This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json) Hash identifier: n+8i4xqn7mLlmMHQi4khNfq+OxIDswIcyoeq42b6Se0= Subject key identifier: 08:F5:38:BF:2F:3D:DE:87:DB:54:9B:96:AA:2D:C4:C3:D0:03:0A:2E Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03 Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903 Certificate serial: 019C44A29B3CBA52EA1DB4BBF7198506EF9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft Manifest number: 10CC Signing time: Mon 09 Feb 2026 23:00:33 +0000 Manifest this update: Mon 09 Feb 2026 23:00:33 +0000 Manifest next update: Tue 10 Feb 2026 23:00:33 +0000 Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: DjQnJ8D6Yo7fGP6X6hs0Wn8D1jJhBs1YyzIxZ2ktR6A=) 2: uTD6khWcd31ZzRZAtfj7o4AtIHw.roa (hash: 69oOJR8ncC7sjtYVQ8SZHCT4Cq2KZtCn6uWehRleXPg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:9b:3c:ba:52:ea:1d:b4:bb:f7:19:85:06:ef:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2834429775e6555e5742492286254b1da9f1903 Validity Not Before: Feb 9 23:00:33 2026 GMT Not After : Feb 10 23:00:33 2026 GMT Subject: CN=08f538bf2f3dde87db549b96aa2dc4c3d0030a2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fc:fa:0b:91:94:4a:b0:23:b8:4a:81:00:ed: 7a:7a:89:72:60:71:9f:bd:bb:ad:ff:48:58:41:4f: 49:1d:5e:41:b0:d3:81:2f:09:d9:01:e1:8d:0c:ff: ac:f4:10:fd:74:b0:1d:62:ba:b3:a5:85:93:8f:b1: ca:ac:de:db:43:41:49:73:a8:8f:43:b9:1c:d7:fe: 13:fe:43:17:ce:c7:a2:e3:89:c4:a0:52:cd:5d:09: 0f:6d:75:c3:7c:24:68:f4:3e:ea:eb:dd:c0:9e:bc: 2b:0a:a0:a9:1b:62:79:56:f7:6f:d3:ea:82:ec:31: 27:21:92:f9:80:e6:92:d6:01:d3:98:71:75:31:30: e4:ec:46:c7:5a:12:11:51:e9:4e:8e:b0:a8:03:36: 48:d4:9c:16:1b:a4:da:57:ce:d8:1f:78:8b:3c:11: 32:34:f3:f3:00:d6:da:6c:91:c7:60:01:21:bf:49: e0:e3:3a:24:ba:5d:1a:53:6e:9c:27:00:b1:18:6c: f0:f4:01:95:2a:bc:6e:15:c4:20:d7:0b:94:9a:66: 6a:d8:b5:21:67:f5:24:18:a1:58:93:7a:b0:b9:5a: d8:65:a6:bd:d9:88:d4:54:bc:22:39:ab:0f:6c:c8: 19:98:ec:43:f8:11:79:82:46:58:f4:ee:2f:c1:21: 1e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F5:38:BF:2F:3D:DE:87:DB:54:9B:96:AA:2D:C4:C3:D0:03:0A:2E X509v3 Authority Key Identifier: keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:e9:3a:6a:8c:ba:46:13:50:7b:cf:1b:b4:3d:e5:ba:32:fb: b3:c9:24:78:65:90:f6:59:79:87:b7:f9:ca:2f:c7:04:f1:e2: c0:42:67:6e:54:05:dd:a3:82:76:fb:c9:5b:2f:12:87:84:79: 76:f5:d0:f7:16:9b:a4:99:24:07:58:00:55:a0:e4:85:b1:df: a4:29:cc:9d:a2:73:f2:b1:ac:f6:c7:91:a0:89:14:49:57:5d: c6:53:03:75:52:f5:5b:49:e6:66:18:44:0e:c7:33:55:c3:22: e7:b2:a3:21:ea:72:30:47:7e:cf:82:08:1e:9c:40:8f:9d:d5: c7:1d:e1:98:fe:a5:4e:8e:ac:06:e3:a8:43:b9:8a:ba:e3:75: 1e:e5:4a:b8:7c:62:82:bb:9d:dd:b0:94:a8:57:e7:96:5c:4a: 6a:4a:71:b3:1f:11:67:e2:b6:87:f3:64:42:81:7d:8a:73:43: 05:98:fc:d7:97:b2:07:57:db:fe:97:3e:09:d9:71:f4:ae:b7: fd:20:a1:33:d0:d7:b3:d1:b5:5b:d0:e9:5e:26:59:96:4e:95: a8:ef:6c:66:b3:7e:91:79:75:5c:d3:37:87:97:86:49:05:e6: ec:0a:29:44:ae:c2:a8:5f:b5:81:4f:5b:a1:74:ca:be:fa:26: 81:90:c5:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEops8ulLqHbS79xmFBu+aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyODM0NDI5Nzc1ZTY1NTVlNTc0MjQ5MjI4NjI1NGIxZGE5 ZjE5MDMwHhcNMjYwMjA5MjMwMDMzWhcNMjYwMjEwMjMwMDMzWjAzMTEwLwYDVQQD EygwOGY1MzhiZjJmM2RkZTg3ZGI1NDliOTZhYTJkYzRjM2QwMDMwYTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxPz6C5GUSrAjuEqBAO16eolyYHGf vbut/0hYQU9JHV5BsNOBLwnZAeGNDP+s9BD9dLAdYrqzpYWTj7HKrN7bQ0FJc6iP Q7kc1/4T/kMXzsei44nEoFLNXQkPbXXDfCRo9D7q693AnrwrCqCpG2J5Vvdv0+qC 7DEnIZL5gOaS1gHTmHF1MTDk7EbHWhIRUelOjrCoAzZI1JwWG6TaV87YH3iLPBEy NPPzANbabJHHYAEhv0ng4zokul0aU26cJwCxGGzw9AGVKrxuFcQg1wuUmmZq2LUh Z/UkGKFYk3qwuVrYZaa92YjUVLwiOasPbMgZmOxD+BF5gkZY9O4vwSEeyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAj1OL8vPd6H21SblqotxMPQAwouMB8GA1UdIwQY MBaAFOKDRCl3XmVV5XQkkihiVLHanxkDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9iNjQ2OGQtMTBlZC00ZDQ4LTgwM2Mt ZWE5NzY2NWMxM2RmLzEvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9iNjQ2OGQtMTBlZC00ZDQ4LTgwM2MtZWE5NzY2NWMxM2Rm LzEvNG9ORUtYZGVaVlhsZENTU0tHSlVzZHFmR1FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALuk6aoy6 RhNQe88btD3lujL7s8kkeGWQ9ll5h7f5yi/HBPHiwEJnblQF3aOCdvvJWy8Sh4R5 dvXQ9xabpJkkB1gAVaDkhbHfpCnMnaJz8rGs9seRoIkUSVddxlMDdVL1W0nmZhhE DsczVcMi57KjIepyMEd+z4IIHpxAj53Vxx3hmP6lTo6sBuOoQ7mKuuN1HuVKuHxi grud3bCUqFfnllxKakpxsx8RZ+K2h/NkQoF9inNDBZj815eyB1fb/pc+Cdlx9K63 /SChM9DXs9G1W9DpXiZZlk6VqO9sZrN+kXl1XNM3h5eGSQXm7AopRK7CqF+1gU9b oXTKvvomgZDF3Q== -----END CERTIFICATE-----Generated at Tue Feb 10 02:51:03 2026 by rpki-client