This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft
File: iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft (raw, json)
Hash identifier: v4mi8IeJlyHVgh7mOr8jPHiojWZx878VcbA76nMZs9Q=
Subject key identifier: 43:C8:4E:73:46:26:A8:67:76:DD:8A:8D:91:78:DD:CB:74:6B:9A:8A
Authority key identifier: 89:8E:C1:02:37:91:F6:D4:3F:97:97:E0:52:D1:35:4B:EB:FF:C7:32
Certificate issuer: /CN=898ec1023791f6d43f9797e052d1354bebffc732
Certificate serial: 019C446B86F3AF463C0E05B3C59713A15D14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft
Manifest number: 0160
Signing time: Mon 09 Feb 2026 22:00:23 +0000
Manifest this update: Mon 09 Feb 2026 22:00:23 +0000
Manifest next update: Tue 10 Feb 2026 22:00:23 +0000
Files and hashes: 1: iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl (hash: 4C87n7ZO8hYFekH71wfe7fRYvqsH+19+fwcPg+t+41Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Feb 2026 21:05:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:44:6b:86:f3:af:46:3c:0e:05:b3:c5:97:13:a1:5d:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=898ec1023791f6d43f9797e052d1354bebffc732
Validity
Not Before: Feb 9 22:00:23 2026 GMT
Not After : Feb 10 22:00:23 2026 GMT
Subject: CN=43c84e734626a86776dd8a8d9178ddcb746b9a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d0:00:53:f7:37:1a:29:a7:f0:bf:69:f5:9e:
d6:2d:fa:c1:76:ff:26:23:c1:55:1d:38:57:73:b0:
db:d5:f1:9e:97:95:11:d4:38:82:87:b5:35:dc:44:
fe:1a:00:9d:26:ca:50:81:dc:0c:10:2e:b2:89:09:
86:01:35:6d:83:38:7c:2b:af:ad:e4:29:8d:32:e0:
81:04:14:76:b4:f2:01:76:ec:30:ff:80:d4:aa:86:
ac:4a:56:c7:8a:fe:f2:d3:20:6d:ad:55:04:e5:9d:
9b:2c:fd:6b:f5:64:d3:e4:e0:5f:e9:46:ae:94:94:
1d:d2:54:f7:00:c8:6c:b2:22:b3:06:df:0b:32:f4:
2c:e1:fa:60:dc:6d:25:21:ae:b3:30:05:12:ce:8f:
81:52:1c:4b:ae:a1:80:87:be:70:ec:1d:e0:f4:95:
3d:d7:1e:b7:34:3f:07:8d:2a:5b:d4:00:d7:6f:c8:
70:a0:89:a4:7c:6d:45:01:57:e2:d1:67:8f:cd:e0:
72:a1:10:28:f9:49:e9:9e:9f:4b:96:5d:b9:09:45:
6a:70:7d:23:96:f8:1d:cb:c8:79:42:4a:5c:1a:5f:
8a:12:8a:af:42:4a:94:03:5c:e2:89:d0:59:f0:c1:
60:b0:8d:90:e1:69:5b:5c:ee:fa:2d:08:cb:e5:c3:
76:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C8:4E:73:46:26:A8:67:76:DD:8A:8D:91:78:DD:CB:74:6B:9A:8A
X509v3 Authority Key Identifier:
keyid:89:8E:C1:02:37:91:F6:D4:3F:97:97:E0:52:D1:35:4B:EB:FF:C7:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab6a7b-65ab-4977-9937-ea9b6bb2e39c/1/iY7BAjeR9tQ_l5fgUtE1S-v_xzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:6a:45:71:82:b2:23:3a:00:0a:80:07:2d:7a:ba:cd:4d:49:
25:d8:1a:48:44:32:44:50:d1:2d:38:62:00:09:6e:42:91:15:
ae:d8:14:11:fe:ad:3e:ff:01:89:be:ee:24:2b:86:7e:6b:eb:
7a:ad:b2:3b:aa:3a:5b:d8:82:b7:3c:56:ef:b7:3a:70:1f:08:
9f:d0:e1:92:2c:22:b4:08:df:24:e2:ad:88:5b:3b:aa:35:ab:
d8:bc:18:ea:f3:c0:3d:c2:7c:98:2f:c8:53:65:cb:a1:6e:55:
3d:5b:cd:ec:f4:ff:4a:70:e9:ba:7f:cb:c3:82:bf:75:6b:26:
fb:b9:0b:70:23:cc:59:43:9f:24:32:6c:89:76:47:7b:4e:78:
8a:38:b6:2c:67:fb:11:a0:02:1b:8a:f0:a6:a1:a5:8d:8d:f0:
42:b7:03:49:8a:ea:b6:5f:b3:08:aa:9a:bb:af:ef:c9:bd:40:
ca:c0:a4:e6:5d:79:2b:85:8d:94:09:51:31:ae:f0:45:1e:95:
9c:62:1e:99:2d:79:07:d2:e5:aa:c0:22:f5:97:69:af:a5:7c:
13:57:9d:91:28:ea:71:6b:e9:b5:e6:a4:c4:f0:88:90:b5:47:
db:de:08:0e:00:0b:a4:4b:db:81:80:83:04:d9:ab:5d:86:d3:
8c:e9:82:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 10 04:19:53 2026 by rpki-client