This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft File: 4_GcxeONj5wdZUcXdmX4khHeyJk.mft (raw, json) Hash identifier: X0FvdH5zeqQ7AixGEC68vSRTz2Sjc8cTl/SiiIloiOo= Subject key identifier: 02:71:CA:59:2B:29:2B:04:E8:B4:73:77:3C:5E:44:40:3E:D6:25:A3 Authority key identifier: E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99 Certificate issuer: /CN=e3f19cc5e38d8f9c1d6547177665f89211dec899 Certificate serial: 019C446B90038EC4FA95C651C977D2A61596 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft Manifest number: 107F Signing time: Mon 09 Feb 2026 22:00:25 +0000 Manifest this update: Mon 09 Feb 2026 22:00:25 +0000 Manifest next update: Tue 10 Feb 2026 22:00:25 +0000 Files and hashes: 1: 4_GcxeONj5wdZUcXdmX4khHeyJk.crl (hash: ZrIWzcttfGa2oPKTpGIC/cCicaIxBmAUANo65aeUvTI=) 2: 6jWcTCuvnIbvDAxZuWYVZRLhDLU.roa (hash: LkG1rsHegbWJdLC+vukY1wOXCMcnkOUFAcxz3/K326I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:90:03:8e:c4:fa:95:c6:51:c9:77:d2:a6:15:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3f19cc5e38d8f9c1d6547177665f89211dec899 Validity Not Before: Feb 9 22:00:25 2026 GMT Not After : Feb 10 22:00:25 2026 GMT Subject: CN=0271ca592b292b04e8b473773c5e44403ed625a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6d:18:ae:5b:d2:aa:f6:2a:76:e8:ad:8b:e9: 01:1d:56:99:0b:ec:61:59:16:98:3d:c9:2f:ef:c3: 1b:45:d6:43:c9:5a:95:24:02:3a:02:4b:c5:92:5a: 07:ef:ba:0c:77:bd:f6:b3:8b:9c:bc:59:6c:be:12: 80:1d:26:86:dc:9e:b8:bb:bc:0a:a3:d4:ac:3e:58: 1a:3f:f1:e2:43:c4:cd:c4:85:80:03:48:a5:42:73: 36:1d:8a:bb:49:5b:77:62:f0:d0:02:70:88:4b:0f: b6:d1:d7:83:a0:78:9c:fa:fb:5a:ba:1f:bb:02:64: 30:0d:de:d3:25:d8:37:83:76:fd:05:35:5a:2c:d6: b7:cb:26:e5:66:eb:1d:74:06:ff:58:82:be:a0:ea: bf:4f:84:56:e4:2c:09:88:a3:85:4d:da:77:c7:a5: 6d:bc:d5:f1:5d:1d:c6:8c:d1:7a:80:eb:f1:5b:09: df:8f:37:0b:64:c4:3c:f2:b7:13:12:31:a7:cb:3e: 0d:06:f8:d1:a3:4b:80:2e:2b:47:ff:ab:ea:99:16: 2c:fe:b7:55:50:ee:d0:f4:8b:07:7a:46:4c:56:c3: c2:04:c9:f9:cd:1a:7c:f7:2a:6f:86:4b:09:eb:5b: f6:e8:a3:32:1f:ac:ba:0a:db:a2:ac:8f:f1:90:9b: 8c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:71:CA:59:2B:29:2B:04:E8:B4:73:77:3C:5E:44:40:3E:D6:25:A3 X509v3 Authority Key Identifier: keyid:E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:c5:27:c5:8b:69:00:99:0c:44:3e:c7:9f:aa:26:ea:90:49: 4c:ba:3f:e5:22:af:22:18:70:e8:51:99:81:96:b9:4f:2b:c3: f2:45:12:ad:b5:3c:eb:25:b9:2c:74:79:1f:8c:cc:c5:d2:1c: 14:a0:a6:16:4b:b7:58:cb:a6:6f:7c:5e:6f:e8:95:46:3a:56: dc:8f:d4:5e:ea:bb:3f:ad:7a:28:43:4e:9c:c6:ca:0d:71:f6: 24:18:89:94:fa:84:4b:dc:65:cc:f6:3c:87:b0:1c:15:b1:d0: 45:ed:53:44:ef:50:b9:67:ba:6e:da:64:e8:22:c3:17:0b:6d: d3:fd:f1:9e:eb:61:4f:da:93:d6:8a:28:43:c6:b5:bc:0b:4b: dd:d8:3b:e5:5d:35:fa:c1:85:0e:03:b8:33:c5:cf:2d:93:ea: 54:b1:2c:fd:d8:1b:0b:b4:9f:d6:35:cf:6c:a3:17:70:55:58: 1c:a4:37:00:6e:ea:0e:bd:e0:d8:7b:5a:f7:e9:86:d9:0f:26: 34:a1:9e:de:ec:f3:2e:c2:86:44:55:be:bb:2d:84:bc:54:98: 55:5f:22:fb:03:b4:fe:f4:0b:3c:76:e5:a3:f1:fd:ff:d6:98: 08:17:3d:85:4e:82:88:36:59:ca:dc:f3:bd:85:e9:38:21:09: 37:dd:23:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa5ADjsT6lcZRyXfSphWWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzZjE5Y2M1ZTM4ZDhmOWMxZDY1NDcxNzc2NjVmODkyMTFk ZWM4OTkwHhcNMjYwMjA5MjIwMDI1WhcNMjYwMjEwMjIwMDI1WjAzMTEwLwYDVQQD EygwMjcxY2E1OTJiMjkyYjA0ZThiNDczNzczYzVlNDQ0MDNlZDYyNWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqW0YrlvSqvYqduiti+kBHVaZC+xh WRaYPckv78MbRdZDyVqVJAI6AkvFkloH77oMd732s4ucvFlsvhKAHSaG3J64u7wK o9SsPlgaP/HiQ8TNxIWAA0ilQnM2HYq7SVt3YvDQAnCISw+20deDoHic+vtauh+7 AmQwDd7TJdg3g3b9BTVaLNa3yyblZusddAb/WIK+oOq/T4RW5CwJiKOFTdp3x6Vt vNXxXR3GjNF6gOvxWwnfjzcLZMQ88rcTEjGnyz4NBvjRo0uALitH/6vqmRYs/rdV UO7Q9IsHekZMVsPCBMn5zRp89ypvhksJ61v26KMyH6y6CtuirI/xkJuMCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAJxylkrKSsE6LRzdzxeREA+1iWjMB8GA1UdIwQY MBaAFOPxnMXjjY+cHWVHF3Zl+JIR3siZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNF9HY3hlT05qNXdkWlVjWGRtWDRraEhleUprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8xYTg1YTgtZTRmOC00OThiLWE1YWUt YTRiZTE3MmM3NmJhLzEvNF9HY3hlT05qNXdkWlVjWGRtWDRraEhleUprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8xYTg1YTgtZTRmOC00OThiLWE1YWUtYTRiZTE3MmM3NmJh LzEvNF9HY3hlT05qNXdkWlVjWGRtWDRraEhleUprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ8UnxYtp AJkMRD7Hn6om6pBJTLo/5SKvIhhw6FGZgZa5TyvD8kUSrbU86yW5LHR5H4zMxdIc FKCmFku3WMumb3xeb+iVRjpW3I/UXuq7P616KENOnMbKDXH2JBiJlPqES9xlzPY8 h7AcFbHQRe1TRO9QuWe6btpk6CLDFwtt0/3xnuthT9qT1oooQ8a1vAtL3dg75V01 +sGFDgO4M8XPLZPqVLEs/dgbC7Sf1jXPbKMXcFVYHKQ3AG7qDr3g2Hta9+mG2Q8m NKGe3uzzLsKGRFW+uy2EvFSYVV8i+wO0/vQLPHblo/H9/9aYCBc9hU6CiDZZytzz vYXpOCEJN90jsw== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:04 2026 by rpki-client