This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json) Hash identifier: oMeCkSsMvzRN+NxLay/qRp4rXVxFTz0vZV3A4ffs9mc= Subject key identifier: D2:E7:89:0E:11:76:73:7D:24:3D:62:C4:D2:AE:0C:5F:CB:A5:A8:73 Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1 Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1 Certificate serial: 019C420F5D29E77B08939950A8E5CC52549A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft Manifest number: 0CE1 Signing time: Mon 09 Feb 2026 11:00:28 +0000 Manifest this update: Mon 09 Feb 2026 11:00:28 +0000 Manifest next update: Tue 10 Feb 2026 11:00:28 +0000 Files and hashes: 1: KwW1m_TU_lvvFLbiPGoG7omszF0.roa (hash: WLXCnKipjggD7aV7lsVpIwB0+MMzwHxcfHMGEgytPNc=) 2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: 8d1co7rhMLVNGQZcQeI+CAU3AA6IJHihbpTmf9AkouQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:5d:29:e7:7b:08:93:99:50:a8:e5:cc:52:54:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1 Validity Not Before: Feb 9 11:00:28 2026 GMT Not After : Feb 10 11:00:28 2026 GMT Subject: CN=d2e7890e1176737d243d62c4d2ae0c5fcba5a873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f5:c8:c3:d8:b7:20:61:ab:aa:d0:61:11:36: 72:69:50:e2:be:10:f7:5a:4d:fc:10:c9:b3:47:67: c3:81:58:15:69:34:7c:2a:78:ac:d7:76:63:d3:2c: 91:41:73:a2:6e:30:78:2d:42:ca:2f:0f:3e:32:36: fa:76:60:ac:f9:7d:dd:03:a5:d1:07:75:40:d6:16: 4b:d4:c8:c2:07:1a:c9:37:5d:35:4a:07:b2:91:d9: e1:a1:03:ff:fc:71:0c:b2:8b:d9:b8:62:3b:ee:c4: e4:09:23:a0:9d:62:62:d2:a4:b9:aa:05:5c:f2:86: 17:8a:ff:b8:5d:01:2c:e8:f0:4b:8d:e4:35:02:70: 02:fa:b3:ae:2c:e1:8f:41:c1:c6:36:79:5e:72:22: 54:ff:79:fb:1a:d6:c8:ed:99:72:7b:c4:28:81:bb: cb:74:c6:17:73:a6:72:8b:9c:72:b7:12:6c:f2:6c: 6d:3f:52:20:5f:7e:85:7d:51:9f:d8:d1:32:ae:65: 07:74:70:53:87:33:d3:7e:1f:7d:d5:ac:f6:49:76: 5d:0d:63:5c:f0:4c:23:ea:b7:e3:4e:32:57:28:1e: b1:69:04:2e:bd:d7:df:05:b3:4c:6f:00:74:0a:c3: 73:89:2f:82:16:92:72:45:d6:38:32:b0:25:0a:66: c7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E7:89:0E:11:76:73:7D:24:3D:62:C4:D2:AE:0C:5F:CB:A5:A8:73 X509v3 Authority Key Identifier: keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:09:8f:be:49:6c:9f:34:e7:e3:df:20:d5:cf:3a:c1:c0:30: 85:60:ee:38:54:4d:4c:29:62:1d:76:52:10:46:98:69:e2:07: 7a:e2:22:b4:51:08:b6:86:00:20:76:35:e9:15:99:1d:0f:17: 94:73:be:82:fc:8b:9e:a2:b6:2b:d5:ef:62:9c:b6:18:1e:5c: cf:63:5a:80:8c:ab:1a:48:24:b2:86:c3:89:91:69:c6:1f:33: b0:3c:e5:56:56:c8:17:f6:5f:42:c2:a8:ef:b7:a7:c4:50:4d: 53:7d:6a:c5:24:29:72:03:c4:a1:54:a4:30:3e:4a:46:aa:c1: dc:e7:d3:d2:4d:99:88:f2:3a:a8:e9:81:bb:3d:2a:f1:25:63: 1b:e6:70:0e:3c:2a:60:91:68:9f:0d:27:c8:5c:f8:67:42:af: 23:aa:66:58:38:7d:51:3e:60:3a:75:fa:ac:15:20:c5:e2:28: 69:bf:63:61:98:f4:3d:0d:e7:ae:4c:c9:1c:6c:c4:c4:1b:73: 13:d4:0c:3c:66:12:d6:e6:ec:e5:f0:92:37:82:77:22:e7:d5: 50:93:12:9d:1b:87:be:74:e5:da:ac:5a:42:e9:d9:cb:96:f8: fd:c4:58:07:e8:15:9c:31:e2:59:03:f4:58:9b:d5:f1:5f:49: 01:bf:25:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD10p53sIk5lQqOXMUlSaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0M2Q0ZTlmZTNhNTQ4N2QyMGYxMDAwMTkxNjI5MTUwZjYy OGYzYTEwHhcNMjYwMjA5MTEwMDI4WhcNMjYwMjEwMTEwMDI4WjAzMTEwLwYDVQQD EyhkMmU3ODkwZTExNzY3MzdkMjQzZDYyYzRkMmFlMGM1ZmNiYTVhODczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofXIw9i3IGGrqtBhETZyaVDivhD3 Wk38EMmzR2fDgVgVaTR8Knis13Zj0yyRQXOibjB4LULKLw8+Mjb6dmCs+X3dA6XR B3VA1hZL1MjCBxrJN101SgeykdnhoQP//HEMsovZuGI77sTkCSOgnWJi0qS5qgVc 8oYXiv+4XQEs6PBLjeQ1AnAC+rOuLOGPQcHGNnleciJU/3n7GtbI7Zlye8QogbvL dMYXc6Zyi5xytxJs8mxtP1IgX36FfVGf2NEyrmUHdHBThzPTfh991az2SXZdDWNc 8Ewj6rfjTjJXKB6xaQQuvdffBbNMbwB0CsNziS+CFpJyRdY4MrAlCmbHFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNLniQ4RdnN9JD1ixNKuDF/LpahzMB8GA1UdIwQY MBaAFLQ9Tp/jpUh9IPEAAZFikVD2KPOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2It OWY3ODhmZDI3NTIwLzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2ItOWY3ODhmZDI3NTIw LzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMAmPvkls nzTn498g1c86wcAwhWDuOFRNTCliHXZSEEaYaeIHeuIitFEItoYAIHY16RWZHQ8X lHO+gvyLnqK2K9XvYpy2GB5cz2NagIyrGkgksobDiZFpxh8zsDzlVlbIF/ZfQsKo 77enxFBNU31qxSQpcgPEoVSkMD5KRqrB3OfT0k2ZiPI6qOmBuz0q8SVjG+ZwDjwq YJFonw0nyFz4Z0KvI6pmWDh9UT5gOnX6rBUgxeIoab9jYZj0PQ3nrkzJHGzExBtz E9QMPGYS1ubs5fCSN4J3IufVUJMSnRuHvnTl2qxaQunZy5b4/cRYB+gVnDHiWQP0 WJvV8V9JAb8lIw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:17 2026 by rpki-client