This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft File: 1GRmfDSn27AvBTC85ILRGtQkh70.mft (raw, json) Hash identifier: veXFKH84wsyRP/9ZTz7+6XP1MdfXjt3RE74yNVUGl8Q= Subject key identifier: 60:5A:F0:93:1F:6C:31:57:5E:88:85:36:12:B7:D9:89:E2:2D:5D:3F Authority key identifier: D4:64:66:7C:34:A7:DB:B0:2F:05:30:BC:E4:82:D1:1A:D4:24:87:BD Certificate issuer: /CN=d464667c34a7dbb02f0530bce482d11ad42487bd Certificate serial: 019C420F64015C085B1EB423E34E99AB512E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft Manifest number: 0AFB Signing time: Mon 09 Feb 2026 11:00:30 +0000 Manifest this update: Mon 09 Feb 2026 11:00:30 +0000 Manifest next update: Tue 10 Feb 2026 11:00:30 +0000 Files and hashes: 1: 1GRmfDSn27AvBTC85ILRGtQkh70.crl (hash: 4N7mOAiYdU5ygzGrYKzpHpN8zip3C87gmQwbE76V6EQ=) 2: dligzRRVoWtfjy4qlRdbw7o42uM.roa (hash: 2ujZTExymeWh5nps9OWeUYEciPPWZb859+jQp6T2I7s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:64:01:5c:08:5b:1e:b4:23:e3:4e:99:ab:51:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d464667c34a7dbb02f0530bce482d11ad42487bd Validity Not Before: Feb 9 11:00:30 2026 GMT Not After : Feb 10 11:00:30 2026 GMT Subject: CN=605af0931f6c31575e88853612b7d989e22d5d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:85:32:ff:a4:88:d6:e5:25:e6:5b:2c:2a:3d: 6b:b6:11:1d:7e:ce:06:72:b8:a7:32:12:91:ff:89: a5:d3:ee:f0:b6:3d:17:75:cb:e8:a3:d9:27:2c:0c: 63:42:b6:10:fc:98:95:7e:a0:3e:d8:ed:6f:e4:1c: f3:ed:79:b0:9f:1b:22:5a:ea:63:a1:30:5e:41:09: 51:9c:47:4f:23:a1:ba:0f:75:18:12:b5:84:6f:e9: 62:a8:01:1a:aa:98:42:c1:c2:8c:e8:d9:29:03:94: d6:b5:3c:bf:05:bd:80:84:b2:a9:92:30:30:61:90: 15:ae:a9:df:97:9d:0e:48:69:67:16:74:cf:6d:51: f3:4b:e4:6b:37:69:67:17:39:fe:05:be:5e:97:90: f8:12:95:e8:59:e7:b2:5a:19:c0:08:97:24:dc:e9: b1:a9:5c:e1:f1:d3:3c:d4:86:ec:f2:ca:7b:6e:07: 70:db:b6:5a:f7:b7:78:15:27:38:ee:46:fd:a3:25: 51:ac:b0:af:cf:4b:6d:fa:4a:7b:ad:90:84:b4:0a: 73:98:a0:81:1c:fb:0a:f5:4b:1d:12:af:d2:dc:16: 09:c6:54:fd:75:18:a7:0e:98:ed:6c:26:8d:55:74: 05:a9:75:c9:60:7c:c8:21:90:db:e0:3c:64:9d:0e: 5e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:5A:F0:93:1F:6C:31:57:5E:88:85:36:12:B7:D9:89:E2:2D:5D:3F X509v3 Authority Key Identifier: keyid:D4:64:66:7C:34:A7:DB:B0:2F:05:30:BC:E4:82:D1:1A:D4:24:87:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:3f:38:62:b4:f5:9a:66:1d:e6:7f:91:c0:02:db:b6:b5:92: 79:1e:d1:da:a1:22:e2:17:e5:67:30:93:16:a9:07:02:92:d6: 2b:0c:ff:0a:47:82:a6:ba:67:6c:8e:b7:97:9c:d0:6c:08:0d: 03:0f:9e:5a:c8:bf:fb:f1:99:5e:94:ac:0a:45:a1:6d:9e:a3: b4:ee:82:57:4e:39:13:3b:15:41:3e:b0:a5:45:3b:d1:41:7f: ea:ac:38:9e:ab:24:28:66:22:e8:d9:90:52:75:07:68:65:3c: db:eb:b1:9c:72:f9:7d:bf:1f:29:c2:33:85:dc:30:ce:77:a0: 2d:8b:e2:ee:0a:a6:91:cb:86:7e:5b:f4:1c:88:2f:46:23:f0: 5d:6d:59:b2:d5:35:dd:e5:4e:4a:3f:9e:be:9a:86:59:70:50: b4:6a:e5:72:d0:9d:79:9f:ec:6e:59:48:4d:ad:57:eb:fb:a5: e2:30:37:12:2b:a2:6f:e1:4a:26:ad:52:32:02:70:a9:e8:44: 67:71:49:04:5b:05:36:4e:11:bd:58:13:eb:7a:60:d3:d0:69: 5d:8c:21:04:0b:00:4e:4d:bd:da:86:5f:bd:71:76:3f:52:d9: a0:be:fc:bc:69:ed:05:4f:46:39:0f:46:e7:d9:e2:32:c6:44: d6:36:3b:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD2QBXAhbHrQj406Zq1EuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NjQ2NjdjMzRhN2RiYjAyZjA1MzBiY2U0ODJkMTFhZDQy NDg3YmQwHhcNMjYwMjA5MTEwMDMwWhcNMjYwMjEwMTEwMDMwWjAzMTEwLwYDVQQD Eyg2MDVhZjA5MzFmNmMzMTU3NWU4ODg1MzYxMmI3ZDk4OWUyMmQ1ZDNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmIUy/6SI1uUl5lssKj1rthEdfs4G crinMhKR/4ml0+7wtj0Xdcvoo9knLAxjQrYQ/JiVfqA+2O1v5Bzz7XmwnxsiWupj oTBeQQlRnEdPI6G6D3UYErWEb+liqAEaqphCwcKM6NkpA5TWtTy/Bb2AhLKpkjAw YZAVrqnfl50OSGlnFnTPbVHzS+RrN2lnFzn+Bb5el5D4EpXoWeeyWhnACJck3Omx qVzh8dM81Ibs8sp7bgdw27Za97d4FSc47kb9oyVRrLCvz0tt+kp7rZCEtApzmKCB HPsK9UsdEq/S3BYJxlT9dRinDpjtbCaNVXQFqXXJYHzIIZDb4DxknQ5eRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGBa8JMfbDFXXoiFNhK32YniLV0/MB8GA1UdIwQY MBaAFNRkZnw0p9uwLwUwvOSC0RrUJIe9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUdSbWZEU24yN0F2QlRDODVJTFJHdFFraDcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9iZjQ3OTMtMGM4NC00MjJjLTliOGUt MjYwZGU2Y2JmNDU2LzEvMUdSbWZEU24yN0F2QlRDODVJTFJHdFFraDcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9iZjQ3OTMtMGM4NC00MjJjLTliOGUtMjYwZGU2Y2JmNDU2 LzEvMUdSbWZEU24yN0F2QlRDODVJTFJHdFFraDcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYz84YrT1 mmYd5n+RwALbtrWSeR7R2qEi4hflZzCTFqkHApLWKwz/CkeCprpnbI63l5zQbAgN Aw+eWsi/+/GZXpSsCkWhbZ6jtO6CV045EzsVQT6wpUU70UF/6qw4nqskKGYi6NmQ UnUHaGU82+uxnHL5fb8fKcIzhdwwznegLYvi7gqmkcuGflv0HIgvRiPwXW1ZstU1 3eVOSj+evpqGWXBQtGrlctCdeZ/sbllITa1X6/ul4jA3Eiuib+FKJq1SMgJwqehE Z3FJBFsFNk4RvVgT63pg09BpXYwhBAsATk292oZfvXF2P1LZoL78vGntBU9GOQ9G 59niMsZE1jY7OQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:34 2026 by rpki-client