This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json) Hash identifier: G6RI+fCkO7/pJEKg6dgHUPuLghJdgEQyAUO2szbcwfs= Subject key identifier: 73:E1:6E:1A:A1:A1:79:78:DE:19:C0:B1:3B:43:82:6E:CB:38:6B:64 Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3 Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3 Certificate serial: 019C41A1853A18409ADC84F1479CD304A9CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft Manifest number: 10E3 Signing time: Mon 09 Feb 2026 09:00:30 +0000 Manifest this update: Mon 09 Feb 2026 09:00:30 +0000 Manifest next update: Tue 10 Feb 2026 09:00:30 +0000 Files and hashes: 1: jWxX2tMKxMJdIFHBL77hb_xE7Lk.roa (hash: ZabLLdJJR9GqGbqwCz27PSZyCvB4TLOCdk9dPP8Hc2Q=) 2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: 22Bmp53B5YfXFeIxLroFpEyI5q7MiwRrBxycSw8doqE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:85:3a:18:40:9a:dc:84:f1:47:9c:d3:04:a9:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3 Validity Not Before: Feb 9 09:00:30 2026 GMT Not After : Feb 10 09:00:30 2026 GMT Subject: CN=73e16e1aa1a17978de19c0b13b43826ecb386b64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0f:44:0a:57:3e:14:15:5b:d4:f0:8d:05:b1: ce:06:c5:13:31:a8:9d:5b:85:9c:b5:b7:1e:3d:cd: 45:aa:58:04:81:6d:d0:ca:86:e8:37:48:89:53:8d: b8:1e:48:71:f6:d8:0d:fd:bc:3a:15:d4:7a:e5:13: cf:54:b4:59:b7:1b:ce:1d:74:f6:d3:e1:f7:48:12: 4a:79:0a:57:ce:97:6f:d5:c4:81:15:9f:52:91:8d: 66:74:44:bd:16:be:36:d9:8e:88:ce:cc:5f:76:0c: 40:83:fd:28:27:d5:0d:21:8d:a1:b2:95:42:7b:42: 11:c4:90:d6:bc:cb:13:49:ff:0d:61:09:0f:dc:dc: 2a:bc:ad:18:d3:42:56:9d:13:14:31:b8:32:5b:a2: 6a:ca:7c:19:3e:34:fb:0c:e0:1a:db:13:be:77:3d: 4e:10:64:75:84:56:27:7a:e1:9c:33:c9:3a:d1:4e: d9:00:31:e0:49:89:70:3b:56:1e:74:da:66:fa:79: 93:ce:a9:72:2d:86:6b:b1:c9:27:1b:84:4c:ea:0d: a0:bd:ac:46:7e:29:27:c3:d5:96:99:2e:b9:9b:da: ce:33:7b:a0:9f:81:19:fb:71:5f:a7:07:6c:0b:f1: 6a:e9:a8:8a:4a:e2:85:54:40:22:7f:62:de:a2:3b: fe:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E1:6E:1A:A1:A1:79:78:DE:19:C0:B1:3B:43:82:6E:CB:38:6B:64 X509v3 Authority Key Identifier: keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:7b:05:a5:b3:45:ac:80:73:3b:b8:5e:fa:a7:f8:ab:1c:51: e5:0e:b2:2d:7d:51:fd:0b:0a:f2:42:11:70:f4:d5:91:2f:4b: e6:4f:19:ec:6b:78:e0:2f:6d:ff:2d:97:61:6a:b3:0c:29:b2: 11:55:25:b5:a5:33:29:f9:55:64:e0:f0:fa:d7:2a:f8:60:bb: 31:08:74:8a:27:73:a4:ad:8d:75:ba:6c:6d:9c:43:39:f2:7d: 4c:a6:4e:2d:05:92:ad:38:14:85:95:6e:64:e9:58:d1:02:a9: 67:66:50:24:a2:2a:69:45:5f:52:bf:6d:d8:8c:86:9b:d3:8d: ae:ec:f3:14:b7:a8:62:b6:ad:cd:f9:f5:db:e5:08:fd:7c:26: eb:e5:fc:0b:97:6d:ce:c8:1e:22:6e:1a:76:12:d1:3d:80:30: bd:e9:18:92:95:ad:59:32:e1:a1:19:27:44:0a:85:95:6f:ed: 19:67:01:2e:7b:cc:22:86:db:e1:33:50:2f:71:2d:22:87:3a: 86:29:ab:99:93:40:28:74:24:50:d9:05:4d:d1:eb:ac:b4:da: 9a:e1:f4:f6:69:0a:44:5a:d9:c2:0c:34:36:0c:cd:cc:2f:a3: 96:05:a7:93:8b:ad:92:91:e4:dc:64:7b:95:c0:de:03:ca:71: 81:e2:28:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoYU6GECa3ITxR5zTBKnPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2OTFkMDBiZGI2MjZhZTU3MzA3ZDVjZDRlOGFkZGQ5NDc1 NjgwYjMwHhcNMjYwMjA5MDkwMDMwWhcNMjYwMjEwMDkwMDMwWjAzMTEwLwYDVQQD Eyg3M2UxNmUxYWExYTE3OTc4ZGUxOWMwYjEzYjQzODI2ZWNiMzg2YjY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2w9EClc+FBVb1PCNBbHOBsUTMaid W4WctbcePc1FqlgEgW3QyoboN0iJU424Hkhx9tgN/bw6FdR65RPPVLRZtxvOHXT2 0+H3SBJKeQpXzpdv1cSBFZ9SkY1mdES9Fr422Y6IzsxfdgxAg/0oJ9UNIY2hspVC e0IRxJDWvMsTSf8NYQkP3NwqvK0Y00JWnRMUMbgyW6JqynwZPjT7DOAa2xO+dz1O EGR1hFYneuGcM8k60U7ZADHgSYlwO1YedNpm+nmTzqlyLYZrscknG4RM6g2gvaxG fiknw9WWmS65m9rOM3ugn4EZ+3FfpwdsC/Fq6aiKSuKFVEAif2Leojv+kwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHPhbhqhoXl43hnAsTtDgm7LOGtkMB8GA1UdIwQY MBaAFLaR0AvbYmrlcwfVzU6K3dlHVoCzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8zZTNkMDgtZTRjNS00ZjNkLWJlMDEt NDUwYWQ1NWQzMjVhLzEvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC8zZTNkMDgtZTRjNS00ZjNkLWJlMDEtNDUwYWQ1NWQzMjVh LzEvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgnsFpbNF rIBzO7he+qf4qxxR5Q6yLX1R/QsK8kIRcPTVkS9L5k8Z7Gt44C9t/y2XYWqzDCmy EVUltaUzKflVZODw+tcq+GC7MQh0iidzpK2NdbpsbZxDOfJ9TKZOLQWSrTgUhZVu ZOlY0QKpZ2ZQJKIqaUVfUr9t2IyGm9ONruzzFLeoYratzfn12+UI/Xwm6+X8C5dt zsgeIm4adhLRPYAwvekYkpWtWTLhoRknRAqFlW/tGWcBLnvMIobb4TNQL3EtIoc6 himrmZNAKHQkUNkFTdHrrLTamuH09mkKRFrZwgw0NgzNzC+jlgWnk4utkpHk3GR7 lcDeA8pxgeIorQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:02 2026 by rpki-client