 OGQ2NGYwHhcNMjYwMjA5MTYwMTI3WhcNMjYwMjEwMTYwMTI3WjAzMTEwLwYDVQQD EyhlMWE4NWMxNTQ1NGVmMWRlNGUwM2FmMGYzYTJhNjNiYzZkNzUxYTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlUWsExjtcCyUQvelQTXa0tzZVjeK XbnFrHazyzNp3KjMKjzM4Sgj5QLPfGYqks2j4HuPuXBQbOdCXeIYbJXHKuXNLEC/ Cmxh4yzHS5DAXke0lNEfhaTQjhm+mU46Enmw5sS4gORaLnO467NlNG7PqR1QULoC aVj90GEKt3hEQTUTIjgjnAKzq12mqh5+KcZbIOk6m0cOZzsueb9Qficf7bJwsj4D KFLo2SsIto3LVRgVqR7sDzW9FfvAKxtLFJpotrkiuIjfLggmunB9UrgBT3ztbkF0 W24BdNS/n680lmn1x0VuuDyhnCWm1jMR4ufaPznqP0UWWzoUBo8E8CdUcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOGoXBVFTvHeTgOvDzoqY7xtdRoIMB8GA1UdIwQY MBaAFCMnHePgEFmr5tGlk8SiT/bhiNZPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXljZDQtQVFXYXZtMGFXVHhLSlA5dUdJMWs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8zZjdhMDYtMmI0NS00YTBiLWJhNmMt OTU4YzM3NjUwNmVkLzEvSXljZDQtQVFXYXZtMGFXVHhLSlA5dUdJMWs4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8zZjdhMDYtMmI0NS00YTBiLWJhNmMtOTU4YzM3NjUwNmVk LzEvSXljZDQtQVFXYXZtMGFXVHhLSlA5dUdJMWs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAp+Uxrxb ZtLlWzRVNNQWDwqVeyJI5vgh6xn7Bd7lLGTR6JQR9iQpwjxbTPNGGHbI2jx5Y0Zz wsKm7LATLu9VIFJZXv29158GFkLHvlpmCtqA/B67v+nb/vpdkb6MAw3RSDdChyQS B3Okw96JZiZcIBLb9VQz6zlXF0NS/w5xbDolWI7QfQLNLfFTzWO605uaxhTu7BU0 Mdl75XDk9fYNY12uasQittrlKTij6zk5P2S2RYmVHwNn9kA28NxHqHQvhW76WkIj q0ngN5Rx4rXfjrOBPN0EoiSA1nwFxFtQqq9/SivAd5nyGGic/n2Zu1HNQyQY4ILw MyrKnLZB7eBGTQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:38 2026 by rpki-client