This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft File: tMBDnHlVURAtbx5M620cUvvF6j8.mft (raw, json) Hash identifier: ugY0nOvK9MbGG/hCxcMkQETf9kGb8kT+qfj/dLy5WVg= Subject key identifier: BC:14:73:7F:43:FE:64:81:AF:0C:67:30:7C:DB:E8:87:91:1A:20:0B Authority key identifier: B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F Certificate issuer: /CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f Certificate serial: 019C42100AD9A90511D1BC0BB7D7E453725A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 11:01:13 +0000 Manifest this update: Mon 09 Feb 2026 11:01:13 +0000 Manifest next update: Tue 10 Feb 2026 11:01:13 +0000 Files and hashes: 1: RiSZlLjYu2HkKfgG-ViVEkyKZns.roa (hash: lhY041uMz7TjMMSGYMZC4RSrTiXBMmzOCgXBevRNjRY=) 2: tMBDnHlVURAtbx5M620cUvvF6j8.crl (hash: qyPmbmmaANustum2OZb5XwZ09vfIWS0df0A6cCJ/lQ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:0a:d9:a9:05:11:d1:bc:0b:b7:d7:e4:53:72:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4c0439c795551102d6f1e4ceb6d1c52fbc5ea3f Validity Not Before: Feb 9 11:01:13 2026 GMT Not After : Feb 10 11:01:13 2026 GMT Subject: CN=bc14737f43fe6481af0c67307cdbe887911a200b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4f:21:50:25:ac:51:d0:b0:38:3e:5e:12:8c: d9:d7:6c:48:9b:ef:77:29:29:e7:8f:30:40:6b:9a: 07:55:a5:70:80:53:86:fa:a6:4c:5b:08:05:dd:97: d2:aa:c1:6d:94:09:c6:b4:c8:86:b1:ed:9c:cd:83: 53:96:d7:80:24:68:02:b4:dc:e9:57:1a:d7:c2:32: 6c:3a:c5:72:12:64:d7:32:e5:93:20:39:0a:f8:71: 88:ea:31:c6:b6:2b:9d:45:e6:63:34:f9:0b:7d:07: c4:2f:85:aa:ab:99:e3:61:10:cf:68:b3:19:a1:20: 6a:88:66:db:41:b0:e9:57:87:3b:19:a8:e1:eb:67: ad:5a:64:f3:1b:3e:c9:23:82:b3:58:4a:79:85:d3: 0e:79:d1:45:60:12:07:e1:88:f8:28:2d:51:09:e2: 94:0e:5d:0d:2b:00:8b:c3:ba:f8:e4:a1:73:24:19: 28:88:5b:e8:e6:44:65:c0:62:4a:74:b1:e6:fc:56: 8f:27:17:04:ca:3f:ca:f7:86:70:24:60:4d:9b:e9: d3:ff:41:69:23:bc:b2:0e:03:16:0d:e0:41:d4:3b: 27:30:0d:f1:cb:1c:37:29:59:a4:6b:2e:21:1c:1a: ea:37:23:e7:0f:20:15:78:74:c3:49:e8:93:87:17: 55:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:14:73:7F:43:FE:64:81:AF:0C:67:30:7C:DB:E8:87:91:1A:20:0B X509v3 Authority Key Identifier: keyid:B4:C0:43:9C:79:55:51:10:2D:6F:1E:4C:EB:6D:1C:52:FB:C5:EA:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tMBDnHlVURAtbx5M620cUvvF6j8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/86ba02-f970-4869-be27-e8ede5a2f875/1/tMBDnHlVURAtbx5M620cUvvF6j8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:b4:66:fd:bb:d0:c9:51:5d:6c:e3:08:91:49:46:ed:e9:e6: 63:a3:26:d2:8f:e2:da:b5:1c:d8:72:ac:89:3c:66:88:0c:c1: 84:eb:e8:98:0b:76:49:42:eb:6e:ee:8f:8d:7c:d4:d0:00:40: 01:09:9b:09:75:6a:c6:95:b1:0a:d7:fe:78:f7:d0:6a:6c:89: 09:10:45:c2:03:72:40:ef:29:36:2e:f8:24:8c:2c:c5:fd:46: 9c:11:b3:59:bf:aa:f6:e2:39:2f:19:a2:99:96:ed:4b:c8:7b: 7e:bb:0b:04:7b:d7:75:99:7b:d2:1d:27:e8:73:a6:b2:3f:53: 11:8a:d8:87:1d:67:d3:ba:52:1d:96:ed:a6:b5:ca:66:44:97: 80:39:e9:12:35:a8:67:9b:0f:c1:cd:9a:5e:32:f5:ea:19:66: f4:ba:a9:83:b1:96:47:1f:ca:ce:62:7d:f4:11:d6:27:0a:81: 7e:8d:52:b6:c7:7f:e4:ca:42:21:f7:c8:31:ae:8e:1b:bc:df: cc:e3:3e:13:5d:77:70:c8:25:2a:63:19:ec:3c:f0:d3:e5:8e: 14:32:24:f1:23:17:de:cc:af:f4:df:6a:8c:2c:57:60:37:fc: 86:d4:1f:1e:be:45:01:2e:7b:74:b2:c8:6e:b4:16:b4:6d:a3: 3d:2d:37:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEArZqQUR0bwLt9fkU3JaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YzA0MzljNzk1NTUxMTAyZDZmMWU0Y2ViNmQxYzUyZmJj NWVhM2YwHhcNMjYwMjA5MTEwMTEzWhcNMjYwMjEwMTEwMTEzWjAzMTEwLwYDVQQD EyhiYzE0NzM3ZjQzZmU2NDgxYWYwYzY3MzA3Y2RiZTg4NzkxMWEyMDBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5U8hUCWsUdCwOD5eEozZ12xIm+93 KSnnjzBAa5oHVaVwgFOG+qZMWwgF3ZfSqsFtlAnGtMiGse2czYNTlteAJGgCtNzp VxrXwjJsOsVyEmTXMuWTIDkK+HGI6jHGtiudReZjNPkLfQfEL4Wqq5njYRDPaLMZ oSBqiGbbQbDpV4c7Gajh62etWmTzGz7JI4KzWEp5hdMOedFFYBIH4Yj4KC1RCeKU Dl0NKwCLw7r45KFzJBkoiFvo5kRlwGJKdLHm/FaPJxcEyj/K94ZwJGBNm+nT/0Fp I7yyDgMWDeBB1DsnMA3xyxw3KVmkay4hHBrqNyPnDyAVeHTDSeiThxdVWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLwUc39D/mSBrwxnMHzb6IeRGiALMB8GA1UdIwQY MBaAFLTAQ5x5VVEQLW8eTOttHFL7xeo/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdE1CRG5IbFZVUkF0Yng1TTYyMGNVdnZGNmo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy84NmJhMDItZjk3MC00ODY5LWJlMjct ZThlZGU1YTJmODc1LzEvdE1CRG5IbFZVUkF0Yng1TTYyMGNVdnZGNmo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy84NmJhMDItZjk3MC00ODY5LWJlMjctZThlZGU1YTJmODc1 LzEvdE1CRG5IbFZVUkF0Yng1TTYyMGNVdnZGNmo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQLRm/bvQ yVFdbOMIkUlG7enmY6Mm0o/i2rUc2HKsiTxmiAzBhOvomAt2SULrbu6PjXzU0ABA AQmbCXVqxpWxCtf+ePfQamyJCRBFwgNyQO8pNi74JIwsxf1GnBGzWb+q9uI5Lxmi mZbtS8h7frsLBHvXdZl70h0n6HOmsj9TEYrYhx1n07pSHZbtprXKZkSXgDnpEjWo Z5sPwc2aXjL16hlm9Lqpg7GWRx/KzmJ99BHWJwqBfo1Stsd/5MpCIffIMa6OG7zf zOM+E113cMglKmMZ7Dzw0+WOFDIk8SMX3syv9N9qjCxXYDf8htQfHr5FAS57dLLI brQWtG2jPS030w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:42 2026 by rpki-client