This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.mft File: s9nxe5jDqWQThWY7jNW3X-HwpJg.mft (raw, json) Hash identifier: nYZAJLaXsua9HCCXcCXieUrGhPt7xNKY6lxaCNqKs/w= Subject key identifier: 3A:4F:BF:62:1D:FF:36:1E:0A:63:22:C1:A7:F5:4B:91:41:9B:65:91 Authority key identifier: B3:D9:F1:7B:98:C3:A9:64:13:85:66:3B:8C:D5:B7:5F:E1:F0:A4:98 Certificate issuer: /CN=b3d9f17b98c3a9641385663b8cd5b75fe1f0a498 Certificate serial: 019C40FD7BF32567526F43CAC1357B106776 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9nxe5jDqWQThWY7jNW3X-HwpJg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.mft Manifest number: 180A Signing time: Mon 09 Feb 2026 06:01:20 +0000 Manifest this update: Mon 09 Feb 2026 06:01:20 +0000 Manifest next update: Tue 10 Feb 2026 06:01:20 +0000 Files and hashes: 1: s9nxe5jDqWQThWY7jNW3X-HwpJg.crl (hash: 5PPxjviXfLUtFIuQY5IvQcphJi5qBAvwI3MQUkOeEmQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.crl rsync://rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.mft rsync://rpki.ripe.net/repository/DEFAULT/s9nxe5jDqWQThWY7jNW3X-HwpJg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:7b:f3:25:67:52:6f:43:ca:c1:35:7b:10:67:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3d9f17b98c3a9641385663b8cd5b75fe1f0a498 Validity Not Before: Feb 9 06:01:20 2026 GMT Not After : Feb 10 06:01:20 2026 GMT Subject: CN=3a4fbf621dff361e0a6322c1a7f54b91419b6591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c9:22:0f:9d:ca:eb:88:45:ae:8e:d6:5e:46: 6f:10:78:ac:45:aa:7c:13:3e:b4:d2:5c:62:9d:a9: e9:27:35:e7:1a:8f:9f:6c:6e:19:be:d6:1f:1c:76: 0b:43:db:fa:04:1a:e0:9b:c4:97:5f:54:ac:e4:47: 41:f3:1e:f8:6e:5d:0a:96:e8:20:0f:97:29:c5:13: 1a:41:3e:1f:12:30:50:48:62:3c:e6:36:4e:58:ad: 58:eb:31:c9:6b:9f:42:29:cb:88:79:f1:d3:e3:13: a1:84:26:b6:8d:aa:f0:cc:b1:ab:6d:34:51:d1:df: 48:04:8a:3d:9b:4f:de:c1:4e:25:fd:9c:ed:c7:d0: 6b:3a:b2:17:95:3e:68:2e:02:9a:c6:89:60:a3:ab: 15:8f:fa:06:cc:e4:43:2f:21:69:dd:4b:6e:a2:d4: 4b:3d:ec:b0:b1:12:85:18:e2:c8:2b:9c:42:4a:9a: 4a:9a:55:c0:c4:25:f8:57:60:09:f2:02:3d:b1:5a: ef:6c:2c:05:74:b3:c7:89:80:ff:6d:79:5b:bb:0a: 1f:de:b8:71:1d:aa:ff:4e:cd:db:c5:14:81:32:6e: b8:04:48:04:44:7f:13:42:44:8f:0a:7d:00:ab:6c: f2:86:32:e1:fa:98:2d:96:81:1e:71:22:21:76:96: 55:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4F:BF:62:1D:FF:36:1E:0A:63:22:C1:A7:F5:4B:91:41:9B:65:91 X509v3 Authority Key Identifier: keyid:B3:D9:F1:7B:98:C3:A9:64:13:85:66:3B:8C:D5:B7:5F:E1:F0:A4:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9nxe5jDqWQThWY7jNW3X-HwpJg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/5fe5e6-1a6f-46f1-a999-18ec6a008c56/1/s9nxe5jDqWQThWY7jNW3X-HwpJg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:9a:f2:f0:3b:35:c0:a9:64:ca:b8:61:9f:7e:0f:d1:74:25: ed:12:47:9f:f2:bf:25:59:a8:bf:bf:82:b1:9e:85:2d:40:f3: ad:12:31:80:0e:ff:f4:f0:ef:f7:fb:8c:1a:e8:a5:41:71:b5: d8:87:2b:bf:ac:7f:a8:d6:f4:17:47:c7:38:9f:2d:7d:27:81: 53:a4:fc:4f:68:d6:27:7c:61:b3:10:cb:42:9e:e1:21:75:2f: c4:34:cf:6d:7a:2b:50:1b:cf:6b:c9:7a:ac:73:41:fe:4f:94: 6e:80:29:b4:25:8b:6b:66:3c:db:03:c8:c5:b8:4e:25:3b:4d: a5:f1:4d:c7:f0:be:9c:af:ad:d8:47:5d:90:5f:36:bd:01:95: 82:85:cc:29:7d:07:76:89:e9:4c:32:11:e5:07:7d:cd:10:1d: c4:50:3e:26:ca:c8:3a:61:49:dc:aa:57:9e:be:15:ff:06:66: 90:2d:8f:31:69:9d:1a:f0:9f:aa:f2:8b:4e:15:88:5a:39:a0: 5b:97:ba:c9:13:3b:c2:23:19:2b:3c:b8:ec:cc:61:9a:2d:1c: 14:6a:7b:7e:af:b4:3f:c9:4b:86:a5:89:99:16:5b:12:4c:3f: 17:fa:4b:3a:47:0b:fb:bf:46:0b:11:fa:42:1a:1a:4c:80:54: 5d:62:6f:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/XvzJWdSb0PKwTV7EGd2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzZDlmMTdiOThjM2E5NjQxMzg1NjYzYjhjZDViNzVmZTFm MGE0OTgwHhcNMjYwMjA5MDYwMTIwWhcNMjYwMjEwMDYwMTIwWjAzMTEwLwYDVQQD EygzYTRmYmY2MjFkZmYzNjFlMGE2MzIyYzFhN2Y1NGI5MTQxOWI2NTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnskiD53K64hFro7WXkZvEHisRap8 Ez600lxinanpJzXnGo+fbG4ZvtYfHHYLQ9v6BBrgm8SXX1Ss5EdB8x74bl0Klugg D5cpxRMaQT4fEjBQSGI85jZOWK1Y6zHJa59CKcuIefHT4xOhhCa2jarwzLGrbTRR 0d9IBIo9m0/ewU4l/Zztx9BrOrIXlT5oLgKaxolgo6sVj/oGzORDLyFp3UtuotRL PeywsRKFGOLIK5xCSppKmlXAxCX4V2AJ8gI9sVrvbCwFdLPHiYD/bXlbuwof3rhx Har/Ts3bxRSBMm64BEgERH8TQkSPCn0Aq2zyhjLh+pgtloEecSIhdpZVNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDpPv2Id/zYeCmMiwaf1S5FBm2WRMB8GA1UdIwQY MBaAFLPZ8XuYw6lkE4VmO4zVt1/h8KSYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczlueGU1akRxV1FUaFdZN2pOVzNYLUh3cEpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi81ZmU1ZTYtMWE2Zi00NmYxLWE5OTkt MThlYzZhMDA4YzU2LzEvczlueGU1akRxV1FUaFdZN2pOVzNYLUh3cEpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi81ZmU1ZTYtMWE2Zi00NmYxLWE5OTktMThlYzZhMDA4YzU2 LzEvczlueGU1akRxV1FUaFdZN2pOVzNYLUh3cEpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf5ry8Ds1 wKlkyrhhn34P0XQl7RJHn/K/JVmov7+CsZ6FLUDzrRIxgA7/9PDv9/uMGuilQXG1 2Icrv6x/qNb0F0fHOJ8tfSeBU6T8T2jWJ3xhsxDLQp7hIXUvxDTPbXorUBvPa8l6 rHNB/k+UboAptCWLa2Y82wPIxbhOJTtNpfFNx/C+nK+t2EddkF82vQGVgoXMKX0H donpTDIR5Qd9zRAdxFA+JsrIOmFJ3KpXnr4V/wZmkC2PMWmdGvCfqvKLThWIWjmg W5e6yRM7wiMZKzy47Mxhmi0cFGp7fq+0P8lLhqWJmRZbEkw/F/pLOkcL+79GCxH6 QhoaTIBUXWJvqg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:57:17 2026 by rpki-client