This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json) Hash identifier: SJ2EPjnzFvpIaPKh8OeDtmCrNkGnYV4N9pZQuOHuLEs= Subject key identifier: 16:C1:52:22:12:35:B0:0F:87:94:A8:A7:5F:E7:AB:71:08:B6:AE:24 Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03 Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903 Certificate serial: 019C42B49EC330B3A9A7CC36E59B55C571DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft Manifest number: 10CB Signing time: Mon 09 Feb 2026 14:00:59 +0000 Manifest this update: Mon 09 Feb 2026 14:00:59 +0000 Manifest next update: Tue 10 Feb 2026 14:00:59 +0000 Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: LVb1s/+weB9cULssOBmtJ021dfg1LVyYQ1HF7GImMKU=) 2: uTD6khWcd31ZzRZAtfj7o4AtIHw.roa (hash: 69oOJR8ncC7sjtYVQ8SZHCT4Cq2KZtCn6uWehRleXPg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:9e:c3:30:b3:a9:a7:cc:36:e5:9b:55:c5:71:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2834429775e6555e5742492286254b1da9f1903 Validity Not Before: Feb 9 14:00:59 2026 GMT Not After : Feb 10 14:00:59 2026 GMT Subject: CN=16c152221235b00f8794a8a75fe7ab7108b6ae24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:78:7b:8c:9f:e4:bd:21:96:62:e2:1d:93:42: bc:66:bc:7f:46:7c:a9:4c:8f:49:72:65:43:15:46: 30:1f:e2:78:0b:68:0d:cd:bb:66:58:9d:97:95:91: 85:45:b3:d7:ae:d3:1a:18:fd:81:91:58:df:4e:d0: b8:fb:f5:af:71:c4:5b:ee:d2:90:95:59:96:06:e4: 9a:e7:84:12:2c:49:d2:08:ff:79:05:6a:c7:93:8d: 07:51:c8:35:9b:85:05:82:3a:22:8f:53:d9:95:f4: 1d:f7:06:d7:bc:0b:b8:04:dd:66:1a:94:4e:c7:0c: db:d9:80:8d:c6:cb:1f:70:0d:a7:69:f0:19:a2:44: f8:41:8f:cf:92:4f:51:db:38:7c:32:79:c6:99:0b: 62:d0:97:53:c7:43:69:63:d5:2d:e7:5f:e0:78:7e: d0:4e:87:e5:e4:10:06:b0:a4:15:be:e8:23:e8:a9: 8e:b5:51:9f:d5:27:70:8f:0b:a0:28:03:80:9e:e0: db:6e:63:ff:40:fe:43:fa:95:0a:d2:15:05:3e:f7: c6:25:f1:7d:76:b1:c1:0c:a4:7c:77:b8:5e:4c:ac: b0:8e:3a:b5:99:ae:c3:ad:b1:5a:39:05:d8:67:bf: 97:d0:9a:e2:95:87:07:a7:85:79:75:f8:a0:37:d5: a3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:C1:52:22:12:35:B0:0F:87:94:A8:A7:5F:E7:AB:71:08:B6:AE:24 X509v3 Authority Key Identifier: keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:cc:25:28:6d:d9:85:3e:f1:f9:7e:25:ac:e8:3c:d2:e2:7d: fa:78:df:25:f7:c9:2a:81:83:0d:0f:61:fa:26:10:fb:c6:9a: 64:ec:c7:33:5a:f8:c7:09:80:9d:92:bc:86:74:68:e0:e8:20: 63:35:8c:b4:be:14:08:de:f2:06:8c:ae:b6:aa:16:ff:96:aa: 25:45:dd:f9:b3:71:73:93:5f:9e:0a:bf:c6:91:6c:fa:72:69: 92:b6:87:8b:e7:1c:61:d6:28:f5:5c:0d:d3:9a:af:32:8a:b5: 52:63:a9:23:38:6c:60:ba:43:2e:9b:15:4b:e5:2e:68:66:af: 4c:21:ff:bd:f3:04:52:c0:58:37:3a:a2:8f:32:d2:67:f6:ee: 0f:fb:2a:14:12:08:9a:f0:6e:2d:ef:bb:1d:48:a7:6e:03:ca: 88:5f:de:91:13:ec:ff:89:8c:bb:93:5b:37:e5:c8:bf:8a:55: 08:e7:ea:e2:ff:be:b2:2c:e7:e5:8e:b8:c3:9a:2b:8d:f0:e6: c5:59:05:ec:43:a3:56:2b:ec:67:01:75:c3:10:84:75:9c:05: 7c:33:c5:4d:8c:85:ff:6a:a1:99:3d:ce:94:13:47:9f:29:6b: 50:51:9c:30:91:a6:3b:23:79:bf:95:03:27:05:c5:8f:3d:8b: 12:04:cb:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtJ7DMLOpp8w25ZtVxXHaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyODM0NDI5Nzc1ZTY1NTVlNTc0MjQ5MjI4NjI1NGIxZGE5 ZjE5MDMwHhcNMjYwMjA5MTQwMDU5WhcNMjYwMjEwMTQwMDU5WjAzMTEwLwYDVQQD EygxNmMxNTIyMjEyMzViMDBmODc5NGE4YTc1ZmU3YWI3MTA4YjZhZTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3h7jJ/kvSGWYuIdk0K8Zrx/Rnyp TI9JcmVDFUYwH+J4C2gNzbtmWJ2XlZGFRbPXrtMaGP2BkVjfTtC4+/WvccRb7tKQ lVmWBuSa54QSLEnSCP95BWrHk40HUcg1m4UFgjoij1PZlfQd9wbXvAu4BN1mGpRO xwzb2YCNxssfcA2nafAZokT4QY/Pkk9R2zh8MnnGmQti0JdTx0NpY9Ut51/geH7Q Tofl5BAGsKQVvugj6KmOtVGf1SdwjwugKAOAnuDbbmP/QP5D+pUK0hUFPvfGJfF9 drHBDKR8d7heTKywjjq1ma7DrbFaOQXYZ7+X0JrilYcHp4V5dfigN9WjVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBbBUiISNbAPh5Sop1/nq3EItq4kMB8GA1UdIwQY MBaAFOKDRCl3XmVV5XQkkihiVLHanxkDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9iNjQ2OGQtMTBlZC00ZDQ4LTgwM2Mt ZWE5NzY2NWMxM2RmLzEvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9iNjQ2OGQtMTBlZC00ZDQ4LTgwM2MtZWE5NzY2NWMxM2Rm LzEvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjswlKG3Z hT7x+X4lrOg80uJ9+njfJffJKoGDDQ9h+iYQ+8aaZOzHM1r4xwmAnZK8hnRo4Ogg YzWMtL4UCN7yBoyutqoW/5aqJUXd+bNxc5Nfngq/xpFs+nJpkraHi+ccYdYo9VwN 05qvMoq1UmOpIzhsYLpDLpsVS+UuaGavTCH/vfMEUsBYNzqijzLSZ/buD/sqFBII mvBuLe+7HUinbgPKiF/ekRPs/4mMu5NbN+XIv4pVCOfq4v++sizn5Y64w5orjfDm xVkF7EOjVivsZwF1wxCEdZwFfDPFTYyF/2qhmT3OlBNHnylrUFGcMJGmOyN5v5UD JwXFjz2LEgTLSA== -----END CERTIFICATE-----Generated at Tue Feb 10 00:12:47 2026 by rpki-client