This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft File: IYCTB4hvuv261Th2Eu_-dxOHowA.mft (raw, json) Hash identifier: mYLKcNeQ/GwAY3Se4E9edFjGTOs0MvqFCrz5oCAc/TY= Subject key identifier: F3:83:BC:67:51:0D:A4:A1:E8:85:7C:42:FA:16:66:9C:67:BF:5E:52 Authority key identifier: 21:80:93:07:88:6F:BA:FD:BA:D5:38:76:12:EF:FE:77:13:87:A3:00 Certificate issuer: /CN=21809307886fbafdbad5387612effe771387a300 Certificate serial: 019C4133AEBF709F1C2942AE95B385538977 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft Manifest number: 0953 Signing time: Mon 09 Feb 2026 07:00:31 +0000 Manifest this update: Mon 09 Feb 2026 07:00:31 +0000 Manifest next update: Tue 10 Feb 2026 07:00:31 +0000 Files and hashes: 1: IYCTB4hvuv261Th2Eu_-dxOHowA.crl (hash: 6N+9l6LiLiAjTjlfItAu1FrG5ecdZMyOUa4pUvL7e64=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:ae:bf:70:9f:1c:29:42:ae:95:b3:85:53:89:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21809307886fbafdbad5387612effe771387a300 Validity Not Before: Feb 9 07:00:31 2026 GMT Not After : Feb 10 07:00:31 2026 GMT Subject: CN=f383bc67510da4a1e8857c42fa16669c67bf5e52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ff:cd:a1:83:6b:a7:cd:a2:12:3f:30:1f:be: f8:e1:00:e3:b9:2d:91:72:f5:03:22:3e:21:f1:f8: 25:a8:f2:08:e3:c9:5f:ff:8b:d5:15:e5:ba:4b:5a: 38:a8:b7:10:e0:28:7f:4a:47:20:59:9c:81:a5:c7: 7f:e5:80:b4:49:2b:00:6b:89:ba:ec:a8:4f:93:31: 41:1f:f1:f4:0b:eb:5c:ca:2a:3d:19:a0:fe:ab:9f: 0c:b8:66:1c:eb:42:04:ae:58:3c:72:13:fa:98:0b: 58:f2:4c:2b:a7:6d:98:6c:4b:39:60:c6:df:3c:eb: bf:6a:ff:e1:09:9b:77:fe:44:d2:80:28:0d:26:a6: c6:57:73:68:2e:d5:84:cf:c1:04:76:00:e3:ff:00: f2:2e:ec:9a:e2:cc:96:b0:49:31:63:56:c2:3d:e2: 9b:84:07:4b:dc:d8:c7:2f:64:76:af:a9:c4:e2:be: 01:21:15:35:a3:35:73:04:f5:90:39:82:72:49:40: a1:8c:38:10:2f:e7:4b:e9:1d:8e:13:32:93:0a:c4: 22:13:34:cc:67:f7:3f:2b:e8:5b:27:0e:58:df:ea: 11:b8:30:b5:c0:19:2e:42:ef:85:0d:62:de:ff:85: 3c:d7:61:ca:5e:61:4a:d0:25:34:ea:97:9a:a3:23: 3e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:83:BC:67:51:0D:A4:A1:E8:85:7C:42:FA:16:66:9C:67:BF:5E:52 X509v3 Authority Key Identifier: keyid:21:80:93:07:88:6F:BA:FD:BA:D5:38:76:12:EF:FE:77:13:87:A3:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:a8:e2:e8:00:e0:1a:ab:43:cb:f5:a8:a0:bc:f0:92:bb:3a: 06:9c:c5:7c:1e:f8:2b:f7:c3:95:69:1d:be:ad:d5:44:85:b9: 3a:bc:be:18:c3:56:16:78:46:86:92:2a:eb:22:fa:f5:13:de: 4e:9c:8c:41:3e:e7:5f:b5:e9:9d:06:b9:0c:8f:c3:9c:69:4c: 04:0c:15:43:7a:e6:42:6a:3c:e2:d5:08:9f:19:0c:dc:7d:0b: 51:68:39:cb:46:35:05:89:14:5f:76:cd:d4:75:c2:a6:43:2d: d7:68:90:c5:64:84:b9:bf:0a:d5:fe:0a:ee:43:0e:73:10:fe: 31:fa:41:6e:31:2b:94:b5:6b:2c:bb:1f:b0:71:1b:10:f2:0b: 5a:e6:8c:90:f1:8f:f3:9f:a9:00:5e:3b:92:50:ef:4d:10:e5: 26:cc:b4:77:a9:64:8e:54:75:91:40:48:95:6f:db:c4:bd:95: 23:fd:86:86:ea:d1:c0:1f:fa:a0:ed:25:50:1f:39:5b:7c:72: 54:77:83:72:d2:72:c3:f8:7a:15:87:f6:38:a1:78:f0:9b:69: d0:c5:51:cc:ce:98:4e:0f:0b:b3:d7:25:08:c4:d9:c2:47:c9: 15:ff:94:37:a4:34:49:02:8f:4b:7f:45:19:2f:98:5f:ea:ee: 10:dd:08:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM66/cJ8cKUKulbOFU4l3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxODA5MzA3ODg2ZmJhZmRiYWQ1Mzg3NjEyZWZmZTc3MTM4 N2EzMDAwHhcNMjYwMjA5MDcwMDMxWhcNMjYwMjEwMDcwMDMxWjAzMTEwLwYDVQQD EyhmMzgzYmM2NzUxMGRhNGExZTg4NTdjNDJmYTE2NjY5YzY3YmY1ZTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6P/NoYNrp82iEj8wH7744QDjuS2R cvUDIj4h8fglqPII48lf/4vVFeW6S1o4qLcQ4Ch/SkcgWZyBpcd/5YC0SSsAa4m6 7KhPkzFBH/H0C+tcyio9GaD+q58MuGYc60IErlg8chP6mAtY8kwrp22YbEs5YMbf POu/av/hCZt3/kTSgCgNJqbGV3NoLtWEz8EEdgDj/wDyLuya4syWsEkxY1bCPeKb hAdL3NjHL2R2r6nE4r4BIRU1ozVzBPWQOYJySUChjDgQL+dL6R2OEzKTCsQiEzTM Z/c/K+hbJw5Y3+oRuDC1wBkuQu+FDWLe/4U812HKXmFK0CU06peaoyM+5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPODvGdRDaSh6IV8QvoWZpxnv15SMB8GA1UdIwQY MBaAFCGAkweIb7r9utU4dhLv/ncTh6MAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVlDVEI0aHZ1djI2MVRoMkV1Xy1keE9Ib3dBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9hN2NiYWEtYmI5ZC00N2Y1LTkyMmQt ZjcwOGRhZDBlZWNhLzEvSVlDVEI0aHZ1djI2MVRoMkV1Xy1keE9Ib3dBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9hN2NiYWEtYmI5ZC00N2Y1LTkyMmQtZjcwOGRhZDBlZWNh LzEvSVlDVEI0aHZ1djI2MVRoMkV1Xy1keE9Ib3dBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqqji6ADg GqtDy/WooLzwkrs6BpzFfB74K/fDlWkdvq3VRIW5Ory+GMNWFnhGhpIq6yL69RPe TpyMQT7nX7XpnQa5DI/DnGlMBAwVQ3rmQmo84tUInxkM3H0LUWg5y0Y1BYkUX3bN 1HXCpkMt12iQxWSEub8K1f4K7kMOcxD+MfpBbjErlLVrLLsfsHEbEPILWuaMkPGP 85+pAF47klDvTRDlJsy0d6lkjlR1kUBIlW/bxL2VI/2GhurRwB/6oO0lUB85W3xy VHeDctJyw/h6FYf2OKF48Jtp0MVRzM6YTg8Ls9clCMTZwkfJFf+UN6Q0SQKPS39F GS+YX+ruEN0I0w== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:53 2026 by rpki-client