This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft File: 4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft (raw, json) Hash identifier: pxJEXspXuOoCdJxytF5dXo64GocW3STTLop59YlPvuA= Subject key identifier: 31:1B:FE:11:B2:A0:29:50:CC:05:8E:A6:25:21:1E:B2:6D:B1:82:45 Authority key identifier: E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60 Certificate issuer: /CN=e33779b8388d001fdcbddc48ace227f009850660 Certificate serial: 019C43225DDFB70B909CF3DBB2FACB52AA49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 16:00:51 +0000 Manifest this update: Mon 09 Feb 2026 16:00:51 +0000 Manifest next update: Tue 10 Feb 2026 16:00:51 +0000 Files and hashes: 1: 4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl (hash: URyBxWFI5I8mNY64Se9M69Ds7n+GW+Lca5iOyw1fIDY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:5d:df:b7:0b:90:9c:f3:db:b2:fa:cb:52:aa:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e33779b8388d001fdcbddc48ace227f009850660 Validity Not Before: Feb 9 16:00:51 2026 GMT Not After : Feb 10 16:00:51 2026 GMT Subject: CN=311bfe11b2a02950cc058ea625211eb26db18245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:18:20:c6:ab:bd:06:5f:ca:c7:dc:69:57:75: 7e:f9:ef:5a:44:85:95:cc:0a:c4:98:92:23:0c:1d: 47:82:a0:a9:bf:c9:06:d0:8d:31:b6:f4:2e:33:ef: ef:63:3a:74:28:51:b0:a2:15:c9:b5:cc:03:e6:aa: f9:a5:19:71:8b:8b:39:a7:ad:50:6d:ba:ff:b3:9c: d8:7c:57:42:69:0b:32:9b:8c:c3:87:e6:2e:e3:fd: b3:7e:8b:c2:ee:43:cc:43:70:6b:04:83:c6:52:9e: 37:3f:fa:1f:85:40:b7:7a:c0:e0:0e:c7:75:51:52: 19:70:ad:af:55:b2:a3:28:49:2a:e6:21:81:bd:99: 9d:d6:7f:cf:94:7a:90:bf:ae:72:2e:4b:7b:60:db: a6:1d:8a:9e:78:8f:1f:bf:11:99:8b:48:a8:d6:74: 48:a1:b2:02:4b:c1:c5:0d:27:6c:e2:03:24:92:a0: a3:99:aa:c8:b1:1e:ec:4d:c6:d2:bc:7f:a9:d6:68: 8d:5e:6c:bd:be:c8:09:66:23:68:61:0c:d9:3c:af: 20:4e:78:de:07:eb:e3:9d:78:30:4e:95:2c:cf:fb: aa:33:a2:1a:52:a2:17:ab:fd:fd:ce:cc:b1:35:45: 72:b0:b3:df:cf:16:55:27:1a:04:d4:a0:87:85:e3: 07:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:1B:FE:11:B2:A0:29:50:CC:05:8E:A6:25:21:1E:B2:6D:B1:82:45 X509v3 Authority Key Identifier: keyid:E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:b2:e1:e6:7c:25:1b:52:01:58:80:08:3c:85:61:87:af:6f: 2f:3b:18:82:07:d3:3f:e6:ea:b0:44:9d:dc:e3:94:ac:b3:8c: 8b:64:a1:46:da:26:5e:9e:61:97:90:cb:93:03:15:99:f7:11: 4f:ea:ee:0b:7d:40:d0:f3:53:d3:a5:d2:67:2b:46:a8:6c:e9: 0e:3c:d4:cb:37:b6:58:42:41:29:7b:d2:dc:08:b8:5e:fb:3d: dc:08:94:a9:91:c7:d8:46:44:7f:b7:74:af:ce:2c:e0:23:47: 7e:62:17:6f:84:8e:d5:53:dd:56:8d:3a:17:94:6b:ed:69:63: bf:99:14:be:c9:74:7d:e3:72:51:73:c3:2b:0b:73:42:99:a0: a6:aa:66:ba:58:02:08:11:9f:22:ba:fa:3e:a5:46:82:a4:0f: 51:6c:3e:7c:09:f1:d4:57:99:4b:23:8d:d7:35:d8:12:81:03: 3f:eb:54:c7:d7:10:77:4d:17:c8:01:6b:89:a4:69:38:01:ce: e9:d6:49:11:7b:ed:75:94:47:3b:bb:02:11:68:03:23:87:60: 7a:57:42:37:b9:62:e7:52:b6:1d:8e:bc:32:83:60:72:a4:2b: d8:fa:65:9b:e2:4b:b2:60:69:21:24:20:cf:46:e5:61:26:f5: ec:4a:0f:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIl3ftwuQnPPbsvrLUqpJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzMzc3OWI4Mzg4ZDAwMWZkY2JkZGM0OGFjZTIyN2YwMDk4 NTA2NjAwHhcNMjYwMjA5MTYwMDUxWhcNMjYwMjEwMTYwMDUxWjAzMTEwLwYDVQQD EygzMTFiZmUxMWIyYTAyOTUwY2MwNThlYTYyNTIxMWViMjZkYjE4MjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhggxqu9Bl/Kx9xpV3V++e9aRIWV zArEmJIjDB1HgqCpv8kG0I0xtvQuM+/vYzp0KFGwohXJtcwD5qr5pRlxi4s5p61Q bbr/s5zYfFdCaQsym4zDh+Yu4/2zfovC7kPMQ3BrBIPGUp43P/ofhUC3esDgDsd1 UVIZcK2vVbKjKEkq5iGBvZmd1n/PlHqQv65yLkt7YNumHYqeeI8fvxGZi0io1nRI obICS8HFDSds4gMkkqCjmarIsR7sTcbSvH+p1miNXmy9vsgJZiNoYQzZPK8gTnje B+vjnXgwTpUsz/uqM6IaUqIXq/39zsyxNUVysLPfzxZVJxoE1KCHheMHLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDEb/hGyoClQzAWOpiUhHrJtsYJFMB8GA1UdIwQY MBaAFOM3ebg4jQAf3L3cSKziJ/AJhQZgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi85ZGIzMjYtMTE4OS00YWM5LWI0MTIt ZjI5NGQzYjEyY2ZkLzEvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi85ZGIzMjYtMTE4OS00YWM5LWI0MTItZjI5NGQzYjEyY2Zk LzEvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACLLh5nwl G1IBWIAIPIVhh69vLzsYggfTP+bqsESd3OOUrLOMi2ShRtomXp5hl5DLkwMVmfcR T+ruC31A0PNT06XSZytGqGzpDjzUyze2WEJBKXvS3Ai4Xvs93AiUqZHH2EZEf7d0 r84s4CNHfmIXb4SO1VPdVo06F5Rr7Wljv5kUvsl0feNyUXPDKwtzQpmgpqpmulgC CBGfIrr6PqVGgqQPUWw+fAnx1FeZSyON1zXYEoEDP+tUx9cQd00XyAFriaRpOAHO 6dZJEXvtdZRHO7sCEWgDI4dgeldCN7li51K2HY68MoNgcqQr2Pplm+JLsmBpISQg z0blYSb17EoPZw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:55 2026 by rpki-client