This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft File: IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft (raw, json) Hash identifier: HhDvPpwBYuYgJOA77a6aQISj6Tbd4JjuviYYinua798= Subject key identifier: 73:B6:E8:AD:81:48:7F:5B:FA:E4:F4:B8:2C:13:30:9B:4F:35:F4:09 Authority key identifier: 21:8A:F2:6F:9A:36:65:3F:4D:99:67:19:D4:A4:10:FE:84:AF:48:61 Certificate issuer: /CN=218af26f9a36653f4d996719d4a410fe84af4861 Certificate serial: 019C420FD8DB473EBDA739CFF43C7F3BBB02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft Manifest number: 06D4 Signing time: Mon 09 Feb 2026 11:01:00 +0000 Manifest this update: Mon 09 Feb 2026 11:01:00 +0000 Manifest next update: Tue 10 Feb 2026 11:01:00 +0000 Files and hashes: 1: 0ID-AnVUhFUiMemh1sbAkCtku7k.roa (hash: AbzQcdesjBBWIHYWJC9zLMR7O1b0U/MWLPaNjpcLcdw=) 2: IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl (hash: 76GoCE/2e7LXjKG9MDZkFcgeXMQLc4zdwuM/dNgLEkg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:d8:db:47:3e:bd:a7:39:cf:f4:3c:7f:3b:bb:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218af26f9a36653f4d996719d4a410fe84af4861 Validity Not Before: Feb 9 11:01:00 2026 GMT Not After : Feb 10 11:01:00 2026 GMT Subject: CN=73b6e8ad81487f5bfae4f4b82c13309b4f35f409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:eb:27:9a:76:a2:20:d4:11:b6:6a:cd:d1:36: ea:ec:f1:3f:ab:12:d3:fb:c0:f7:bd:ec:e2:1b:3a: 67:23:21:34:65:f1:b5:4c:a9:28:93:31:2a:ea:21: 6c:41:ab:2f:c2:ea:40:7a:68:76:a1:8f:47:89:8c: 62:95:50:28:b5:36:a5:8e:f4:39:89:6a:f4:7a:25: b6:ae:79:60:5e:da:54:12:3f:47:88:90:0c:d3:d3: f6:f3:21:e5:3f:85:31:bd:54:26:aa:a1:cd:f1:ca: 7e:3c:cb:de:b6:3f:11:75:d3:b5:64:c7:1a:2b:98: 8a:a7:50:19:da:26:6c:99:84:c1:5d:1b:a6:9e:92: 8a:3a:18:b0:14:35:97:46:fe:23:a0:2a:bc:67:ad: 2a:05:6d:96:ee:d4:c4:43:41:0d:9a:f3:b1:80:74: a5:f5:a9:d2:08:29:5c:83:b9:8a:fe:06:b6:17:b4: 35:c3:1d:c7:ea:f6:fe:9b:2d:41:4d:6a:20:ca:16: bf:1f:d7:b9:bd:1c:79:fa:48:60:d2:8b:ca:c0:23: 63:d9:81:aa:f1:bc:da:b2:7b:37:35:59:7b:ab:ec: 9f:85:e2:3d:6a:41:18:af:4d:2d:a6:6b:9f:65:4a: 64:44:38:06:65:66:22:72:8a:98:5f:da:4b:c8:11: 46:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B6:E8:AD:81:48:7F:5B:FA:E4:F4:B8:2C:13:30:9B:4F:35:F4:09 X509v3 Authority Key Identifier: keyid:21:8A:F2:6F:9A:36:65:3F:4D:99:67:19:D4:A4:10:FE:84:AF:48:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/3e41d5-c7f1-4637-b930-184586602887/1/IYryb5o2ZT9NmWcZ1KQQ_oSvSGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:51:ce:91:22:89:36:54:74:88:e0:20:08:ab:78:2f:d8:0b: 03:b3:31:64:f2:ed:75:02:81:f0:b3:97:fc:56:08:04:25:bc: c9:9e:1c:2a:a6:13:ee:36:5a:53:3b:e6:e3:d3:3c:8b:fc:88: d9:1e:05:49:ec:f8:d6:c1:4b:ba:45:f1:6d:e0:62:c0:e6:1a: 5d:ab:a5:04:c9:74:f2:ca:41:62:a4:a0:7e:82:f2:89:21:1c: 86:09:b2:f4:03:bc:90:c0:69:7b:7b:5d:b2:00:92:83:88:5e: 43:30:44:b0:7f:89:93:56:78:02:88:bd:d2:89:4c:b4:e8:ca: d5:b1:84:f1:80:6a:8f:58:c4:de:9c:e5:b1:c3:e0:28:a7:8f: 3a:70:c0:68:d2:dd:4a:c3:e9:01:88:75:5e:49:9b:0f:8e:73: 19:57:7c:4a:28:2b:b8:b4:5b:19:d4:07:59:6b:de:de:35:ed: 18:2d:7a:d8:3c:ce:c2:3d:61:47:0c:75:ed:19:b3:44:95:8c: 42:00:80:6a:34:17:d2:55:3e:c4:5a:04:c1:74:44:68:39:58: eb:c1:3d:fa:8e:95:63:5f:00:ba:f3:b3:f7:29:33:e4:54:9a: a0:98:aa:74:bf:e3:7d:d5:4a:e1:b1:a0:c0:12:48:74:cc:f9: e2:c1:d7:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD9jbRz69pznP9Dx/O7sCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxOGFmMjZmOWEzNjY1M2Y0ZDk5NjcxOWQ0YTQxMGZlODRh ZjQ4NjEwHhcNMjYwMjA5MTEwMTAwWhcNMjYwMjEwMTEwMTAwWjAzMTEwLwYDVQQD Eyg3M2I2ZThhZDgxNDg3ZjViZmFlNGY0YjgyYzEzMzA5YjRmMzVmNDA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtusnmnaiINQRtmrN0Tbq7PE/qxLT +8D3veziGzpnIyE0ZfG1TKkokzEq6iFsQasvwupAemh2oY9HiYxilVAotTaljvQ5 iWr0eiW2rnlgXtpUEj9HiJAM09P28yHlP4UxvVQmqqHN8cp+PMvetj8RddO1ZMca K5iKp1AZ2iZsmYTBXRumnpKKOhiwFDWXRv4joCq8Z60qBW2W7tTEQ0ENmvOxgHSl 9anSCClcg7mK/ga2F7Q1wx3H6vb+my1BTWogyha/H9e5vRx5+khg0ovKwCNj2YGq 8bzasns3NVl7q+yfheI9akEYr00tpmufZUpkRDgGZWYicoqYX9pLyBFG7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHO26K2BSH9b+uT0uCwTMJtPNfQJMB8GA1UdIwQY MBaAFCGK8m+aNmU/TZlnGdSkEP6Er0hhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVlyeWI1bzJaVDlObVdjWjFLUVFfb1N2U0dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8zZTQxZDUtYzdmMS00NjM3LWI5MzAt MTg0NTg2NjAyODg3LzEvSVlyeWI1bzJaVDlObVdjWjFLUVFfb1N2U0dFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8zZTQxZDUtYzdmMS00NjM3LWI5MzAtMTg0NTg2NjAyODg3 LzEvSVlyeWI1bzJaVDlObVdjWjFLUVFfb1N2U0dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXFHOkSKJ NlR0iOAgCKt4L9gLA7MxZPLtdQKB8LOX/FYIBCW8yZ4cKqYT7jZaUzvm49M8i/yI 2R4FSez41sFLukXxbeBiwOYaXaulBMl08spBYqSgfoLyiSEchgmy9AO8kMBpe3td sgCSg4heQzBEsH+Jk1Z4Aoi90olMtOjK1bGE8YBqj1jE3pzlscPgKKePOnDAaNLd SsPpAYh1XkmbD45zGVd8SigruLRbGdQHWWve3jXtGC162DzOwj1hRwx17RmzRJWM QgCAajQX0lU+xFoEwXREaDlY68E9+o6VY18AuvOz9ykz5FSaoJiqdL/jfdVK4bGg wBJIdMz54sHXLw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:05 2026 by rpki-client