This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File: iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier: m2VVWPBw3dYzZAOjoN0Ok8Lqn3bJ3H+Ety9QnRfopWA=
Subject key identifier: 52:0A:EF:A0:23:D6:38:96:49:56:8A:AC:D9:D4:70:4F:D4:D8:62:1A
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer: /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial: 019C42B432AF0CE4D7908A6239419AAF848A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number: 06D1
Signing time: Mon 09 Feb 2026 14:00:31 +0000
Manifest this update: Mon 09 Feb 2026 14:00:31 +0000
Manifest next update: Tue 10 Feb 2026 14:00:31 +0000
Files and hashes: 1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: jihmW0NRtQci6QY3qQRg1J1+m4NRXsXdI+mtbMGYTRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Feb 2026 14:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:42:b4:32:af:0c:e4:d7:90:8a:62:39:41:9a:af:84:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Validity
Not Before: Feb 9 14:00:31 2026 GMT
Not After : Feb 10 14:00:31 2026 GMT
Subject: CN=520aefa023d6389649568aacd9d4704fd4d8621a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ec:3c:3a:67:78:f9:7f:6e:f9:f7:52:63:5b:
89:9a:73:68:b3:ad:61:e6:7a:c1:24:a1:15:02:0b:
2d:1d:a9:6c:8c:e1:3f:51:fa:2b:79:0b:6d:3e:c6:
0a:1d:a4:c8:a7:9e:e2:d9:03:b8:8d:33:26:c4:eb:
00:c3:d2:0c:7b:a3:30:72:77:1e:93:85:ac:4e:11:
c8:fe:b5:78:22:00:f7:a6:9e:2c:f8:9f:0f:7e:ad:
5e:61:e7:b5:9d:9f:b7:a0:92:3f:34:23:bb:bd:2a:
50:0a:2e:90:5f:66:89:b6:07:f7:3f:fd:2a:15:5c:
bd:d8:8f:b9:90:00:30:1d:65:a9:e8:9c:17:e3:f3:
25:d7:44:b3:ce:2c:8b:d6:36:b7:c6:fc:8c:f0:02:
dc:7b:9e:51:41:3d:e0:29:f6:c6:68:18:19:e3:9d:
78:ee:d9:a0:88:a8:c4:41:1c:ee:5e:4f:ce:56:c5:
e6:7c:52:2f:a5:ff:59:4b:c9:5c:b9:f2:b5:81:cd:
58:f4:25:ef:9f:01:2a:57:97:86:19:46:34:98:df:
9e:b6:8c:20:bd:3e:f2:9f:bd:cb:05:44:46:f8:13:
c5:21:db:16:c1:83:61:37:98:47:14:b0:91:68:4b:
1e:c0:7b:1b:f2:6e:e1:18:ae:6a:40:14:c9:ba:68:
34:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0A:EF:A0:23:D6:38:96:49:56:8A:AC:D9:D4:70:4F:D4:D8:62:1A
X509v3 Authority Key Identifier:
keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:83:6b:12:2f:06:29:66:34:26:42:b2:83:df:bf:d9:71:ce:
e6:42:b5:d4:22:9b:3a:ec:21:99:0a:df:20:1f:af:78:b1:fd:
21:20:77:cf:d6:49:91:e4:fc:46:bb:a4:24:93:80:f2:03:ab:
0d:a3:aa:b8:62:c8:86:83:fd:a3:45:8c:b4:4c:f0:71:92:15:
4d:0c:f2:e3:42:b7:ab:62:57:cf:6e:b0:f9:ca:13:bd:82:5e:
e0:a1:31:e4:87:e1:fa:2b:ec:84:cf:81:94:f0:29:eb:ff:e4:
9d:34:08:e0:d6:8c:6b:60:fe:0f:dc:03:e0:a5:54:1b:a0:f5:
58:4f:d1:f4:96:47:81:07:70:3b:4c:bd:04:6b:c1:93:2c:63:
bc:da:ef:d8:d7:f2:f9:65:0d:43:5a:14:f3:97:de:9e:82:8d:
6f:bb:ae:e9:5c:b3:a4:ae:a5:56:51:ef:04:c0:91:0c:fa:c9:
d2:40:aa:28:b4:3d:e1:fd:60:f9:38:05:d7:74:1e:c7:f2:f6:
b5:d9:71:c1:c6:1d:5e:dc:0f:30:10:f0:e4:c1:44:e1:06:c8:
c7:b0:c8:70:0f:86:33:21:53:45:df:13:52:36:57:a8:c1:9f:
11:47:d1:aa:8c:1c:c5:01:e4:09:ff:e9:e8:b9:c6:d7:b9:78:
60:be:72:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZxCtDKvDOTXkIpiOUGar4SKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5N2YzNWFjNDgyOGFlYTk1ZmE1ZDJkODA0ZDMzYTdiMGNm
ZjQ1OGEwHhcNMjYwMjA5MTQwMDMxWhcNMjYwMjEwMTQwMDMxWjAzMTEwLwYDVQQD
Eyg1MjBhZWZhMDIzZDYzODk2NDk1NjhhYWNkOWQ0NzA0ZmQ0ZDg2MjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvew8Omd4+X9u+fdSY1uJmnNos61h
5nrBJKEVAgstHalsjOE/UforeQttPsYKHaTIp57i2QO4jTMmxOsAw9IMe6Mwcnce
k4WsThHI/rV4IgD3pp4s+J8Pfq1eYee1nZ+3oJI/NCO7vSpQCi6QX2aJtgf3P/0q
FVy92I+5kAAwHWWp6JwX4/Ml10SzziyL1ja3xvyM8ALce55RQT3gKfbGaBgZ4514
7tmgiKjEQRzuXk/OVsXmfFIvpf9ZS8lcufK1gc1Y9CXvnwEqV5eGGUY0mN+etowg
vT7yn73LBURG+BPFIdsWwYNhN5hHFLCRaEsewHsb8m7hGK5qQBTJumg0GwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFIK76Aj1jiWSVaKrNnUcE/U2GIaMB8GA1UdIwQY
MBaAFIl/NaxIKK6pX6XS2ATTOnsM/0WKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYt
YjBlNDEwM2Y0OTYyLzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYtYjBlNDEwM2Y0OTYy
LzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApINrEi8G
KWY0JkKyg9+/2XHO5kK11CKbOuwhmQrfIB+veLH9ISB3z9ZJkeT8RrukJJOA8gOr
DaOquGLIhoP9o0WMtEzwcZIVTQzy40K3q2JXz26w+coTvYJe4KEx5Ifh+ivshM+B
lPAp6//knTQI4NaMa2D+D9wD4KVUG6D1WE/R9JZHgQdwO0y9BGvBkyxjvNrv2Nfy
+WUNQ1oU85fenoKNb7uu6VyzpK6lVlHvBMCRDPrJ0kCqKLQ94f1g+TgF13Qex/L2
tdlxwcYdXtwPMBDw5MFE4QbIx7DIcA+GMyFTRd8TUjZXqMGfEUfRqowcxQHkCf/p
6LnG17l4YL5yPQ==
-----END CERTIFICATE-----
Generated at Mon Feb 9 22:43:57 2026 by rpki-client