This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json) Hash identifier: DEgFL9YAd5JTQFvS9c84aWWDfwowZtKuZhJDpBpzPGE= Subject key identifier: 96:F3:1D:2F:19:40:5C:10:95:D2:29:08:74:24:45:0E:92:81:1B:28 Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6 Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6 Certificate serial: 019C427D73161CD0E596672547AF341EA008 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft Manifest number: 0463 Signing time: Mon 09 Feb 2026 13:00:43 +0000 Manifest this update: Mon 09 Feb 2026 13:00:43 +0000 Manifest next update: Tue 10 Feb 2026 13:00:43 +0000 Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: nUl0T6deL9Bpv8HrHdcZv9PlRVx/lhWQ+v+Jc/prYhA=) 2: UCdWTcnF4ZVDrSnBvN43rU1Zk3A.roa (hash: Qw45xlTVvhAH55/GToKQCdfRTF8PLXCZ9h0uBYEUVtM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:73:16:1c:d0:e5:96:67:25:47:af:34:1e:a0:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6 Validity Not Before: Feb 9 13:00:43 2026 GMT Not After : Feb 10 13:00:43 2026 GMT Subject: CN=96f31d2f19405c1095d229087424450e92811b28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a3:9b:22:c4:d1:b6:e7:fe:70:3a:b0:93:37: 8d:51:12:ee:20:0d:2b:81:37:e3:ea:6e:89:f0:ba: 8d:2f:2b:eb:ca:37:08:8a:7b:f0:ce:4f:da:bf:1a: 88:14:e4:81:74:1f:1f:29:bb:1c:8f:21:f4:bc:ea: 2d:e5:07:8a:dd:7d:04:c9:5e:a9:32:f6:79:4a:33: 0a:c9:f4:89:51:fc:63:47:54:17:da:06:7f:92:8c: e3:29:ff:a9:db:e6:56:a6:25:89:05:39:7d:5b:ed: 4f:71:b9:25:08:93:37:b7:9a:ac:cf:97:a5:3c:90: fa:e6:c5:19:ad:e8:c7:7a:11:df:a9:83:5d:c6:0c: c9:5c:5b:68:f4:f0:62:97:a4:fd:7f:63:3a:02:5a: 77:f8:4c:0a:0b:d7:6a:9d:f9:7b:de:8d:02:49:24: 43:73:59:47:68:18:e4:52:c5:54:a2:7e:87:c6:13: 28:d7:b8:0b:50:08:fc:68:42:33:7e:a3:25:3d:ef: 0e:11:ab:0e:6b:1c:fe:8f:7d:21:67:28:3b:a9:78: cc:02:93:f8:fe:57:df:92:2e:6d:8b:13:84:91:ad: 12:84:32:5c:0a:26:13:67:65:5d:b0:93:1f:5e:79: 32:6a:ce:2b:3f:12:56:2a:65:d4:1a:b1:31:59:2d: 2f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F3:1D:2F:19:40:5C:10:95:D2:29:08:74:24:45:0E:92:81:1B:28 X509v3 Authority Key Identifier: keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:ee:79:62:ec:82:88:0d:87:b9:70:18:7d:46:63:a0:50:e0: d9:59:20:1a:7e:75:9a:77:c8:6f:b1:27:f7:b7:34:e8:ab:32: 78:49:6c:be:d6:f7:54:68:c7:71:d8:cb:f6:b5:c6:b2:a9:5b: a8:75:8c:51:7b:80:f3:57:78:f7:5a:87:6b:b6:b7:d0:1f:b4: 5d:96:0d:39:98:cd:d6:e6:32:4d:30:e6:50:04:59:5b:9f:1f: 5a:15:63:d5:b3:ab:b7:90:63:81:23:77:86:26:d1:d8:94:4b: 8d:21:25:27:eb:33:4c:52:55:a0:af:a2:71:ac:aa:1c:19:0e: e2:b7:8d:45:cb:df:b8:71:d3:ff:b8:36:13:b8:74:b2:04:c0: 61:f0:c4:ae:15:89:7b:4e:84:ad:44:98:93:c9:5b:e4:18:73: bf:1a:4c:60:5b:84:46:78:2f:8c:b8:65:f6:76:67:3d:99:fb: 47:76:06:d0:47:6c:71:07:73:d4:39:e7:86:b0:85:ee:09:c6: 44:f3:27:3a:05:17:88:a3:c2:f3:e7:dc:d2:24:df:c6:dc:79: 38:7c:5a:fa:22:83:95:7b:af:1f:68:39:85:c8:11:08:74:c8: d0:69:22:b9:81:10:60:43:66:e8:5c:02:fd:a7:80:ca:53:84: ed:65:a5:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXMWHNDllmclR680HqAIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyZDg5MWIwZTMyOGU3Yzg1NmFkNGI3YTA3NjRkODJkODU2 MDk2ZDYwHhcNMjYwMjA5MTMwMDQzWhcNMjYwMjEwMTMwMDQzWjAzMTEwLwYDVQQD Eyg5NmYzMWQyZjE5NDA1YzEwOTVkMjI5MDg3NDI0NDUwZTkyODExYjI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqObIsTRtuf+cDqwkzeNURLuIA0r gTfj6m6J8LqNLyvryjcIinvwzk/avxqIFOSBdB8fKbscjyH0vOot5QeK3X0EyV6p MvZ5SjMKyfSJUfxjR1QX2gZ/kozjKf+p2+ZWpiWJBTl9W+1PcbklCJM3t5qsz5el PJD65sUZrejHehHfqYNdxgzJXFto9PBil6T9f2M6Alp3+EwKC9dqnfl73o0CSSRD c1lHaBjkUsVUon6HxhMo17gLUAj8aEIzfqMlPe8OEasOaxz+j30hZyg7qXjMApP4 /lffki5tixOEka0ShDJcCiYTZ2VdsJMfXnkyas4rPxJWKmXUGrExWS0vEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJbzHS8ZQFwQldIpCHQkRQ6SgRsoMB8GA1UdIwQY MBaAFNLYkbDjKOfIVq1Legdk2C2FYJbWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHRpUnNPTW81OGhXclV0NkIyVFlMWVZnbHRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZmQ4NWQtMDE1Mi00ZWYyLTllYmYt MWUyNDBiOTdkMmM0LzEvMHRpUnNPTW81OGhXclV0NkIyVFlMWVZnbHRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi83ZmQ4NWQtMDE1Mi00ZWYyLTllYmYtMWUyNDBiOTdkMmM0 LzEvMHRpUnNPTW81OGhXclV0NkIyVFlMWVZnbHRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArO55YuyC iA2HuXAYfUZjoFDg2VkgGn51mnfIb7En97c06KsyeElsvtb3VGjHcdjL9rXGsqlb qHWMUXuA81d491qHa7a30B+0XZYNOZjN1uYyTTDmUARZW58fWhVj1bOrt5BjgSN3 hibR2JRLjSElJ+szTFJVoK+icayqHBkO4reNRcvfuHHT/7g2E7h0sgTAYfDErhWJ e06ErUSYk8lb5BhzvxpMYFuERngvjLhl9nZnPZn7R3YG0EdscQdz1DnnhrCF7gnG RPMnOgUXiKPC8+fc0iTfxtx5OHxa+iKDlXuvH2g5hcgRCHTI0GkiuYEQYENm6FwC /aeAylOE7WWlUg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:21 2026 by rpki-client