This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json)
Hash identifier: n+8i4xqn7mLlmMHQi4khNfq+OxIDswIcyoeq42b6Se0=
Subject key identifier: 08:F5:38:BF:2F:3D:DE:87:DB:54:9B:96:AA:2D:C4:C3:D0:03:0A:2E
Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903
Certificate serial: 019C44A29B3CBA52EA1DB4BBF7198506EF9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
Manifest number: 10CC
Signing time: Mon 09 Feb 2026 23:00:33 +0000
Manifest this update: Mon 09 Feb 2026 23:00:33 +0000
Manifest next update: Tue 10 Feb 2026 23:00:33 +0000
Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: DjQnJ8D6Yo7fGP6X6hs0Wn8D1jJhBs1YyzIxZ2ktR6A=)
2: uTD6khWcd31ZzRZAtfj7o4AtIHw.roa (hash: 69oOJR8ncC7sjtYVQ8SZHCT4Cq2KZtCn6uWehRleXPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Feb 2026 21:05:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:44:a2:9b:3c:ba:52:ea:1d:b4:bb:f7:19:85:06:ef:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2834429775e6555e5742492286254b1da9f1903
Validity
Not Before: Feb 9 23:00:33 2026 GMT
Not After : Feb 10 23:00:33 2026 GMT
Subject: CN=08f538bf2f3dde87db549b96aa2dc4c3d0030a2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fc:fa:0b:91:94:4a:b0:23:b8:4a:81:00:ed:
7a:7a:89:72:60:71:9f:bd:bb:ad:ff:48:58:41:4f:
49:1d:5e:41:b0:d3:81:2f:09:d9:01:e1:8d:0c:ff:
ac:f4:10:fd:74:b0:1d:62:ba:b3:a5:85:93:8f:b1:
ca:ac:de:db:43:41:49:73:a8:8f:43:b9:1c:d7:fe:
13:fe:43:17:ce:c7:a2:e3:89:c4:a0:52:cd:5d:09:
0f:6d:75:c3:7c:24:68:f4:3e:ea:eb:dd:c0:9e:bc:
2b:0a:a0:a9:1b:62:79:56:f7:6f:d3:ea:82:ec:31:
27:21:92:f9:80:e6:92:d6:01:d3:98:71:75:31:30:
e4:ec:46:c7:5a:12:11:51:e9:4e:8e:b0:a8:03:36:
48:d4:9c:16:1b:a4:da:57:ce:d8:1f:78:8b:3c:11:
32:34:f3:f3:00:d6:da:6c:91:c7:60:01:21:bf:49:
e0:e3:3a:24:ba:5d:1a:53:6e:9c:27:00:b1:18:6c:
f0:f4:01:95:2a:bc:6e:15:c4:20:d7:0b:94:9a:66:
6a:d8:b5:21:67:f5:24:18:a1:58:93:7a:b0:b9:5a:
d8:65:a6:bd:d9:88:d4:54:bc:22:39:ab:0f:6c:c8:
19:98:ec:43:f8:11:79:82:46:58:f4:ee:2f:c1:21:
1e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F5:38:BF:2F:3D:DE:87:DB:54:9B:96:AA:2D:C4:C3:D0:03:0A:2E
X509v3 Authority Key Identifier:
keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:e9:3a:6a:8c:ba:46:13:50:7b:cf:1b:b4:3d:e5:ba:32:fb:
b3:c9:24:78:65:90:f6:59:79:87:b7:f9:ca:2f:c7:04:f1:e2:
c0:42:67:6e:54:05:dd:a3:82:76:fb:c9:5b:2f:12:87:84:79:
76:f5:d0:f7:16:9b:a4:99:24:07:58:00:55:a0:e4:85:b1:df:
a4:29:cc:9d:a2:73:f2:b1:ac:f6:c7:91:a0:89:14:49:57:5d:
c6:53:03:75:52:f5:5b:49:e6:66:18:44:0e:c7:33:55:c3:22:
e7:b2:a3:21:ea:72:30:47:7e:cf:82:08:1e:9c:40:8f:9d:d5:
c7:1d:e1:98:fe:a5:4e:8e:ac:06:e3:a8:43:b9:8a:ba:e3:75:
1e:e5:4a:b8:7c:62:82:bb:9d:dd:b0:94:a8:57:e7:96:5c:4a:
6a:4a:71:b3:1f:11:67:e2:b6:87:f3:64:42:81:7d:8a:73:43:
05:98:fc:d7:97:b2:07:57:db:fe:97:3e:09:d9:71:f4:ae:b7:
fd:20:a1:33:d0:d7:b3:d1:b5:5b:d0:e9:5e:26:59:96:4e:95:
a8:ef:6c:66:b3:7e:91:79:75:5c:d3:37:87:97:86:49:05:e6:
ec:0a:29:44:ae:c2:a8:5f:b5:81:4f:5b:a1:74:ca:be:fa:26:
81:90:c5:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 10 02:51:03 2026 by rpki-client