This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft File: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft (raw, json) Hash identifier: ugJP96myHcMe0saiIeeo1Skaq+yMA5YtHz84J3Qsyzw= Subject key identifier: E8:34:03:3C:ED:2E:3F:B1:3F:AC:09:DD:8B:1C:18:BF:CC:C7:10:E2 Authority key identifier: B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4 Certificate issuer: /CN=b284cdf0507443e16e509d57a229e914f73566a4 Certificate serial: 019C446BC89E3806DC6732B37707AA39C3AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft Manifest number: 16B7 Signing time: Mon 09 Feb 2026 22:00:40 +0000 Manifest this update: Mon 09 Feb 2026 22:00:40 +0000 Manifest next update: Tue 10 Feb 2026 22:00:40 +0000 Files and hashes: 1: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl (hash: 8KMD3AsFlGnE6XFeyPL9iVXHpOyNyJOSfoAMyDbk9wo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:c8:9e:38:06:dc:67:32:b3:77:07:aa:39:c3:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b284cdf0507443e16e509d57a229e914f73566a4 Validity Not Before: Feb 9 22:00:40 2026 GMT Not After : Feb 10 22:00:40 2026 GMT Subject: CN=e834033ced2e3fb13fac09dd8b1c18bfccc710e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3f:a4:28:3f:5e:27:5a:13:c4:45:7e:94:e8: de:b4:34:f6:11:5c:63:98:32:e7:b6:cc:d7:02:a6: bf:11:0e:be:b3:d5:8b:a8:21:a4:ce:3e:3d:6b:6f: 40:06:f3:9a:ad:5c:11:fa:1d:9c:e1:91:27:ac:a9: b4:f8:86:23:02:47:13:6a:37:51:d7:7a:42:6f:1b: f7:90:e2:5a:85:5b:3d:3b:44:3d:2b:ee:11:31:33: f2:24:8b:b9:75:86:81:d3:47:31:ae:13:25:90:92: bf:1f:32:04:5e:06:ad:b9:d2:5e:6f:7c:76:0e:09: ef:8b:e4:eb:cd:ee:70:16:28:7d:80:4f:57:b4:47: 67:7c:fd:14:9a:cc:29:a7:41:14:99:70:45:50:ef: 56:49:df:86:e7:3f:c2:40:f5:7c:c3:f8:f8:08:a5: e2:9e:81:6b:5f:98:38:0f:39:0c:86:70:b3:32:a0: a0:b9:44:53:c5:f1:3c:58:e2:54:f7:0f:5c:e8:c3: 84:8a:4c:e3:0e:cd:8a:9d:76:ee:7e:44:8d:9e:af: 78:ea:d2:de:99:7d:50:b7:44:6a:5d:da:0b:af:26: 25:3b:2f:20:7c:b6:33:c1:3f:c3:a3:71:c5:78:de: 4c:6e:cb:6a:01:2b:65:07:db:4a:b0:09:f0:d6:64: 11:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:34:03:3C:ED:2E:3F:B1:3F:AC:09:DD:8B:1C:18:BF:CC:C7:10:E2 X509v3 Authority Key Identifier: keyid:B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:17:4c:c4:3f:f4:5e:38:3c:d7:1d:7f:41:2c:9c:13:1c:cc: e2:4b:c7:fe:d1:8c:49:ac:b6:e6:15:3a:ac:58:5e:17:29:6d: 76:8b:e0:6a:73:ee:40:99:29:d4:26:40:c6:a4:72:fe:93:29: 31:7e:19:b9:eb:7e:be:8b:82:e1:24:9b:6a:71:f7:41:68:3a: 0a:9c:47:ee:98:6c:9b:81:a3:fa:94:d6:a1:09:46:cc:69:04: c4:6c:52:29:d5:a6:a9:18:8b:3c:f8:8e:9c:71:fc:8d:64:e0: 55:ed:ec:50:16:68:27:e9:a0:86:5d:cb:d2:fc:00:39:2a:a4: 64:39:c1:7b:8c:83:0b:06:72:e7:a5:96:76:b8:d6:99:b3:1c: 60:11:ab:53:80:6b:7e:86:6e:94:8c:06:b7:c6:d3:0d:05:39: 9d:47:04:b2:a0:75:ea:53:1f:a2:7a:62:45:bf:08:0b:bc:37: 4c:e6:f6:20:59:81:4b:c7:13:f7:13:14:3c:e4:e8:6d:d6:20: 06:aa:37:9e:54:f4:bf:0b:6c:e0:58:83:2c:1d:81:e8:58:a7: b6:2d:00:55:64:c2:4c:07:c0:d0:08:1d:05:7d:04:cf:f9:ce: f8:40:9c:49:97:7b:39:79:6d:a6:1d:56:c1:26:f9:2e:3a:4c: f1:b0:b8:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa8ieOAbcZzKzdweqOcOtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyODRjZGYwNTA3NDQzZTE2ZTUwOWQ1N2EyMjllOTE0Zjcz NTY2YTQwHhcNMjYwMjA5MjIwMDQwWhcNMjYwMjEwMjIwMDQwWjAzMTEwLwYDVQQD EyhlODM0MDMzY2VkMmUzZmIxM2ZhYzA5ZGQ4YjFjMThiZmNjYzcxMGUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApz+kKD9eJ1oTxEV+lOjetDT2EVxj mDLntszXAqa/EQ6+s9WLqCGkzj49a29ABvOarVwR+h2c4ZEnrKm0+IYjAkcTajdR 13pCbxv3kOJahVs9O0Q9K+4RMTPyJIu5dYaB00cxrhMlkJK/HzIEXgatudJeb3x2 Dgnvi+Trze5wFih9gE9XtEdnfP0Umswpp0EUmXBFUO9WSd+G5z/CQPV8w/j4CKXi noFrX5g4DzkMhnCzMqCguURTxfE8WOJU9w9c6MOEikzjDs2KnXbufkSNnq946tLe mX1Qt0RqXdoLryYlOy8gfLYzwT/Do3HFeN5MbstqAStlB9tKsAnw1mQRTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOg0AzztLj+xP6wJ3YscGL/MxxDiMB8GA1UdIwQY MBaAFLKEzfBQdEPhblCdV6Ip6RT3NWakMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc29UTjhGQjBRLUZ1VUoxWG9pbnBGUGMxWnFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9hMzgyOGQtMGY1MS00ZGEwLTg0MzMt ZGY1NmEyNDEwOThmLzEvc29UTjhGQjBRLUZ1VUoxWG9pbnBGUGMxWnFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9hMzgyOGQtMGY1MS00ZGEwLTg0MzMtZGY1NmEyNDEwOThm LzEvc29UTjhGQjBRLUZ1VUoxWG9pbnBGUGMxWnFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYhdMxD/0 Xjg81x1/QSycExzM4kvH/tGMSay25hU6rFheFyltdovganPuQJkp1CZAxqRy/pMp MX4Zuet+vouC4SSbanH3QWg6CpxH7phsm4Gj+pTWoQlGzGkExGxSKdWmqRiLPPiO nHH8jWTgVe3sUBZoJ+mghl3L0vwAOSqkZDnBe4yDCwZy56WWdrjWmbMcYBGrU4Br foZulIwGt8bTDQU5nUcEsqB16lMfonpiRb8IC7w3TOb2IFmBS8cT9xMUPOTobdYg Bqo3nlT0vwts4FiDLB2B6Finti0AVWTCTAfA0AgdBX0Ez/nO+ECcSZd7OXltph1W wSb5LjpM8bC4rw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:36 2026 by rpki-client