This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft File: RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft (raw, json) Hash identifier: pzE48q8bBxnuNVrkcEbEDcucQMd0kM96YK2qmP84uoM= Subject key identifier: AF:E2:C7:6E:7A:0B:C0:9D:7E:05:30:0A:0D:22:FE:8D:65:4E:F9:65 Authority key identifier: 46:54:F3:E6:92:7E:C4:C7:C9:7D:0F:23:6A:8C:24:53:4A:7F:CD:D4 Certificate issuer: /CN=4654f3e6927ec4c7c97d0f236a8c24534a7fcdd4 Certificate serial: 019C420F30E07BC7AF27A7CC9121017CC44C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft Manifest number: 0956 Signing time: Mon 09 Feb 2026 11:00:17 +0000 Manifest this update: Mon 09 Feb 2026 11:00:17 +0000 Manifest next update: Tue 10 Feb 2026 11:00:17 +0000 Files and hashes: 1: RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl (hash: 3sNThgWrYQy80hvCSgJ07cFi8u1qhtqxx5OqIFFe9sg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:30:e0:7b:c7:af:27:a7:cc:91:21:01:7c:c4:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4654f3e6927ec4c7c97d0f236a8c24534a7fcdd4 Validity Not Before: Feb 9 11:00:17 2026 GMT Not After : Feb 10 11:00:17 2026 GMT Subject: CN=afe2c76e7a0bc09d7e05300a0d22fe8d654ef965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d5:05:fd:0b:48:65:51:8a:0d:2c:13:3c:f5: f1:77:9f:7e:99:90:9e:6b:7f:a2:07:cc:87:20:89: e5:4b:1f:4f:eb:2d:0d:0f:c3:43:73:45:54:ab:4d: 75:2e:07:f4:28:fd:0b:85:e4:54:7a:11:77:61:51: 4b:93:1c:5a:a2:85:b6:82:3e:5b:93:11:74:b5:38: a2:88:bf:a4:19:fb:5c:09:f7:bd:b5:3c:ea:60:f0: be:7c:f5:06:7b:0c:2e:fe:84:9c:98:8a:1f:bf:fc: f1:29:b3:9b:ae:dc:4a:b8:01:b2:0b:41:ec:ab:c4: d0:ea:02:7d:52:f9:3e:0e:9b:0a:36:3a:aa:7c:41: 28:05:aa:0b:83:66:43:15:d0:9e:3a:ac:fb:de:67: 51:26:0d:91:d3:a9:dd:06:25:fe:d1:38:36:c4:68: 42:c3:1f:d4:9d:b2:0f:7c:91:a0:0b:4a:3b:43:94: cc:71:a4:70:7d:ad:83:4f:4b:d4:eb:39:3f:07:a8: 06:8f:db:0f:33:c3:a5:cf:50:78:e9:76:0c:93:b9: a4:3d:92:9b:fc:e7:51:fa:f0:87:10:f8:f3:11:f8: b7:10:ef:a6:a4:c5:21:87:f8:be:ab:db:c1:36:c4: de:f5:d7:7d:c0:a2:5e:0b:89:c0:62:36:d5:85:58: 84:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E2:C7:6E:7A:0B:C0:9D:7E:05:30:0A:0D:22:FE:8D:65:4E:F9:65 X509v3 Authority Key Identifier: keyid:46:54:F3:E6:92:7E:C4:C7:C9:7D:0F:23:6A:8C:24:53:4A:7F:CD:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:6c:1e:98:4a:d9:c3:94:07:e3:f8:8c:14:13:eb:1c:ec:ca: 7b:08:fa:7b:2b:0e:98:d9:67:d2:c7:45:77:96:ab:b3:20:fd: a4:dc:dc:ce:83:7c:b5:c3:f5:d2:41:c8:be:6b:ac:86:49:08: ce:23:6e:b6:8c:10:9b:a4:0d:98:39:53:c0:f9:20:d0:00:38: eb:d3:f1:1f:3b:23:06:99:89:1a:a0:2f:1f:dc:3e:64:89:96: 35:72:10:29:9d:bd:9a:63:58:33:ae:8d:a8:60:68:b5:57:9a: 63:72:6a:ef:66:6e:34:88:0c:14:a8:29:25:5a:30:15:7f:e7: 1d:6d:9e:b3:0a:93:fe:6e:24:41:75:00:3c:df:ee:97:bf:ed: cc:50:b5:ad:30:39:d3:51:8f:d5:be:14:76:62:ac:99:a6:5e: ec:88:40:42:e4:be:7f:14:76:dc:7e:01:4f:ce:d4:21:83:72: 78:e4:a5:40:68:14:dc:e8:1b:2c:a8:84:bc:dc:7a:2c:67:c5: ad:27:61:95:f0:1a:18:0b:4c:61:24:c8:b4:e2:81:db:a0:c3: dd:18:e7:ab:08:d5:b8:fa:80:36:33:07:0c:b8:96:14:8b:ff: 84:a4:4f:9e:2b:9f:42:1a:e3:9f:c4:5f:7b:2b:66:33:38:8d: 6f:83:73:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDzDge8evJ6fMkSEBfMRMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2NTRmM2U2OTI3ZWM0YzdjOTdkMGYyMzZhOGMyNDUzNGE3 ZmNkZDQwHhcNMjYwMjA5MTEwMDE3WhcNMjYwMjEwMTEwMDE3WjAzMTEwLwYDVQQD EyhhZmUyYzc2ZTdhMGJjMDlkN2UwNTMwMGEwZDIyZmU4ZDY1NGVmOTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdUF/QtIZVGKDSwTPPXxd59+mZCe a3+iB8yHIInlSx9P6y0ND8NDc0VUq011Lgf0KP0LheRUehF3YVFLkxxaooW2gj5b kxF0tTiiiL+kGftcCfe9tTzqYPC+fPUGewwu/oScmIofv/zxKbObrtxKuAGyC0Hs q8TQ6gJ9Uvk+DpsKNjqqfEEoBaoLg2ZDFdCeOqz73mdRJg2R06ndBiX+0Tg2xGhC wx/UnbIPfJGgC0o7Q5TMcaRwfa2DT0vU6zk/B6gGj9sPM8Olz1B46XYMk7mkPZKb /OdR+vCHEPjzEfi3EO+mpMUhh/i+q9vBNsTe9dd9wKJeC4nAYjbVhViEhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK/ix256C8CdfgUwCg0i/o1lTvllMB8GA1UdIwQY MBaAFEZU8+aSfsTHyX0PI2qMJFNKf83UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmxUejVwSi14TWZKZlE4amFvd2tVMHBfemRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi83ZmY0YTMtZDE5MS00YzZiLTgzNWEt YjgwNTA2MjJhYTk2LzEvUmxUejVwSi14TWZKZlE4amFvd2tVMHBfemRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi83ZmY0YTMtZDE5MS00YzZiLTgzNWEtYjgwNTA2MjJhYTk2 LzEvUmxUejVwSi14TWZKZlE4amFvd2tVMHBfemRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeWwemErZ w5QH4/iMFBPrHOzKewj6eysOmNln0sdFd5arsyD9pNzczoN8tcP10kHIvmushkkI ziNutowQm6QNmDlTwPkg0AA469PxHzsjBpmJGqAvH9w+ZImWNXIQKZ29mmNYM66N qGBotVeaY3Jq72ZuNIgMFKgpJVowFX/nHW2eswqT/m4kQXUAPN/ul7/tzFC1rTA5 01GP1b4UdmKsmaZe7IhAQuS+fxR23H4BT87UIYNyeOSlQGgU3OgbLKiEvNx6LGfF rSdhlfAaGAtMYSTItOKB26DD3RjnqwjVuPqANjMHDLiWFIv/hKRPniufQhrjn8Rf eytmMziNb4NzIQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:06:35 2026 by rpki-client