This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft File: TkMMADsADTVe0WnlXYzPOTg34go.mft (raw, json) Hash identifier: Z7syb11lz4LyPtRbNi4SbpMiLp292rKmY/TKfc+glnU= Subject key identifier: C6:68:F4:01:C3:53:EA:D6:68:14:52:88:C9:F9:43:B8:3B:6A:A5:3F Authority key identifier: 4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A Certificate issuer: /CN=4e430c003b000d355ed169e55d8ccf393837e20a Certificate serial: 019C41A1E0E6FDD020CF6DF8B7ACB20A6D28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft Manifest number: 0F93 Signing time: Mon 09 Feb 2026 09:00:53 +0000 Manifest this update: Mon 09 Feb 2026 09:00:53 +0000 Manifest next update: Tue 10 Feb 2026 09:00:53 +0000 Files and hashes: 1: TkMMADsADTVe0WnlXYzPOTg34go.crl (hash: F5F4zZd14QG1GlO80gVk0GS+bmxFVpjHCMWieF/3u34=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:e0:e6:fd:d0:20:cf:6d:f8:b7:ac:b2:0a:6d:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e430c003b000d355ed169e55d8ccf393837e20a Validity Not Before: Feb 9 09:00:53 2026 GMT Not After : Feb 10 09:00:53 2026 GMT Subject: CN=c668f401c353ead668145288c9f943b83b6aa53f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0f:ac:21:c1:3f:d8:8c:5c:51:8b:7f:14:85: 84:d0:aa:e1:03:e2:2f:5b:69:f7:4b:81:91:ad:cb: cb:ad:61:00:de:d2:34:f4:aa:4c:c7:3a:95:40:bf: c8:8c:94:f2:66:62:03:42:d4:fc:85:ac:56:e2:66: 37:6b:e0:11:7e:2f:58:67:44:92:0a:6f:6a:d8:b6: d4:38:da:94:85:00:bc:12:8e:70:c2:c2:98:0f:10: f5:1a:1f:b0:6e:29:52:77:59:b7:67:c9:57:fc:f6: 35:03:a6:fb:29:01:c0:65:bf:43:23:bb:4a:37:c3: f0:72:b9:d1:6e:f2:28:01:5d:d0:87:a4:51:af:e0: 66:e7:53:bf:d6:7f:d4:1f:d0:45:9c:4c:e4:df:d6: 89:af:d5:75:e7:ad:90:c3:77:cd:de:4c:c1:5c:c1: f3:05:5e:ed:0b:18:cd:dc:14:28:ea:f7:e6:2b:bb: fd:4b:89:ec:6b:a2:6b:01:bb:4c:1e:0f:aa:43:b3: 4b:b2:9a:b6:6f:d0:d4:eb:4f:f6:75:27:e1:56:be: 8b:d8:8e:4c:c7:87:a7:bd:75:de:c1:af:80:a3:c6: 4d:f4:02:79:ef:ec:1e:14:4c:91:8d:82:6b:47:d8: 1a:49:de:b9:43:5a:90:7f:30:61:d3:15:9b:cf:29: 11:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:68:F4:01:C3:53:EA:D6:68:14:52:88:C9:F9:43:B8:3B:6A:A5:3F X509v3 Authority Key Identifier: keyid:4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:ac:67:25:82:6a:80:25:c2:18:60:6a:33:13:76:8a:8c:f6: 4b:a4:38:70:e8:b8:49:ba:c8:93:ed:f7:7e:00:f8:ed:ab:31: d0:c7:61:0e:9a:79:f1:c4:40:a8:50:78:dc:14:ec:5c:64:67: cf:55:24:16:6a:ae:59:bc:6f:e1:ff:b8:ea:75:07:2a:06:13: 44:5b:1d:a7:d7:cf:00:2a:df:b1:70:87:1a:7a:33:f1:42:83: 66:59:34:39:af:43:04:0d:c5:93:e7:64:45:0d:78:a6:a8:79: ac:83:13:1f:69:df:37:69:08:7c:6f:cd:db:e3:eb:e9:d7:36: 19:fd:ac:0d:59:d4:28:d4:08:6a:10:19:72:60:13:44:65:87: b1:c0:a5:00:0a:ea:19:bb:67:2e:50:4b:4a:ef:dc:55:e9:13: 7a:3e:91:d4:f1:b0:87:6f:7b:95:93:e4:57:e2:b3:31:65:c1: a9:2e:9e:78:c9:48:30:9c:92:6f:4c:44:16:27:2f:ed:40:16: ab:c7:66:7b:c6:b0:e1:3d:c0:75:79:e5:4b:78:b9:58:a7:bf: 92:a8:61:01:88:02:fb:76:1b:78:9c:4b:aa:e7:36:67:18:d7: de:97:e2:cc:56:3b:7b:c5:9a:8e:a9:f0:df:18:95:e0:6f:56: 05:a0:88:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoeDm/dAgz234t6yyCm0oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNDMwYzAwM2IwMDBkMzU1ZWQxNjllNTVkOGNjZjM5Mzgz N2UyMGEwHhcNMjYwMjA5MDkwMDUzWhcNMjYwMjEwMDkwMDUzWjAzMTEwLwYDVQQD EyhjNjY4ZjQwMWMzNTNlYWQ2NjgxNDUyODhjOWY5NDNiODNiNmFhNTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArA+sIcE/2IxcUYt/FIWE0KrhA+Iv W2n3S4GRrcvLrWEA3tI09KpMxzqVQL/IjJTyZmIDQtT8haxW4mY3a+ARfi9YZ0SS Cm9q2LbUONqUhQC8Eo5wwsKYDxD1Gh+wbilSd1m3Z8lX/PY1A6b7KQHAZb9DI7tK N8PwcrnRbvIoAV3Qh6RRr+Bm51O/1n/UH9BFnEzk39aJr9V1562Qw3fN3kzBXMHz BV7tCxjN3BQo6vfmK7v9S4nsa6JrAbtMHg+qQ7NLspq2b9DU60/2dSfhVr6L2I5M x4envXXewa+Ao8ZN9AJ57+weFEyRjYJrR9gaSd65Q1qQfzBh0xWbzykRnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMZo9AHDU+rWaBRSiMn5Q7g7aqU/MB8GA1UdIwQY MBaAFE5DDAA7AA01XtFp5V2Mzzk4N+IKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS84MjIyNWQtMDQwYS00ZDliLWEzM2It ODhkODIzNGE2ZDNlLzEvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS84MjIyNWQtMDQwYS00ZDliLWEzM2ItODhkODIzNGE2ZDNl LzEvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALaxnJYJq gCXCGGBqMxN2ioz2S6Q4cOi4SbrIk+33fgD47asx0MdhDpp58cRAqFB43BTsXGRn z1UkFmquWbxv4f+46nUHKgYTRFsdp9fPACrfsXCHGnoz8UKDZlk0Oa9DBA3Fk+dk RQ14pqh5rIMTH2nfN2kIfG/N2+Pr6dc2Gf2sDVnUKNQIahAZcmATRGWHscClAArq GbtnLlBLSu/cVekTej6R1PGwh297lZPkV+KzMWXBqS6eeMlIMJySb0xEFicv7UAW q8dme8aw4T3AdXnlS3i5WKe/kqhhAYgC+3YbeJxLquc2ZxjX3pfizFY7e8Wajqnw 3xiV4G9WBaCI/w== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:41 2026 by rpki-client