This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.mft File: IlVxaqH0w8EChxihwzHiKzOerXw.mft (raw, json) Hash identifier: G26oKA2osyqyJHDrtHVlpU2JDdHbN8LLDXEQulofoaI= Subject key identifier: 73:5A:C2:28:80:93:9E:BE:34:9D:30:B8:C4:58:F7:D8:63:02:4C:5F Authority key identifier: 22:55:71:6A:A1:F4:C3:C1:02:87:18:A1:C3:31:E2:2B:33:9E:AD:7C Certificate issuer: /CN=2255716aa1f4c3c1028718a1c331e22b339ead7c Certificate serial: 019C420FE25F087B91F20A4DBA45F433311C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IlVxaqH0w8EChxihwzHiKzOerXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.mft Manifest number: 1490 Signing time: Mon 09 Feb 2026 11:01:03 +0000 Manifest this update: Mon 09 Feb 2026 11:01:03 +0000 Manifest next update: Tue 10 Feb 2026 11:01:03 +0000 Files and hashes: 1: IlVxaqH0w8EChxihwzHiKzOerXw.crl (hash: set6R4KTEPsL9Msrxlip71xBRz+EvVeYmSyybfEu7rY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.mft rsync://rpki.ripe.net/repository/DEFAULT/IlVxaqH0w8EChxihwzHiKzOerXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:e2:5f:08:7b:91:f2:0a:4d:ba:45:f4:33:31:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2255716aa1f4c3c1028718a1c331e22b339ead7c Validity Not Before: Feb 9 11:01:03 2026 GMT Not After : Feb 10 11:01:03 2026 GMT Subject: CN=735ac22880939ebe349d30b8c458f7d863024c5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:df:21:2d:24:30:b6:77:f2:e1:c3:ff:03:4f: 26:d1:25:16:18:53:2c:a0:fd:47:56:ed:42:d4:bd: 72:ac:48:8a:eb:93:2e:06:66:1a:67:04:b3:67:62: 2c:f4:c2:d2:be:2a:d8:40:c4:4d:b8:e9:17:76:d5: 72:3c:61:d7:50:30:5e:9a:2f:9c:31:16:61:6f:a0: 08:48:72:34:1f:28:ce:e1:6f:1d:35:db:a3:59:cc: e3:27:96:ba:ca:31:b7:d0:6a:98:2f:e8:f8:47:0b: 33:d3:5f:cc:ae:2b:f9:fb:70:5e:7c:c5:ae:17:c9: bd:eb:61:73:9b:6c:23:f0:37:39:62:34:41:31:2c: d5:89:29:32:48:7e:a8:81:07:50:72:b5:41:23:81: 33:67:7b:f2:d7:b3:9b:e6:1e:ba:2c:78:00:99:da: 4d:10:29:58:aa:9b:bd:d7:4c:29:4b:6d:e4:c0:b6: 70:2a:92:a6:ad:87:e1:90:62:22:d4:23:5c:7f:51: 8a:fe:1c:f1:09:89:8a:10:aa:e0:6b:20:bd:fe:6a: e0:a8:77:4b:66:49:cc:da:f0:0d:7e:66:8d:38:6b: 36:37:f9:09:84:fc:bd:1d:03:7d:c0:fd:8d:52:7d: e4:b7:2f:ac:ff:13:f6:e5:a3:f2:a9:32:3b:4f:fc: 0e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:5A:C2:28:80:93:9E:BE:34:9D:30:B8:C4:58:F7:D8:63:02:4C:5F X509v3 Authority Key Identifier: keyid:22:55:71:6A:A1:F4:C3:C1:02:87:18:A1:C3:31:E2:2B:33:9E:AD:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IlVxaqH0w8EChxihwzHiKzOerXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cbf67b-a65a-42a3-8908-07369e14cade/1/IlVxaqH0w8EChxihwzHiKzOerXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:fb:ab:1c:79:e6:c7:dc:75:27:12:ea:ac:07:34:e7:05:cb: 55:a8:db:49:b0:80:c7:c9:dc:56:e4:cd:a4:94:32:74:04:f1: ff:33:e6:30:45:e4:3c:3d:89:21:32:27:4a:67:46:eb:b6:9b: 3f:0e:c4:54:7c:95:26:0e:3b:6d:67:00:3f:46:06:0d:12:cb: a3:f2:14:18:6d:f5:ac:49:78:f8:18:52:59:49:b0:99:79:53: 22:36:8e:9d:f1:a6:40:9d:94:65:5b:dd:ab:5f:4e:39:4a:d5: 38:c9:41:41:2b:c4:dc:fc:9b:c9:1a:25:11:d8:b4:05:ef:51: 07:04:6e:76:aa:b6:08:ee:2d:c9:48:b6:d3:27:2c:af:97:ef: 27:bf:6a:d8:03:7d:14:08:3a:89:00:23:be:fb:9c:7b:d1:17: 16:24:fc:c6:28:85:bd:a9:07:0b:23:8d:c5:f5:98:af:6c:83: 59:06:dc:80:be:55:53:b1:23:47:14:61:50:c0:b7:b2:0f:bc: 68:8b:3f:9c:2f:3d:ff:d1:a0:7d:fe:49:cb:bb:d6:dc:48:8b: 4c:07:97:0a:44:75:65:75:d8:76:1b:ff:5b:c9:6f:7b:a2:43: 16:e5:60:bb:87:60:e8:3f:67:5b:08:24:5c:8d:40:39:27:fb: e9:7e:5d:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD+JfCHuR8gpNukX0MzEcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyNTU3MTZhYTFmNGMzYzEwMjg3MThhMWMzMzFlMjJiMzM5 ZWFkN2MwHhcNMjYwMjA5MTEwMTAzWhcNMjYwMjEwMTEwMTAzWjAzMTEwLwYDVQQD Eyg3MzVhYzIyODgwOTM5ZWJlMzQ5ZDMwYjhjNDU4ZjdkODYzMDI0YzVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz98hLSQwtnfy4cP/A08m0SUWGFMs oP1HVu1C1L1yrEiK65MuBmYaZwSzZ2Is9MLSvirYQMRNuOkXdtVyPGHXUDBemi+c MRZhb6AISHI0HyjO4W8dNdujWczjJ5a6yjG30GqYL+j4Rwsz01/Mriv5+3BefMWu F8m962Fzm2wj8Dc5YjRBMSzViSkySH6ogQdQcrVBI4EzZ3vy17Ob5h66LHgAmdpN EClYqpu910wpS23kwLZwKpKmrYfhkGIi1CNcf1GK/hzxCYmKEKrgayC9/mrgqHdL ZknM2vANfmaNOGs2N/kJhPy9HQN9wP2NUn3kty+s/xP25aPyqTI7T/wOcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHNawiiAk56+NJ0wuMRY99hjAkxfMB8GA1UdIwQY MBaAFCJVcWqh9MPBAocYocMx4isznq18MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWxWeGFxSDB3OEVDaHhpaHd6SGlLek9lclh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9jYmY2N2ItYTY1YS00MmEzLTg5MDgt MDczNjllMTRjYWRlLzEvSWxWeGFxSDB3OEVDaHhpaHd6SGlLek9lclh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9jYmY2N2ItYTY1YS00MmEzLTg5MDgtMDczNjllMTRjYWRl LzEvSWxWeGFxSDB3OEVDaHhpaHd6SGlLek9lclh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOvurHHnm x9x1JxLqrAc05wXLVajbSbCAx8ncVuTNpJQydATx/zPmMEXkPD2JITInSmdG67ab Pw7EVHyVJg47bWcAP0YGDRLLo/IUGG31rEl4+BhSWUmwmXlTIjaOnfGmQJ2UZVvd q19OOUrVOMlBQSvE3PybyRolEdi0Be9RBwRudqq2CO4tyUi20ycsr5fvJ79q2AN9 FAg6iQAjvvuce9EXFiT8xiiFvakHCyONxfWYr2yDWQbcgL5VU7EjRxRhUMC3sg+8 aIs/nC89/9Ggff5Jy7vW3EiLTAeXCkR1ZXXYdhv/W8lve6JDFuVgu4dg6D9nWwgk XI1AOSf76X5d0Q== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:56 2026 by rpki-client