This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft File: 70Ku0OkbI9DNy_skrIObDb5qoEs.mft (raw, json) Hash identifier: mHjeG+PKIEPNqGTMm2aRMBWPhtkvyA/1Xlm4Gwhh454= Subject key identifier: 50:0E:0E:F4:D5:5A:4A:51:E3:BA:98:45:A8:6C:BA:53:72:14:8C:A6 Authority key identifier: EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B Certificate issuer: /CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b Certificate serial: 019C42B48DB6FCB826EC2BC25376645E27AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft Manifest number: 0D86 Signing time: Mon 09 Feb 2026 14:00:54 +0000 Manifest this update: Mon 09 Feb 2026 14:00:54 +0000 Manifest next update: Tue 10 Feb 2026 14:00:54 +0000 Files and hashes: 1: 70Ku0OkbI9DNy_skrIObDb5qoEs.crl (hash: mhXkOmj/MWBH/aKP+GBD/h1rbPXTq2F33XJ0mCy7WPU=) 2: WKalSGnevGohhpgm-gEVPpoJ6r8.roa (hash: RtBxGLGQ1rKUm3Dw/j2SrY9FsdpNgrlCWPACnmZSvFU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:8d:b6:fc:b8:26:ec:2b:c2:53:76:64:5e:27:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b Validity Not Before: Feb 9 14:00:54 2026 GMT Not After : Feb 10 14:00:54 2026 GMT Subject: CN=500e0ef4d55a4a51e3ba9845a86cba5372148ca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:31:1d:46:a2:6f:50:65:64:0a:47:b2:f9:52: 66:0f:0a:9a:e9:20:c9:41:4f:b1:b0:99:b1:09:28: 96:b5:03:90:f6:89:ed:f7:43:81:7e:3e:74:e7:58: 5f:a6:64:e0:36:ec:3a:8d:66:d3:52:ea:43:cf:1f: da:c5:2b:05:96:3f:3a:49:79:04:25:76:60:a8:9f: af:dd:5b:58:08:33:28:9a:b0:4e:31:45:c3:f1:83: 5c:5c:6c:ff:3d:ff:c0:8d:2b:e2:7a:3b:a2:21:4a: 4d:b0:31:18:32:5b:3d:23:b9:d8:eb:71:ed:66:6b: e6:b7:93:2c:ad:49:57:3a:56:1c:5c:96:70:44:56: 03:a3:2b:b8:32:5a:09:70:9f:17:3b:09:4e:71:36: 04:c2:02:58:c7:a3:65:21:f9:e7:b3:d5:36:88:ed: 0f:e7:e5:d6:a8:2d:ec:e2:60:20:56:04:ef:8c:63: 81:29:26:c9:22:8f:2b:91:5e:5a:9f:90:2c:b5:29: d9:5e:af:a3:d7:db:89:66:b3:04:51:f2:71:d0:41: 1a:fe:d1:89:4d:e0:d9:fe:c4:a7:fa:db:31:db:bc: b6:8c:30:9d:c6:d4:e5:f0:75:38:a6:c9:7c:1f:5f: d8:a0:32:3c:a2:49:6a:64:4c:dc:29:ea:b6:4b:3d: 3a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:0E:0E:F4:D5:5A:4A:51:E3:BA:98:45:A8:6C:BA:53:72:14:8C:A6 X509v3 Authority Key Identifier: keyid:EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:26:a5:a6:77:5a:7a:0c:65:79:b0:97:23:da:d5:a6:18:74: 8d:8e:62:f8:a4:77:c7:ed:ba:70:86:0e:01:7a:11:fb:d1:30: f8:03:40:c0:5b:13:c5:ce:89:84:2d:27:91:91:f2:3a:32:f1: db:09:2b:4d:3b:8e:88:cc:db:57:fd:f1:53:5d:e4:a3:a5:54: b2:7e:09:28:69:a4:70:ec:8d:22:9c:84:cf:ef:d2:2d:a4:a7: c8:05:be:7a:b8:67:70:53:e4:9b:d9:80:39:1d:ff:e2:e1:2d: f8:f0:74:23:96:37:dc:1d:4c:6b:5b:55:da:49:16:6d:e2:d6: 40:e2:85:e6:1d:ec:ac:85:2c:50:b8:0c:eb:0b:dc:08:06:df: af:38:9c:eb:c0:08:11:dd:82:f5:90:3f:fb:61:91:e7:a3:4f: c5:c4:c4:2a:86:a0:b2:5f:4f:4b:c8:95:d5:04:79:fa:4e:62: ca:04:c1:a0:f9:99:b9:ed:84:b8:40:f3:7b:95:f0:15:42:52: 2c:f3:42:77:f8:8a:81:84:b2:5c:6f:75:ef:97:b0:f9:d6:12: 8f:1b:c5:02:54:26:bd:c2:3b:fe:7b:81:72:4f:75:bb:4c:62: b3:ac:ff:e1:62:4c:81:24:c7:e6:c5:2f:6f:0e:68:03:9b:e2: 1c:c6:e7:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtI22/Lgm7CvCU3ZkXieqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNDJhZWQwZTkxYjIzZDBjZGNiZmIyNGFjODM5YjBkYmU2 YWEwNGIwHhcNMjYwMjA5MTQwMDU0WhcNMjYwMjEwMTQwMDU0WjAzMTEwLwYDVQQD Eyg1MDBlMGVmNGQ1NWE0YTUxZTNiYTk4NDVhODZjYmE1MzcyMTQ4Y2E2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4DEdRqJvUGVkCkey+VJmDwqa6SDJ QU+xsJmxCSiWtQOQ9ont90OBfj5051hfpmTgNuw6jWbTUupDzx/axSsFlj86SXkE JXZgqJ+v3VtYCDMomrBOMUXD8YNcXGz/Pf/AjSviejuiIUpNsDEYMls9I7nY63Ht Zmvmt5MsrUlXOlYcXJZwRFYDoyu4MloJcJ8XOwlOcTYEwgJYx6NlIfnns9U2iO0P 5+XWqC3s4mAgVgTvjGOBKSbJIo8rkV5an5AstSnZXq+j19uJZrMEUfJx0EEa/tGJ TeDZ/sSn+tsx27y2jDCdxtTl8HU4psl8H1/YoDI8oklqZEzcKeq2Sz06EQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFAODvTVWkpR47qYRahsulNyFIymMB8GA1UdIwQY MBaAFO9CrtDpGyPQzcv7JKyDmw2+aqBLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzBLdTBPa2JJOUROeV9za3JJT2JEYjVxb0VzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9iZDc1YTItZmM2ZS00YTg2LTllZGYt NjY5OTA5ZTExY2UzLzEvNzBLdTBPa2JJOUROeV9za3JJT2JEYjVxb0VzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9iZDc1YTItZmM2ZS00YTg2LTllZGYtNjY5OTA5ZTExY2Uz LzEvNzBLdTBPa2JJOUROeV9za3JJT2JEYjVxb0VzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKCalpnda egxlebCXI9rVphh0jY5i+KR3x+26cIYOAXoR+9Ew+ANAwFsTxc6JhC0nkZHyOjLx 2wkrTTuOiMzbV/3xU13ko6VUsn4JKGmkcOyNIpyEz+/SLaSnyAW+erhncFPkm9mA OR3/4uEt+PB0I5Y33B1Ma1tV2kkWbeLWQOKF5h3srIUsULgM6wvcCAbfrzic68AI Ed2C9ZA/+2GR56NPxcTEKoagsl9PS8iV1QR5+k5iygTBoPmZue2EuEDze5XwFUJS LPNCd/iKgYSyXG9175ew+dYSjxvFAlQmvcI7/nuBck91u0xis6z/4WJMgSTH5sUv bw5oA5viHMbnUg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:55 2026 by rpki-client