This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft File: iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json) Hash identifier: m2VVWPBw3dYzZAOjoN0Ok8Lqn3bJ3H+Ety9QnRfopWA= Subject key identifier: 52:0A:EF:A0:23:D6:38:96:49:56:8A:AC:D9:D4:70:4F:D4:D8:62:1A Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A Certificate issuer: /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a Certificate serial: 019C42B432AF0CE4D7908A6239419AAF848A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft Manifest number: 06D1 Signing time: Mon 09 Feb 2026 14:00:31 +0000 Manifest this update: Mon 09 Feb 2026 14:00:31 +0000 Manifest next update: Tue 10 Feb 2026 14:00:31 +0000 Files and hashes: 1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: jihmW0NRtQci6QY3qQRg1J1+m4NRXsXdI+mtbMGYTRU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:32:af:0c:e4:d7:90:8a:62:39:41:9a:af:84:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a Validity Not Before: Feb 9 14:00:31 2026 GMT Not After : Feb 10 14:00:31 2026 GMT Subject: CN=520aefa023d6389649568aacd9d4704fd4d8621a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ec:3c:3a:67:78:f9:7f:6e:f9:f7:52:63:5b: 89:9a:73:68:b3:ad:61:e6:7a:c1:24:a1:15:02:0b: 2d:1d:a9:6c:8c:e1:3f:51:fa:2b:79:0b:6d:3e:c6: 0a:1d:a4:c8:a7:9e:e2:d9:03:b8:8d:33:26:c4:eb: 00:c3:d2:0c:7b:a3:30:72:77:1e:93:85:ac:4e:11: c8:fe:b5:78:22:00:f7:a6:9e:2c:f8:9f:0f:7e:ad: 5e:61:e7:b5:9d:9f:b7:a0:92:3f:34:23:bb:bd:2a: 50:0a:2e:90:5f:66:89:b6:07:f7:3f:fd:2a:15:5c: bd:d8:8f:b9:90:00:30:1d:65:a9:e8:9c:17:e3:f3: 25:d7:44:b3:ce:2c:8b:d6:36:b7:c6:fc:8c:f0:02: dc:7b:9e:51:41:3d:e0:29:f6:c6:68:18:19:e3:9d: 78:ee:d9:a0:88:a8:c4:41:1c:ee:5e:4f:ce:56:c5: e6:7c:52:2f:a5:ff:59:4b:c9:5c:b9:f2:b5:81:cd: 58:f4:25:ef:9f:01:2a:57:97:86:19:46:34:98:df: 9e:b6:8c:20:bd:3e:f2:9f:bd:cb:05:44:46:f8:13: c5:21:db:16:c1:83:61:37:98:47:14:b0:91:68:4b: 1e:c0:7b:1b:f2:6e:e1:18:ae:6a:40:14:c9:ba:68: 34:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:0A:EF:A0:23:D6:38:96:49:56:8A:AC:D9:D4:70:4F:D4:D8:62:1A X509v3 Authority Key Identifier: keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:83:6b:12:2f:06:29:66:34:26:42:b2:83:df:bf:d9:71:ce: e6:42:b5:d4:22:9b:3a:ec:21:99:0a:df:20:1f:af:78:b1:fd: 21:20:77:cf:d6:49:91:e4:fc:46:bb:a4:24:93:80:f2:03:ab: 0d:a3:aa:b8:62:c8:86:83:fd:a3:45:8c:b4:4c:f0:71:92:15: 4d:0c:f2:e3:42:b7:ab:62:57:cf:6e:b0:f9:ca:13:bd:82:5e: e0:a1:31:e4:87:e1:fa:2b:ec:84:cf:81:94:f0:29:eb:ff:e4: 9d:34:08:e0:d6:8c:6b:60:fe:0f:dc:03:e0:a5:54:1b:a0:f5: 58:4f:d1:f4:96:47:81:07:70:3b:4c:bd:04:6b:c1:93:2c:63: bc:da:ef:d8:d7:f2:f9:65:0d:43:5a:14:f3:97:de:9e:82:8d: 6f:bb:ae:e9:5c:b3:a4:ae:a5:56:51:ef:04:c0:91:0c:fa:c9: d2:40:aa:28:b4:3d:e1:fd:60:f9:38:05:d7:74:1e:c7:f2:f6: b5:d9:71:c1:c6:1d:5e:dc:0f:30:10:f0:e4:c1:44:e1:06:c8: c7:b0:c8:70:0f:86:33:21:53:45:df:13:52:36:57:a8:c1:9f: 11:47:d1:aa:8c:1c:c5:01:e4:09:ff:e9:e8:b9:c6:d7:b9:78: 60:be:72:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtDKvDOTXkIpiOUGar4SKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5N2YzNWFjNDgyOGFlYTk1ZmE1ZDJkODA0ZDMzYTdiMGNm ZjQ1OGEwHhcNMjYwMjA5MTQwMDMxWhcNMjYwMjEwMTQwMDMxWjAzMTEwLwYDVQQD Eyg1MjBhZWZhMDIzZDYzODk2NDk1NjhhYWNkOWQ0NzA0ZmQ0ZDg2MjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvew8Omd4+X9u+fdSY1uJmnNos61h 5nrBJKEVAgstHalsjOE/UforeQttPsYKHaTIp57i2QO4jTMmxOsAw9IMe6Mwcnce k4WsThHI/rV4IgD3pp4s+J8Pfq1eYee1nZ+3oJI/NCO7vSpQCi6QX2aJtgf3P/0q FVy92I+5kAAwHWWp6JwX4/Ml10SzziyL1ja3xvyM8ALce55RQT3gKfbGaBgZ4514 7tmgiKjEQRzuXk/OVsXmfFIvpf9ZS8lcufK1gc1Y9CXvnwEqV5eGGUY0mN+etowg vT7yn73LBURG+BPFIdsWwYNhN5hHFLCRaEsewHsb8m7hGK5qQBTJumg0GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFIK76Aj1jiWSVaKrNnUcE/U2GIaMB8GA1UdIwQY MBaAFIl/NaxIKK6pX6XS2ATTOnsM/0WKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYt YjBlNDEwM2Y0OTYyLzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYtYjBlNDEwM2Y0OTYy LzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApINrEi8G KWY0JkKyg9+/2XHO5kK11CKbOuwhmQrfIB+veLH9ISB3z9ZJkeT8RrukJJOA8gOr DaOquGLIhoP9o0WMtEzwcZIVTQzy40K3q2JXz26w+coTvYJe4KEx5Ifh+ivshM+B lPAp6//knTQI4NaMa2D+D9wD4KVUG6D1WE/R9JZHgQdwO0y9BGvBkyxjvNrv2Nfy +WUNQ1oU85fenoKNb7uu6VyzpK6lVlHvBMCRDPrJ0kCqKLQ94f1g+TgF13Qex/L2 tdlxwcYdXtwPMBDw5MFE4QbIx7DIcA+GMyFTRd8TUjZXqMGfEUfRqowcxQHkCf/p 6LnG17l4YL5yPQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:57 2026 by rpki-client