This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft
File: iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft (raw, json)
Hash identifier: nSYnLrsDEf0xR2sAz6Nqi47lwf1x4nnWYrMHHF9/frY=
Subject key identifier: 30:4C:0C:8C:C4:95:B6:D6:25:86:BF:EB:13:E0:20:6A:60:B5:1F:0E
Authority key identifier: 89:8E:C1:02:37:91:F6:D4:3F:97:97:E0:52:D1:35:4B:EB:FF:C7:32
Certificate issuer: /CN=898ec1023791f6d43f9797e052d1354bebffc732
Certificate serial: 019C427D2928E324FF84B124C599C1C77231
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft
Manifest number: 015F
Signing time: Mon 09 Feb 2026 13:00:24 +0000
Manifest this update: Mon 09 Feb 2026 13:00:24 +0000
Manifest next update: Tue 10 Feb 2026 13:00:24 +0000
Files and hashes: 1: iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl (hash: NAcj/7rXW2enw10CwaEPeZkhBcGSk1+cOsuzAPfbHXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Feb 2026 13:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:42:7d:29:28:e3:24:ff:84:b1:24:c5:99:c1:c7:72:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=898ec1023791f6d43f9797e052d1354bebffc732
Validity
Not Before: Feb 9 13:00:24 2026 GMT
Not After : Feb 10 13:00:24 2026 GMT
Subject: CN=304c0c8cc495b6d62586bfeb13e0206a60b51f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ef:8a:1f:eb:5b:c5:45:5a:98:46:da:51:93:
3d:e3:6c:69:11:fe:fc:b6:15:63:75:b1:1d:92:8d:
68:7c:aa:df:7d:c4:3d:b3:86:aa:83:99:00:f1:90:
52:31:db:7a:97:62:7b:ff:bc:3c:2e:38:53:82:6c:
2e:25:e7:be:45:5b:de:06:51:e0:c3:70:b5:ae:39:
7a:9f:6c:92:6f:cc:6c:30:16:ee:73:d0:d2:d7:03:
b4:13:7b:fe:54:8a:d5:7b:a1:41:43:18:f9:aa:ad:
fd:09:c9:fd:bc:39:63:e0:da:4f:bd:30:06:64:41:
0e:9b:f5:53:73:dd:5a:63:2a:58:5b:e3:35:0f:23:
c9:07:b3:58:17:07:ce:23:0d:c2:a4:58:71:e5:1a:
a2:db:ea:a3:be:a3:a0:8f:4e:24:fe:39:5f:22:68:
a1:51:30:70:ac:1c:ab:41:48:41:0e:d8:41:8b:2c:
f6:24:a8:5c:5c:a2:3a:71:14:f2:7a:ec:10:0d:c4:
e1:2d:19:ca:b2:c3:96:19:ca:26:3d:da:b5:cc:67:
0c:f5:51:ac:cd:06:b0:d5:e5:66:d1:1b:18:ad:24:
8b:f3:94:87:2e:f9:ed:73:2c:6d:81:43:02:bd:7b:
ad:33:51:70:e1:ef:7c:82:76:9a:6b:2d:10:bf:69:
88:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:4C:0C:8C:C4:95:B6:D6:25:86:BF:EB:13:E0:20:6A:60:B5:1F:0E
X509v3 Authority Key Identifier:
keyid:89:8E:C1:02:37:91:F6:D4:3F:97:97:E0:52:D1:35:4B:EB:FF:C7:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:f9:f6:93:bb:16:ae:21:44:72:79:06:c6:93:74:8f:2c:9c:
23:d7:80:2b:88:c7:97:f8:77:92:95:86:e9:4e:3a:50:bc:16:
a7:69:d2:89:4e:85:05:f3:a5:4f:a0:14:1e:27:10:b3:2f:e9:
6d:04:16:16:91:30:e9:63:b8:df:32:76:60:34:c4:05:78:07:
b7:09:97:f2:da:e2:44:a3:4b:24:08:cc:2c:a9:f5:af:ed:a0:
43:7c:8d:aa:af:94:9c:13:65:f7:ed:6b:a8:75:8b:84:9a:49:
38:5e:aa:be:4f:c1:ab:15:77:25:e6:91:23:55:1e:6e:19:a9:
22:b5:f1:11:5d:4d:83:24:a8:4f:63:dd:42:d4:eb:29:d8:7c:
d6:05:26:6e:19:1e:4a:66:54:10:00:dd:57:c8:4e:ba:c0:0d:
44:3d:f1:ec:6a:9b:5d:1b:e3:fc:f5:40:75:2d:98:bd:5e:f3:
3a:6b:9c:3e:5a:ab:7b:58:a7:fd:aa:4f:8e:8f:d9:bd:0c:9f:
8c:48:4f:7b:1e:9a:ee:ea:44:93:c8:c1:65:00:ab:66:14:8d:
7f:c6:c7:54:e4:a8:83:55:09:15:68:3e:92:df:7a:7c:87:14:
7c:e0:d6:67:56:7d:0a:de:bf:2a:d1:2a:e1:a0:77:63:58:47:
82:39:77:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 9 22:43:19 2026 by rpki-client