This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft File: iDyv-AezKVLWjHGq8BuRmErR6gg.mft (raw, json) Hash identifier: PhroACRxsD1mY/U7pGy/A57+8sDl5WVs4xQD3saxalE= Subject key identifier: 7F:23:5A:4E:23:CA:98:FA:71:B0:4C:09:D8:BA:FB:D4:B6:CA:6D:72 Authority key identifier: 88:3C:AF:F8:07:B3:29:52:D6:8C:71:AA:F0:1B:91:98:4A:D1:EA:08 Certificate issuer: /CN=883caff807b32952d68c71aaf01b91984ad1ea08 Certificate serial: 019C43226C7A6D9DB6BE6408CDD0DC679207 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft Manifest number: 05F9 Signing time: Mon 09 Feb 2026 16:00:55 +0000 Manifest this update: Mon 09 Feb 2026 16:00:55 +0000 Manifest next update: Tue 10 Feb 2026 16:00:55 +0000 Files and hashes: 1: iDyv-AezKVLWjHGq8BuRmErR6gg.crl (hash: rIlCFWFKib4NJZp5iDaEN2QpTSuwioY2qnUqoeuSchk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6c:7a:6d:9d:b6:be:64:08:cd:d0:dc:67:92:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=883caff807b32952d68c71aaf01b91984ad1ea08 Validity Not Before: Feb 9 16:00:55 2026 GMT Not After : Feb 10 16:00:55 2026 GMT Subject: CN=7f235a4e23ca98fa71b04c09d8bafbd4b6ca6d72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:18:16:54:1f:0d:72:40:74:9e:6f:eb:e9:bf: c6:4f:91:7a:fe:a0:d4:80:92:2a:30:9f:60:2c:25: 67:e3:83:8e:c8:17:bb:33:7e:0e:e1:71:b8:c3:14: 0a:b4:f7:00:ef:52:e3:29:0d:8c:8a:0e:ec:38:a3: e0:0f:d9:3f:af:be:8d:b5:32:09:d7:c4:55:26:22: cc:b3:3c:5c:0c:0f:75:48:30:77:5c:5e:8a:c8:06: b9:35:93:89:44:a9:61:f8:4f:7d:dd:73:4a:3b:a9: 41:2e:ff:9b:c0:49:02:28:7a:ed:8e:04:a0:fe:85: 4f:bf:9d:f0:76:bf:49:df:79:c0:fe:03:34:54:43: c5:5a:13:c6:b7:f4:b4:39:a5:bb:d8:36:24:b0:97: 58:8f:f5:1d:2f:e7:73:34:7a:34:71:a3:1c:9d:63: d5:ae:b1:76:40:31:61:fe:a4:61:f1:98:48:e9:6e: 9a:14:28:cb:29:11:33:33:f4:80:d7:a4:19:99:78: 6e:00:6d:15:f2:bc:7b:3b:0e:0d:11:45:5e:ad:47: e9:28:d4:aa:88:57:a7:65:c6:a0:db:46:5a:c8:42: d4:98:8e:b2:9f:de:6b:56:20:4e:d3:ba:2c:88:96: 6c:5f:8c:53:14:14:2f:af:f3:fb:c0:56:dc:85:5e: 3d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:23:5A:4E:23:CA:98:FA:71:B0:4C:09:D8:BA:FB:D4:B6:CA:6D:72 X509v3 Authority Key Identifier: keyid:88:3C:AF:F8:07:B3:29:52:D6:8C:71:AA:F0:1B:91:98:4A:D1:EA:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:f0:9c:66:5b:f9:f0:51:81:20:6f:c4:56:30:98:85:96:55: 98:97:ad:7b:4a:7b:2d:c3:06:9c:85:10:13:a2:e6:80:cc:69: 6e:78:fa:fa:9d:40:ec:85:61:9f:4d:6f:5d:08:0b:47:4c:b0: 24:e6:3b:e6:29:f1:14:a1:30:42:54:08:8e:8a:01:6e:57:6c: 9c:b2:21:20:0d:f0:48:c8:89:52:8a:08:ee:ef:5e:b7:8a:66: 9d:45:ca:1c:17:6b:1c:c2:d3:81:48:5c:3e:21:d7:81:ac:fe: f5:23:c9:4c:a7:e1:c2:87:57:fa:33:58:ef:c2:30:16:d7:9a: c3:3d:21:76:5b:3e:5b:06:b8:da:d6:03:15:2b:55:fd:9e:a3: a5:29:3e:fb:7a:fc:dd:4e:49:65:1a:f6:60:45:1d:24:d2:6e: 73:05:4f:d2:0c:e4:74:bf:72:81:c0:b8:f4:07:05:8e:af:be: 10:0c:88:1c:90:d1:5c:2e:3b:e6:9e:6d:a3:49:26:89:5c:65: b0:c8:35:97:bc:27:2c:ed:f7:71:3f:01:48:79:2f:f2:13:2e: 8b:81:4e:69:38:17:87:07:2d:bc:2c:c4:3c:e0:d9:a8:07:e2: 03:58:55:60:b7:a3:7e:52:35:72:09:f6:18:79:2f:5d:b8:40: e8:6a:89:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImx6bZ22vmQIzdDcZ5IHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4M2NhZmY4MDdiMzI5NTJkNjhjNzFhYWYwMWI5MTk4NGFk MWVhMDgwHhcNMjYwMjA5MTYwMDU1WhcNMjYwMjEwMTYwMDU1WjAzMTEwLwYDVQQD Eyg3ZjIzNWE0ZTIzY2E5OGZhNzFiMDRjMDlkOGJhZmJkNGI2Y2E2ZDcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBgWVB8NckB0nm/r6b/GT5F6/qDU gJIqMJ9gLCVn44OOyBe7M34O4XG4wxQKtPcA71LjKQ2Mig7sOKPgD9k/r76NtTIJ 18RVJiLMszxcDA91SDB3XF6KyAa5NZOJRKlh+E993XNKO6lBLv+bwEkCKHrtjgSg /oVPv53wdr9J33nA/gM0VEPFWhPGt/S0OaW72DYksJdYj/UdL+dzNHo0caMcnWPV rrF2QDFh/qRh8ZhI6W6aFCjLKREzM/SA16QZmXhuAG0V8rx7Ow4NEUVerUfpKNSq iFenZcag20ZayELUmI6yn95rViBO07osiJZsX4xTFBQvr/P7wFbchV49XQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH8jWk4jypj6cbBMCdi6+9S2ym1yMB8GA1UdIwQY MBaAFIg8r/gHsylS1oxxqvAbkZhK0eoIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUR5di1BZXpLVkxXakhHcThCdVJtRXJSNmdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9hOGIzYzItY2FkNS00NWEzLWFmYWEt OWNlZDVlNWVmZjBmLzEvaUR5di1BZXpLVkxXakhHcThCdVJtRXJSNmdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS9hOGIzYzItY2FkNS00NWEzLWFmYWEtOWNlZDVlNWVmZjBm LzEvaUR5di1BZXpLVkxXakhHcThCdVJtRXJSNmdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAPCcZlv5 8FGBIG/EVjCYhZZVmJete0p7LcMGnIUQE6LmgMxpbnj6+p1A7IVhn01vXQgLR0yw JOY75inxFKEwQlQIjooBbldsnLIhIA3wSMiJUooI7u9et4pmnUXKHBdrHMLTgUhc PiHXgaz+9SPJTKfhwodX+jNY78IwFteawz0hdls+Wwa42tYDFStV/Z6jpSk++3r8 3U5JZRr2YEUdJNJucwVP0gzkdL9ygcC49AcFjq++EAyIHJDRXC475p5to0kmiVxl sMg1l7wnLO33cT8BSHkv8hMui4FOaTgXhwctvCzEPODZqAfiA1hVYLejflI1cgn2 GHkvXbhA6GqJ9Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:25 2026 by rpki-client