This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft File: iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft (raw, json) Hash identifier: v4mi8IeJlyHVgh7mOr8jPHiojWZx878VcbA76nMZs9Q= Subject key identifier: 43:C8:4E:73:46:26:A8:67:76:DD:8A:8D:91:78:DD:CB:74:6B:9A:8A Authority key identifier: 89:8E:C1:02:37:91:F6:D4:3F:97:97:E0:52:D1:35:4B:EB:FF:C7:32 Certificate issuer: /CN=898ec1023791f6d43f9797e052d1354bebffc732 Certificate serial: 019C446B86F3AF463C0E05B3C59713A15D14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft Manifest number: 0160 Signing time: Mon 09 Feb 2026 22:00:23 +0000 Manifest this update: Mon 09 Feb 2026 22:00:23 +0000 Manifest next update: Tue 10 Feb 2026 22:00:23 +0000 Files and hashes: 1: iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl (hash: 4C87n7ZO8hYFekH71wfe7fRYvqsH+19+fwcPg+t+41Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:86:f3:af:46:3c:0e:05:b3:c5:97:13:a1:5d:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=898ec1023791f6d43f9797e052d1354bebffc732 Validity Not Before: Feb 9 22:00:23 2026 GMT Not After : Feb 10 22:00:23 2026 GMT Subject: CN=43c84e734626a86776dd8a8d9178ddcb746b9a8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d0:00:53:f7:37:1a:29:a7:f0:bf:69:f5:9e: d6:2d:fa:c1:76:ff:26:23:c1:55:1d:38:57:73:b0: db:d5:f1:9e:97:95:11:d4:38:82:87:b5:35:dc:44: fe:1a:00:9d:26:ca:50:81:dc:0c:10:2e:b2:89:09: 86:01:35:6d:83:38:7c:2b:af:ad:e4:29:8d:32:e0: 81:04:14:76:b4:f2:01:76:ec:30:ff:80:d4:aa:86: ac:4a:56:c7:8a:fe:f2:d3:20:6d:ad:55:04:e5:9d: 9b:2c:fd:6b:f5:64:d3:e4:e0:5f:e9:46:ae:94:94: 1d:d2:54:f7:00:c8:6c:b2:22:b3:06:df:0b:32:f4: 2c:e1:fa:60:dc:6d:25:21:ae:b3:30:05:12:ce:8f: 81:52:1c:4b:ae:a1:80:87:be:70:ec:1d:e0:f4:95: 3d:d7:1e:b7:34:3f:07:8d:2a:5b:d4:00:d7:6f:c8: 70:a0:89:a4:7c:6d:45:01:57:e2:d1:67:8f:cd:e0: 72:a1:10:28:f9:49:e9:9e:9f:4b:96:5d:b9:09:45: 6a:70:7d:23:96:f8:1d:cb:c8:79:42:4a:5c:1a:5f: 8a:12:8a:af:42:4a:94:03:5c:e2:89:d0:59:f0:c1: 60:b0:8d:90:e1:69:5b:5c:ee:fa:2d:08:cb:e5:c3: 76:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C8:4E:73:46:26:A8:67:76:DD:8A:8D:91:78:DD:CB:74:6B:9A:8A X509v3 Authority Key Identifier: keyid:89:8E:C1:02:37:91:F6:D4:3F:97:97:E0:52:D1:35:4B:EB:FF:C7:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:6a:45:71:82:b2:23:3a:00:0a:80:07:2d:7a:ba:cd:4d:49: 25:d8:1a:48:44:32:44:50:d1:2d:38:62:00:09:6e:42:91:15: ae:d8:14:11:fe:ad:3e:ff:01:89:be:ee:24:2b:86:7e:6b:eb: 7a:ad:b2:3b:aa:3a:5b:d8:82:b7:3c:56:ef:b7:3a:70:1f:08: 9f:d0:e1:92:2c:22:b4:08:df:24:e2:ad:88:5b:3b:aa:35:ab: d8:bc:18:ea:f3:c0:3d:c2:7c:98:2f:c8:53:65:cb:a1:6e:55: 3d:5b:cd:ec:f4:ff:4a:70:e9:ba:7f:cb:c3:82:bf:75:6b:26: fb:b9:0b:70:23:cc:59:43:9f:24:32:6c:89:76:47:7b:4e:78: 8a:38:b6:2c:67:fb:11:a0:02:1b:8a:f0:a6:a1:a5:8d:8d:f0: 42:b7:03:49:8a:ea:b6:5f:b3:08:aa:9a:bb:af:ef:c9:bd:40: ca:c0:a4:e6:5d:79:2b:85:8d:94:09:51:31:ae:f0:45:1e:95: 9c:62:1e:99:2d:79:07:d2:e5:aa:c0:22:f5:97:69:af:a5:7c: 13:57:9d:91:28:ea:71:6b:e9:b5:e6:a4:c4:f0:88:90:b5:47: db:de:08:0e:00:0b:a4:4b:db:81:80:83:04:d9:ab:5d:86:d3: 8c:e9:82:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa4bzr0Y8DgWzxZcToV0UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5OGVjMTAyMzc5MWY2ZDQzZjk3OTdlMDUyZDEzNTRiZWJm ZmM3MzIwHhcNMjYwMjA5MjIwMDIzWhcNMjYwMjEwMjIwMDIzWjAzMTEwLwYDVQQD Eyg0M2M4NGU3MzQ2MjZhODY3NzZkZDhhOGQ5MTc4ZGRjYjc0NmI5YThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA69AAU/c3Gimn8L9p9Z7WLfrBdv8m I8FVHThXc7Db1fGel5UR1DiCh7U13ET+GgCdJspQgdwMEC6yiQmGATVtgzh8K6+t 5CmNMuCBBBR2tPIBduww/4DUqoasSlbHiv7y0yBtrVUE5Z2bLP1r9WTT5OBf6Uau lJQd0lT3AMhssiKzBt8LMvQs4fpg3G0lIa6zMAUSzo+BUhxLrqGAh75w7B3g9JU9 1x63ND8HjSpb1ADXb8hwoImkfG1FAVfi0WePzeByoRAo+Unpnp9Lll25CUVqcH0j lvgdy8h5QkpcGl+KEoqvQkqUA1ziidBZ8MFgsI2Q4WlbXO76LQjL5cN2LwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEPITnNGJqhndt2KjZF43ct0a5qKMB8GA1UdIwQY MBaAFImOwQI3kfbUP5eX4FLRNUvr/8cyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVk3QkFqZVI5dFFfbDVmZ1V0RTFTLXZfeHpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9hYjZhN2ItNjVhYi00OTc3LTk5Mzct ZWE5YjZiYjJlMzljLzEvaVk3QkFqZVI5dFFfbDVmZ1V0RTFTLXZfeHpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9hYjZhN2ItNjVhYi00OTc3LTk5MzctZWE5YjZiYjJlMzlj LzEvaVk3QkFqZVI5dFFfbDVmZ1V0RTFTLXZfeHpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK2pFcYKy IzoACoAHLXq6zU1JJdgaSEQyRFDRLThiAAluQpEVrtgUEf6tPv8Bib7uJCuGfmvr eq2yO6o6W9iCtzxW77c6cB8In9DhkiwitAjfJOKtiFs7qjWr2LwY6vPAPcJ8mC/I U2XLoW5VPVvN7PT/SnDpun/Lw4K/dWsm+7kLcCPMWUOfJDJsiXZHe054iji2LGf7 EaACG4rwpqGljY3wQrcDSYrqtl+zCKqau6/vyb1AysCk5l15K4WNlAlRMa7wRR6V nGIemS15B9LlqsAi9Zdpr6V8E1edkSjqcWvpteakxPCIkLVH294IDgALpEvbgYCD BNmrXYbTjOmCSg== -----END CERTIFICATE-----Generated at Tue Feb 10 04:19:53 2026 by rpki-client