This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft File: aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft (raw, json) Hash identifier: VbLVYeNxPLMWJMPRNUz6Sen2LXFya7UTJyxkLqqFMbE= Subject key identifier: 62:1D:30:01:BC:90:68:C8:FC:A6:A1:08:B4:C4:41:CB:01:E9:90:C4 Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28 Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28 Certificate serial: 019C4358DEC37A717FDAF74B13FB0B9A0362 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft Manifest number: 0C7A Signing time: Mon 09 Feb 2026 17:00:23 +0000 Manifest this update: Mon 09 Feb 2026 17:00:23 +0000 Manifest next update: Tue 10 Feb 2026 17:00:23 +0000 Files and hashes: 1: UBtkAIZtogJrMhGvbs0CbonHTS4.roa (hash: jo8TUuFmHzrj5Su3sdBnCB1ATJWy2tfFfxqEhpA5v6A=) 2: aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl (hash: TpYan1l66KzLacV6PmQnBcieZs+Zqd/6ZBpeVH7vKwA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:de:c3:7a:71:7f:da:f7:4b:13:fb:0b:9a:03:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28 Validity Not Before: Feb 9 17:00:23 2026 GMT Not After : Feb 10 17:00:23 2026 GMT Subject: CN=621d3001bc9068c8fca6a108b4c441cb01e990c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d1:b9:6f:c6:e0:4c:10:75:94:92:6d:c0:db: 74:ac:3a:29:74:ad:4e:6f:81:42:76:0c:09:1d:53: 17:95:ed:b4:38:6a:b2:56:68:ce:61:53:f7:95:d4: 74:d9:8d:f5:ea:fc:3e:ac:73:8e:df:d9:cd:55:c4: b8:a5:64:c2:08:93:75:92:92:d2:d5:2d:1a:56:ee: a1:f5:90:b6:b2:6b:b8:b4:6a:28:46:fe:2a:2c:83: a6:de:ca:de:67:17:9e:4e:57:df:d4:5d:38:4e:09: f0:e8:18:97:e6:5f:2a:81:77:e5:47:e7:20:b6:16: 23:9a:3e:6d:34:cf:9d:8a:fc:c9:da:41:cd:9b:00: 92:dd:3a:b8:7c:60:52:05:65:1e:a7:9b:c3:14:7d: 2d:12:48:54:ad:21:6b:f4:3e:24:06:e1:3e:bd:5b: a1:9e:78:ed:24:46:75:26:e6:28:0d:12:67:78:04: f3:12:7e:0e:76:8e:17:5b:e6:3d:18:77:e6:b0:f8: a0:e9:98:99:93:a1:a4:38:f2:a2:7e:1b:31:9e:12: 05:cf:9d:b1:f4:58:fa:74:b9:8f:ef:4e:6f:b8:96: 38:7b:f6:fc:35:6a:85:1d:9d:5e:af:8f:7f:df:7a: cd:99:af:1a:47:ee:02:a7:e7:a2:19:0b:88:c7:5c: 0a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:1D:30:01:BC:90:68:C8:FC:A6:A1:08:B4:C4:41:CB:01:E9:90:C4 X509v3 Authority Key Identifier: keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:6b:c0:42:d3:64:f7:a1:45:90:26:3a:f9:8f:e0:3e:22:66: 28:36:9d:c3:77:ee:e2:ca:91:bb:6b:ca:7a:36:87:51:84:e0: 33:fe:2a:cc:6b:53:71:05:52:a0:84:f5:05:f1:8c:3b:0f:5d: 23:35:e6:b2:f5:89:db:9f:05:8d:87:ed:21:9b:5a:48:fb:15: 81:6a:1d:49:60:cf:9c:6f:94:af:55:5b:d4:08:d4:40:d3:cf: 45:dc:76:d3:47:96:65:10:48:d2:b9:a7:0b:84:82:cf:1f:3b: 6b:8f:4d:e7:0d:d8:5d:bc:3c:5e:2f:b7:1d:61:ea:34:85:43: b2:80:29:67:52:a4:ae:11:9c:e1:d8:59:d8:6f:2a:57:c5:70: d5:f6:af:ed:60:de:e0:b1:be:9d:04:dc:28:9f:f7:d7:25:9a: e4:33:40:70:93:b0:f4:fb:c8:ef:df:a8:a6:8b:ce:62:6f:20: 94:c9:7e:0c:37:87:25:3b:0d:28:18:7c:01:e7:20:3e:63:30: ea:a9:35:09:bf:16:68:69:76:44:41:2a:ef:58:97:7d:75:12: fd:c2:8f:4b:a7:88:8a:14:6e:2c:23:15:b5:ef:7a:71:5b:d3: 63:c6:3c:6a:7b:86:16:86:6a:66:cd:ca:3d:8d:63:d2:2b:3f: d7:24:dd:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWN7DenF/2vdLE/sLmgNiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4M2IzM2RjNzIxOGIzZmU4ODNjNDk1MDUxMzRjYjM5YTY2 NGZkMjgwHhcNMjYwMjA5MTcwMDIzWhcNMjYwMjEwMTcwMDIzWjAzMTEwLwYDVQQD Eyg2MjFkMzAwMWJjOTA2OGM4ZmNhNmExMDhiNGM0NDFjYjAxZTk5MGM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudG5b8bgTBB1lJJtwNt0rDopdK1O b4FCdgwJHVMXle20OGqyVmjOYVP3ldR02Y316vw+rHOO39nNVcS4pWTCCJN1kpLS 1S0aVu6h9ZC2smu4tGooRv4qLIOm3sreZxeeTlff1F04Tgnw6BiX5l8qgXflR+cg thYjmj5tNM+divzJ2kHNmwCS3Tq4fGBSBWUep5vDFH0tEkhUrSFr9D4kBuE+vVuh nnjtJEZ1JuYoDRJneATzEn4Odo4XW+Y9GHfmsPig6ZiZk6GkOPKifhsxnhIFz52x 9Fj6dLmP705vuJY4e/b8NWqFHZ1er49/33rNma8aR+4Cp+eiGQuIx1wKowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGIdMAG8kGjI/KahCLTEQcsB6ZDEMB8GA1UdIwQY MBaAFGg7M9xyGLP+iDxJUFE0yzmmZP0oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEt MTRjNmI5NTRkOTc2LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEtMTRjNmI5NTRkOTc2 LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMGvAQtNk 96FFkCY6+Y/gPiJmKDadw3fu4sqRu2vKejaHUYTgM/4qzGtTcQVSoIT1BfGMOw9d IzXmsvWJ258FjYftIZtaSPsVgWodSWDPnG+Ur1Vb1AjUQNPPRdx200eWZRBI0rmn C4SCzx87a49N5w3YXbw8Xi+3HWHqNIVDsoApZ1KkrhGc4dhZ2G8qV8Vw1fav7WDe 4LG+nQTcKJ/31yWa5DNAcJOw9PvI79+opovOYm8glMl+DDeHJTsNKBh8AecgPmMw 6qk1Cb8WaGl2REEq71iXfXUS/cKPS6eIihRuLCMVte96cVvTY8Y8anuGFoZqZs3K PY1j0is/1yTdhw== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:43 2026 by rpki-client