This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft File: cRcdWnbTurk3KszJJz66ffHFnPI.mft (raw, json) Hash identifier: 9sTxt6+upndJBhboKjC1Z8uZaly00mLUhnu7GDxEVso= Subject key identifier: 6D:E4:16:97:54:F3:8D:23:FE:E6:25:97:DC:A4:CB:0A:5A:45:8A:89 Authority key identifier: 71:17:1D:5A:76:D3:BA:B9:37:2A:CC:C9:27:3E:BA:7D:F1:C5:9C:F2 Certificate issuer: /CN=71171d5a76d3bab9372accc9273eba7df1c59cf2 Certificate serial: 019C4321CC7857335637668E0190C8E9AD96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRcdWnbTurk3KszJJz66ffHFnPI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:14 +0000 Manifest this update: Mon 09 Feb 2026 16:00:14 +0000 Manifest next update: Tue 10 Feb 2026 16:00:14 +0000 Files and hashes: 1: cRcdWnbTurk3KszJJz66ffHFnPI.crl (hash: CTvrMcMZvSBGjClc8COa82zLqkgY8pCV5o/6dSSBk4E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.crl rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft rsync://rpki.ripe.net/repository/DEFAULT/cRcdWnbTurk3KszJJz66ffHFnPI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:cc:78:57:33:56:37:66:8e:01:90:c8:e9:ad:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71171d5a76d3bab9372accc9273eba7df1c59cf2 Validity Not Before: Feb 9 16:00:14 2026 GMT Not After : Feb 10 16:00:14 2026 GMT Subject: CN=6de4169754f38d23fee62597dca4cb0a5a458a89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:bb:b7:b5:38:5b:6a:55:2f:85:96:b4:89:d6: d3:63:38:c5:9d:9a:97:db:e5:5e:f2:03:09:56:d2: 65:61:03:0c:4e:4c:58:74:61:3b:da:8b:d7:ef:23: 88:3a:7e:b0:15:97:c3:fd:0c:67:99:d1:23:d9:53: f5:7c:3a:92:df:59:3e:18:eb:1a:4a:42:68:a6:0e: c8:86:00:0b:45:3a:cf:2f:41:6d:d7:99:53:6f:63: f5:0d:51:33:77:3a:bf:1a:01:e8:18:d5:9a:29:36: f2:98:d4:97:d7:65:98:ee:bc:a3:aa:9f:81:a6:32: ce:b3:56:24:ca:43:5b:53:fb:2c:31:0f:5f:20:03: aa:3f:1d:00:6e:d1:5b:8e:74:d0:d7:79:f6:a9:69: 49:06:0b:76:8a:8c:1b:ac:51:57:56:8b:6f:f7:90: 3f:9c:64:00:0f:7d:3d:48:f0:43:b4:53:b5:18:5b: 11:ab:1e:41:6a:43:5d:38:49:1c:17:00:79:83:b7: 09:3a:7e:97:27:1c:9a:0b:74:23:56:11:1f:3c:e5: c4:87:41:fd:18:e7:a1:30:34:2d:93:34:e2:28:2f: f8:83:e6:0d:ae:cf:25:0c:ed:a1:f5:b6:2d:8b:3c: 8c:ae:ac:09:54:fd:18:da:57:dc:fc:9a:1a:be:25: c6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:E4:16:97:54:F3:8D:23:FE:E6:25:97:DC:A4:CB:0A:5A:45:8A:89 X509v3 Authority Key Identifier: keyid:71:17:1D:5A:76:D3:BA:B9:37:2A:CC:C9:27:3E:BA:7D:F1:C5:9C:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRcdWnbTurk3KszJJz66ffHFnPI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:13:c6:14:72:2d:61:e3:60:a1:11:48:ae:fc:9d:1c:09:0e: b9:ab:9e:77:b5:cb:f8:3e:12:5f:d2:6d:64:e1:65:53:c2:e1: 6e:a5:c6:c7:b1:d9:62:34:82:2e:8a:f0:4d:7e:97:ec:e4:dd: 39:cb:a9:33:a2:ae:ec:87:fa:8d:07:a6:3b:cc:77:0a:ea:d1: 40:51:87:ae:59:d1:ed:55:03:5c:37:44:af:1b:1d:74:42:d7: b9:ed:86:22:90:54:ad:61:29:f2:32:77:b8:f8:5e:3a:b3:3e: 2f:60:66:28:f2:05:a7:df:3a:94:5d:18:6d:e7:c8:76:2f:38: b8:13:93:be:3b:39:52:4a:f4:8a:57:50:0a:be:df:dc:a2:0d: 52:d9:57:3d:ca:3c:b0:fc:92:72:43:3b:74:c7:a6:fd:59:c5: 9f:ae:24:76:1c:95:03:f5:b6:16:52:50:b0:1b:bc:c3:83:63: 18:26:fc:f7:2e:6f:3b:73:d7:6d:da:13:25:5d:aa:10:a3:41: f1:e9:7f:12:8f:e5:ec:d4:28:1c:94:e7:11:0d:e1:43:8f:58: 56:36:3f:da:53:54:b0:42:ae:df:e5:03:5a:38:e6:ab:80:90: 1a:39:e9:32:4e:f9:3f:68:ee:fd:7b:47:7f:dd:48:23:7f:69: a7:48:7b:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIcx4VzNWN2aOAZDI6a2WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxMTcxZDVhNzZkM2JhYjkzNzJhY2NjOTI3M2ViYTdkZjFj NTljZjIwHhcNMjYwMjA5MTYwMDE0WhcNMjYwMjEwMTYwMDE0WjAzMTEwLwYDVQQD Eyg2ZGU0MTY5NzU0ZjM4ZDIzZmVlNjI1OTdkY2E0Y2IwYTVhNDU4YTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4bu3tThbalUvhZa0idbTYzjFnZqX 2+Ve8gMJVtJlYQMMTkxYdGE72ovX7yOIOn6wFZfD/QxnmdEj2VP1fDqS31k+GOsa SkJopg7IhgALRTrPL0Ft15lTb2P1DVEzdzq/GgHoGNWaKTbymNSX12WY7ryjqp+B pjLOs1YkykNbU/ssMQ9fIAOqPx0AbtFbjnTQ13n2qWlJBgt2iowbrFFXVotv95A/ nGQAD309SPBDtFO1GFsRqx5BakNdOEkcFwB5g7cJOn6XJxyaC3QjVhEfPOXEh0H9 GOehMDQtkzTiKC/4g+YNrs8lDO2h9bYtizyMrqwJVP0Y2lfc/JoaviXGxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG3kFpdU840j/uYll9ykywpaRYqJMB8GA1UdIwQY MBaAFHEXHVp207q5NyrMySc+un3xxZzyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1JjZFduYlR1cmszS3N6Skp6NjZmZkhGblBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9kZWU4YjktYzMwMC00NWViLTg5ZTEt ODA2OTk1MjljY2ViLzEvY1JjZFduYlR1cmszS3N6Skp6NjZmZkhGblBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9kZWU4YjktYzMwMC00NWViLTg5ZTEtODA2OTk1MjljY2Vi LzEvY1JjZFduYlR1cmszS3N6Skp6NjZmZkhGblBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARRPGFHIt YeNgoRFIrvydHAkOuaued7XL+D4SX9JtZOFlU8LhbqXGx7HZYjSCLorwTX6X7OTd OcupM6Ku7If6jQemO8x3CurRQFGHrlnR7VUDXDdErxsddELXue2GIpBUrWEp8jJ3 uPheOrM+L2BmKPIFp986lF0YbefIdi84uBOTvjs5Ukr0ildQCr7f3KINUtlXPco8 sPySckM7dMem/VnFn64kdhyVA/W2FlJQsBu8w4NjGCb89y5vO3PXbdoTJV2qEKNB 8el/Eo/l7NQoHJTnEQ3hQ49YVjY/2lNUsEKu3+UDWjjmq4CQGjnpMk75P2ju/XtH f91II39pp0h7Ww== -----END CERTIFICATE-----Generated at Mon Feb 9 19:43:55 2026 by rpki-client