This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft File: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft (raw, json) Hash identifier: 87ysJNMdbwVTbLRlVBCYdiAEuwuclPty+4P8n6/sNlg= Subject key identifier: 67:23:57:C6:3D:F5:47:0D:2C:C9:E7:DB:BF:2D:FA:41:13:7A:12:FE Authority key identifier: D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51 Certificate issuer: /CN=d425900312ff3bda4d2f896f64df65646fd9c251 Certificate serial: 019C4434920AF3D0517BECF3CA7824D60783 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 21:00:21 +0000 Manifest this update: Mon 09 Feb 2026 21:00:21 +0000 Manifest next update: Tue 10 Feb 2026 21:00:21 +0000 Files and hashes: 1: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl (hash: DPduEvOqZ1yq9VtxLRhIHtUL8YL2ySxsSzdwoE5Ez4w=) 2: 1Kg_Ulab4sB3FtCcoo1l5PNO7rw.roa (hash: c8c2ZCfFSRIW6FylRlfxyknjH4TvpagO5fNnP9Ygg7g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:34:92:0a:f3:d0:51:7b:ec:f3:ca:78:24:d6:07:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d425900312ff3bda4d2f896f64df65646fd9c251 Validity Not Before: Feb 9 21:00:21 2026 GMT Not After : Feb 10 21:00:21 2026 GMT Subject: CN=672357c63df5470d2cc9e7dbbf2dfa41137a12fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:48:70:3b:42:fc:8a:77:ac:bd:4d:15:f2:e3: c4:c7:1a:f2:fc:e2:b0:67:29:49:ea:38:c3:5b:42: c7:a1:e2:e0:ed:66:9f:0e:32:75:4c:a3:ab:a1:80: bd:a8:83:19:49:16:73:8f:fd:be:f0:eb:0a:38:e9: 1d:fe:da:31:32:af:22:19:a4:2d:98:df:74:9d:9b: 0c:33:51:1b:13:ef:5b:a1:a9:66:36:6f:29:d2:f7: 49:e5:52:42:05:4e:d6:08:33:83:a4:2c:4a:b4:1b: f1:65:77:7e:9d:81:4f:1a:24:08:80:e6:e2:d6:b0: 30:86:80:92:2e:87:5e:9e:35:9c:6a:a1:74:d5:ba: ac:9c:c8:dd:59:1f:2e:b6:f1:bb:12:d8:26:92:9f: d7:8d:65:57:97:ff:56:28:22:34:a5:5b:ef:18:81: 82:93:71:9e:78:2f:4e:c5:33:10:79:d3:0d:c5:a7: cd:f2:08:30:6f:5b:ab:99:07:f5:1e:e4:b7:32:00: fc:91:23:93:e4:13:3d:f8:a4:87:ca:b1:cc:da:3f: 0b:f6:91:39:c8:7b:82:3e:80:23:ee:f9:ab:2d:c7: f5:f3:b5:5c:87:d7:59:30:c4:79:7a:6b:1b:21:c8: 59:fc:7a:58:92:d9:20:b4:9d:9e:cb:bc:9e:df:28: fb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:23:57:C6:3D:F5:47:0D:2C:C9:E7:DB:BF:2D:FA:41:13:7A:12:FE X509v3 Authority Key Identifier: keyid:D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:0e:bd:e4:25:14:a5:41:2c:e4:cb:98:89:6f:a4:d0:42:11: 96:07:e0:6e:0f:69:a1:d3:99:d8:15:37:f7:73:27:e6:5c:ff: 4d:76:09:ba:3d:4d:ad:36:5e:33:f2:f1:0e:5f:bb:32:15:9b: c6:18:b1:e7:86:1b:81:fa:99:b2:17:d4:5d:5b:9e:54:13:68: 09:a3:ce:82:ca:a1:94:a5:35:c7:27:be:4e:37:44:91:c8:5d: c1:0f:e7:ac:a3:a5:99:ad:1b:ab:5e:fa:be:47:00:1c:00:b0: 01:25:f3:f8:23:c7:cd:ce:e0:da:b0:1d:b0:7f:e1:a6:63:0b: 53:78:2d:6c:76:fb:1e:67:8a:d1:86:04:15:4e:5b:26:d9:57: 4a:7d:0e:54:ee:71:4e:06:92:ae:f1:43:42:11:23:ea:6c:fc: 0b:15:5b:cb:cd:75:69:77:6f:9a:47:14:45:4e:15:a9:bc:37: 66:1f:9c:80:a6:45:8e:ae:ea:4f:1a:ed:fb:3e:96:68:81:1f: 12:27:3a:8f:fb:cc:0a:5a:26:93:94:a1:c6:1c:de:f7:65:a5: 6d:68:e8:7c:03:62:1a:aa:ae:2f:cd:18:5b:c3:86:9e:6b:e5: 22:b5:b3:8c:fa:98:e7:bf:ce:a0:7e:22:c9:f1:41:2e:d1:ec: 1d:c2:16:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENJIK89BRe+zzyngk1geDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MjU5MDAzMTJmZjNiZGE0ZDJmODk2ZjY0ZGY2NTY0NmZk OWMyNTEwHhcNMjYwMjA5MjEwMDIxWhcNMjYwMjEwMjEwMDIxWjAzMTEwLwYDVQQD Eyg2NzIzNTdjNjNkZjU0NzBkMmNjOWU3ZGJiZjJkZmE0MTEzN2ExMmZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuUhwO0L8inesvU0V8uPExxry/OKw ZylJ6jjDW0LHoeLg7WafDjJ1TKOroYC9qIMZSRZzj/2+8OsKOOkd/toxMq8iGaQt mN90nZsMM1EbE+9boalmNm8p0vdJ5VJCBU7WCDODpCxKtBvxZXd+nYFPGiQIgObi 1rAwhoCSLodenjWcaqF01bqsnMjdWR8utvG7Etgmkp/XjWVXl/9WKCI0pVvvGIGC k3GeeC9OxTMQedMNxafN8ggwb1urmQf1HuS3MgD8kSOT5BM9+KSHyrHM2j8L9pE5 yHuCPoAj7vmrLcf187Vch9dZMMR5emsbIchZ/HpYktkgtJ2ey7ye3yj7YQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGcjV8Y99UcNLMnn278t+kETehL+MB8GA1UdIwQY MBaAFNQlkAMS/zvaTS+Jb2TfZWRv2cJRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUNXUUF4TF9POXBOTDRsdlpOOWxaR19ad2xFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy81YmY4MjYtOTIxZS00NGY1LWFmMzMt Njc2YjQyODkyNWFiLzEvMUNXUUF4TF9POXBOTDRsdlpOOWxaR19ad2xFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy81YmY4MjYtOTIxZS00NGY1LWFmMzMtNjc2YjQyODkyNWFi LzEvMUNXUUF4TF9POXBOTDRsdlpOOWxaR19ad2xFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHg695CUU pUEs5MuYiW+k0EIRlgfgbg9podOZ2BU393Mn5lz/TXYJuj1NrTZeM/LxDl+7MhWb xhix54YbgfqZshfUXVueVBNoCaPOgsqhlKU1xye+TjdEkchdwQ/nrKOlma0bq176 vkcAHACwASXz+CPHzc7g2rAdsH/hpmMLU3gtbHb7HmeK0YYEFU5bJtlXSn0OVO5x TgaSrvFDQhEj6mz8CxVby811aXdvmkcURU4Vqbw3Zh+cgKZFjq7qTxrt+z6WaIEf Eic6j/vMClomk5Shxhze92WlbWjofANiGqquL80YW8OGnmvlIrWzjPqY57/OoH4i yfFBLtHsHcIW3Q== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:33 2026 by rpki-client