This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft File: 4PcIYcfPbv530i_HBJvpbGdopQA.mft (raw, json) Hash identifier: NMFTkSU1h/W1saLKCS6PNHzEZUXd/3oPpNpRLy2FQ3A= Subject key identifier: 6F:9B:5B:8B:91:A0:71:10:8B:95:DE:7C:67:D7:97:E5:3C:E0:19:B6 Authority key identifier: E0:F7:08:61:C7:CF:6E:FE:77:D2:2F:C7:04:9B:E9:6C:67:68:A5:00 Certificate issuer: /CN=e0f70861c7cf6efe77d22fc7049be96c6768a500 Certificate serial: 019C427D81968D84256A0E9EAA59CA8DD377 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4PcIYcfPbv530i_HBJvpbGdopQA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft Manifest number: 07D3 Signing time: Mon 09 Feb 2026 13:00:47 +0000 Manifest this update: Mon 09 Feb 2026 13:00:47 +0000 Manifest next update: Tue 10 Feb 2026 13:00:47 +0000 Files and hashes: 1: 4PcIYcfPbv530i_HBJvpbGdopQA.crl (hash: SzJ75xQNQJ5Xt7IR4a3evmcz5dFOH01nWhxpd0+hSIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft rsync://rpki.ripe.net/repository/DEFAULT/4PcIYcfPbv530i_HBJvpbGdopQA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:81:96:8d:84:25:6a:0e:9e:aa:59:ca:8d:d3:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0f70861c7cf6efe77d22fc7049be96c6768a500 Validity Not Before: Feb 9 13:00:47 2026 GMT Not After : Feb 10 13:00:47 2026 GMT Subject: CN=6f9b5b8b91a071108b95de7c67d797e53ce019b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3c:cd:78:74:72:17:1b:07:c5:de:4e:36:be: f3:a6:fb:6f:61:a4:f8:9e:f5:ed:a5:9d:70:d6:f5: b4:6c:3a:dc:60:4d:bd:1c:f6:93:9e:42:fa:a6:76: 1c:ac:50:c5:88:fd:37:24:a9:fe:67:dd:a9:95:92: 86:64:06:f8:62:f3:dc:0e:f4:f2:dc:e2:64:6b:e6: 4d:47:f0:56:da:0f:20:2d:b3:18:e1:04:2c:f8:b5: d6:2c:3a:7d:47:ba:4b:93:9b:16:93:78:86:53:01: 6f:78:30:fc:09:c2:38:ac:43:45:6f:86:0e:42:65: d1:6b:02:65:75:a6:01:9a:ce:0a:87:9d:8c:43:80: 91:90:9c:28:44:47:8b:d2:34:41:52:52:72:57:0c: b9:75:ca:f1:66:42:04:69:7e:1b:af:a2:ef:b1:64: 20:0b:97:b3:08:20:5c:c4:f8:01:a0:63:06:24:59: 4d:d3:79:70:ab:e5:c7:3e:ba:04:ca:cf:86:b6:b7: cb:02:40:d7:6d:f2:a8:e8:8d:b0:55:bc:aa:97:08: 74:40:4b:d1:b1:38:17:bb:cc:d6:60:62:d5:7f:58: 99:fc:c0:0b:e8:76:e9:7a:a2:14:fe:67:59:ea:68: f8:38:d6:b8:37:91:09:33:88:13:63:bf:b5:f7:6b: 31:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9B:5B:8B:91:A0:71:10:8B:95:DE:7C:67:D7:97:E5:3C:E0:19:B6 X509v3 Authority Key Identifier: keyid:E0:F7:08:61:C7:CF:6E:FE:77:D2:2F:C7:04:9B:E9:6C:67:68:A5:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4PcIYcfPbv530i_HBJvpbGdopQA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:80:11:62:72:91:0e:1b:f7:1e:a3:25:52:e8:c2:6b:78:32: 07:6e:25:38:1a:b2:f4:4e:9d:da:1f:71:49:4c:e4:48:af:f0: b9:b8:8a:ab:b0:0d:f9:38:28:49:83:b8:31:e2:da:2c:af:72: 9d:94:19:99:3a:5f:64:e7:0b:3f:72:cc:1d:23:21:0e:c8:f6: f7:5d:0d:bf:2c:9f:1b:d3:c8:a2:6b:91:7c:92:ad:b2:74:7b: 15:34:a8:4f:eb:cd:66:1b:a9:88:a5:19:a3:d4:46:98:34:09: 3d:20:fd:ce:81:1b:06:cb:4e:3f:0c:60:0a:0d:c4:74:23:b5: aa:36:20:81:87:4b:40:27:85:64:e3:bb:71:91:13:13:bb:9d: a6:5b:a1:f6:77:91:1e:82:b1:b0:3c:af:6f:f0:c4:a4:99:35: 5c:60:e7:af:b1:f1:1d:87:c3:e7:9b:6c:07:02:05:2c:08:64: 5f:02:67:b0:2f:93:43:28:1b:bb:f3:87:43:71:13:11:7b:af: 99:6a:c4:d8:ce:d0:2e:06:da:d0:40:49:d0:a5:17:c9:04:96: 7c:73:b6:57:08:d2:c0:49:6e:56:9d:07:2a:bb:e6:a8:fc:9f: b9:15:6a:ae:58:21:d5:9f:d5:f5:ab:a5:8e:82:97:17:6f:1c: b7:4b:99:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfYGWjYQlag6eqlnKjdN3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwZjcwODYxYzdjZjZlZmU3N2QyMmZjNzA0OWJlOTZjNjc2 OGE1MDAwHhcNMjYwMjA5MTMwMDQ3WhcNMjYwMjEwMTMwMDQ3WjAzMTEwLwYDVQQD Eyg2ZjliNWI4YjkxYTA3MTEwOGI5NWRlN2M2N2Q3OTdlNTNjZTAxOWI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzzNeHRyFxsHxd5ONr7zpvtvYaT4 nvXtpZ1w1vW0bDrcYE29HPaTnkL6pnYcrFDFiP03JKn+Z92plZKGZAb4YvPcDvTy 3OJka+ZNR/BW2g8gLbMY4QQs+LXWLDp9R7pLk5sWk3iGUwFveDD8CcI4rENFb4YO QmXRawJldaYBms4Kh52MQ4CRkJwoREeL0jRBUlJyVwy5dcrxZkIEaX4br6LvsWQg C5ezCCBcxPgBoGMGJFlN03lwq+XHProEys+GtrfLAkDXbfKo6I2wVbyqlwh0QEvR sTgXu8zWYGLVf1iZ/MAL6HbpeqIU/mdZ6mj4ONa4N5EJM4gTY7+192sxLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG+bW4uRoHEQi5XefGfXl+U84Bm2MB8GA1UdIwQY MBaAFOD3CGHHz27+d9IvxwSb6WxnaKUAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFBjSVljZlBidjUzMGlfSEJKdnBiR2RvcFFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS81NDI4MzAtY2M0OS00MTVhLTk3YjYt NDQ3M2MwYjFlMDQ2LzEvNFBjSVljZlBidjUzMGlfSEJKdnBiR2RvcFFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS81NDI4MzAtY2M0OS00MTVhLTk3YjYtNDQ3M2MwYjFlMDQ2 LzEvNFBjSVljZlBidjUzMGlfSEJKdnBiR2RvcFFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOYARYnKR Dhv3HqMlUujCa3gyB24lOBqy9E6d2h9xSUzkSK/wubiKq7AN+TgoSYO4MeLaLK9y nZQZmTpfZOcLP3LMHSMhDsj2910NvyyfG9PIomuRfJKtsnR7FTSoT+vNZhupiKUZ o9RGmDQJPSD9zoEbBstOPwxgCg3EdCO1qjYggYdLQCeFZOO7cZETE7udpluh9neR HoKxsDyvb/DEpJk1XGDnr7HxHYfD55tsBwIFLAhkXwJnsC+TQygbu/OHQ3ETEXuv mWrE2M7QLgba0EBJ0KUXyQSWfHO2VwjSwEluVp0HKrvmqPyfuRVqrlgh1Z/V9aul joKXF28ct0uZWg== -----END CERTIFICATE-----Generated at Mon Feb 9 23:53:44 2026 by rpki-client