This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft File: sG9AQEkaZW_3Um0vF2EbDWisvQw.mft (raw, json) Hash identifier: bZP3lUY2fupqIasaUImyetM4ThuswAuMb6D7MMLauXs= Subject key identifier: 8B:F2:58:81:71:DC:B3:29:5B:91:25:CD:7D:25:69:B4:1B:5B:26:2E Authority key identifier: B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C Certificate issuer: /CN=b06f4040491a656ff7526d2f17611b0d68acbd0c Certificate serial: 019C420FDC94116ADFEFEECF1464DA9079E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 11:01:01 +0000 Manifest this update: Mon 09 Feb 2026 11:01:01 +0000 Manifest next update: Tue 10 Feb 2026 11:01:01 +0000 Files and hashes: 1: PP8v4ZF9LqDHcTW_KE_ttdsGemE.roa (hash: WpVmL0psb7bfXQaqzyLO36WcvKirINpjSx0F9NsCq+M=) 2: sG9AQEkaZW_3Um0vF2EbDWisvQw.crl (hash: /XBOHHCGSdK5AdEKBGQyQfRKaFNfIZ8gSQ8qTcdW+bk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:dc:94:11:6a:df:ef:ee:cf:14:64:da:90:79:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b06f4040491a656ff7526d2f17611b0d68acbd0c Validity Not Before: Feb 9 11:01:01 2026 GMT Not After : Feb 10 11:01:01 2026 GMT Subject: CN=8bf2588171dcb3295b9125cd7d2569b41b5b262e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0b:34:01:f2:02:c3:50:a9:ab:de:0c:5f:70: ae:ca:1a:09:64:94:3b:53:f5:a5:8c:d9:bf:97:b3: d2:56:88:17:fc:2b:b9:dc:8f:64:de:a5:9d:66:17: 3c:5a:63:f0:05:c9:16:53:67:1d:5d:ab:27:b9:91: 2e:b2:82:cf:d3:43:06:57:da:c3:d0:f9:77:7b:fc: 62:21:f5:02:50:03:ea:2a:7b:fb:60:5a:a1:0d:fe: 14:78:a5:36:d6:00:00:ee:75:90:0d:d4:40:09:14: 7a:1b:d9:69:b7:83:74:5b:c1:0a:7f:25:4b:e4:0b: cc:29:e5:ce:2e:4f:13:78:f4:5f:c3:89:98:00:6b: e7:1f:96:6c:ef:76:6c:17:53:08:35:25:f9:2d:db: f7:bc:2b:b0:7c:7b:12:99:a1:f9:1c:15:85:91:fc: e0:ce:8b:99:08:65:99:e8:cd:c1:26:b0:2d:c8:4c: 91:0f:2b:b2:2a:c6:37:3d:37:a3:f4:30:45:b6:ed: 24:85:25:53:64:cf:1e:43:ff:9a:94:b5:8b:bf:be: 6e:07:8f:7c:a6:31:19:f9:df:28:71:fd:af:5a:df: 01:6e:a9:11:50:ec:8f:31:e7:ed:a4:85:3c:61:45: 8f:4a:c7:9c:c0:b4:f7:20:ad:fc:af:de:8a:03:87: d2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F2:58:81:71:DC:B3:29:5B:91:25:CD:7D:25:69:B4:1B:5B:26:2E X509v3 Authority Key Identifier: keyid:B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:e4:a8:ec:b0:1a:aa:b9:94:6a:e2:e9:51:36:6e:2f:40:5b: 79:02:13:d8:c9:b1:81:7f:e3:7a:99:cd:1f:db:4d:02:d8:29: 5f:57:2d:47:58:4d:90:3b:dd:6f:e1:40:78:50:56:43:6a:31: b2:9d:88:cf:51:5c:f8:af:eb:73:8d:7b:24:f9:36:36:9f:3b: fa:a3:4f:25:19:dd:93:39:ed:60:45:70:05:56:99:ac:f4:13: 0d:41:98:ad:46:07:ee:d1:84:f3:d1:56:2e:fa:21:bd:16:22: 4b:0b:81:ed:1e:92:7b:f5:eb:d0:be:1a:ce:27:5c:59:a3:18: 12:96:a9:fc:58:be:81:2f:7f:ae:1d:d4:f6:eb:11:d3:09:5b: 4b:83:f4:f8:d1:dc:a3:ad:b7:a7:af:44:45:49:b6:4b:46:5f: 74:97:20:ee:0f:f3:74:5c:98:25:d1:5d:68:17:a7:81:6e:08: 89:c0:19:b8:c0:07:1f:f4:d6:01:02:e5:f3:b5:98:07:c5:04: e2:36:73:ff:9b:b1:6d:6c:c9:b5:dc:6c:cd:9c:11:bf:e2:1a: 35:e9:f9:4b:af:5b:a8:31:d7:2a:a2:f5:2a:84:ec:ed:63:2e: 34:15:f0:d0:26:15:ff:2f:3f:2e:66:82:69:f4:99:4d:3f:f8: 99:3c:a4:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD9yUEWrf7+7PFGTakHnpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNmY0MDQwNDkxYTY1NmZmNzUyNmQyZjE3NjExYjBkNjhh Y2JkMGMwHhcNMjYwMjA5MTEwMTAxWhcNMjYwMjEwMTEwMTAxWjAzMTEwLwYDVQQD Eyg4YmYyNTg4MTcxZGNiMzI5NWI5MTI1Y2Q3ZDI1NjliNDFiNWIyNjJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQs0AfICw1Cpq94MX3CuyhoJZJQ7 U/WljNm/l7PSVogX/Cu53I9k3qWdZhc8WmPwBckWU2cdXasnuZEusoLP00MGV9rD 0Pl3e/xiIfUCUAPqKnv7YFqhDf4UeKU21gAA7nWQDdRACRR6G9lpt4N0W8EKfyVL 5AvMKeXOLk8TePRfw4mYAGvnH5Zs73ZsF1MINSX5Ldv3vCuwfHsSmaH5HBWFkfzg zouZCGWZ6M3BJrAtyEyRDyuyKsY3PTej9DBFtu0khSVTZM8eQ/+alLWLv75uB498 pjEZ+d8ocf2vWt8BbqkRUOyPMeftpIU8YUWPSsecwLT3IK38r96KA4fSdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIvyWIFx3LMpW5ElzX0labQbWyYuMB8GA1UdIwQY MBaAFLBvQEBJGmVv91JtLxdhGw1orL0MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9jZTBiMjEtZDY1Yy00MmU2LTg3NGIt ZjRjYjg2N2Y5MGQ4LzEvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9jZTBiMjEtZDY1Yy00MmU2LTg3NGItZjRjYjg2N2Y5MGQ4 LzEvc0c5QVFFa2FaV18zVW0wdkYyRWJEV2lzdlF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoeSo7LAa qrmUauLpUTZuL0BbeQIT2MmxgX/jepnNH9tNAtgpX1ctR1hNkDvdb+FAeFBWQ2ox sp2Iz1Fc+K/rc417JPk2Np87+qNPJRndkzntYEVwBVaZrPQTDUGYrUYH7tGE89FW LvohvRYiSwuB7R6Se/Xr0L4azidcWaMYEpap/Fi+gS9/rh3U9usR0wlbS4P0+NHc o623p69ERUm2S0ZfdJcg7g/zdFyYJdFdaBengW4IicAZuMAHH/TWAQLl87WYB8UE 4jZz/5uxbWzJtdxszZwRv+IaNen5S69bqDHXKqL1KoTs7WMuNBXw0CYV/y8/LmaC afSZTT/4mTykZg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:38 2026 by rpki-client