This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft File: 1ftSajPzZqqJRhiOXTJr3ORuLEA.mft (raw, json) Hash identifier: pDnQVPs99rJvN48tpXRkLUHWl9q6BN3o52aDXQX03NI= Subject key identifier: D1:3E:30:CF:F0:A3:37:4A:10:B0:CF:AE:B4:0A:44:A6:17:A3:86:CF Authority key identifier: D5:FB:52:6A:33:F3:66:AA:89:46:18:8E:5D:32:6B:DC:E4:6E:2C:40 Certificate issuer: /CN=d5fb526a33f366aa8946188e5d326bdce46e2c40 Certificate serial: 019C41D83453944AAEC947F63D93570E060D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ftSajPzZqqJRhiOXTJr3ORuLEA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft Manifest number: 0A7A Signing time: Mon 09 Feb 2026 10:00:14 +0000 Manifest this update: Mon 09 Feb 2026 10:00:14 +0000 Manifest next update: Tue 10 Feb 2026 10:00:14 +0000 Files and hashes: 1: 1ftSajPzZqqJRhiOXTJr3ORuLEA.crl (hash: x4+jGpcqCiWgknRBRCQaY+CuFL9rdgibn4N2ZQG0s5c=) 2: zYE8FUPFtiLYSakQbWMYmGaB8Dk.roa (hash: e4WusMf1jCNYs3vcwJpmwZbgUW6eoVWnObCKagC+ZGg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.crl rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft rsync://rpki.ripe.net/repository/DEFAULT/1ftSajPzZqqJRhiOXTJr3ORuLEA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:34:53:94:4a:ae:c9:47:f6:3d:93:57:0e:06:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5fb526a33f366aa8946188e5d326bdce46e2c40 Validity Not Before: Feb 9 10:00:14 2026 GMT Not After : Feb 10 10:00:14 2026 GMT Subject: CN=d13e30cff0a3374a10b0cfaeb40a44a617a386cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f2:24:9d:46:fa:b1:b5:77:0b:bc:4c:5d:a0: be:90:84:4c:61:1d:68:1e:3f:12:a9:db:14:0d:5b: 08:b0:28:28:00:dc:9c:fa:bb:8d:e5:63:f9:b3:bf: 7f:2c:32:f6:0d:82:90:09:a9:80:7e:d3:9c:44:8f: ab:31:83:d7:47:36:b7:ba:59:53:20:85:47:13:50: fb:0e:25:73:b3:91:77:cd:f9:e2:aa:51:41:81:4b: 92:05:75:84:2b:a4:e4:ac:d7:f9:de:a9:ac:b3:aa: ec:e6:93:75:1e:6e:2c:5d:2f:e3:cc:67:01:52:61: 88:1b:7a:b7:ba:36:3a:51:8c:d6:6f:3b:2d:36:7c: f1:8d:d3:73:a0:19:9b:a0:d0:95:8f:de:84:f8:ae: 33:99:4d:3f:1e:8c:41:1f:41:00:ec:3e:0c:7a:3b: 9c:c8:ed:98:10:c5:2c:00:cc:39:84:17:d1:c4:c7: ac:f4:f7:14:87:53:cf:5c:46:b0:2e:16:40:48:8a: 38:e4:6f:44:a9:22:03:43:5b:98:61:ee:bc:ef:a3: 74:a0:d3:54:1d:0c:a6:87:0c:9c:5f:64:be:df:a7: f1:43:3e:04:46:b9:aa:11:b2:26:73:38:27:7a:e0: b3:5e:70:a6:52:ab:76:22:9e:ff:b0:79:2a:6a:e7: 88:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:3E:30:CF:F0:A3:37:4A:10:B0:CF:AE:B4:0A:44:A6:17:A3:86:CF X509v3 Authority Key Identifier: keyid:D5:FB:52:6A:33:F3:66:AA:89:46:18:8E:5D:32:6B:DC:E4:6E:2C:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ftSajPzZqqJRhiOXTJr3ORuLEA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:e9:ea:73:a2:39:6d:2e:9c:d5:03:ff:a6:ea:ad:15:d9:b1: 64:04:04:b6:73:9b:c0:d7:f1:91:da:8a:d3:4f:83:85:8a:d6: 99:fa:2f:f5:ca:5a:b5:fa:95:7e:fa:1b:1d:fc:6a:fb:dc:25: c9:80:e9:8f:37:d8:3d:02:d3:17:8e:ca:2c:55:c1:9e:a8:38: 4d:de:ce:6d:6a:f2:28:95:0d:62:0e:71:e8:a4:cc:05:2b:b6: 82:26:43:7d:af:d8:c1:cb:d2:47:91:fe:b8:f7:f1:07:0d:d2: 68:93:2e:69:eb:63:fe:58:e3:12:d2:b9:3e:5b:08:c5:6a:89: 14:df:ea:9c:84:ec:59:19:3c:0d:95:9d:fc:f9:97:55:b5:18: 8e:cc:40:07:cf:d4:65:93:b3:ca:89:a2:9b:ba:4f:e5:ab:a9: c8:8d:94:07:32:a8:57:92:e9:c9:1e:75:ec:9a:43:ac:b4:a7: 5f:9a:45:fd:0a:03:cc:a0:5a:15:9d:72:91:2d:13:fd:38:84: 57:c9:c6:c6:c7:7b:64:53:ff:46:1d:da:67:d8:da:e6:d1:88: 9b:57:54:4c:a2:25:01:fb:fb:ea:41:15:19:32:b4:58:18:4a: 51:7b:5d:a1:6a:5f:93:a2:e1:8d:59:f0:4d:ea:3b:12:ef:55: 88:ee:cb:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2DRTlEquyUf2PZNXDgYNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1ZmI1MjZhMzNmMzY2YWE4OTQ2MTg4ZTVkMzI2YmRjZTQ2 ZTJjNDAwHhcNMjYwMjA5MTAwMDE0WhcNMjYwMjEwMTAwMDE0WjAzMTEwLwYDVQQD EyhkMTNlMzBjZmYwYTMzNzRhMTBiMGNmYWViNDBhNDRhNjE3YTM4NmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPIknUb6sbV3C7xMXaC+kIRMYR1o Hj8SqdsUDVsIsCgoANyc+ruN5WP5s79/LDL2DYKQCamAftOcRI+rMYPXRza3ullT IIVHE1D7DiVzs5F3zfniqlFBgUuSBXWEK6TkrNf53qmss6rs5pN1Hm4sXS/jzGcB UmGIG3q3ujY6UYzWbzstNnzxjdNzoBmboNCVj96E+K4zmU0/HoxBH0EA7D4Mejuc yO2YEMUsAMw5hBfRxMes9PcUh1PPXEawLhZASIo45G9EqSIDQ1uYYe6876N0oNNU HQymhwycX2S+36fxQz4ERrmqEbImczgneuCzXnCmUqt2Ip7/sHkqaueIxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNE+MM/wozdKELDPrrQKRKYXo4bPMB8GA1UdIwQY MBaAFNX7Umoz82aqiUYYjl0ya9zkbixAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWZ0U2FqUHpacXFKUmhpT1hUSnIzT1J1TEVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS80YTI3Y2ItOGNkNi00NWNjLTgyNDYt MGU5ZDNlY2E0NGMyLzEvMWZ0U2FqUHpacXFKUmhpT1hUSnIzT1J1TEVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS80YTI3Y2ItOGNkNi00NWNjLTgyNDYtMGU5ZDNlY2E0NGMy LzEvMWZ0U2FqUHpacXFKUmhpT1hUSnIzT1J1TEVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArenqc6I5 bS6c1QP/puqtFdmxZAQEtnObwNfxkdqK00+DhYrWmfov9cpatfqVfvobHfxq+9wl yYDpjzfYPQLTF47KLFXBnqg4Td7ObWryKJUNYg5x6KTMBSu2giZDfa/YwcvSR5H+ uPfxBw3SaJMuaetj/ljjEtK5PlsIxWqJFN/qnITsWRk8DZWd/PmXVbUYjsxAB8/U ZZOzyomim7pP5aupyI2UBzKoV5LpyR517JpDrLSnX5pF/QoDzKBaFZ1ykS0T/TiE V8nGxsd7ZFP/Rh3aZ9ja5tGIm1dUTKIlAfv76kEVGTK0WBhKUXtdoWpfk6LhjVnw Teo7Eu9ViO7Llg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:28 2026 by rpki-client