This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft File: Th1cISsoF0fIw-xuhm4Vs5TFu98.mft (raw, json) Hash identifier: dYPePAzZWTPPvfuHcg1Gebakj2t+sCaOotbHoPTmoOY= Subject key identifier: 89:90:8D:F1:51:AC:C4:18:8C:04:D5:05:9C:06:E1:D2:84:79:77:C5 Authority key identifier: 4E:1D:5C:21:2B:28:17:47:C8:C3:EC:6E:86:6E:15:B3:94:C5:BB:DF Certificate issuer: /CN=4e1d5c212b281747c8c3ec6e866e15b394c5bbdf Certificate serial: 019C41D861CE36ED6C27BC543E47451DB84E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft Manifest number: 0F47 Signing time: Mon 09 Feb 2026 10:00:25 +0000 Manifest this update: Mon 09 Feb 2026 10:00:25 +0000 Manifest next update: Tue 10 Feb 2026 10:00:25 +0000 Files and hashes: 1: Th1cISsoF0fIw-xuhm4Vs5TFu98.crl (hash: nSHNKaIfbUbM7ddHSKlcegXJZymukoL6KmG0hx/dLio=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.crl rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:61:ce:36:ed:6c:27:bc:54:3e:47:45:1d:b8:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e1d5c212b281747c8c3ec6e866e15b394c5bbdf Validity Not Before: Feb 9 10:00:25 2026 GMT Not After : Feb 10 10:00:25 2026 GMT Subject: CN=89908df151acc4188c04d5059c06e1d2847977c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d9:43:b0:3d:2a:a1:e1:8d:bf:c4:b8:9f:4e: dd:fd:a3:41:ef:a5:dd:61:63:41:8f:92:6f:b7:a6: d2:21:01:fc:d2:19:c9:03:84:f9:a8:c1:06:79:6c: a5:c7:1e:69:e7:2c:9e:8a:8c:f4:28:0a:63:fc:41: 4c:bf:ba:c2:43:23:e7:9c:d0:77:b0:5e:c5:f0:60: 71:5e:66:88:bc:bb:1a:06:48:e1:d9:da:d1:c3:e7: 9b:ae:fa:10:fc:8f:6d:64:cf:94:99:83:a7:bd:f5: ad:ee:4e:5a:87:fa:67:50:99:cd:2f:13:d0:d0:6a: a9:c3:5a:6b:11:b6:3b:02:2f:ca:b3:49:3c:8f:4e: 23:30:d6:25:74:e1:20:5c:a2:a9:8b:28:a6:c7:b0: 7a:76:d6:39:63:74:d5:ad:5b:5d:ad:d3:3b:64:fe: 35:a0:05:3e:e1:4b:fd:45:00:b3:fe:74:55:fb:66: b7:9d:5a:39:40:e0:1a:de:e4:e6:e0:ea:7e:0c:c3: 0a:2e:3b:be:51:86:52:90:69:bb:9e:90:3b:61:b5: cf:d3:78:99:2e:84:d8:b5:c8:63:00:81:68:8a:f4: 26:98:d7:04:f4:c0:bf:50:a6:30:46:ed:d9:c7:64: 18:48:13:25:16:4c:a3:af:01:30:9f:ad:b6:e5:ba: a7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:90:8D:F1:51:AC:C4:18:8C:04:D5:05:9C:06:E1:D2:84:79:77:C5 X509v3 Authority Key Identifier: keyid:4E:1D:5C:21:2B:28:17:47:C8:C3:EC:6E:86:6E:15:B3:94:C5:BB:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:04:b1:11:4f:1d:42:8e:9b:28:88:4f:e5:6b:85:48:85:0e: d5:36:45:1c:5a:88:1e:23:49:d3:41:9f:b8:08:19:06:f3:d9: f9:88:06:83:46:d1:93:7d:ad:e1:f1:9f:87:06:9d:ca:1d:50: 61:06:3e:21:df:3b:c1:0d:13:28:e9:0c:9a:b7:06:3c:58:fe: ed:b0:67:28:d5:9f:56:5d:81:14:56:4c:b0:40:d3:ea:b3:1b: 1e:c5:26:6d:b8:5f:b5:ff:c2:02:51:1e:ec:3c:bb:a5:7f:46: 74:04:a9:e8:3b:2b:0e:60:66:00:ac:c3:ce:66:88:78:58:ec: 11:db:07:d4:8f:a6:23:da:10:0a:1e:d0:8b:3e:2a:5b:a7:68: 8c:78:24:6d:3a:6e:9a:da:37:f0:d7:a6:b8:37:9b:f1:81:1d: de:98:0e:b1:68:3b:a0:9e:70:9f:f2:c8:0b:11:87:87:7a:6a: f2:0f:d5:a8:29:9b:f4:e1:38:98:d3:f4:7a:d8:a2:e2:e2:b5: 5c:64:76:bd:47:f5:83:61:bb:61:0d:57:9e:81:64:7d:1b:e6: 72:bb:da:42:37:a2:bb:bc:40:b3:ca:9c:8a:27:30:47:23:0d: 36:cd:f5:4f:a5:23:43:6b:8b:86:fa:86:09:b0:1f:34:4a:af: 96:7e:57:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2GHONu1sJ7xUPkdFHbhOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlMWQ1YzIxMmIyODE3NDdjOGMzZWM2ZTg2NmUxNWIzOTRj NWJiZGYwHhcNMjYwMjA5MTAwMDI1WhcNMjYwMjEwMTAwMDI1WjAzMTEwLwYDVQQD Eyg4OTkwOGRmMTUxYWNjNDE4OGMwNGQ1MDU5YzA2ZTFkMjg0Nzk3N2M1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2NlDsD0qoeGNv8S4n07d/aNB76Xd YWNBj5Jvt6bSIQH80hnJA4T5qMEGeWylxx5p5yyeioz0KApj/EFMv7rCQyPnnNB3 sF7F8GBxXmaIvLsaBkjh2drRw+ebrvoQ/I9tZM+UmYOnvfWt7k5ah/pnUJnNLxPQ 0Gqpw1prEbY7Ai/Ks0k8j04jMNYldOEgXKKpiyimx7B6dtY5Y3TVrVtdrdM7ZP41 oAU+4Uv9RQCz/nRV+2a3nVo5QOAa3uTm4Op+DMMKLju+UYZSkGm7npA7YbXP03iZ LoTYtchjAIFoivQmmNcE9MC/UKYwRu3Zx2QYSBMlFkyjrwEwn6225bqntwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFImQjfFRrMQYjATVBZwG4dKEeXfFMB8GA1UdIwQY MBaAFE4dXCErKBdHyMPsboZuFbOUxbvfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGgxY0lTc29GMGZJdy14dWhtNFZzNVRGdTk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8yNzc1MDMtODJlMy00YzE3LTk2OTkt NzEyZTI3NjFkYWY1LzEvVGgxY0lTc29GMGZJdy14dWhtNFZzNVRGdTk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi8yNzc1MDMtODJlMy00YzE3LTk2OTktNzEyZTI3NjFkYWY1 LzEvVGgxY0lTc29GMGZJdy14dWhtNFZzNVRGdTk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnwSxEU8d Qo6bKIhP5WuFSIUO1TZFHFqIHiNJ00GfuAgZBvPZ+YgGg0bRk32t4fGfhwadyh1Q YQY+Id87wQ0TKOkMmrcGPFj+7bBnKNWfVl2BFFZMsEDT6rMbHsUmbbhftf/CAlEe 7Dy7pX9GdASp6DsrDmBmAKzDzmaIeFjsEdsH1I+mI9oQCh7Qiz4qW6dojHgkbTpu mto38NemuDeb8YEd3pgOsWg7oJ5wn/LICxGHh3pq8g/VqCmb9OE4mNP0etii4uK1 XGR2vUf1g2G7YQ1XnoFkfRvmcrvaQjeiu7xAs8qciicwRyMNNs31T6UjQ2uLhvqG CbAfNEqvln5XQA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:52 2026 by rpki-client