This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft File: S5o7nhAjIJXBjSZERAzlxYoTizU.mft (raw, json) Hash identifier: Uou4+oWiB1CqeZDuXhWwSLqSH2508U5A8tXgsbqSkJw= Subject key identifier: EC:2E:4C:8D:EF:15:7D:B7:75:F6:DB:88:F8:77:71:F3:10:C2:01:34 Authority key identifier: 4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35 Certificate issuer: /CN=4b9a3b9e10232095c18d2644440ce5c58a138b35 Certificate serial: 019C427DAD5DF45A83E144599344894B2AEE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft Manifest number: 0FA8 Signing time: Mon 09 Feb 2026 13:00:58 +0000 Manifest this update: Mon 09 Feb 2026 13:00:58 +0000 Manifest next update: Tue 10 Feb 2026 13:00:58 +0000 Files and hashes: 1: S5o7nhAjIJXBjSZERAzlxYoTizU.crl (hash: Sjw6/O4f+e8BSeJz/mR+D7594LcVI0zphNtzXSoNlNM=) 2: _T6zV2ELZWjUdtaXJfX-mXC7l2M.roa (hash: Di+3zjNxD4VBkQkrMYOgpBTt4aXpGzdYOnM8KOhwPZo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:ad:5d:f4:5a:83:e1:44:59:93:44:89:4b:2a:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b9a3b9e10232095c18d2644440ce5c58a138b35 Validity Not Before: Feb 9 13:00:58 2026 GMT Not After : Feb 10 13:00:58 2026 GMT Subject: CN=ec2e4c8def157db775f6db88f87771f310c20134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:02:ca:30:74:71:26:ee:42:bc:35:44:f2:63: 1f:b4:bb:a6:8a:ba:43:31:07:78:e8:5c:f9:8f:d2: f5:e8:71:f6:c3:b8:6f:90:d3:15:9d:33:e4:bf:67: de:1c:c7:ce:f3:13:b7:b4:eb:1f:17:25:57:52:e3: 26:f2:ff:ef:80:c6:31:c8:e9:75:f8:88:64:c8:87: e1:2c:aa:78:31:dc:c8:d8:ab:30:0f:17:ce:53:97: 55:6c:08:7e:0c:68:07:40:b1:9a:17:fc:da:1d:50: 1e:7e:85:0c:f6:44:7a:c5:37:0f:e9:76:eb:71:6a: 5d:00:51:f7:1b:24:0a:0c:42:a0:5c:6f:0a:85:0a: d2:28:8c:e0:b5:6b:d9:c0:48:42:96:aa:e9:f3:2d: 6f:9c:17:65:5c:a2:36:34:f9:06:b2:3f:23:47:74: 45:bc:9c:3e:3b:77:95:68:d7:a7:97:37:08:ce:2d: 72:be:4d:c8:14:c1:af:38:ff:04:d2:1b:5e:89:c5: a4:61:ae:93:62:14:4f:99:13:5b:e8:90:95:b6:5a: bb:ea:ff:77:2e:52:bc:9a:66:6d:83:d7:79:b5:ed: da:ca:c3:cb:d4:c4:0c:5a:13:4e:80:ec:f8:fb:97: 74:27:53:4f:f3:84:7e:66:87:1c:89:89:eb:de:7a: 2f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:2E:4C:8D:EF:15:7D:B7:75:F6:DB:88:F8:77:71:F3:10:C2:01:34 X509v3 Authority Key Identifier: keyid:4B:9A:3B:9E:10:23:20:95:C1:8D:26:44:44:0C:E5:C5:8A:13:8B:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5o7nhAjIJXBjSZERAzlxYoTizU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f21ee0-d730-45db-97bd-c34be03c15db/1/S5o7nhAjIJXBjSZERAzlxYoTizU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:48:41:59:34:d2:5d:9a:5c:25:14:63:a7:fc:f4:30:eb:ee: de:67:0d:3b:92:65:e4:06:32:53:6e:fc:ad:11:27:8d:35:c7: d8:1b:e5:7f:d7:d9:71:63:b7:8e:f9:1d:11:07:05:43:fa:19: 17:f5:bb:b7:a8:78:3f:ea:31:c3:49:23:7b:6a:b9:c0:39:01: 81:83:20:51:cc:af:cb:a5:2e:f8:e1:ff:b1:e4:ce:4d:b0:b7: dc:39:36:a4:58:6a:0e:4b:a5:a4:b4:61:c6:b3:82:e5:50:0e: e4:4f:bf:48:1f:26:11:97:c8:a0:ca:57:0f:9a:2b:29:cc:f6: 23:e4:9d:55:83:b3:d1:59:69:ad:07:d7:02:7b:97:31:58:19: 96:8c:ce:b6:93:b1:98:d4:29:65:c0:c6:05:92:07:09:a1:25: 7c:57:cc:55:bf:35:8f:f7:7d:de:d1:43:84:70:83:7c:ba:b1: a7:5b:63:60:c6:39:a1:74:59:b5:0b:6d:b9:0f:32:09:72:5a: 2a:a8:a8:36:86:ad:b5:ac:4e:2a:8b:25:39:30:36:99:0c:d4: 46:92:14:48:8a:7d:1a:08:0e:99:77:26:03:e2:03:90:27:f6: 83:cf:bb:40:5a:7f:7d:10:10:d0:0d:85:f6:70:22:02:7b:54: 2a:ea:44:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfa1d9FqD4URZk0SJSyruMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiOWEzYjllMTAyMzIwOTVjMThkMjY0NDQ0MGNlNWM1OGEx MzhiMzUwHhcNMjYwMjA5MTMwMDU4WhcNMjYwMjEwMTMwMDU4WjAzMTEwLwYDVQQD EyhlYzJlNGM4ZGVmMTU3ZGI3NzVmNmRiODhmODc3NzFmMzEwYzIwMTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQLKMHRxJu5CvDVE8mMftLumirpD MQd46Fz5j9L16HH2w7hvkNMVnTPkv2feHMfO8xO3tOsfFyVXUuMm8v/vgMYxyOl1 +IhkyIfhLKp4MdzI2KswDxfOU5dVbAh+DGgHQLGaF/zaHVAefoUM9kR6xTcP6Xbr cWpdAFH3GyQKDEKgXG8KhQrSKIzgtWvZwEhClqrp8y1vnBdlXKI2NPkGsj8jR3RF vJw+O3eVaNenlzcIzi1yvk3IFMGvOP8E0hteicWkYa6TYhRPmRNb6JCVtlq76v93 LlK8mmZtg9d5te3aysPL1MQMWhNOgOz4+5d0J1NP84R+ZocciYnr3novIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOwuTI3vFX23dfbbiPh3cfMQwgE0MB8GA1UdIwQY MBaAFEuaO54QIyCVwY0mREQM5cWKE4s1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzVvN25oQWpJSlhCalNaRVJBemx4WW9UaXpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9mMjFlZTAtZDczMC00NWRiLTk3YmQt YzM0YmUwM2MxNWRiLzEvUzVvN25oQWpJSlhCalNaRVJBemx4WW9UaXpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS9mMjFlZTAtZDczMC00NWRiLTk3YmQtYzM0YmUwM2MxNWRi LzEvUzVvN25oQWpJSlhCalNaRVJBemx4WW9UaXpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkUhBWTTS XZpcJRRjp/z0MOvu3mcNO5Jl5AYyU278rREnjTXH2Bvlf9fZcWO3jvkdEQcFQ/oZ F/W7t6h4P+oxw0kje2q5wDkBgYMgUcyvy6Uu+OH/seTOTbC33Dk2pFhqDkulpLRh xrOC5VAO5E+/SB8mEZfIoMpXD5orKcz2I+SdVYOz0VlprQfXAnuXMVgZlozOtpOx mNQpZcDGBZIHCaElfFfMVb81j/d93tFDhHCDfLqxp1tjYMY5oXRZtQttuQ8yCXJa KqioNoattaxOKoslOTA2mQzURpIUSIp9GggOmXcmA+IDkCf2g8+7QFp/fRAQ0A2F 9nAiAntUKupEzQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:56 2026 by rpki-client