This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.mft File: ET9u8WzirCilmQYD0folvUl1lN0.mft (raw, json) Hash identifier: zGcoSR9wEY7i9wYVW6UpQIH59911aV7ZpZtnMtw/DPE= Subject key identifier: AD:65:D8:9E:51:6D:0E:2B:10:F7:F3:42:EA:D6:62:19:48:9A:30:64 Authority key identifier: 11:3F:6E:F1:6C:E2:AC:28:A5:99:06:03:D1:FA:25:BD:49:75:94:DD Certificate issuer: /CN=113f6ef16ce2ac28a5990603d1fa25bd497594dd Certificate serial: 019C420F2BEE4078F73A3CAE955C2706C8F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ET9u8WzirCilmQYD0folvUl1lN0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.mft Manifest number: 06C3 Signing time: Mon 09 Feb 2026 11:00:16 +0000 Manifest this update: Mon 09 Feb 2026 11:00:16 +0000 Manifest next update: Tue 10 Feb 2026 11:00:16 +0000 Files and hashes: 1: ET9u8WzirCilmQYD0folvUl1lN0.crl (hash: JRV6Kj6MlAIfLm7dpHr37gmXZMWtsL9GLmNcb90eiM8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.mft rsync://rpki.ripe.net/repository/DEFAULT/ET9u8WzirCilmQYD0folvUl1lN0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:2b:ee:40:78:f7:3a:3c:ae:95:5c:27:06:c8:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=113f6ef16ce2ac28a5990603d1fa25bd497594dd Validity Not Before: Feb 9 11:00:16 2026 GMT Not After : Feb 10 11:00:16 2026 GMT Subject: CN=ad65d89e516d0e2b10f7f342ead66219489a3064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5b:4d:2c:e0:83:d1:29:d5:a5:95:70:b1:cf: 09:19:98:9a:83:31:5d:3a:78:db:36:c4:73:33:ad: d1:4e:e6:b6:69:20:88:6d:13:29:93:3e:f3:92:57: 9a:33:99:32:4c:1c:cd:6e:0c:30:21:0b:d6:da:45: 47:0f:49:44:23:43:5c:75:96:c0:3a:98:2e:e1:39: d9:9d:9c:0a:80:60:fa:8d:a2:29:b7:58:ce:ab:5d: f0:d6:c8:e8:b3:48:34:9c:b3:fb:7a:a0:ee:86:7a: 26:5f:71:e0:bb:54:20:fd:49:7a:08:da:be:51:65: 69:55:21:96:d3:aa:ed:2d:04:a3:cf:08:c5:34:5a: 49:ff:de:43:38:9d:a1:a9:f6:a2:7b:39:a3:df:a2: ea:8e:8e:58:02:99:0a:23:7e:9b:5d:d8:d4:50:93: 32:0e:d5:bb:5b:e2:30:74:f7:e1:3f:27:72:42:90: 48:29:8d:a3:c4:0e:e0:fd:14:93:c2:f2:f1:1e:79: ab:20:c4:1a:ec:82:57:a0:0d:69:b0:cd:7e:bc:56: 44:2a:9b:5f:84:b7:87:e8:25:14:ca:24:f8:51:49: 0d:ed:94:08:c0:c7:10:b5:98:08:b2:9f:d5:02:ce: 73:68:9e:fd:55:39:10:c2:61:b0:d5:8c:a5:b8:7c: 13:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:65:D8:9E:51:6D:0E:2B:10:F7:F3:42:EA:D6:62:19:48:9A:30:64 X509v3 Authority Key Identifier: keyid:11:3F:6E:F1:6C:E2:AC:28:A5:99:06:03:D1:FA:25:BD:49:75:94:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ET9u8WzirCilmQYD0folvUl1lN0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:be:3c:94:f1:49:63:2d:f7:f4:c9:05:dc:22:5f:39:72:d2: e5:09:c5:fd:21:db:e1:6d:05:29:8c:13:55:b9:47:e7:76:86: e3:1a:c5:f4:79:50:7a:86:58:86:2c:4b:28:06:8e:28:29:5e: 85:ed:b8:bb:33:59:c4:5d:87:21:46:e9:1d:22:a6:b3:0c:54: dd:79:0e:2f:2b:2d:58:78:9c:98:6e:b6:b2:1c:1f:58:0b:43: 09:a8:88:6b:cb:71:cf:12:63:3f:31:63:ba:58:f5:e1:18:e7: 38:82:cd:f4:94:33:29:7b:33:11:6d:93:07:a0:71:9e:dc:06: 77:71:1e:35:27:04:44:c9:02:dc:8f:72:bc:00:82:df:57:2e: f9:7a:55:a1:94:74:42:6e:db:93:44:82:75:30:57:68:ea:72: 29:ee:dd:55:82:48:cf:b8:8a:7b:8e:ab:22:64:7f:4c:83:7e: d4:0a:46:ca:80:3a:e2:a2:4b:4e:e0:44:c1:07:e5:c1:72:f4: 0b:cb:5f:e4:01:91:e1:b8:5e:75:bb:61:21:48:29:c9:1f:aa: ed:d3:4d:b7:26:4d:fe:3c:50:34:50:b1:d4:61:a0:69:2e:d0: ed:8f:5b:7f:e5:0b:98:c7:00:ab:67:84:23:69:4f:a1:20:7c: 77:90:04:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDyvuQHj3OjyulVwnBsj3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExM2Y2ZWYxNmNlMmFjMjhhNTk5MDYwM2QxZmEyNWJkNDk3 NTk0ZGQwHhcNMjYwMjA5MTEwMDE2WhcNMjYwMjEwMTEwMDE2WjAzMTEwLwYDVQQD EyhhZDY1ZDg5ZTUxNmQwZTJiMTBmN2YzNDJlYWQ2NjIxOTQ4OWEzMDY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ltNLOCD0SnVpZVwsc8JGZiagzFd OnjbNsRzM63RTua2aSCIbRMpkz7zkleaM5kyTBzNbgwwIQvW2kVHD0lEI0NcdZbA Opgu4TnZnZwKgGD6jaIpt1jOq13w1sjos0g0nLP7eqDuhnomX3Hgu1Qg/Ul6CNq+ UWVpVSGW06rtLQSjzwjFNFpJ/95DOJ2hqfaiezmj36Lqjo5YApkKI36bXdjUUJMy DtW7W+IwdPfhPydyQpBIKY2jxA7g/RSTwvLxHnmrIMQa7IJXoA1psM1+vFZEKptf hLeH6CUUyiT4UUkN7ZQIwMcQtZgIsp/VAs5zaJ79VTkQwmGw1YyluHwTYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK1l2J5RbQ4rEPfzQurWYhlImjBkMB8GA1UdIwQY MBaAFBE/bvFs4qwopZkGA9H6Jb1JdZTdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVQ5dThXemlyQ2lsbVFZRDBmb2x2VWwxbE4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8zYjU4NzctYWE2NS00OWZjLTg1OWQt OTA1ZGJhYjhiZDU3LzEvRVQ5dThXemlyQ2lsbVFZRDBmb2x2VWwxbE4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8zYjU4NzctYWE2NS00OWZjLTg1OWQtOTA1ZGJhYjhiZDU3 LzEvRVQ5dThXemlyQ2lsbVFZRDBmb2x2VWwxbE4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhr48lPFJ Yy339MkF3CJfOXLS5QnF/SHb4W0FKYwTVblH53aG4xrF9HlQeoZYhixLKAaOKCle he24uzNZxF2HIUbpHSKmswxU3XkOLystWHicmG62shwfWAtDCaiIa8txzxJjPzFj ulj14RjnOILN9JQzKXszEW2TB6BxntwGd3EeNScERMkC3I9yvACC31cu+XpVoZR0 Qm7bk0SCdTBXaOpyKe7dVYJIz7iKe46rImR/TIN+1ApGyoA64qJLTuBEwQflwXL0 C8tf5AGR4bhedbthIUgpyR+q7dNNtyZN/jxQNFCx1GGgaS7Q7Y9bf+ULmMcAq2eE I2lPoSB8d5AExQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:48 2026 by rpki-client