This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft File: RmSgU4XAYmgVApGX6xUGSF09bRw.mft (raw, json) Hash identifier: pUrPu15ShTwZbpZ+pruPHnIyF8D3muxoJM1EX322hEY= Subject key identifier: E1:D0:F1:2B:31:17:F0:C1:0A:E6:3C:3D:B9:06:1C:35:98:5F:D2:CC Authority key identifier: 46:64:A0:53:85:C0:62:68:15:02:91:97:EB:15:06:48:5D:3D:6D:1C Certificate issuer: /CN=4664a05385c0626815029197eb1506485d3d6d1c Certificate serial: 019C427DE09C045EFA79A1DE25AB5D72E9C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft Manifest number: 0965 Signing time: Mon 09 Feb 2026 13:01:11 +0000 Manifest this update: Mon 09 Feb 2026 13:01:11 +0000 Manifest next update: Tue 10 Feb 2026 13:01:11 +0000 Files and hashes: 1: RmSgU4XAYmgVApGX6xUGSF09bRw.crl (hash: wcE7qhEYxmgnSZZqAyRFnlGHoUvHDkGYrV3KsEsBUZM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:e0:9c:04:5e:fa:79:a1:de:25:ab:5d:72:e9:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4664a05385c0626815029197eb1506485d3d6d1c Validity Not Before: Feb 9 13:01:11 2026 GMT Not After : Feb 10 13:01:11 2026 GMT Subject: CN=e1d0f12b3117f0c10ae63c3db9061c35985fd2cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:85:1d:d4:59:34:12:96:b4:83:59:b4:dc:58: d7:ac:8e:04:80:2a:0e:12:5d:be:17:97:2e:4d:f5: 89:7e:54:f5:ec:4f:9f:8c:cf:a9:0c:00:30:c4:66: 99:72:13:ab:04:1d:f3:bc:9c:cd:00:ee:b4:18:f3: be:09:d5:13:fe:e7:fa:11:19:bf:58:de:21:3d:bf: 1d:d9:21:f6:90:d6:eb:cb:6f:52:f1:19:eb:08:09: 49:cb:41:be:d7:09:c5:c4:71:62:78:2f:1a:3e:b5: c2:43:70:d6:57:59:25:e1:22:26:66:a0:a1:d4:b7: f9:d2:21:86:0e:4e:56:ca:f9:40:20:ab:05:4d:a3: e3:bb:24:be:5c:6f:ea:f5:c1:c2:8b:d8:5c:e1:7d: c5:cf:04:69:aa:29:1d:77:e9:e6:ed:80:1a:3a:55: 44:cc:b0:e6:6a:94:cb:f2:9a:c6:73:ec:2a:34:de: 4d:d3:03:d9:90:6c:21:74:b0:89:5a:39:79:de:6d: 22:ff:5e:2f:5d:82:e7:d1:fc:8a:8c:31:ed:0b:b3: 15:27:a1:77:a9:4a:76:ce:9a:8a:19:f9:24:f2:f7: 5a:c7:9e:42:74:75:07:59:00:bc:81:b2:69:90:00: 0b:c6:96:40:51:85:9f:94:71:2e:7a:71:09:ea:0f: b1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:D0:F1:2B:31:17:F0:C1:0A:E6:3C:3D:B9:06:1C:35:98:5F:D2:CC X509v3 Authority Key Identifier: keyid:46:64:A0:53:85:C0:62:68:15:02:91:97:EB:15:06:48:5D:3D:6D:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:d7:77:d3:57:cb:ef:da:54:75:f5:e2:20:ce:5c:a6:d8:15: fa:3e:bf:2e:24:84:c5:77:11:ef:5c:ed:31:7d:dd:3d:4f:fc: c4:e3:d0:30:93:fc:75:aa:58:4b:54:8e:10:48:5f:8b:70:41: b6:c9:7d:d7:e2:e9:b8:19:d6:16:43:07:fa:6c:07:e6:ac:d7: 16:72:af:28:14:c3:64:6c:19:58:a5:69:73:08:44:b7:59:03: ea:10:71:92:09:15:52:29:ce:b6:0a:07:fd:56:67:eb:0a:62: cd:6b:78:5d:cc:f7:5c:96:14:ba:bb:08:22:ff:e5:7b:2f:e5: fc:a2:db:ad:eb:e4:40:aa:ec:e2:5d:61:e9:78:31:10:90:ff: 61:ff:e6:cb:f3:a3:45:5d:84:8b:4c:49:04:e5:34:97:aa:44: f7:e8:ca:26:e7:90:5f:8e:c5:f0:7e:2a:d2:d5:af:d9:c6:0b: 7f:22:88:28:df:9f:28:54:21:1c:b9:9f:9c:2a:e8:f9:9d:f8: 11:ee:34:ab:a0:34:31:91:ef:40:89:fd:4a:1b:7a:65:cf:eb: d1:c4:50:03:a5:8c:1c:e4:bf:af:d9:73:d9:86:0d:20:a8:c3: 85:52:24:a4:e0:d2:6c:5c:e1:79:4a:ef:b0:c8:18:46:29:bd: b2:2c:92:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfeCcBF76eaHeJatdcunHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2NjRhMDUzODVjMDYyNjgxNTAyOTE5N2ViMTUwNjQ4NWQz ZDZkMWMwHhcNMjYwMjA5MTMwMTExWhcNMjYwMjEwMTMwMTExWjAzMTEwLwYDVQQD EyhlMWQwZjEyYjMxMTdmMGMxMGFlNjNjM2RiOTA2MWMzNTk4NWZkMmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyoUd1Fk0Epa0g1m03FjXrI4EgCoO El2+F5cuTfWJflT17E+fjM+pDAAwxGaZchOrBB3zvJzNAO60GPO+CdUT/uf6ERm/ WN4hPb8d2SH2kNbry29S8RnrCAlJy0G+1wnFxHFieC8aPrXCQ3DWV1kl4SImZqCh 1Lf50iGGDk5WyvlAIKsFTaPjuyS+XG/q9cHCi9hc4X3FzwRpqikdd+nm7YAaOlVE zLDmapTL8prGc+wqNN5N0wPZkGwhdLCJWjl53m0i/14vXYLn0fyKjDHtC7MVJ6F3 qUp2zpqKGfkk8vdax55CdHUHWQC8gbJpkAALxpZAUYWflHEuenEJ6g+xtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOHQ8SsxF/DBCuY8PbkGHDWYX9LMMB8GA1UdIwQY MBaAFEZkoFOFwGJoFQKRl+sVBkhdPW0cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUm1TZ1U0WEFZbWdWQXBHWDZ4VUdTRjA5YlJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9iZDc2NDYtYWRkOS00ODU5LTlkZTkt OWM4NDg1NDgzZDU5LzEvUm1TZ1U0WEFZbWdWQXBHWDZ4VUdTRjA5YlJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi9iZDc2NDYtYWRkOS00ODU5LTlkZTktOWM4NDg1NDgzZDU5 LzEvUm1TZ1U0WEFZbWdWQXBHWDZ4VUdTRjA5YlJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAENd301fL 79pUdfXiIM5cptgV+j6/LiSExXcR71ztMX3dPU/8xOPQMJP8dapYS1SOEEhfi3BB tsl91+LpuBnWFkMH+mwH5qzXFnKvKBTDZGwZWKVpcwhEt1kD6hBxkgkVUinOtgoH /VZn6wpizWt4Xcz3XJYUursIIv/ley/l/KLbrevkQKrs4l1h6XgxEJD/Yf/my/Oj RV2Ei0xJBOU0l6pE9+jKJueQX47F8H4q0tWv2cYLfyKIKN+fKFQhHLmfnCro+Z34 Ee40q6A0MZHvQIn9Sht6Zc/r0cRQA6WMHOS/r9lz2YYNIKjDhVIkpODSbFzheUrv sMgYRim9siyS0Q== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:48 2026 by rpki-client