This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft File: s1IytLD6jIPU_4wSROhk67yt1os.mft (raw, json) Hash identifier: XhOSGYN8p7okFqmvRgN1B/TJ0+NMiAmC4JewLhFabbo= Subject key identifier: 73:DB:C6:00:F6:85:C0:F5:D3:4C:59:18:1D:0C:C0:AE:B0:CB:D1:A1 Authority key identifier: B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B Certificate issuer: /CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b Certificate serial: 019C43225256CAB840EE55AFA52C724DCC6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft Manifest number: 1287 Signing time: Mon 09 Feb 2026 16:00:48 +0000 Manifest this update: Mon 09 Feb 2026 16:00:48 +0000 Manifest next update: Tue 10 Feb 2026 16:00:48 +0000 Files and hashes: 1: s1IytLD6jIPU_4wSROhk67yt1os.crl (hash: OpI2jkk1SriSsAVaRl2gD+z2tiYKwqNaqTwlRpBUXaY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:52:56:ca:b8:40:ee:55:af:a5:2c:72:4d:cc:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b Validity Not Before: Feb 9 16:00:48 2026 GMT Not After : Feb 10 16:00:48 2026 GMT Subject: CN=73dbc600f685c0f5d34c59181d0cc0aeb0cbd1a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:c2:05:ae:34:84:74:c1:30:a1:55:a7:4a:eb: c1:1b:3d:f3:a2:39:dd:ba:ad:b8:cc:99:71:27:6b: 9c:86:f9:4c:15:da:9c:d0:f5:b5:b2:e5:30:37:6d: d5:78:7f:7b:e0:bb:e2:3c:47:59:4e:04:0b:df:e8: 49:cc:bd:f2:c9:43:d1:8c:31:31:e0:38:fa:b0:b6: ea:49:de:71:b5:6b:6f:56:fd:20:0e:f8:87:64:84: e2:fd:e1:f9:9d:64:97:d4:f4:76:90:01:63:84:4a: d2:52:61:4d:90:3e:9c:03:f8:75:5c:d7:97:bb:46: 47:e1:99:2b:58:c1:59:fc:74:c9:e7:a2:1d:f8:da: 85:8c:9f:94:04:13:dc:3c:71:28:4c:70:ed:5b:57: 52:27:ab:66:01:99:53:9f:73:1a:b7:41:cd:6f:bc: 7d:f1:92:f1:60:b2:a0:ac:7c:4b:99:5c:d6:91:af: b3:b6:6f:4f:20:f0:e2:10:52:4e:eb:60:e2:c1:31: f5:b0:ac:74:9e:d8:28:ff:d9:14:21:69:65:95:e6: b0:95:15:26:75:5a:9b:b0:2c:31:14:22:e6:65:f2: 34:c0:fd:13:59:47:b0:f9:fd:fa:a3:86:74:0c:30: 68:5a:18:0e:c8:57:32:06:a3:65:79:26:34:eb:58: 0e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:DB:C6:00:F6:85:C0:F5:D3:4C:59:18:1D:0C:C0:AE:B0:CB:D1:A1 X509v3 Authority Key Identifier: keyid:B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:3b:b9:c2:09:f7:2d:2f:eb:b9:b1:a6:60:50:66:43:31:12: 59:4c:60:16:8f:b2:b4:55:4b:3b:74:88:a0:93:9a:24:62:24: 21:9a:9d:eb:16:51:9a:f3:d5:e0:f4:ea:53:c2:7c:06:c9:95: e5:fc:68:16:1d:89:07:53:c0:2a:ea:7b:88:35:9e:15:10:53: 70:fe:1a:cc:bd:e4:7e:28:f8:7b:70:6a:a1:92:7d:4f:42:db: f8:d9:39:9f:96:c1:49:92:8a:f2:3f:35:9c:89:3d:b8:3f:e9: 47:8f:05:d6:13:c3:18:30:ae:8e:f2:ff:1c:1d:02:58:f7:59: 84:d7:09:ac:57:b1:71:15:3f:0f:f6:77:d0:76:59:05:bc:cf: 7f:f0:3d:17:eb:c8:3d:ee:70:72:10:cf:05:80:5d:41:cf:c9: 13:17:f0:39:d0:f4:4b:3e:bc:aa:c6:0d:7b:78:58:14:6c:6e: ec:d7:53:06:2d:3e:55:64:21:6c:e9:8f:b8:c4:4e:f8:df:fa: c8:f1:a4:e5:36:e9:10:1d:4f:ef:78:81:3e:74:5f:6d:47:aa: 6e:40:28:a7:2e:3f:f3:89:3e:d2:f3:0f:6a:e2:84:48:7a:53: e8:83:59:b4:23:77:83:51:27:f1:3b:da:58:ae:aa:ce:d0:ae: d2:90:9c:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlJWyrhA7lWvpSxyTcxvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzNTIzMmI0YjBmYThjODNkNGZmOGMxMjQ0ZTg2NGViYmNh ZGQ2OGIwHhcNMjYwMjA5MTYwMDQ4WhcNMjYwMjEwMTYwMDQ4WjAzMTEwLwYDVQQD Eyg3M2RiYzYwMGY2ODVjMGY1ZDM0YzU5MTgxZDBjYzBhZWIwY2JkMWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj8IFrjSEdMEwoVWnSuvBGz3zojnd uq24zJlxJ2uchvlMFdqc0PW1suUwN23VeH974LviPEdZTgQL3+hJzL3yyUPRjDEx 4Dj6sLbqSd5xtWtvVv0gDviHZITi/eH5nWSX1PR2kAFjhErSUmFNkD6cA/h1XNeX u0ZH4ZkrWMFZ/HTJ56Id+NqFjJ+UBBPcPHEoTHDtW1dSJ6tmAZlTn3Mat0HNb7x9 8ZLxYLKgrHxLmVzWka+ztm9PIPDiEFJO62DiwTH1sKx0ntgo/9kUIWllleawlRUm dVqbsCwxFCLmZfI0wP0TWUew+f36o4Z0DDBoWhgOyFcyBqNleSY061gOCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHPbxgD2hcD100xZGB0MwK6wy9GhMB8GA1UdIwQY MBaAFLNSMrSw+oyD1P+MEkToZOu8rdaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczFJeXRMRDZqSVBVXzR3U1JPaGs2N3l0MW9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iZDlmZDgtYTM0Ni00NTllLTgzOGEt YjkxMjJlNTIxMDU4LzEvczFJeXRMRDZqSVBVXzR3U1JPaGs2N3l0MW9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9iZDlmZDgtYTM0Ni00NTllLTgzOGEtYjkxMjJlNTIxMDU4 LzEvczFJeXRMRDZqSVBVXzR3U1JPaGs2N3l0MW9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACDu5wgn3 LS/rubGmYFBmQzESWUxgFo+ytFVLO3SIoJOaJGIkIZqd6xZRmvPV4PTqU8J8BsmV 5fxoFh2JB1PAKup7iDWeFRBTcP4azL3kfij4e3BqoZJ9T0Lb+Nk5n5bBSZKK8j81 nIk9uD/pR48F1hPDGDCujvL/HB0CWPdZhNcJrFexcRU/D/Z30HZZBbzPf/A9F+vI Pe5wchDPBYBdQc/JExfwOdD0Sz68qsYNe3hYFGxu7NdTBi0+VWQhbOmPuMRO+N/6 yPGk5TbpEB1P73iBPnRfbUeqbkAopy4/84k+0vMPauKESHpT6INZtCN3g1En8Tva WK6qztCu0pCcLA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:20 2026 by rpki-client