This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft File: VmczL0gJQe01gDssBLhPNyjTkpc.mft (raw, json) Hash identifier: OC3ZtHpyORHLx0MeZG1fMwFLIjCv0SqFWleqerkRjv0= Subject key identifier: 04:12:32:E2:11:5A:4A:A5:6C:F7:D4:7F:B6:DC:8C:89:56:FE:E6:95 Authority key identifier: 56:67:33:2F:48:09:41:ED:35:80:3B:2C:04:B8:4F:37:28:D3:92:97 Certificate issuer: /CN=5667332f480941ed35803b2c04b84f3728d39297 Certificate serial: 019C43C74686BA5B02804EA3026FB5F8F9F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmczL0gJQe01gDssBLhPNyjTkpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft Manifest number: 0201 Signing time: Mon 09 Feb 2026 19:00:59 +0000 Manifest this update: Mon 09 Feb 2026 19:00:59 +0000 Manifest next update: Tue 10 Feb 2026 19:00:59 +0000 Files and hashes: 1: VmczL0gJQe01gDssBLhPNyjTkpc.crl (hash: fe5MEc4jrPF3dS60NCQLe+hrHWoRo2vsp+hre4BWTK4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.crl rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft rsync://rpki.ripe.net/repository/DEFAULT/VmczL0gJQe01gDssBLhPNyjTkpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:46:86:ba:5b:02:80:4e:a3:02:6f:b5:f8:f9:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5667332f480941ed35803b2c04b84f3728d39297 Validity Not Before: Feb 9 19:00:59 2026 GMT Not After : Feb 10 19:00:59 2026 GMT Subject: CN=041232e2115a4aa56cf7d47fb6dc8c8956fee695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:09:eb:12:7e:24:74:8e:95:a4:ad:3e:b8:2e: 10:25:2d:76:5f:3f:ab:eb:b8:d0:05:27:89:01:62: 41:c2:2c:ba:f1:e5:5a:47:26:38:ad:51:b5:01:e7: 13:ef:71:48:8b:e4:d4:17:b6:19:33:8c:f5:40:37: 84:bc:b8:b5:73:c0:a4:9c:15:fc:9d:14:e7:82:2e: b2:fa:f3:b6:2b:d0:ef:b9:88:bc:04:6b:a4:7a:cc: bb:81:9a:45:b7:c6:e6:25:f7:15:f2:06:05:55:49: 39:a7:47:0a:6f:a4:24:44:6b:65:5b:37:ae:cc:54: b7:fc:bd:51:ae:a9:d4:22:7d:f1:0b:a4:af:f7:f5: 80:46:f5:f2:71:6c:a1:7c:fb:a7:3f:74:97:ce:6d: 81:30:17:92:a1:00:67:c1:40:a0:61:43:12:da:f4: 99:c3:9f:e4:dd:34:cd:b6:93:8f:d8:93:b9:fd:53: f1:d4:4d:61:61:55:5a:82:a9:a4:93:5c:fd:23:d4: 71:8d:2a:02:b2:11:9f:5a:4f:78:5b:6d:d0:c9:5d: 72:33:72:44:b5:ff:51:55:b7:66:5a:8c:53:f8:7e: 8b:23:d2:76:2a:e8:b2:4f:21:53:98:e9:c1:ea:2f: 0a:b5:b5:e2:15:a7:d3:15:57:a3:2a:f4:b1:52:0b: 9f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:12:32:E2:11:5A:4A:A5:6C:F7:D4:7F:B6:DC:8C:89:56:FE:E6:95 X509v3 Authority Key Identifier: keyid:56:67:33:2F:48:09:41:ED:35:80:3B:2C:04:B8:4F:37:28:D3:92:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmczL0gJQe01gDssBLhPNyjTkpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:9c:8a:6d:ec:01:56:31:f0:57:ce:6c:ae:b1:29:99:a9:a3: 51:05:33:fc:39:ef:e8:dd:92:7c:be:14:2f:06:5f:5c:99:03: 7b:99:89:bb:f5:11:4b:ee:54:8b:5e:2d:96:d3:bf:17:d0:41: 4f:e1:6b:ac:a9:d5:1f:6b:08:26:dd:0e:73:f7:8d:0f:4d:0c: ad:09:fe:87:73:34:a7:7f:90:98:dd:18:df:43:a5:fa:24:ab: 21:e0:8d:86:13:2f:d5:64:94:38:9a:f7:1d:6e:0d:ac:fd:84: 78:65:6a:b9:b5:07:62:37:8a:90:de:81:af:d8:ac:4b:e7:7c: d9:ae:de:25:df:7f:ed:d1:31:7a:75:aa:f3:4a:89:87:ee:16: de:17:10:05:a9:f5:67:c9:4a:47:a9:c3:62:61:cd:7d:47:07: 8f:8b:11:8f:23:48:52:aa:e9:56:3f:ef:db:04:b6:fc:19:b6: 47:dc:9b:dc:b4:81:ea:c9:f1:b8:bb:1c:65:12:b5:74:2c:90: eb:ff:75:9f:c3:8b:8b:f1:92:36:a9:99:81:74:a9:22:4a:29: cd:f5:e3:82:4d:3d:9e:79:5d:d5:d8:5f:24:be:88:97:0c:d1: 3b:0b:c8:af:fe:6f:7b:14:fa:53:06:43:1c:f4:a1:ec:a3:7a: 63:39:38:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx0aGulsCgE6jAm+1+PnxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2NjczMzJmNDgwOTQxZWQzNTgwM2IyYzA0Yjg0ZjM3Mjhk MzkyOTcwHhcNMjYwMjA5MTkwMDU5WhcNMjYwMjEwMTkwMDU5WjAzMTEwLwYDVQQD EygwNDEyMzJlMjExNWE0YWE1NmNmN2Q0N2ZiNmRjOGM4OTU2ZmVlNjk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwnrEn4kdI6VpK0+uC4QJS12Xz+r 67jQBSeJAWJBwiy68eVaRyY4rVG1AecT73FIi+TUF7YZM4z1QDeEvLi1c8CknBX8 nRTngi6y+vO2K9DvuYi8BGukesy7gZpFt8bmJfcV8gYFVUk5p0cKb6QkRGtlWzeu zFS3/L1RrqnUIn3xC6Sv9/WARvXycWyhfPunP3SXzm2BMBeSoQBnwUCgYUMS2vSZ w5/k3TTNtpOP2JO5/VPx1E1hYVVagqmkk1z9I9RxjSoCshGfWk94W23QyV1yM3JE tf9RVbdmWoxT+H6LI9J2KuiyTyFTmOnB6i8KtbXiFafTFVejKvSxUgufswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAQSMuIRWkqlbPfUf7bcjIlW/uaVMB8GA1UdIwQY MBaAFFZnMy9ICUHtNYA7LAS4Tzco05KXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVm1jekwwZ0pRZTAxZ0Rzc0JMaFBOeWpUa3BjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yZjkwZjEtZTI1Ny00ZTU0LWIyNWQt MjU5NGMyZmY2Y2I3LzEvVm1jekwwZ0pRZTAxZ0Rzc0JMaFBOeWpUa3BjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yZjkwZjEtZTI1Ny00ZTU0LWIyNWQtMjU5NGMyZmY2Y2I3 LzEvVm1jekwwZ0pRZTAxZ0Rzc0JMaFBOeWpUa3BjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoJyKbewB VjHwV85srrEpmamjUQUz/Dnv6N2SfL4ULwZfXJkDe5mJu/URS+5Ui14tltO/F9BB T+FrrKnVH2sIJt0Oc/eND00MrQn+h3M0p3+QmN0Y30Ol+iSrIeCNhhMv1WSUOJr3 HW4NrP2EeGVqubUHYjeKkN6Br9isS+d82a7eJd9/7dExenWq80qJh+4W3hcQBan1 Z8lKR6nDYmHNfUcHj4sRjyNIUqrpVj/v2wS2/Bm2R9yb3LSB6snxuLscZRK1dCyQ 6/91n8OLi/GSNqmZgXSpIkopzfXjgk09nnld1dhfJL6IlwzROwvIr/5vexT6UwZD HPSh7KN6Yzk4+Q== -----END CERTIFICATE-----Generated at Tue Feb 10 01:41:23 2026 by rpki-client