This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft File: 4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json) Hash identifier: BOX0iPPzpeWiXGYGeCU0ZEJ9likLNEmG83Iu/ciEXlI= Subject key identifier: 7C:3E:F4:CC:93:0E:16:EA:21:56:2D:2A:E4:57:2B:1B:FC:04:5A:C4 Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C Certificate issuer: /CN=e041c85b474e8b6c00891d954124ff0c81200d8c Certificate serial: 019C43223D337AB5A52AC2EB52D58EA2F703 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft Manifest number: 0B6A Signing time: Mon 09 Feb 2026 16:00:43 +0000 Manifest this update: Mon 09 Feb 2026 16:00:43 +0000 Manifest next update: Tue 10 Feb 2026 16:00:43 +0000 Files and hashes: 1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: 3bzp3uekulhZVVbvgqpITYwm49yo4NZTi0odH2pBN4A=) 2: _-JfME-Erck4pkvS4WQAD8N3srk.roa (hash: QrEZHXMbaydoz+Hi0SYY4JVGJuxwhF6iX/ilfGhMhOY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:3d:33:7a:b5:a5:2a:c2:eb:52:d5:8e:a2:f7:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c Validity Not Before: Feb 9 16:00:43 2026 GMT Not After : Feb 10 16:00:43 2026 GMT Subject: CN=7c3ef4cc930e16ea21562d2ae4572b1bfc045ac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5e:fc:bc:3d:7b:a4:39:d5:2d:30:eb:cc:0f: 24:25:b8:27:75:fd:37:70:c5:08:22:14:b6:bf:5c: a8:66:09:94:0d:55:1a:5d:9e:74:19:a7:a2:03:cf: e5:c9:51:99:fb:9f:d9:ed:49:07:6e:14:c6:32:07: a1:b9:a4:1b:89:91:05:e0:85:ce:89:9c:91:df:df: 1d:6e:f4:d1:59:c3:fe:bd:93:b4:42:47:8c:ae:d4: 73:0f:35:cc:d1:79:27:91:b8:be:bc:06:4b:d2:a6: 4c:3b:f3:c6:2d:60:c2:16:71:3e:d6:5c:c7:0e:c3: a5:85:b9:8f:36:b8:5f:8d:98:5f:db:e7:65:15:07: 77:81:cf:b3:b5:bc:f1:81:9f:1a:85:30:d4:e6:fe: a5:a7:ca:30:21:59:5b:f9:ee:85:80:71:43:ec:a3: 26:35:92:90:34:40:46:f7:37:f6:33:66:6b:af:f0: 86:9a:a1:04:b2:81:c6:95:85:37:fa:25:9c:e0:b8: 74:61:49:92:db:c7:e3:46:5a:09:ed:61:7f:88:1e: ca:d4:78:49:e5:25:fd:19:ef:4b:cd:ae:b3:35:88: 5d:60:a7:99:ef:3e:c4:ae:51:32:d4:fa:8a:1c:0f: 15:74:84:bb:6d:e8:dc:7a:7c:45:eb:f5:7e:6b:33: 58:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:3E:F4:CC:93:0E:16:EA:21:56:2D:2A:E4:57:2B:1B:FC:04:5A:C4 X509v3 Authority Key Identifier: keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:bd:ec:b1:73:70:3d:b9:54:cb:d2:b0:c4:6b:26:eb:09:f2: 8f:d0:40:3f:c3:10:b0:60:cc:ad:c1:69:b2:34:8d:1e:98:5d: ba:ad:8c:bb:1e:99:fd:8a:ee:67:34:59:71:3c:f9:04:3a:d9: d4:37:de:4c:04:53:b4:ab:1d:42:0d:d9:ae:7c:de:0c:34:c7: b8:02:0e:bc:1f:b5:1d:6a:e6:4f:9d:a3:12:69:c5:95:d6:d2: 22:a5:aa:72:8d:91:55:cb:e5:b7:7b:86:5c:f5:8f:9a:d1:1e: b6:fb:06:97:68:29:a2:d7:dc:ad:34:21:40:aa:6c:6a:8d:7a: 73:1d:a3:67:89:8d:08:1e:b7:34:19:05:da:3d:de:1c:de:1c: 8b:e7:20:78:58:62:c6:d5:0c:91:40:0d:8f:90:a7:57:5f:91: dd:5d:54:0c:0d:2a:6f:ad:23:e6:4e:83:98:bb:51:26:82:71: 70:69:61:9f:3b:56:f5:1c:f2:2c:cd:fb:0f:c6:32:b4:43:84: 02:e7:78:c5:36:f0:15:5f:0d:c6:f0:22:c1:3e:57:cf:6e:45: 88:bb:7c:c0:fc:c8:ca:3d:d9:22:f8:55:ed:05:b5:4b:63:2d: 17:0e:9b:74:46:d8:97:ec:c0:3f:4b:48:dd:75:eb:c8:f7:a8: e6:64:53:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIj0zerWlKsLrUtWOovcDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwNDFjODViNDc0ZThiNmMwMDg5MWQ5NTQxMjRmZjBjODEy MDBkOGMwHhcNMjYwMjA5MTYwMDQzWhcNMjYwMjEwMTYwMDQzWjAzMTEwLwYDVQQD Eyg3YzNlZjRjYzkzMGUxNmVhMjE1NjJkMmFlNDU3MmIxYmZjMDQ1YWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuF78vD17pDnVLTDrzA8kJbgndf03 cMUIIhS2v1yoZgmUDVUaXZ50GaeiA8/lyVGZ+5/Z7UkHbhTGMgehuaQbiZEF4IXO iZyR398dbvTRWcP+vZO0QkeMrtRzDzXM0Xknkbi+vAZL0qZMO/PGLWDCFnE+1lzH DsOlhbmPNrhfjZhf2+dlFQd3gc+ztbzxgZ8ahTDU5v6lp8owIVlb+e6FgHFD7KMm NZKQNEBG9zf2M2Zrr/CGmqEEsoHGlYU3+iWc4Lh0YUmS28fjRloJ7WF/iB7K1HhJ 5SX9Ge9Lza6zNYhdYKeZ7z7ErlEy1PqKHA8VdIS7bejcenxF6/V+azNY/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHw+9MyTDhbqIVYtKuRXKxv8BFrEMB8GA1UdIwQY MBaAFOBByFtHTotsAIkdlUEk/wyBIA2MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC81NDllNGQtOGRlZS00NTliLTkyODMt NDZiYjNmYTI4YjAwLzEvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC81NDllNGQtOGRlZS00NTliLTkyODMtNDZiYjNmYTI4YjAw LzEvNEVISVcwZE9pMndBaVIyVlFTVF9ESUVnRFl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADb3ssXNw PblUy9KwxGsm6wnyj9BAP8MQsGDMrcFpsjSNHphduq2Mux6Z/YruZzRZcTz5BDrZ 1DfeTARTtKsdQg3ZrnzeDDTHuAIOvB+1HWrmT52jEmnFldbSIqWqco2RVcvlt3uG XPWPmtEetvsGl2gpotfcrTQhQKpsao16cx2jZ4mNCB63NBkF2j3eHN4ci+cgeFhi xtUMkUANj5CnV1+R3V1UDA0qb60j5k6DmLtRJoJxcGlhnztW9RzyLM37D8YytEOE Aud4xTbwFV8NxvAiwT5Xz25FiLt8wPzIyj3ZIvhV7QW1S2MtFw6bdEbYl+zAP0tI 3XXryPeo5mRT9Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:17 2026 by rpki-client