This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/6f252d-59ed-4a22-9d97-65b6408bdffe/1/8Ios7HEB8hdz3vxZFsCLAcGFkOc.mft File: 8Ios7HEB8hdz3vxZFsCLAcGFkOc.mft (raw, json) Hash identifier: 9ksXp5N6xYaSr0tPdM4Lu0T6l8bUBCqFJoDm4eVnh0g= Subject key identifier: C5:D3:9D:F8:6D:0D:2E:C1:64:EC:09:E7:81:DA:1E:BC:3F:68:AD:26 Authority key identifier: F0:8A:2C:EC:71:01:F2:17:73:DE:FC:59:16:C0:8B:01:C1:85:90:E7 Certificate issuer: /CN=f08a2cec7101f21773defc5916c08b01c18590e7 Certificate serial: 019C44D9BE682AAE522AC98D3A594903ED3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Ios7HEB8hdz3vxZFsCLAcGFkOc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/6f252d-59ed-4a22-9d97-65b6408bdffe/1/8Ios7HEB8hdz3vxZFsCLAcGFkOc.mft Manifest number: 012D Signing time: Tue 10 Feb 2026 00:00:46 +0000 Manifest this update: Tue 10 Feb 2026 00:00:46 +0000 Manifest next update: Wed 11 Feb 2026 00:00:46 +0000 Files and hashes: 1: 8Ios7HEB8hdz3vxZFsCLAcGFkOc.crl (hash: hvbV9lPJrB3+m1RUcvOGitoJiEMb+pDNy6vj99aTpWQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/6f252d-59ed-4a22-9d97-65b6408bdffe/1/8Ios7HEB8hdz3vxZFsCLAcGFkOc.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/6f252d-59ed-4a22-9d97-65b6408bdffe/1/8Ios7HEB8hdz3vxZFsCLAcGFkOc.mft rsync://rpki.ripe.net/repository/DEFAULT/8Ios7HEB8hdz3vxZFsCLAcGFkOc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:be:68:2a:ae:52:2a:c9:8d:3a:59:49:03:ed:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f08a2cec7101f21773defc5916c08b01c18590e7 Validity Not Before: Feb 10 00:00:46 2026 GMT Not After : Feb 11 00:00:46 2026 GMT Subject: CN=c5d39df86d0d2ec164ec09e781da1ebc3f68ad26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:83:28:c1:cf:fd:cf:50:d0:7f:1e:4e:34:9e: c8:c2:a9:c3:95:12:ba:de:b3:01:c7:b0:49:aa:50: 35:10:f4:e0:36:9f:b4:a1:bb:5f:6d:6b:d0:a6:9f: 02:3a:81:c7:a6:d8:ca:59:4d:0f:75:c3:75:6d:d1: 7f:be:46:08:57:a2:19:46:7e:69:73:28:1a:14:f6: 8e:72:ba:ac:94:e1:81:6d:67:ef:fd:a4:6f:d0:e3: e3:a4:ac:40:9b:bc:69:24:c4:28:ec:09:2c:53:6a: fa:18:82:eb:c3:82:8d:09:bc:50:41:d7:09:1f:f9: d9:47:1a:59:1a:ae:13:3b:7e:9b:21:8b:28:aa:95: 92:c5:91:08:13:6f:c8:ed:c7:1a:8c:6a:69:0d:50: 9f:dc:12:f1:fb:44:d7:d1:4d:4e:41:f3:82:46:16: 02:51:18:b4:82:89:36:b7:72:ac:60:c4:d9:0e:c1: 9e:65:7c:82:ad:6e:b4:c8:8f:66:85:92:ac:01:38: aa:bf:ef:be:c3:9e:0e:38:40:dc:c8:72:8e:35:cc: e3:c9:0c:85:3f:98:1c:cb:5e:c7:e5:88:85:6a:f5: b9:05:57:19:b0:a5:84:c7:3e:7e:f9:22:b3:a8:99: 74:55:c3:07:9e:29:2a:1f:d5:5a:7e:2d:bb:66:28: 15:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D3:9D:F8:6D:0D:2E:C1:64:EC:09:E7:81:DA:1E:BC:3F:68:AD:26 X509v3 Authority Key Identifier: keyid:F0:8A:2C:EC:71:01:F2:17:73:DE:FC:59:16:C0:8B:01:C1:85:90:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Ios7HEB8hdz3vxZFsCLAcGFkOc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/6f252d-59ed-4a22-9d97-65b6408bdffe/1/8Ios7HEB8hdz3vxZFsCLAcGFkOc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/6f252d-59ed-4a22-9d97-65b6408bdffe/1/8Ios7HEB8hdz3vxZFsCLAcGFkOc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:8c:ff:b3:43:a0:5e:0a:bf:17:7a:0f:24:97:cb:ed:79:7c: ec:90:7f:2e:31:6a:e5:f7:5f:fd:f5:fb:bf:fd:39:8a:b7:12: d1:e7:53:0a:b2:fc:49:8e:52:5a:22:31:2c:a1:2b:4c:9f:81: 13:7f:23:c5:17:71:d1:d8:fe:b8:31:db:ec:6e:21:44:ba:dd: 89:d1:50:8e:eb:f4:4e:2a:a4:a8:1e:1b:99:50:74:7f:8e:ab: 28:c4:a7:59:9a:5d:74:4b:63:6e:95:d0:2f:62:fa:0a:32:86: 35:b8:74:15:0e:6c:f1:ec:d6:ea:2a:74:9a:0e:ab:5c:4f:b8: 25:8d:1b:c8:f8:28:f3:46:42:de:cd:2a:f4:f8:7d:b1:41:4e: ea:a7:42:ef:97:98:87:4c:5a:94:35:33:9f:cb:a2:98:ef:4c: 0c:c7:dd:71:83:34:24:ce:84:52:60:5d:95:91:4f:c5:14:ea: 86:ce:10:3f:07:42:de:fe:fa:78:a9:40:09:00:d6:eb:46:a1: 29:56:f1:f2:89:12:08:25:5c:69:a4:02:ca:a1:3e:bf:89:28: 2f:d3:6b:d0:cf:9d:91:d1:4e:aa:71:04:90:2f:d2:5a:a7:b5: a0:94:f7:7c:15:89:59:b5:bd:12:af:c4:e5:cd:0b:f2:4d:cd: 95:57:fc:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2b5oKq5SKsmNOllJA+06MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwOGEyY2VjNzEwMWYyMTc3M2RlZmM1OTE2YzA4YjAxYzE4 NTkwZTcwHhcNMjYwMjEwMDAwMDQ2WhcNMjYwMjExMDAwMDQ2WjAzMTEwLwYDVQQD EyhjNWQzOWRmODZkMGQyZWMxNjRlYzA5ZTc4MWRhMWViYzNmNjhhZDI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYMowc/9z1DQfx5ONJ7IwqnDlRK6 3rMBx7BJqlA1EPTgNp+0obtfbWvQpp8COoHHptjKWU0PdcN1bdF/vkYIV6IZRn5p cygaFPaOcrqslOGBbWfv/aRv0OPjpKxAm7xpJMQo7AksU2r6GILrw4KNCbxQQdcJ H/nZRxpZGq4TO36bIYsoqpWSxZEIE2/I7ccajGppDVCf3BLx+0TX0U1OQfOCRhYC URi0gok2t3KsYMTZDsGeZXyCrW60yI9mhZKsATiqv+++w54OOEDcyHKONczjyQyF P5gcy17H5YiFavW5BVcZsKWExz5++SKzqJl0VcMHnikqH9Vafi27ZigVBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMXTnfhtDS7BZOwJ54HaHrw/aK0mMB8GA1UdIwQY MBaAFPCKLOxxAfIXc978WRbAiwHBhZDnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOElvczdIRUI4aGR6M3Z4WkZzQ0xBY0dGa09jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82ZjI1MmQtNTllZC00YTIyLTlkOTct NjViNjQwOGJkZmZlLzEvOElvczdIRUI4aGR6M3Z4WkZzQ0xBY0dGa09jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC82ZjI1MmQtNTllZC00YTIyLTlkOTctNjViNjQwOGJkZmZl LzEvOElvczdIRUI4aGR6M3Z4WkZzQ0xBY0dGa09jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgYz/s0Og Xgq/F3oPJJfL7Xl87JB/LjFq5fdf/fX7v/05ircS0edTCrL8SY5SWiIxLKErTJ+B E38jxRdx0dj+uDHb7G4hRLrdidFQjuv0TiqkqB4bmVB0f46rKMSnWZpddEtjbpXQ L2L6CjKGNbh0FQ5s8ezW6ip0mg6rXE+4JY0byPgo80ZC3s0q9Ph9sUFO6qdC75eY h0xalDUzn8uimO9MDMfdcYM0JM6EUmBdlZFPxRTqhs4QPwdC3v76eKlACQDW60ah KVbx8okSCCVcaaQCyqE+v4koL9Nr0M+dkdFOqnEEkC/SWqe1oJT3fBWJWbW9Eq/E 5c0L8k3NlVf8JQ== -----END CERTIFICATE-----Generated at Tue Feb 10 02:50:09 2026 by rpki-client