This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft File: cvpBoKemgQK1OrMXQtthJC91kIw.mft (raw, json) Hash identifier: trkm3DI7f7U4Es2WsnVgD/dtwWWirG+cr9Zxqg1qeUY= Subject key identifier: 26:DE:94:4A:F8:2E:95:32:CD:17:BB:5D:72:BE:92:61:EE:06:18:DF Authority key identifier: 72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C Certificate issuer: /CN=72fa41a0a7a68102b53ab31742db61242f75908c Certificate serial: 019C41A1BD3861CC2A4B83E8ABB1A47B2C26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft Manifest number: 165A Signing time: Mon 09 Feb 2026 09:00:44 +0000 Manifest this update: Mon 09 Feb 2026 09:00:44 +0000 Manifest next update: Tue 10 Feb 2026 09:00:44 +0000 Files and hashes: 1: Afbz_CgFHMzfcYyB-LhD-CN5fJo.roa (hash: UVJ+Ac4Bp4WWuF6LeTd+T8dhUJ7FlhzP+dm7sJQtR5c=) 2: cvpBoKemgQK1OrMXQtthJC91kIw.crl (hash: 6usJhNFln50BXaehEdQsg+5MT1q8Mee+WkjA0hHtxRs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:bd:38:61:cc:2a:4b:83:e8:ab:b1:a4:7b:2c:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72fa41a0a7a68102b53ab31742db61242f75908c Validity Not Before: Feb 9 09:00:44 2026 GMT Not After : Feb 10 09:00:44 2026 GMT Subject: CN=26de944af82e9532cd17bb5d72be9261ee0618df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a6:98:79:6b:13:b8:2c:9b:60:03:6b:d1:94: 5c:f0:52:aa:a0:fe:48:a7:be:b0:f3:8b:a8:02:cc: cf:aa:06:f3:0c:95:74:68:8a:91:b5:c1:79:91:c6: 11:07:4f:28:f0:d5:f1:45:51:5c:cc:d3:ae:6a:f8: fd:93:fd:06:cb:b3:74:47:e0:d2:5c:2c:d1:24:03: aa:bd:e0:c1:57:95:7e:1b:f2:82:7b:fc:a6:e0:3a: d5:86:03:07:7f:d2:15:c3:62:88:22:84:38:1f:74: 8b:fa:3c:46:b5:05:73:7e:2b:66:c1:01:08:dc:ed: ff:5b:3b:bf:74:6a:64:31:cf:87:1c:f8:c2:2d:52: c5:cd:6c:d3:5e:c8:8c:12:6e:40:db:96:a4:1d:5b: 1e:6d:3d:8b:a8:57:20:58:44:0c:fc:69:c7:98:ca: a7:97:99:b2:8c:c3:17:b0:d5:8e:24:c1:b9:e0:22: 7e:b4:6a:32:5c:bb:91:be:1a:75:60:28:78:28:0f: 21:91:3d:b3:21:a7:e3:3e:33:90:85:17:4f:50:93: 8b:70:6e:c4:2c:57:d7:e7:f0:3e:e5:fa:5e:a2:7f: fa:1c:4c:16:8f:42:b8:05:b0:34:0c:e1:f2:4f:6f: f8:c4:80:6a:a0:08:a5:3b:51:9c:f3:53:45:02:89: 4a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DE:94:4A:F8:2E:95:32:CD:17:BB:5D:72:BE:92:61:EE:06:18:DF X509v3 Authority Key Identifier: keyid:72:FA:41:A0:A7:A6:81:02:B5:3A:B3:17:42:DB:61:24:2F:75:90:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvpBoKemgQK1OrMXQtthJC91kIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a90db1-d2f3-48d1-918c-fcebdc0dfc3f/1/cvpBoKemgQK1OrMXQtthJC91kIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:18:3a:6a:51:5c:f0:0d:32:d2:ad:df:53:c9:99:26:2d:f4: a6:fe:10:52:3a:03:26:ab:c5:12:d4:8e:c3:09:d3:6e:a9:89: ed:6a:68:3f:73:59:d3:10:02:0a:8f:09:93:86:aa:94:e5:6b: fd:be:ba:c8:3b:2f:57:06:36:5b:23:95:b5:31:c2:9c:ea:01: d1:c2:f2:eb:5c:46:52:d1:83:43:34:b7:60:cb:c1:00:87:45: d4:80:02:26:91:8e:85:e1:d8:5c:57:01:8b:11:c1:64:9c:34: e0:57:ee:b8:cc:ab:e0:ec:be:bb:3e:0e:44:d5:04:14:e2:a0: 2c:ed:0f:09:a9:26:97:2f:fc:73:68:ab:74:c9:a7:56:7e:57: d3:5f:ba:5d:81:4c:e6:60:75:67:70:7a:d8:f5:43:97:ba:f4: e8:0e:e3:a5:ee:4e:b6:5a:78:40:d9:e6:8f:8a:c3:b3:10:63: 39:7e:1e:f4:b7:b7:6d:c9:ed:5a:b6:f0:bd:04:30:0e:5f:24: 36:8c:f3:55:52:14:c8:d4:20:89:e5:c4:fa:99:c4:89:f6:3a: 01:61:67:46:96:40:e7:24:55:37:67:49:4b:df:2f:0f:85:17: 7f:c1:47:31:bd:13:35:4d:13:2f:6a:8f:65:21:79:f2:89:fb: b6:93:b1:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBob04YcwqS4Poq7GkeywmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZmE0MWEwYTdhNjgxMDJiNTNhYjMxNzQyZGI2MTI0MmY3 NTkwOGMwHhcNMjYwMjA5MDkwMDQ0WhcNMjYwMjEwMDkwMDQ0WjAzMTEwLwYDVQQD EygyNmRlOTQ0YWY4MmU5NTMyY2QxN2JiNWQ3MmJlOTI2MWVlMDYxOGRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwqaYeWsTuCybYANr0ZRc8FKqoP5I p76w84uoAszPqgbzDJV0aIqRtcF5kcYRB08o8NXxRVFczNOuavj9k/0Gy7N0R+DS XCzRJAOqveDBV5V+G/KCe/ym4DrVhgMHf9IVw2KIIoQ4H3SL+jxGtQVzfitmwQEI 3O3/Wzu/dGpkMc+HHPjCLVLFzWzTXsiMEm5A25akHVsebT2LqFcgWEQM/GnHmMqn l5myjMMXsNWOJMG54CJ+tGoyXLuRvhp1YCh4KA8hkT2zIafjPjOQhRdPUJOLcG7E LFfX5/A+5fpeon/6HEwWj0K4BbA0DOHyT2/4xIBqoAilO1Gc81NFAolK4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCbelEr4LpUyzRe7XXK+kmHuBhjfMB8GA1UdIwQY MBaAFHL6QaCnpoECtTqzF0LbYSQvdZCMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3ZwQm9LZW1nUUsxT3JNWFF0dGhKQzkxa0l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hOTBkYjEtZDJmMy00OGQxLTkxOGMt ZmNlYmRjMGRmYzNmLzEvY3ZwQm9LZW1nUUsxT3JNWFF0dGhKQzkxa0l3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hOTBkYjEtZDJmMy00OGQxLTkxOGMtZmNlYmRjMGRmYzNm LzEvY3ZwQm9LZW1nUUsxT3JNWFF0dGhKQzkxa0l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZRg6alFc 8A0y0q3fU8mZJi30pv4QUjoDJqvFEtSOwwnTbqmJ7WpoP3NZ0xACCo8Jk4aqlOVr /b66yDsvVwY2WyOVtTHCnOoB0cLy61xGUtGDQzS3YMvBAIdF1IACJpGOheHYXFcB ixHBZJw04FfuuMyr4Oy+uz4ORNUEFOKgLO0PCakmly/8c2irdMmnVn5X01+6XYFM 5mB1Z3B62PVDl7r06A7jpe5Otlp4QNnmj4rDsxBjOX4e9Le3bcntWrbwvQQwDl8k NozzVVIUyNQgieXE+pnEifY6AWFnRpZA5yRVN2dJS98vD4UXf8FHMb0TNU0TL2qP ZSF58on7tpOxyg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:43 2026 by rpki-client