This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json) Hash identifier: yJh8OIAcvjn/AdbrdKZETiKJuhaon1nBA8namhQ7tFs= Subject key identifier: AB:A4:BC:3F:5D:BD:4F:00:81:20:FF:43:D0:5A:67:7C:B9:A4:0F:4F Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c Certificate serial: 019C25F392A2E40B0F11055D995876B29E00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft Manifest number: 0387 Signing time: Wed 04 Feb 2026 00:00:45 +0000 Manifest this update: Wed 04 Feb 2026 00:00:45 +0000 Manifest next update: Thu 05 Feb 2026 00:00:45 +0000 Files and hashes: 1: 1-w3-HT-b4gN55Ez02d0Ltxhd_18.roa (hash: SZE3EWQBz3QYJjq31FoNPzS9VUyILcF5vCKxR6HmvGg=) 2: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: PDXzYLo9MIoaAL4WFTLEsihRM4dsiUGtKtMit6OR+pI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:25:f3:92:a2:e4:0b:0f:11:05:5d:99:58:76:b2:9e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c Validity Not Before: Feb 4 00:00:45 2026 GMT Not After : Feb 5 00:00:45 2026 GMT Subject: CN=aba4bc3f5dbd4f008120ff43d05a677cb9a40f4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c2:bd:ec:3c:d8:4f:0d:c8:fe:8b:a2:1c:67: 6d:bb:b1:60:7a:ed:fe:5f:f2:c5:f0:f6:99:40:17: 90:5e:1d:72:de:ac:12:b8:0a:d0:b5:b8:d5:f4:f2: 76:76:23:cb:d5:45:d9:bd:2e:d1:92:5f:b1:fe:7d: c2:91:b9:d4:d5:3c:2c:1e:a8:2d:6f:08:f6:5e:ee: cd:cd:09:33:8d:2f:71:45:24:c6:65:78:47:de:20: 75:21:b9:94:93:a8:6b:fc:23:e9:f7:a8:b4:a1:eb: 9f:e7:df:f4:2e:c6:e2:95:9c:13:91:37:34:1c:f2: 00:1f:96:83:2c:d4:7c:a4:76:e1:9b:c7:9c:6f:c2: 0b:20:d9:17:28:32:f0:89:b1:d3:48:b0:3d:ca:15: 93:ba:2b:74:2a:e4:7d:ff:af:43:b7:4b:77:e2:6e: 65:15:a7:cf:8a:6f:44:11:af:5d:2c:35:6f:b9:a5: 4b:9a:30:a3:eb:d4:23:6d:b3:62:e0:0d:e8:ae:ea: d2:85:b0:06:a2:a5:dd:d8:0b:38:16:5a:99:9f:5c: 58:05:dc:00:e9:b1:7e:f9:1b:3a:9f:c3:09:73:27: ef:fc:0c:7d:48:12:54:82:6e:f8:0c:8a:1e:49:6d: 3e:fc:10:dd:88:95:3a:45:30:1a:5f:d0:f9:e8:d5: 5c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:A4:BC:3F:5D:BD:4F:00:81:20:FF:43:D0:5A:67:7C:B9:A4:0F:4F X509v3 Authority Key Identifier: keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:8a:d9:a3:93:40:f3:d3:a6:cf:37:d9:ab:c5:f8:27:c3:a6: d7:cd:71:4b:2c:91:77:1b:69:45:8b:27:15:7e:e4:9d:13:2e: 4f:cc:3b:3d:c3:d8:24:15:d1:85:01:a4:52:47:8b:41:14:d2: b9:e0:fa:b5:18:8c:ff:b4:44:38:4c:aa:74:c3:71:30:f3:1b: e6:a0:19:72:d6:4d:fa:a5:48:a8:f9:97:81:a1:ab:94:f2:c2: ae:b7:1a:43:9f:e9:b1:e4:86:60:7d:d9:b5:03:81:c9:b9:44: fa:05:3d:f9:66:a8:db:22:aa:31:02:95:3b:07:75:a6:80:43: e8:d7:04:bd:d2:95:4f:0d:48:c3:99:55:01:39:f5:ed:08:cc: ef:9e:c5:7d:0f:32:44:fa:be:17:78:15:94:9b:49:a5:dc:ea: b5:d0:73:d3:e9:68:f7:14:c0:c4:b7:60:b1:24:d5:c5:52:38: 00:74:b8:fa:c6:d6:d1:b2:2f:03:aa:37:4f:b1:2f:17:da:7c: 64:d6:af:7a:b0:63:c5:80:d7:4e:9a:44:1b:d5:a6:da:72:97: 92:03:f8:49:d8:21:7a:a0:18:db:0f:a7:93:5b:bf:10:2c:da: a7:7e:4a:ad:65:34:ca:a2:dd:90:99:d5:34:1a:89:09:2d:d2: 04:81:bb:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwl85Ki5AsPEQVdmVh2sp4AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTg1YWQ0M2I3YjQ3ZTc1Mjg3ODMwNzE4NDc5NGQ3MGEw Mjc2NmMwHhcNMjYwMjA0MDAwMDQ1WhcNMjYwMjA1MDAwMDQ1WjAzMTEwLwYDVQQD EyhhYmE0YmMzZjVkYmQ0ZjAwODEyMGZmNDNkMDVhNjc3Y2I5YTQwZjRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMK97DzYTw3I/ouiHGdtu7Fgeu3+ X/LF8PaZQBeQXh1y3qwSuArQtbjV9PJ2diPL1UXZvS7Rkl+x/n3CkbnU1TwsHqgt bwj2Xu7NzQkzjS9xRSTGZXhH3iB1IbmUk6hr/CPp96i0oeuf59/0LsbilZwTkTc0 HPIAH5aDLNR8pHbhm8ecb8ILINkXKDLwibHTSLA9yhWTuit0KuR9/69Dt0t34m5l FafPim9EEa9dLDVvuaVLmjCj69QjbbNi4A3orurShbAGoqXd2As4FlqZn1xYBdwA 6bF++Rs6n8MJcyfv/Ax9SBJUgm74DIoeSW0+/BDdiJU6RTAaX9D56NVcDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKukvD9dvU8AgSD/Q9BaZ3y5pA9PMB8GA1UdIwQY MBaAFEyoWtQ7e0fnUoeDBxhHlNcKAnZsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMt MjIyMjUyOTI5ODczLzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMtMjIyMjUyOTI5ODcz LzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABYrZo5NA 89OmzzfZq8X4J8Om181xSyyRdxtpRYsnFX7knRMuT8w7PcPYJBXRhQGkUkeLQRTS ueD6tRiM/7REOEyqdMNxMPMb5qAZctZN+qVIqPmXgaGrlPLCrrcaQ5/pseSGYH3Z tQOByblE+gU9+Wao2yKqMQKVOwd1poBD6NcEvdKVTw1Iw5lVATn17QjM757FfQ8y RPq+F3gVlJtJpdzqtdBz0+lo9xTAxLdgsSTVxVI4AHS4+sbW0bIvA6o3T7EvF9p8 ZNaverBjxYDXTppEG9Wm2nKXkgP4SdgheqAY2w+nk1u/ECzap35KrWU0yqLdkJnV NBqJCS3SBIG7Cg== -----END CERTIFICATE-----Generated at Wed Feb 4 10:48:21 2026 by rpki-client