This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.mft File: mTFQMIBh3NrF2EZc-ITGejuxkVk.mft (raw, json) Hash identifier: wl1dgwIs3K0stLGDRWZ2KKbOLItevBAFhsA2qgo0tC0= Subject key identifier: 3D:B4:D2:C2:FE:24:CA:43:5D:43:DA:B5:D5:13:D7:12:AE:53:F5:06 Authority key identifier: 99:31:50:30:80:61:DC:DA:C5:D8:46:5C:F8:84:C6:7A:3B:B1:91:59 Certificate issuer: /CN=993150308061dcdac5d8465cf884c67a3bb19159 Certificate serial: 019C446BCF8EECFEC73A03F76F3537D69CA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mTFQMIBh3NrF2EZc-ITGejuxkVk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.mft Manifest number: 0905 Signing time: Mon 09 Feb 2026 22:00:41 +0000 Manifest this update: Mon 09 Feb 2026 22:00:41 +0000 Manifest next update: Tue 10 Feb 2026 22:00:41 +0000 Files and hashes: 1: mTFQMIBh3NrF2EZc-ITGejuxkVk.crl (hash: ZE7zFjpLKIIIc3IBAXezi49xjzoYrTmkbSroE4fdkEM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.crl rsync://rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.mft rsync://rpki.ripe.net/repository/DEFAULT/mTFQMIBh3NrF2EZc-ITGejuxkVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:cf:8e:ec:fe:c7:3a:03:f7:6f:35:37:d6:9c:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993150308061dcdac5d8465cf884c67a3bb19159 Validity Not Before: Feb 9 22:00:41 2026 GMT Not After : Feb 10 22:00:41 2026 GMT Subject: CN=3db4d2c2fe24ca435d43dab5d513d712ae53f506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c9:f1:e9:c7:c6:c3:fe:b4:64:52:c4:a6:b6: e0:c1:5c:54:96:9e:5c:cc:55:9c:b1:26:3b:58:20: 3e:68:46:76:55:98:81:6a:2b:f2:28:86:60:be:e7: 9b:75:23:5e:2b:32:f9:61:5d:37:21:2e:25:13:26: 7f:21:82:f3:18:23:15:7e:62:a1:c7:fd:d0:3b:26: 21:7a:f9:f1:7c:ef:e3:32:1b:9c:54:66:85:c1:3b: f1:00:e6:36:9d:05:7a:82:6a:85:5f:ba:ca:9d:45: 6f:a4:38:5b:dd:07:36:35:09:31:6e:3c:a8:95:43: 7c:77:ff:99:2e:b1:73:82:a9:c8:fd:a8:5c:3d:fc: 6e:07:fa:62:6b:e3:6a:92:0c:66:25:6b:88:68:eb: 36:d2:05:e9:cd:ad:c2:d5:86:f3:5d:db:9b:50:02: 09:73:d4:2b:ef:ab:38:34:b2:09:b9:90:ad:85:c6: 78:f2:d4:99:cc:0e:a3:cf:4b:47:f3:8e:e7:c6:fa: f0:0c:44:86:ff:a4:4b:2d:26:27:ba:4e:94:70:cc: 05:58:bb:b7:be:f2:4c:11:81:b8:d3:19:3f:db:62: db:59:dd:7d:af:eb:6c:d3:af:32:2b:cb:8b:da:48: 63:06:83:7a:c1:24:f8:aa:98:d5:e8:3a:82:c3:1e: 6d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B4:D2:C2:FE:24:CA:43:5D:43:DA:B5:D5:13:D7:12:AE:53:F5:06 X509v3 Authority Key Identifier: keyid:99:31:50:30:80:61:DC:DA:C5:D8:46:5C:F8:84:C6:7A:3B:B1:91:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mTFQMIBh3NrF2EZc-ITGejuxkVk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:9e:18:6d:96:01:64:70:de:19:e1:7b:c2:db:2b:48:5a:b2: c1:6f:73:7a:0f:0c:89:9e:20:73:e7:bb:f2:b9:fd:3b:7a:87: 8d:2d:0e:bb:d7:48:5a:a9:48:3a:bc:22:3c:64:d8:f6:94:5b: 15:7e:00:c5:e6:d8:d9:8a:90:7b:32:79:a9:29:c9:42:95:f2: 6b:9d:2c:5c:53:1b:50:fc:d7:1e:86:e0:ce:11:80:32:d7:ba: 43:79:df:1a:91:2a:af:bb:76:98:43:cc:fd:e0:33:8d:38:cf: 1a:ec:44:37:9a:02:5b:0c:48:da:e2:ed:d0:05:de:ea:2d:80: f7:0f:01:1f:27:f0:83:e9:dd:ae:28:55:fb:af:84:50:38:49: 4a:c8:f1:85:26:55:26:54:92:7e:6c:6b:c7:ae:03:ac:ca:03: 7c:5f:de:60:1b:ca:b6:a7:af:92:91:2b:e3:05:54:71:5e:39: d7:b7:4f:37:f3:e1:a6:63:88:9b:0b:ea:d3:a3:29:f4:b6:47: 80:73:c2:cb:a4:15:1c:e1:f3:f9:2f:f9:63:6c:a8:b4:c1:57: 12:bd:a6:c9:d7:35:7b:ad:24:d9:a0:d2:0e:73:7d:a8:d7:cd: 33:3c:9b:49:4d:27:5b:72:d1:f9:9d:58:29:03:c1:39:0c:e2: a5:af:57:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa8+O7P7HOgP3bzU31pyhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5MzE1MDMwODA2MWRjZGFjNWQ4NDY1Y2Y4ODRjNjdhM2Ji MTkxNTkwHhcNMjYwMjA5MjIwMDQxWhcNMjYwMjEwMjIwMDQxWjAzMTEwLwYDVQQD EygzZGI0ZDJjMmZlMjRjYTQzNWQ0M2RhYjVkNTEzZDcxMmFlNTNmNTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsnx6cfGw/60ZFLEprbgwVxUlp5c zFWcsSY7WCA+aEZ2VZiBaivyKIZgvuebdSNeKzL5YV03IS4lEyZ/IYLzGCMVfmKh x/3QOyYhevnxfO/jMhucVGaFwTvxAOY2nQV6gmqFX7rKnUVvpDhb3Qc2NQkxbjyo lUN8d/+ZLrFzgqnI/ahcPfxuB/pia+NqkgxmJWuIaOs20gXpza3C1YbzXdubUAIJ c9Qr76s4NLIJuZCthcZ48tSZzA6jz0tH847nxvrwDESG/6RLLSYnuk6UcMwFWLu3 vvJMEYG40xk/22LbWd19r+ts068yK8uL2khjBoN6wST4qpjV6DqCwx5t1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD200sL+JMpDXUPatdUT1xKuU/UGMB8GA1UdIwQY MBaAFJkxUDCAYdzaxdhGXPiExno7sZFZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVRGUU1JQmgzTnJGMkVaYy1JVEdlanV4a1ZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS84YTg0NWEtMjY2OS00MDQ1LThkODMt NTJiMjMwZWNhY2FlLzEvbVRGUU1JQmgzTnJGMkVaYy1JVEdlanV4a1ZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS84YTg0NWEtMjY2OS00MDQ1LThkODMtNTJiMjMwZWNhY2Fl LzEvbVRGUU1JQmgzTnJGMkVaYy1JVEdlanV4a1ZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj54YbZYB ZHDeGeF7wtsrSFqywW9zeg8MiZ4gc+e78rn9O3qHjS0Ou9dIWqlIOrwiPGTY9pRb FX4AxebY2YqQezJ5qSnJQpXya50sXFMbUPzXHobgzhGAMte6Q3nfGpEqr7t2mEPM /eAzjTjPGuxEN5oCWwxI2uLt0AXe6i2A9w8BHyfwg+ndrihV+6+EUDhJSsjxhSZV JlSSfmxrx64DrMoDfF/eYBvKtqevkpEr4wVUcV4517dPN/PhpmOImwvq06Mp9LZH gHPCy6QVHOHz+S/5Y2yotMFXEr2mydc1e60k2aDSDnN9qNfNMzybSU0nW3LR+Z1Y KQPBOQzipa9XEw== -----END CERTIFICATE-----Generated at Tue Feb 10 04:22:46 2026 by rpki-client