This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft File: iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json) Hash identifier: Vaxb778dNFrbr8aEWXwp1xnW7Zdo7eLuX0DjxW0EuA8= Subject key identifier: 3F:BF:1E:BB:1A:77:FD:FF:0F:55:37:53:FE:B3:BB:DD:E0:E9:6E:3E Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A Certificate issuer: /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a Certificate serial: 019C44A2771E0541EA27AE6F9747E89D90F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft Manifest number: 06D2 Signing time: Mon 09 Feb 2026 23:00:23 +0000 Manifest this update: Mon 09 Feb 2026 23:00:23 +0000 Manifest next update: Tue 10 Feb 2026 23:00:23 +0000 Files and hashes: 1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: 5PQijTCSmSeRhAxlUZJK8aLjrPurjPr6Vd8v3qXA8/Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:77:1e:05:41:ea:27:ae:6f:97:47:e8:9d:90:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a Validity Not Before: Feb 9 23:00:23 2026 GMT Not After : Feb 10 23:00:23 2026 GMT Subject: CN=3fbf1ebb1a77fdff0f553753feb3bbdde0e96e3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ca:7e:45:df:fc:0d:cd:48:02:2c:13:cf:80: 52:d2:0b:98:4c:3f:c1:7e:17:5b:26:1a:0d:9a:85: 34:30:3e:ee:11:c6:4a:c5:bd:8e:95:dd:27:cb:66: 21:0a:19:5a:41:15:e1:51:bc:c2:f0:99:e0:15:44: 73:76:90:3d:75:16:76:fe:8d:de:05:cb:bc:c2:bd: 34:7d:57:3e:8f:74:cb:27:b5:77:1c:43:34:55:67: 66:6a:16:b5:38:05:2a:01:f8:00:c9:38:7d:7d:3d: b7:93:6b:b0:29:ad:a4:2c:27:c6:e6:84:cf:36:5c: 6f:f5:9f:24:8e:d5:19:01:46:14:60:85:3d:80:2f: 62:27:4b:7f:32:84:75:59:b5:6e:8d:ed:f7:58:c1: 34:34:8b:07:3e:90:13:04:1a:63:d5:27:b0:6a:e8: 28:84:b7:4a:9d:7d:40:82:f8:7f:3f:f7:90:30:d0: 5f:d4:fd:b7:5b:93:1d:ec:bd:5b:dd:fa:58:04:cb: 9f:04:cc:0b:1c:d5:ea:36:51:67:c7:db:2d:1c:86: 66:42:42:60:f7:c2:9a:94:19:8d:a0:37:dd:34:5f: 76:bf:be:6b:67:35:ce:01:c1:6b:61:7a:9b:5a:09: 5d:d0:08:72:c7:4c:f0:3e:35:ad:88:3a:66:e6:62: a5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BF:1E:BB:1A:77:FD:FF:0F:55:37:53:FE:B3:BB:DD:E0:E9:6E:3E X509v3 Authority Key Identifier: keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:ba:41:82:87:db:fe:25:73:67:30:bc:b3:57:93:fd:36:3c: 92:ab:e6:ad:19:a8:9b:e0:fd:96:cc:93:a1:eb:29:83:3a:09: 7d:35:3d:18:00:ec:1c:1e:54:95:6c:38:e5:68:85:a4:6d:91: 5c:8c:db:54:40:a5:6c:9c:45:ec:53:13:22:f2:ae:b5:a9:ab: c6:a4:12:89:a2:a4:a0:53:de:40:f9:58:0a:c0:5b:ce:c9:c5: cd:35:c4:66:fd:04:5e:8d:41:b2:ec:2d:b8:c9:7d:c7:6b:6c: b8:8f:4d:3c:8b:ad:18:28:73:70:4c:e4:49:88:54:3d:e2:6e: 75:d7:d1:f0:fa:65:71:a3:0d:a7:d1:02:97:9d:5e:75:0e:f5: 5f:ed:c7:3e:fb:93:55:b9:93:f1:c9:97:23:ca:63:07:7b:8f: 3b:9c:04:dc:7b:04:e7:2c:35:26:ef:cf:78:f9:8c:80:50:73: 67:4f:cc:64:3e:f0:f4:a3:ee:02:0a:08:13:97:b9:73:17:6a: ac:29:72:5a:16:3a:77:45:74:22:35:c5:a3:3a:72:82:cc:35: c0:55:b5:ba:cd:de:69:9f:c5:bb:bc:32:d4:b0:26:43:1b:68: ba:a7:5e:00:51:8e:37:03:06:29:9e:a7:d3:c2:86:e0:26:8f: 30:8f:de:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEonceBUHqJ65vl0fonZDwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5N2YzNWFjNDgyOGFlYTk1ZmE1ZDJkODA0ZDMzYTdiMGNm ZjQ1OGEwHhcNMjYwMjA5MjMwMDIzWhcNMjYwMjEwMjMwMDIzWjAzMTEwLwYDVQQD EygzZmJmMWViYjFhNzdmZGZmMGY1NTM3NTNmZWIzYmJkZGUwZTk2ZTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMp+Rd/8Dc1IAiwTz4BS0guYTD/B fhdbJhoNmoU0MD7uEcZKxb2Old0ny2YhChlaQRXhUbzC8JngFURzdpA9dRZ2/o3e Bcu8wr00fVc+j3TLJ7V3HEM0VWdmaha1OAUqAfgAyTh9fT23k2uwKa2kLCfG5oTP Nlxv9Z8kjtUZAUYUYIU9gC9iJ0t/MoR1WbVuje33WME0NIsHPpATBBpj1Sewaugo hLdKnX1Agvh/P/eQMNBf1P23W5Md7L1b3fpYBMufBMwLHNXqNlFnx9stHIZmQkJg 98KalBmNoDfdNF92v75rZzXOAcFrYXqbWgld0Ahyx0zwPjWtiDpm5mKlpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD+/Hrsad/3/D1U3U/6zu93g6W4+MB8GA1UdIwQY MBaAFIl/NaxIKK6pX6XS2ATTOnsM/0WKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYt YjBlNDEwM2Y0OTYyLzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYtYjBlNDEwM2Y0OTYy LzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu7pBgofb /iVzZzC8s1eT/TY8kqvmrRmom+D9lsyToespgzoJfTU9GADsHB5UlWw45WiFpG2R XIzbVEClbJxF7FMTIvKutamrxqQSiaKkoFPeQPlYCsBbzsnFzTXEZv0EXo1Bsuwt uMl9x2tsuI9NPIutGChzcEzkSYhUPeJuddfR8PplcaMNp9ECl51edQ71X+3HPvuT VbmT8cmXI8pjB3uPO5wE3HsE5yw1Ju/PePmMgFBzZ0/MZD7w9KPuAgoIE5e5cxdq rClyWhY6d0V0IjXFozpygsw1wFW1us3eaZ/Fu7wy1LAmQxtouqdeAFGONwMGKZ6n 08KG4CaPMI/ehg== -----END CERTIFICATE-----Generated at Tue Feb 10 04:20:03 2026 by rpki-client