This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/780ef6-53d8-4754-a8e3-c2a6ae0bf6be/1/SO3JpU4ccjtWqu330BVAxbNr2rY.mft File: SO3JpU4ccjtWqu330BVAxbNr2rY.mft (raw, json) Hash identifier: aDEbIGuV2K/Hm4PuFtTlxiBG7CzgI1IiRKalGpJ7efI= Subject key identifier: 9F:09:4B:70:C7:38:4F:B1:95:7B:52:C3:DE:57:6D:FF:23:BB:A6:73 Authority key identifier: 48:ED:C9:A5:4E:1C:72:3B:56:AA:ED:F7:D0:15:40:C5:B3:6B:DA:B6 Certificate issuer: /CN=48edc9a54e1c723b56aaedf7d01540c5b36bdab6 Certificate serial: 019C41D8DFCF1F56E5EA4DF924F43218811B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SO3JpU4ccjtWqu330BVAxbNr2rY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/780ef6-53d8-4754-a8e3-c2a6ae0bf6be/1/SO3JpU4ccjtWqu330BVAxbNr2rY.mft Manifest number: 0203 Signing time: Mon 09 Feb 2026 10:00:57 +0000 Manifest this update: Mon 09 Feb 2026 10:00:57 +0000 Manifest next update: Tue 10 Feb 2026 10:00:57 +0000 Files and hashes: 1: SO3JpU4ccjtWqu330BVAxbNr2rY.crl (hash: xe68FXbnP9eWkYgDpKcCHDfvYnAE6mLfTbFxHIRLxYo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/780ef6-53d8-4754-a8e3-c2a6ae0bf6be/1/SO3JpU4ccjtWqu330BVAxbNr2rY.crl rsync://rpki.ripe.net/repository/DEFAULT/05/780ef6-53d8-4754-a8e3-c2a6ae0bf6be/1/SO3JpU4ccjtWqu330BVAxbNr2rY.mft rsync://rpki.ripe.net/repository/DEFAULT/SO3JpU4ccjtWqu330BVAxbNr2rY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:df:cf:1f:56:e5:ea:4d:f9:24:f4:32:18:81:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48edc9a54e1c723b56aaedf7d01540c5b36bdab6 Validity Not Before: Feb 9 10:00:57 2026 GMT Not After : Feb 10 10:00:57 2026 GMT Subject: CN=9f094b70c7384fb1957b52c3de576dff23bba673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:17:18:32:40:8c:ac:67:c2:dd:c2:32:10:a1: 21:b2:eb:4a:a9:22:7c:15:4d:21:a2:9b:14:34:bb: be:7d:7f:84:c4:2f:68:8f:2b:ba:ac:29:25:c4:d9: ee:a7:60:ea:64:19:09:9a:f3:46:5b:97:67:cf:1f: 63:8b:ce:2a:a4:3c:68:a2:c0:ac:38:66:ce:55:58: bb:d5:3e:4c:41:d5:16:1c:61:5f:f7:ee:bb:27:42: c2:79:9a:b7:cd:38:c7:3d:9e:6b:ca:79:75:7a:a2: 3d:2f:7e:5a:ce:0e:6b:1d:cc:64:e4:90:df:59:a8: 00:4c:06:d5:cd:73:96:45:64:7e:3b:e1:a0:cb:ee: a3:d9:38:d9:b0:89:38:c9:e8:1d:1d:bb:35:10:7d: 94:ad:e8:3f:64:16:0c:c6:4d:2a:f8:aa:67:07:ab: f6:77:80:5d:5f:dc:5f:f2:a2:ba:11:f3:01:de:6a: 31:de:4b:20:6c:1c:0c:7d:74:89:97:d6:e1:11:8a: 24:d9:b4:3f:68:b1:5e:11:5c:e3:a9:f3:16:8d:fb: a3:f2:6f:3e:99:10:52:29:cf:15:8f:bb:ed:d2:61: b8:f7:16:86:44:52:e7:db:e8:78:a1:b5:98:bd:d0: 97:bd:c3:00:db:8c:0e:df:52:c8:9e:d8:d5:95:cb: 5e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:09:4B:70:C7:38:4F:B1:95:7B:52:C3:DE:57:6D:FF:23:BB:A6:73 X509v3 Authority Key Identifier: keyid:48:ED:C9:A5:4E:1C:72:3B:56:AA:ED:F7:D0:15:40:C5:B3:6B:DA:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SO3JpU4ccjtWqu330BVAxbNr2rY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/780ef6-53d8-4754-a8e3-c2a6ae0bf6be/1/SO3JpU4ccjtWqu330BVAxbNr2rY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/780ef6-53d8-4754-a8e3-c2a6ae0bf6be/1/SO3JpU4ccjtWqu330BVAxbNr2rY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:d1:5f:21:ed:cd:af:29:20:83:e3:e2:43:df:76:1a:d9:aa: 63:7b:24:94:23:90:5d:9b:1a:6c:21:a4:38:89:15:57:92:32: 2f:e9:75:d1:5b:5f:17:5f:86:05:f9:27:2f:76:dc:6a:61:75: 4e:15:08:b8:e8:14:6e:c2:69:33:88:b7:e0:e5:ff:e3:d8:4f: 0c:26:2d:f5:dd:31:a3:d8:8e:9e:3a:bc:34:03:ff:11:f9:8f: 07:44:a3:23:ca:47:c3:ae:d6:5f:71:04:2e:e5:43:98:87:09: 79:c8:33:f9:a2:f9:2d:21:20:8d:6d:d4:c1:9c:fa:a2:50:bd: a4:82:69:4d:16:c7:53:9b:e9:e1:d8:2c:3c:2c:41:70:05:31: c4:fc:b9:01:1d:e0:03:d1:6a:c8:f4:20:74:f0:03:3c:39:60: a8:a1:95:21:97:9f:a7:0f:ae:96:49:c4:0b:0a:45:22:ff:75: 7c:88:8a:ef:17:7c:c6:39:f8:c9:f9:59:74:59:c6:63:74:c2: fe:ec:cb:f4:ad:ea:dd:b9:c6:cc:9e:b7:a6:4f:97:9f:88:d3: e2:ca:96:81:d9:02:9a:e5:9e:c9:af:e4:8a:4f:83:7d:ad:7f: 9c:3e:f4:d6:98:01:61:d2:3b:d6:90:ce:51:0b:40:1b:6c:5d: a9:de:b4:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2N/PH1bl6k35JPQyGIEbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4ZWRjOWE1NGUxYzcyM2I1NmFhZWRmN2QwMTU0MGM1YjM2 YmRhYjYwHhcNMjYwMjA5MTAwMDU3WhcNMjYwMjEwMTAwMDU3WjAzMTEwLwYDVQQD Eyg5ZjA5NGI3MGM3Mzg0ZmIxOTU3YjUyYzNkZTU3NmRmZjIzYmJhNjczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhcYMkCMrGfC3cIyEKEhsutKqSJ8 FU0hopsUNLu+fX+ExC9ojyu6rCklxNnup2DqZBkJmvNGW5dnzx9ji84qpDxoosCs OGbOVVi71T5MQdUWHGFf9+67J0LCeZq3zTjHPZ5rynl1eqI9L35azg5rHcxk5JDf WagATAbVzXOWRWR+O+Ggy+6j2TjZsIk4yegdHbs1EH2Ureg/ZBYMxk0q+KpnB6v2 d4BdX9xf8qK6EfMB3mox3ksgbBwMfXSJl9bhEYok2bQ/aLFeEVzjqfMWjfuj8m8+ mRBSKc8Vj7vt0mG49xaGRFLn2+h4obWYvdCXvcMA24wO31LIntjVlcte8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ8JS3DHOE+xlXtSw95Xbf8ju6ZzMB8GA1UdIwQY MBaAFEjtyaVOHHI7Vqrt99AVQMWza9q2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU08zSnBVNGNjanRXcXUzMzBCVkF4Yk5yMnJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS83ODBlZjYtNTNkOC00NzU0LWE4ZTMt YzJhNmFlMGJmNmJlLzEvU08zSnBVNGNjanRXcXUzMzBCVkF4Yk5yMnJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS83ODBlZjYtNTNkOC00NzU0LWE4ZTMtYzJhNmFlMGJmNmJl LzEvU08zSnBVNGNjanRXcXUzMzBCVkF4Yk5yMnJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhtFfIe3N rykgg+PiQ992GtmqY3sklCOQXZsabCGkOIkVV5IyL+l10VtfF1+GBfknL3bcamF1 ThUIuOgUbsJpM4i34OX/49hPDCYt9d0xo9iOnjq8NAP/EfmPB0SjI8pHw67WX3EE LuVDmIcJecgz+aL5LSEgjW3UwZz6olC9pIJpTRbHU5vp4dgsPCxBcAUxxPy5AR3g A9FqyPQgdPADPDlgqKGVIZefpw+ulknECwpFIv91fIiK7xd8xjn4yflZdFnGY3TC /uzL9K3q3bnGzJ63pk+Xn4jT4sqWgdkCmuWeya/kik+Dfa1/nD701pgBYdI71pDO UQtAG2xdqd60Rw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:25 2026 by rpki-client