This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft File: CChUc8l4ylHOVGmqSu3KFkRb1lI.mft (raw, json) Hash identifier: PoWoTBsVgpUyTM5ZxunSfSo2JImHkQVFSxXaaixZEz8= Subject key identifier: 8A:71:85:CF:2C:BF:37:06:65:3D:A9:D2:4B:1C:CB:2E:1E:78:04:2D Authority key identifier: 08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52 Certificate issuer: /CN=08285473c978ca51ce5469aa4aedca16445bd652 Certificate serial: 019C41A1DB08550CA96592307BB7C542177E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 09:00:52 +0000 Manifest this update: Mon 09 Feb 2026 09:00:52 +0000 Manifest next update: Tue 10 Feb 2026 09:00:52 +0000 Files and hashes: 1: CChUc8l4ylHOVGmqSu3KFkRb1lI.crl (hash: F2llYrJFEdylY0RzX6YdVfxhsrANY5reRRAOzaxVao0=) 2: KYwuzPdQcxFtvMJ482Z-no0-rlI.roa (hash: WFv3oIQNO2UW+gImEV96V10XtC3ybgEz6IBrXZKDplc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:db:08:55:0c:a9:65:92:30:7b:b7:c5:42:17:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08285473c978ca51ce5469aa4aedca16445bd652 Validity Not Before: Feb 9 09:00:52 2026 GMT Not After : Feb 10 09:00:52 2026 GMT Subject: CN=8a7185cf2cbf3706653da9d24b1ccb2e1e78042d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a3:0b:59:8b:ac:a8:f3:da:11:52:82:6d:f8: 14:1d:79:81:3c:8e:aa:f5:c9:1b:ef:81:7c:84:7a: 8d:f8:eb:74:e0:84:4c:fe:20:90:00:bd:6e:e4:2f: 75:fc:aa:48:d2:23:ba:fb:34:14:e8:9b:df:c5:4f: ed:99:cf:64:9b:79:82:4d:51:06:dd:60:d3:60:b7: 04:68:cf:c5:99:6e:39:27:cd:d5:45:d1:00:aa:fe: 20:f9:bd:55:5b:ba:dc:bb:f9:5f:cb:46:3b:26:c8: 95:d8:d3:da:75:22:57:ad:f7:e7:02:ad:bc:09:e4: 64:3f:a5:84:38:c0:50:b9:0d:d3:29:68:d3:13:18: 83:a9:10:81:cf:5e:3c:68:55:af:ea:51:94:7f:a1: a9:fe:73:70:98:a4:f4:ca:3c:25:e3:9b:84:79:eb: 89:54:60:f8:92:1d:8e:20:76:b6:ab:1e:a9:fd:fc: 23:3e:a9:fb:37:7c:30:2d:16:a4:01:aa:02:f8:4d: 81:10:f6:c2:db:ff:d0:b7:4a:4c:33:9b:ef:2b:fd: 9c:58:56:71:7a:aa:19:e3:11:8e:99:e2:24:7a:39: 7e:15:d2:ba:3a:a3:0c:9e:b3:c0:d4:1c:06:00:a2: 4e:42:d7:d1:35:b5:c3:ae:a4:54:13:59:fb:a1:b2: fb:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:71:85:CF:2C:BF:37:06:65:3D:A9:D2:4B:1C:CB:2E:1E:78:04:2D X509v3 Authority Key Identifier: keyid:08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:2d:80:80:51:ed:a2:bc:e6:c7:10:3e:6c:85:50:63:ba:01: a3:09:56:46:c6:36:f1:37:13:d9:f0:2f:77:35:66:7e:45:df: 79:42:ba:57:26:fc:d2:bb:23:c5:99:ca:ae:01:21:e3:20:64: 6f:0e:b9:bf:0b:da:ff:1e:8a:55:4c:c4:93:2e:cf:66:a4:ee: 45:b3:4c:65:8c:61:e8:88:98:83:3a:00:85:79:d7:20:39:74: d1:b8:e1:fa:c9:d7:f2:61:b6:f7:3a:b8:d4:ef:42:63:3d:7d: 72:b8:27:62:3f:2a:ba:bd:aa:d2:81:12:e7:30:d8:18:d7:a1: 6e:93:a3:70:3f:4f:a2:51:c6:e3:35:bd:60:2f:9f:2b:1b:26: 6a:27:e5:ba:e4:9b:06:db:ee:15:2e:c6:71:1f:9e:06:bb:dc: a4:fe:b3:93:17:38:98:83:b1:a2:2a:62:4e:b1:49:9e:23:81: 5a:8b:76:76:54:da:0c:4f:85:0a:d5:32:68:06:20:5d:d0:14: f5:d7:c7:92:06:cd:b8:8a:9d:50:e4:60:7d:a1:52:f4:dc:1f: 22:50:42:26:e3:8f:73:1b:e4:98:88:11:52:9c:df:f3:a1:4e: 2a:ce:33:36:a5:ef:cd:30:cf:49:b3:ab:5c:e2:72:be:54:85: 48:df:53:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBodsIVQypZZIwe7fFQhd+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4Mjg1NDczYzk3OGNhNTFjZTU0NjlhYTRhZWRjYTE2NDQ1 YmQ2NTIwHhcNMjYwMjA5MDkwMDUyWhcNMjYwMjEwMDkwMDUyWjAzMTEwLwYDVQQD Eyg4YTcxODVjZjJjYmYzNzA2NjUzZGE5ZDI0YjFjY2IyZTFlNzgwNDJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA26MLWYusqPPaEVKCbfgUHXmBPI6q 9ckb74F8hHqN+Ot04IRM/iCQAL1u5C91/KpI0iO6+zQU6JvfxU/tmc9km3mCTVEG 3WDTYLcEaM/FmW45J83VRdEAqv4g+b1VW7rcu/lfy0Y7JsiV2NPadSJXrffnAq28 CeRkP6WEOMBQuQ3TKWjTExiDqRCBz148aFWv6lGUf6Gp/nNwmKT0yjwl45uEeeuJ VGD4kh2OIHa2qx6p/fwjPqn7N3wwLRakAaoC+E2BEPbC2//Qt0pMM5vvK/2cWFZx eqoZ4xGOmeIkejl+FdK6OqMMnrPA1BwGAKJOQtfRNbXDrqRUE1n7obL7TQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIpxhc8svzcGZT2p0kscyy4eeAQtMB8GA1UdIwQY MBaAFAgoVHPJeMpRzlRpqkrtyhZEW9ZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0NoVWM4bDR5bEhPVkdtcVN1M0tGa1JiMWxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9iZmI0ZjItODg3YS00MDEzLWE4Zjgt OGUzMDBlZmQxM2JjLzEvQ0NoVWM4bDR5bEhPVkdtcVN1M0tGa1JiMWxJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9iZmI0ZjItODg3YS00MDEzLWE4ZjgtOGUzMDBlZmQxM2Jj LzEvQ0NoVWM4bDR5bEhPVkdtcVN1M0tGa1JiMWxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdS2AgFHt orzmxxA+bIVQY7oBowlWRsY28TcT2fAvdzVmfkXfeUK6Vyb80rsjxZnKrgEh4yBk bw65vwva/x6KVUzEky7PZqTuRbNMZYxh6IiYgzoAhXnXIDl00bjh+snX8mG29zq4 1O9CYz19crgnYj8qur2q0oES5zDYGNehbpOjcD9PolHG4zW9YC+fKxsmaifluuSb BtvuFS7GcR+eBrvcpP6zkxc4mIOxoipiTrFJniOBWot2dlTaDE+FCtUyaAYgXdAU 9dfHkgbNuIqdUORgfaFS9NwfIlBCJuOPcxvkmIgRUpzf86FOKs4zNqXvzTDPSbOr XOJyvlSFSN9TEg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:44 2026 by rpki-client