This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft File: iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft (raw, json) Hash identifier: nSYnLrsDEf0xR2sAz6Nqi47lwf1x4nnWYrMHHF9/frY= Subject key identifier: 30:4C:0C:8C:C4:95:B6:D6:25:86:BF:EB:13:E0:20:6A:60:B5:1F:0E Authority key identifier: 89:8E:C1:02:37:91:F6:D4:3F:97:97:E0:52:D1:35:4B:EB:FF:C7:32 Certificate issuer: /CN=898ec1023791f6d43f9797e052d1354bebffc732 Certificate serial: 019C427D2928E324FF84B124C599C1C77231 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft Manifest number: 015F Signing time: Mon 09 Feb 2026 13:00:24 +0000 Manifest this update: Mon 09 Feb 2026 13:00:24 +0000 Manifest next update: Tue 10 Feb 2026 13:00:24 +0000 Files and hashes: 1: iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl (hash: NAcj/7rXW2enw10CwaEPeZkhBcGSk1+cOsuzAPfbHXs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:29:28:e3:24:ff:84:b1:24:c5:99:c1:c7:72:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=898ec1023791f6d43f9797e052d1354bebffc732 Validity Not Before: Feb 9 13:00:24 2026 GMT Not After : Feb 10 13:00:24 2026 GMT Subject: CN=304c0c8cc495b6d62586bfeb13e0206a60b51f0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ef:8a:1f:eb:5b:c5:45:5a:98:46:da:51:93: 3d:e3:6c:69:11:fe:fc:b6:15:63:75:b1:1d:92:8d: 68:7c:aa:df:7d:c4:3d:b3:86:aa:83:99:00:f1:90: 52:31:db:7a:97:62:7b:ff:bc:3c:2e:38:53:82:6c: 2e:25:e7:be:45:5b:de:06:51:e0:c3:70:b5:ae:39: 7a:9f:6c:92:6f:cc:6c:30:16:ee:73:d0:d2:d7:03: b4:13:7b:fe:54:8a:d5:7b:a1:41:43:18:f9:aa:ad: fd:09:c9:fd:bc:39:63:e0:da:4f:bd:30:06:64:41: 0e:9b:f5:53:73:dd:5a:63:2a:58:5b:e3:35:0f:23: c9:07:b3:58:17:07:ce:23:0d:c2:a4:58:71:e5:1a: a2:db:ea:a3:be:a3:a0:8f:4e:24:fe:39:5f:22:68: a1:51:30:70:ac:1c:ab:41:48:41:0e:d8:41:8b:2c: f6:24:a8:5c:5c:a2:3a:71:14:f2:7a:ec:10:0d:c4: e1:2d:19:ca:b2:c3:96:19:ca:26:3d:da:b5:cc:67: 0c:f5:51:ac:cd:06:b0:d5:e5:66:d1:1b:18:ad:24: 8b:f3:94:87:2e:f9:ed:73:2c:6d:81:43:02:bd:7b: ad:33:51:70:e1:ef:7c:82:76:9a:6b:2d:10:bf:69: 88:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:4C:0C:8C:C4:95:B6:D6:25:86:BF:EB:13:E0:20:6A:60:B5:1F:0E X509v3 Authority Key Identifier: keyid:89:8E:C1:02:37:91:F6:D4:3F:97:97:E0:52:D1:35:4B:EB:FF:C7:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:f9:f6:93:bb:16:ae:21:44:72:79:06:c6:93:74:8f:2c:9c: 23:d7:80:2b:88:c7:97:f8:77:92:95:86:e9:4e:3a:50:bc:16: a7:69:d2:89:4e:85:05:f3:a5:4f:a0:14:1e:27:10:b3:2f:e9: 6d:04:16:16:91:30:e9:63:b8:df:32:76:60:34:c4:05:78:07: b7:09:97:f2:da:e2:44:a3:4b:24:08:cc:2c:a9:f5:af:ed:a0: 43:7c:8d:aa:af:94:9c:13:65:f7:ed:6b:a8:75:8b:84:9a:49: 38:5e:aa:be:4f:c1:ab:15:77:25:e6:91:23:55:1e:6e:19:a9: 22:b5:f1:11:5d:4d:83:24:a8:4f:63:dd:42:d4:eb:29:d8:7c: d6:05:26:6e:19:1e:4a:66:54:10:00:dd:57:c8:4e:ba:c0:0d: 44:3d:f1:ec:6a:9b:5d:1b:e3:fc:f5:40:75:2d:98:bd:5e:f3: 3a:6b:9c:3e:5a:ab:7b:58:a7:fd:aa:4f:8e:8f:d9:bd:0c:9f: 8c:48:4f:7b:1e:9a:ee:ea:44:93:c8:c1:65:00:ab:66:14:8d: 7f:c6:c7:54:e4:a8:83:55:09:15:68:3e:92:df:7a:7c:87:14: 7c:e0:d6:67:56:7d:0a:de:bf:2a:d1:2a:e1:a0:77:63:58:47: 82:39:77:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfSko4yT/hLEkxZnBx3IxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5OGVjMTAyMzc5MWY2ZDQzZjk3OTdlMDUyZDEzNTRiZWJm ZmM3MzIwHhcNMjYwMjA5MTMwMDI0WhcNMjYwMjEwMTMwMDI0WjAzMTEwLwYDVQQD EygzMDRjMGM4Y2M0OTViNmQ2MjU4NmJmZWIxM2UwMjA2YTYwYjUxZjBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxu+KH+tbxUVamEbaUZM942xpEf78 thVjdbEdko1ofKrffcQ9s4aqg5kA8ZBSMdt6l2J7/7w8LjhTgmwuJee+RVveBlHg w3C1rjl6n2ySb8xsMBbuc9DS1wO0E3v+VIrVe6FBQxj5qq39Ccn9vDlj4NpPvTAG ZEEOm/VTc91aYypYW+M1DyPJB7NYFwfOIw3CpFhx5Rqi2+qjvqOgj04k/jlfImih UTBwrByrQUhBDthBiyz2JKhcXKI6cRTyeuwQDcThLRnKssOWGcomPdq1zGcM9VGs zQaw1eVm0RsYrSSL85SHLvntcyxtgUMCvXutM1Fw4e98gnaaay0Qv2mINwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDBMDIzElbbWJYa/6xPgIGpgtR8OMB8GA1UdIwQY MBaAFImOwQI3kfbUP5eX4FLRNUvr/8cyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVk3QkFqZVI5dFFfbDVmZ1V0RTFTLXZfeHpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9hYjZhN2ItNjVhYi00OTc3LTk5Mzct ZWE5YjZiYjJlMzljLzEvaVk3QkFqZVI5dFFfbDVmZ1V0RTFTLXZfeHpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9hYjZhN2ItNjVhYi00OTc3LTk5MzctZWE5YjZiYjJlMzlj LzEvaVk3QkFqZVI5dFFfbDVmZ1V0RTFTLXZfeHpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbfn2k7sW riFEcnkGxpN0jyycI9eAK4jHl/h3kpWG6U46ULwWp2nSiU6FBfOlT6AUHicQsy/p bQQWFpEw6WO43zJ2YDTEBXgHtwmX8triRKNLJAjMLKn1r+2gQ3yNqq+UnBNl9+1r qHWLhJpJOF6qvk/BqxV3JeaRI1UebhmpIrXxEV1NgySoT2PdQtTrKdh81gUmbhke SmZUEADdV8hOusANRD3x7GqbXRvj/PVAdS2YvV7zOmucPlqre1in/apPjo/ZvQyf jEhPex6a7upEk8jBZQCrZhSNf8bHVOSog1UJFWg+kt96fIcUfODWZ1Z9Ct6/KtEq 4aB3Y1hHgjl3hA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:19 2026 by rpki-client