This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft File: CEIhaO2oQjBU2C6wGMOD4tvor98.mft (raw, json) Hash identifier: 5bYPyHB48M1OPbSWop0l1St//6IuhERYO0B/+PebaqM= Subject key identifier: DE:16:B7:2E:4A:F2:31:D7:49:27:CE:76:0A:C9:43:1A:CB:9F:35:B3 Authority key identifier: 08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF Certificate issuer: /CN=08422168eda8423054d82eb018c383e2dbe8afdf Certificate serial: 019C446BE1AEAEEA82C3F4A6158C569D4A4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft Manifest number: 153B Signing time: Mon 09 Feb 2026 22:00:46 +0000 Manifest this update: Mon 09 Feb 2026 22:00:46 +0000 Manifest next update: Tue 10 Feb 2026 22:00:46 +0000 Files and hashes: 1: CEIhaO2oQjBU2C6wGMOD4tvor98.crl (hash: 6arjdkhscLi0GxUMvdbXgNn+wR0Ajec6bCbY7+rjfrE=) 2: cFauzwqXomgkVBlhCEWJrgK_IBo.roa (hash: 3eFRfx8k6ux2BDXfQobN4cZglfrrJQFQAkF7k25/Hiw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:e1:ae:ae:ea:82:c3:f4:a6:15:8c:56:9d:4a:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08422168eda8423054d82eb018c383e2dbe8afdf Validity Not Before: Feb 9 22:00:46 2026 GMT Not After : Feb 10 22:00:46 2026 GMT Subject: CN=de16b72e4af231d74927ce760ac9431acb9f35b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:93:f0:34:47:70:2b:c0:3f:3c:bb:fa:6c:73: 49:dd:84:33:54:0e:6b:e8:a0:ec:53:16:f5:e0:2f: 24:a7:92:6f:01:f4:9a:e0:f8:49:ef:b2:6b:13:84: 89:31:89:cf:79:19:0f:d1:f9:53:41:c6:4e:fc:92: cb:77:0f:fb:db:05:19:34:c8:cc:ec:33:e9:a8:08: fa:e9:ea:1d:d6:e7:20:b5:61:fc:5d:b5:11:39:5a: c9:5b:27:16:89:a7:ef:9c:8b:70:b9:74:21:ad:89: 7e:be:21:cd:cf:e9:ff:4c:fd:c1:b4:ba:7a:18:00: 3c:7b:c7:e5:7d:28:6f:84:ef:f8:80:b7:0b:bc:0e: 41:ff:44:04:ef:bd:76:89:23:85:23:16:a9:79:94: 18:4e:40:4f:74:fc:64:c7:0c:d8:85:71:fd:38:62: fa:00:74:90:28:06:35:e2:e8:08:04:0f:a9:3a:e8: 5c:ef:4f:67:d1:b1:2a:38:c7:2d:bf:90:35:88:9d: 86:f2:39:85:6c:b8:3e:9c:a8:fe:d4:fd:7f:2b:ea: 1a:7e:25:5b:4e:b2:14:ad:98:df:df:cc:91:4c:d4: 66:af:b5:e6:48:79:47:88:7e:b0:0d:68:5b:f0:36: 2a:c1:b4:42:ec:a6:bc:e7:d6:97:18:a0:a5:3b:c9: 2d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:16:B7:2E:4A:F2:31:D7:49:27:CE:76:0A:C9:43:1A:CB:9F:35:B3 X509v3 Authority Key Identifier: keyid:08:42:21:68:ED:A8:42:30:54:D8:2E:B0:18:C3:83:E2:DB:E8:AF:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEIhaO2oQjBU2C6wGMOD4tvor98.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/960a2b-337d-4d02-ba81-6e19f679a623/1/CEIhaO2oQjBU2C6wGMOD4tvor98.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:fe:54:ba:aa:bd:55:7d:c8:c9:60:2d:ba:38:77:35:ca:0c: 30:97:8e:bd:1e:75:07:0b:46:05:6b:0a:fd:26:54:76:16:3e: c0:ad:83:7b:bb:80:15:3b:57:d6:13:af:c2:60:e5:06:17:e7: a6:c4:3f:57:8c:f6:f4:72:e1:b8:e7:54:4d:cf:9c:3b:33:ec: 03:27:3e:e5:9e:67:3f:ec:ac:1e:57:fc:a3:2f:c9:4c:b6:20: 47:b1:38:f1:48:29:db:8c:1b:c5:24:16:1a:0d:95:75:ab:86: 5f:ed:18:d6:98:7d:e6:7e:9f:44:34:ab:9e:89:ea:d2:c0:29: a9:5b:04:05:64:16:55:b6:1c:0f:3f:05:62:af:d0:b2:aa:c6: f4:ac:66:c8:ba:c2:0b:46:91:7e:9e:52:03:95:62:b2:d9:c1: 3f:df:d2:69:2a:fd:f3:aa:10:17:ac:22:31:b4:20:d9:75:7c: e0:55:7e:f3:fe:72:e2:99:3e:4a:ba:35:bd:ba:2e:c7:6d:24: 74:b5:21:87:d1:1d:2a:85:65:1c:ba:c1:2c:51:85:45:1a:59: 04:44:cd:78:83:37:70:12:b7:c7:b8:a8:f3:a2:a4:42:81:38: 00:9a:6d:b5:77:c8:91:dd:a7:bd:0c:86:2d:04:f7:7d:ee:47: 6d:1e:01:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa+GuruqCw/SmFYxWnUpNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4NDIyMTY4ZWRhODQyMzA1NGQ4MmViMDE4YzM4M2UyZGJl OGFmZGYwHhcNMjYwMjA5MjIwMDQ2WhcNMjYwMjEwMjIwMDQ2WjAzMTEwLwYDVQQD EyhkZTE2YjcyZTRhZjIzMWQ3NDkyN2NlNzYwYWM5NDMxYWNiOWYzNWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5PwNEdwK8A/PLv6bHNJ3YQzVA5r 6KDsUxb14C8kp5JvAfSa4PhJ77JrE4SJMYnPeRkP0flTQcZO/JLLdw/72wUZNMjM 7DPpqAj66eod1ucgtWH8XbUROVrJWycWiafvnItwuXQhrYl+viHNz+n/TP3BtLp6 GAA8e8flfShvhO/4gLcLvA5B/0QE7712iSOFIxapeZQYTkBPdPxkxwzYhXH9OGL6 AHSQKAY14ugIBA+pOuhc709n0bEqOMctv5A1iJ2G8jmFbLg+nKj+1P1/K+oafiVb TrIUrZjf38yRTNRmr7XmSHlHiH6wDWhb8DYqwbRC7Ka859aXGKClO8ktMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN4Wty5K8jHXSSfOdgrJQxrLnzWzMB8GA1UdIwQY MBaAFAhCIWjtqEIwVNgusBjDg+Lb6K/fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0VJaGFPMm9RakJVMkM2d0dNT0Q0dHZvcjk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS85NjBhMmItMzM3ZC00ZDAyLWJhODEt NmUxOWY2NzlhNjIzLzEvQ0VJaGFPMm9RakJVMkM2d0dNT0Q0dHZvcjk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS85NjBhMmItMzM3ZC00ZDAyLWJhODEtNmUxOWY2NzlhNjIz LzEvQ0VJaGFPMm9RakJVMkM2d0dNT0Q0dHZvcjk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARf5Uuqq9 VX3IyWAtujh3NcoMMJeOvR51BwtGBWsK/SZUdhY+wK2De7uAFTtX1hOvwmDlBhfn psQ/V4z29HLhuOdUTc+cOzPsAyc+5Z5nP+ysHlf8oy/JTLYgR7E48Ugp24wbxSQW Gg2VdauGX+0Y1ph95n6fRDSrnonq0sApqVsEBWQWVbYcDz8FYq/QsqrG9KxmyLrC C0aRfp5SA5VistnBP9/SaSr986oQF6wiMbQg2XV84FV+8/5y4pk+Sro1vboux20k dLUhh9EdKoVlHLrBLFGFRRpZBETNeIM3cBK3x7io86KkQoE4AJpttXfIkd2nvQyG LQT3fe5HbR4BvQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:11:57 2026 by rpki-client