This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.mft File: 898KdcnvaBuNIzZ9vo7a0FPzvZU.mft (raw, json) Hash identifier: 4ZJR7B3fv7AIuV+J2qQlY3bO45e3wTEeO/DGm8VrzdY= Subject key identifier: 09:15:AC:50:D0:60:17:48:D5:8E:0E:FA:93:A0:06:5F:BF:D8:5E:05 Authority key identifier: F3:DF:0A:75:C9:EF:68:1B:8D:23:36:7D:BE:8E:DA:D0:53:F3:BD:95 Certificate issuer: /CN=f3df0a75c9ef681b8d23367dbe8edad053f3bd95 Certificate serial: 019C43226F561E41A06136B50DA8B77DE536 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/898KdcnvaBuNIzZ9vo7a0FPzvZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 16:00:56 +0000 Manifest this update: Mon 09 Feb 2026 16:00:56 +0000 Manifest next update: Tue 10 Feb 2026 16:00:56 +0000 Files and hashes: 1: 898KdcnvaBuNIzZ9vo7a0FPzvZU.crl (hash: xn55nRttJjWr94WIDaXRpjMwa4zHDoNy9YiWWH67h/o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.mft rsync://rpki.ripe.net/repository/DEFAULT/898KdcnvaBuNIzZ9vo7a0FPzvZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6f:56:1e:41:a0:61:36:b5:0d:a8:b7:7d:e5:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f3df0a75c9ef681b8d23367dbe8edad053f3bd95 Validity Not Before: Feb 9 16:00:56 2026 GMT Not After : Feb 10 16:00:56 2026 GMT Subject: CN=0915ac50d0601748d58e0efa93a0065fbfd85e05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:95:70:4e:dc:5e:b5:be:b4:a9:77:47:26:a6: 7a:97:61:69:4a:86:9b:5f:a5:c9:28:32:1c:83:a8: 11:f6:1b:5e:0d:0e:bb:10:1b:6f:a3:27:66:0a:00: d7:d5:63:0e:aa:56:74:c1:fc:6e:46:c9:57:1a:70: 54:4d:89:c3:89:06:d5:34:37:e4:6d:5a:a3:54:28: fb:7d:6c:7f:f6:d6:5f:9c:75:e1:a3:e1:4f:ef:7d: d4:fa:32:c9:0b:96:a0:6e:fa:9c:1f:2f:81:ab:2b: d8:7d:cd:02:46:86:ae:fe:6b:06:f4:71:29:e7:8a: 11:ef:b3:c0:af:d9:b2:4c:70:b1:58:d3:58:76:eb: 37:a8:a4:5c:79:39:20:47:20:6e:fe:74:c9:e0:33: f9:64:6a:59:9f:e7:d4:4f:28:df:83:6c:96:e1:aa: 20:99:57:e2:87:59:cd:31:05:d3:dd:09:98:ea:05: 85:3d:ac:58:26:e4:1a:23:60:ce:31:82:df:19:71: dd:61:b7:4e:ad:0f:49:8e:85:d2:16:01:00:36:3a: 2e:bf:13:d3:4f:4c:53:d6:82:11:60:bf:20:16:be: 07:b1:49:ac:04:8d:4d:d0:ba:86:c4:28:e8:e6:c0: 4f:1a:b8:3f:78:75:af:8c:6e:b3:7b:ab:c8:c6:39: 68:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:15:AC:50:D0:60:17:48:D5:8E:0E:FA:93:A0:06:5F:BF:D8:5E:05 X509v3 Authority Key Identifier: keyid:F3:DF:0A:75:C9:EF:68:1B:8D:23:36:7D:BE:8E:DA:D0:53:F3:BD:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/898KdcnvaBuNIzZ9vo7a0FPzvZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4cb72b-3f82-46d2-bf25-ab8abcc69016/1/898KdcnvaBuNIzZ9vo7a0FPzvZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:f8:d2:99:57:4a:c1:b6:9b:2c:92:a4:8e:cd:42:3e:a7:d3: 12:00:f8:fc:c8:b0:bf:dd:71:2d:c6:98:d0:1c:71:e2:e5:eb: 5e:5c:eb:79:71:0a:b6:c1:5e:0c:ac:9e:8c:9c:9f:f7:b6:6f: 34:cb:bf:64:57:94:60:82:8b:d7:b7:17:04:4e:75:13:93:8a: 85:0f:74:20:6f:11:d3:6a:bb:4b:12:08:d0:9e:0d:70:d8:3b: ad:da:22:e6:d2:bd:2f:9a:58:44:4b:eb:fb:14:af:cf:c5:1f: 44:ed:7c:59:36:3f:76:33:03:11:6b:f6:69:c9:22:d9:ad:a3: db:50:1e:f1:ca:33:e4:4c:c2:f8:f9:18:19:48:4a:64:f0:dd: 56:85:c2:f6:bc:2f:36:bb:30:d4:34:ed:d8:79:7b:17:f1:ad: e4:30:ab:96:c9:e5:c7:a0:07:ec:20:25:fd:82:97:cb:bb:a5: df:5a:4f:31:ff:d7:35:0e:4e:0a:5c:cb:19:ba:ee:72:c2:04: 95:8f:02:a5:fe:de:af:80:31:7b:ef:09:6e:4a:74:4e:9a:d8: 1c:ac:8a:5c:7b:27:e0:d9:1c:57:35:b3:1b:0a:f0:af:10:ad: 49:9e:36:aa:4b:75:2e:84:35:76:30:7a:ba:24:4a:b5:fe:f1: 97:ca:9d:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIm9WHkGgYTa1Dai3feU2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzZGYwYTc1YzllZjY4MWI4ZDIzMzY3ZGJlOGVkYWQwNTNm M2JkOTUwHhcNMjYwMjA5MTYwMDU2WhcNMjYwMjEwMTYwMDU2WjAzMTEwLwYDVQQD EygwOTE1YWM1MGQwNjAxNzQ4ZDU4ZTBlZmE5M2EwMDY1ZmJmZDg1ZTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5VwTtxetb60qXdHJqZ6l2FpSoab X6XJKDIcg6gR9hteDQ67EBtvoydmCgDX1WMOqlZ0wfxuRslXGnBUTYnDiQbVNDfk bVqjVCj7fWx/9tZfnHXho+FP733U+jLJC5agbvqcHy+BqyvYfc0CRoau/msG9HEp 54oR77PAr9myTHCxWNNYdus3qKRceTkgRyBu/nTJ4DP5ZGpZn+fUTyjfg2yW4aog mVfih1nNMQXT3QmY6gWFPaxYJuQaI2DOMYLfGXHdYbdOrQ9JjoXSFgEANjouvxPT T0xT1oIRYL8gFr4HsUmsBI1N0LqGxCjo5sBPGrg/eHWvjG6ze6vIxjloZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAkVrFDQYBdI1Y4O+pOgBl+/2F4FMB8GA1UdIwQY MBaAFPPfCnXJ72gbjSM2fb6O2tBT872VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvODk4S2RjbnZhQnVOSXpaOXZvN2EwRlB6dlpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS80Y2I3MmItM2Y4Mi00NmQyLWJmMjUt YWI4YWJjYzY5MDE2LzEvODk4S2RjbnZhQnVOSXpaOXZvN2EwRlB6dlpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS80Y2I3MmItM2Y4Mi00NmQyLWJmMjUtYWI4YWJjYzY5MDE2 LzEvODk4S2RjbnZhQnVOSXpaOXZvN2EwRlB6dlpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqvjSmVdK wbabLJKkjs1CPqfTEgD4/Miwv91xLcaY0Bxx4uXrXlzreXEKtsFeDKyejJyf97Zv NMu/ZFeUYIKL17cXBE51E5OKhQ90IG8R02q7SxII0J4NcNg7rdoi5tK9L5pYREvr +xSvz8UfRO18WTY/djMDEWv2acki2a2j21Ae8coz5EzC+PkYGUhKZPDdVoXC9rwv Nrsw1DTt2Hl7F/Gt5DCrlsnlx6AH7CAl/YKXy7ul31pPMf/XNQ5OClzLGbrucsIE lY8Cpf7er4Axe+8Jbkp0TprYHKyKXHsn4NkcVzWzGwrwrxCtSZ42qkt1LoQ1djB6 uiRKtf7xl8qdDw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:54 2026 by rpki-client