This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json) Hash identifier: MpIZw+HiwfKvT0ug00vjPBsmUM7USzSqOhgaqi0N0bY= Subject key identifier: D4:E2:3D:DC:AA:96:0C:7F:55:61:09:67:62:EF:2F:55:A8:AC:49:94 Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a Certificate serial: 019C446BDD7F670EAD6003728A996EDEE3C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft Manifest number: 11FC Signing time: Mon 09 Feb 2026 22:00:45 +0000 Manifest this update: Mon 09 Feb 2026 22:00:45 +0000 Manifest next update: Tue 10 Feb 2026 22:00:45 +0000 Files and hashes: 1: 0RKDNEhHY3U7JF4bDR-bWWyiJjU.roa (hash: 49fHIUMiegzFY7JDd1vv16iA2bhJSfLTshnAhqZJFTQ=) 2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: LECOh+md/fFFx19oRULcj/lyDKrqnLDeeDO6CGnROW8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:dd:7f:67:0e:ad:60:03:72:8a:99:6e:de:e3:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a Validity Not Before: Feb 9 22:00:45 2026 GMT Not After : Feb 10 22:00:45 2026 GMT Subject: CN=d4e23ddcaa960c7f5561096762ef2f55a8ac4994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:80:bd:8a:b8:e0:60:0f:10:6d:db:34:10:51: 2a:6b:8b:3f:ef:4f:a4:a9:23:15:24:b9:0f:e0:ef: 73:f9:de:46:0b:96:46:f3:0a:b3:64:43:ff:9c:ac: 1f:f0:96:f5:28:a9:8b:2f:37:64:da:06:ea:b8:d5: 34:e5:53:30:ac:d1:04:7a:de:d7:f1:78:98:93:23: 2a:3b:b8:15:9e:b7:32:b3:06:03:0e:4e:3e:72:b2: bb:2f:f5:59:6a:5f:79:9c:5f:88:2c:e5:aa:2f:53: 54:41:7a:ce:ab:08:ad:b1:4b:3b:d6:e2:73:f2:a3: b7:ff:6b:0f:6d:8a:05:44:94:33:d7:cf:d0:72:51: 34:e7:4e:29:09:a5:2e:86:ca:5e:a9:46:3a:5f:20: 8c:c9:5d:7f:79:57:5e:27:b8:b3:d5:7c:c2:62:50: d6:b3:01:15:36:cb:7e:61:41:14:04:81:e2:5b:cc: 8c:0c:9c:10:ce:db:e4:4a:27:6a:f3:f6:a3:82:19: cc:e1:75:71:93:a7:ba:48:38:8e:68:f4:61:7b:74: 52:b8:ba:3f:07:7e:31:e7:91:02:cd:4d:d3:c4:70: 11:c4:a5:27:64:f2:5f:a3:43:d3:c9:a8:c5:cc:22: 2d:51:cc:57:eb:ce:c1:a2:5b:60:c6:ce:bc:78:8f: 36:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E2:3D:DC:AA:96:0C:7F:55:61:09:67:62:EF:2F:55:A8:AC:49:94 X509v3 Authority Key Identifier: keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:b2:2b:db:4b:56:3c:15:1c:76:08:c0:d8:ff:c7:ab:ff:bc: 92:3a:dd:53:d1:a3:c0:cb:9c:9e:4d:c7:4f:e2:2e:1e:29:97: 47:66:c8:5d:11:09:32:54:b0:9f:0a:05:0f:fc:d4:0f:5c:99: 42:9d:14:7c:57:b2:a4:3f:94:87:94:95:e9:37:aa:22:f4:7d: b1:d1:c9:59:05:e5:70:44:34:08:66:e5:a3:49:63:cc:6d:0a: f7:f4:78:db:0d:8c:b0:07:76:5c:7c:3e:04:40:aa:d5:3b:17: db:4b:de:dc:ae:41:99:3e:d6:48:a9:bf:ec:60:e3:c7:5f:f7: d2:ae:34:fe:9f:40:e0:1c:e9:a3:4a:04:9d:bd:52:e6:19:d7: b0:20:6b:59:5b:df:e1:b0:2c:c8:5e:b3:4a:cf:83:e0:34:27: c7:ac:3c:66:e0:dc:b7:ed:11:b5:eb:66:b2:3b:af:85:31:21: 98:79:c9:5e:07:8d:42:dd:54:39:d3:6b:51:86:d5:09:7c:27: 31:71:47:d7:9c:db:b4:90:ad:52:e0:8a:37:c4:8d:3b:ae:5b: 58:8b:4e:9d:e7:4f:3b:f5:fc:52:3b:93:da:d3:b5:70:70:e3: 29:8b:2e:1d:92:87:e4:64:b5:d5:9e:86:5e:3a:7a:04:8f:f4: 92:d6:37:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa91/Zw6tYANyiplu3uPGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0MzRlZGJlMWI0MTAxYjI4YWJlMjMyZjJiY2YyYTAxNDg5 NzgyNWEwHhcNMjYwMjA5MjIwMDQ1WhcNMjYwMjEwMjIwMDQ1WjAzMTEwLwYDVQQD EyhkNGUyM2RkY2FhOTYwYzdmNTU2MTA5Njc2MmVmMmY1NWE4YWM0OTk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnoC9irjgYA8Qbds0EFEqa4s/70+k qSMVJLkP4O9z+d5GC5ZG8wqzZEP/nKwf8Jb1KKmLLzdk2gbquNU05VMwrNEEet7X 8XiYkyMqO7gVnrcyswYDDk4+crK7L/VZal95nF+ILOWqL1NUQXrOqwitsUs71uJz 8qO3/2sPbYoFRJQz18/QclE0504pCaUuhspeqUY6XyCMyV1/eVdeJ7iz1XzCYlDW swEVNst+YUEUBIHiW8yMDJwQztvkSidq8/ajghnM4XVxk6e6SDiOaPRhe3RSuLo/ B34x55ECzU3TxHARxKUnZPJfo0PTyajFzCItUcxX687Boltgxs68eI82NwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNTiPdyqlgx/VWEJZ2LvL1WorEmUMB8GA1UdIwQY MBaAFEQ07b4bQQGyir4jLyvPKgFIl4JaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDkt MTBjYWY1NDk4NmZmLzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC82MzlmNjQtMWRmMS00NmQ1LWFkZDktMTBjYWY1NDk4NmZm LzEvUkRUdHZodEJBYktLdmlNdks4OHFBVWlYZ2xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS7Ir20tW PBUcdgjA2P/Hq/+8kjrdU9GjwMucnk3HT+IuHimXR2bIXREJMlSwnwoFD/zUD1yZ Qp0UfFeypD+Uh5SV6TeqIvR9sdHJWQXlcEQ0CGblo0ljzG0K9/R42w2MsAd2XHw+ BECq1TsX20ve3K5BmT7WSKm/7GDjx1/30q40/p9A4Bzpo0oEnb1S5hnXsCBrWVvf 4bAsyF6zSs+D4DQnx6w8ZuDct+0RtetmsjuvhTEhmHnJXgeNQt1UOdNrUYbVCXwn MXFH15zbtJCtUuCKN8SNO65bWItOnedPO/X8UjuT2tO1cHDjKYsuHZKH5GS11Z6G Xjp6BI/0ktY3sA== -----END CERTIFICATE-----Generated at Tue Feb 10 07:15:42 2026 by rpki-client