This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f4522a-6155-40c6-bd89-5b9ffff082f1/1/R0NPTmaYKfhsbea6PrDo9m2piLY.mft File: R0NPTmaYKfhsbea6PrDo9m2piLY.mft (raw, json) Hash identifier: Vmxo9ss0ojJNKYjZjTvEeswk6wunPb5ORaPZejUvRZo= Subject key identifier: F4:A5:85:4B:BE:FA:E2:95:AA:5F:F7:A9:75:91:41:F7:9E:A0:EC:29 Authority key identifier: 47:43:4F:4E:66:98:29:F8:6C:6D:E6:BA:3E:B0:E8:F6:6D:A9:88:B6 Certificate issuer: /CN=47434f4e669829f86c6de6ba3eb0e8f66da988b6 Certificate serial: 019C432206B65229ED73ACD39F0750419216 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R0NPTmaYKfhsbea6PrDo9m2piLY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f4522a-6155-40c6-bd89-5b9ffff082f1/1/R0NPTmaYKfhsbea6PrDo9m2piLY.mft Manifest number: 0242 Signing time: Mon 09 Feb 2026 16:00:29 +0000 Manifest this update: Mon 09 Feb 2026 16:00:29 +0000 Manifest next update: Tue 10 Feb 2026 16:00:29 +0000 Files and hashes: 1: R0NPTmaYKfhsbea6PrDo9m2piLY.crl (hash: gyqwRibgAR5a+c0CzuDN0aQGyOF3LOwCWs+X3YZ1Q8E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/f4522a-6155-40c6-bd89-5b9ffff082f1/1/R0NPTmaYKfhsbea6PrDo9m2piLY.crl rsync://rpki.ripe.net/repository/DEFAULT/21/f4522a-6155-40c6-bd89-5b9ffff082f1/1/R0NPTmaYKfhsbea6PrDo9m2piLY.mft rsync://rpki.ripe.net/repository/DEFAULT/R0NPTmaYKfhsbea6PrDo9m2piLY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:06:b6:52:29:ed:73:ac:d3:9f:07:50:41:92:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47434f4e669829f86c6de6ba3eb0e8f66da988b6 Validity Not Before: Feb 9 16:00:29 2026 GMT Not After : Feb 10 16:00:29 2026 GMT Subject: CN=f4a5854bbefae295aa5ff7a9759141f79ea0ec29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:20:63:41:4f:0c:f7:d1:8c:02:8d:2d:dc:5b: 80:7d:7f:8e:0e:b8:78:c4:27:66:b6:b7:43:bb:1b: cc:e9:20:c2:8f:6b:d0:1f:9a:db:7a:e1:25:6a:4a: cc:ec:69:03:30:02:b7:d1:e3:53:e2:b9:28:48:2e: e8:94:ee:1e:f0:53:b9:8f:3d:54:20:b5:09:34:02: 58:5d:7a:47:a1:55:90:be:22:6b:02:0f:de:56:49: e3:df:9c:36:e6:ef:50:3d:eb:d0:47:20:04:78:d1: 72:7c:6b:bf:48:fc:13:89:7f:0d:64:93:bc:4f:6f: 6d:eb:9e:3d:96:7c:7e:ad:9b:8b:73:ae:cc:a0:d9: 11:04:32:3b:61:86:e1:da:14:d7:61:4d:80:d2:0b: 08:c0:1e:15:0d:19:80:06:6c:75:6a:85:9a:92:bd: 1c:2e:11:60:eb:a1:93:9d:b8:6b:46:1f:67:ee:f6: cf:c6:c1:c0:75:9d:44:5c:66:ef:1f:81:0d:1c:e4: 6a:30:f2:13:85:8b:ab:e4:cd:af:2f:8f:d4:ca:56: 5e:06:a4:7f:99:68:bb:29:0e:b6:a4:12:36:57:be: 51:7a:72:33:2e:84:12:d7:e4:bb:78:8f:60:b5:e1: 12:5b:1c:bf:fa:11:a1:25:fa:79:51:91:93:44:30: cf:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A5:85:4B:BE:FA:E2:95:AA:5F:F7:A9:75:91:41:F7:9E:A0:EC:29 X509v3 Authority Key Identifier: keyid:47:43:4F:4E:66:98:29:F8:6C:6D:E6:BA:3E:B0:E8:F6:6D:A9:88:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R0NPTmaYKfhsbea6PrDo9m2piLY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f4522a-6155-40c6-bd89-5b9ffff082f1/1/R0NPTmaYKfhsbea6PrDo9m2piLY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f4522a-6155-40c6-bd89-5b9ffff082f1/1/R0NPTmaYKfhsbea6PrDo9m2piLY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:04:09:40:09:ba:93:64:84:5f:c7:d2:09:e1:cb:7b:2d:88: db:c1:6c:2c:e4:ed:fa:e5:8d:3f:39:f4:4f:41:1a:5e:66:39: 53:3f:d7:b4:cb:4c:19:03:28:a9:12:ed:22:b4:8f:f1:16:37: 1e:5a:e4:45:ab:ab:c0:3f:73:fb:a9:45:d8:e7:9e:5e:20:0c: cd:4a:38:1f:7c:db:3b:21:55:cb:ee:24:b5:13:32:1f:53:24: c6:ee:5c:a9:da:50:7b:7d:64:cf:00:8b:67:c2:65:c0:43:9f: 93:d3:3a:9e:a1:0b:76:b5:8e:2d:ce:45:e8:23:5e:9b:44:1f: b3:b2:c4:c7:0d:f6:53:b0:d9:47:dd:c5:d9:64:36:80:14:7d: 04:bc:86:9a:07:e9:13:4f:19:7f:94:0d:7e:24:7b:66:fd:9d: b8:bb:7c:9f:04:2c:8a:d3:1c:66:b6:f3:66:70:44:cc:6d:77: 32:9a:2c:9e:34:53:6d:d0:e0:21:44:24:f0:6b:1e:9b:f4:db: 70:23:71:cf:77:0d:c6:69:b1:db:ef:46:de:56:9c:5d:1e:88: bc:a0:24:38:2a:98:64:51:1e:a3:51:5e:d0:af:8c:69:2e:ef: de:89:ef:85:9c:b2:e5:c9:3a:21:b2:61:6c:52:6f:13:74:c2: b5:64:a1:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIga2Uintc6zTnwdQQZIWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3NDM0ZjRlNjY5ODI5Zjg2YzZkZTZiYTNlYjBlOGY2NmRh OTg4YjYwHhcNMjYwMjA5MTYwMDI5WhcNMjYwMjEwMTYwMDI5WjAzMTEwLwYDVQQD EyhmNGE1ODU0YmJlZmFlMjk1YWE1ZmY3YTk3NTkxNDFmNzllYTBlYzI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuiBjQU8M99GMAo0t3FuAfX+ODrh4 xCdmtrdDuxvM6SDCj2vQH5rbeuElakrM7GkDMAK30eNT4rkoSC7olO4e8FO5jz1U ILUJNAJYXXpHoVWQviJrAg/eVknj35w25u9QPevQRyAEeNFyfGu/SPwTiX8NZJO8 T29t6549lnx+rZuLc67MoNkRBDI7YYbh2hTXYU2A0gsIwB4VDRmABmx1aoWakr0c LhFg66GTnbhrRh9n7vbPxsHAdZ1EXGbvH4ENHORqMPIThYur5M2vL4/UylZeBqR/ mWi7KQ62pBI2V75RenIzLoQS1+S7eI9gteESWxy/+hGhJfp5UZGTRDDPPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPSlhUu++uKVql/3qXWRQfeeoOwpMB8GA1UdIwQY MBaAFEdDT05mmCn4bG3muj6w6PZtqYi2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjBOUFRtYVlLZmhzYmVhNlByRG85bTJwaUxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9mNDUyMmEtNjE1NS00MGM2LWJkODkt NWI5ZmZmZjA4MmYxLzEvUjBOUFRtYVlLZmhzYmVhNlByRG85bTJwaUxZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9mNDUyMmEtNjE1NS00MGM2LWJkODktNWI5ZmZmZjA4MmYx LzEvUjBOUFRtYVlLZmhzYmVhNlByRG85bTJwaUxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAogQJQAm6 k2SEX8fSCeHLey2I28FsLOTt+uWNPzn0T0EaXmY5Uz/XtMtMGQMoqRLtIrSP8RY3 HlrkRaurwD9z+6lF2OeeXiAMzUo4H3zbOyFVy+4ktRMyH1Mkxu5cqdpQe31kzwCL Z8JlwEOfk9M6nqELdrWOLc5F6CNem0Qfs7LExw32U7DZR93F2WQ2gBR9BLyGmgfp E08Zf5QNfiR7Zv2duLt8nwQsitMcZrbzZnBEzG13MposnjRTbdDgIUQk8Gsem/Tb cCNxz3cNxmmx2+9G3lacXR6IvKAkOCqYZFEeo1Fe0K+MaS7v3onvhZyy5ck6IbJh bFJvE3TCtWSh0A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:40 2026 by rpki-client