This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft File: Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft (raw, json) Hash identifier: 2eczWHJOgLEbJqgpq77grYmW6wKOvH8wVOVGDmAgFWU= Subject key identifier: 38:C2:52:F9:CA:F3:42:B5:44:0D:80:C6:07:A6:38:89:7D:E9:C1:62 Authority key identifier: 1A:88:AF:93:84:5B:D2:53:86:45:2D:BD:FA:A0:21:6E:13:CA:F8:C7 Certificate issuer: /CN=1a88af93845bd25386452dbdfaa0216e13caf8c7 Certificate serial: 019C438FEBD5158CFF916EE8F4440D71F6EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Goivk4Rb0lOGRS29-qAhbhPK-Mc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft Manifest number: 16AB Signing time: Mon 09 Feb 2026 18:00:31 +0000 Manifest this update: Mon 09 Feb 2026 18:00:31 +0000 Manifest next update: Tue 10 Feb 2026 18:00:31 +0000 Files and hashes: 1: Goivk4Rb0lOGRS29-qAhbhPK-Mc.crl (hash: cV2U647jLdc7dmXx/vUQRHggr2K+cmYqeYSc/Pp8SQA=) 2: JkUDr7vH6bEJKoPEB2K_5RQGMfQ.roa (hash: kYn3aZZS3X4+BpeBTLyeB9Sj2A8UIze/R0SxrdLQR/8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.crl rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft rsync://rpki.ripe.net/repository/DEFAULT/Goivk4Rb0lOGRS29-qAhbhPK-Mc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:eb:d5:15:8c:ff:91:6e:e8:f4:44:0d:71:f6:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a88af93845bd25386452dbdfaa0216e13caf8c7 Validity Not Before: Feb 9 18:00:31 2026 GMT Not After : Feb 10 18:00:31 2026 GMT Subject: CN=38c252f9caf342b5440d80c607a638897de9c162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d4:92:68:eb:f5:c6:75:7e:ee:de:c7:d6:59: ad:4d:c2:b3:64:2b:cf:7a:7c:3e:2d:f3:9c:42:59: 2c:53:13:8b:81:35:78:a3:56:a6:5f:30:99:bb:66: 8f:fa:88:92:18:ca:4c:68:45:e9:77:63:06:5d:4c: 72:91:de:85:40:ba:6f:74:99:30:91:4b:db:48:23: 6b:b5:cc:a4:57:49:92:9d:61:71:0b:68:a9:35:54: a3:3d:dd:a5:22:a6:66:52:9b:38:a9:dd:cb:2d:f0: fa:a7:56:e8:98:7b:be:6b:ea:56:53:75:1f:a5:df: f7:7f:8d:07:15:fb:0f:cd:16:a3:e1:9d:57:ef:87: 49:53:db:0c:05:68:f4:dc:7f:5a:ee:b9:79:d1:9d: 4a:3e:c3:82:81:ab:53:05:c7:bd:d6:06:6e:11:5d: 39:9a:90:07:f9:b3:8c:af:32:29:8a:4b:26:8b:bf: 08:8b:40:e7:e8:48:10:8c:c0:29:ba:ef:26:5f:fd: d7:8a:de:47:75:7a:a6:eb:da:c1:42:de:68:fa:bb: 61:11:14:86:b5:8f:eb:dd:e2:9e:98:42:32:bf:9f: 16:e8:1b:85:82:ad:3e:2f:dd:e9:2b:59:ad:2d:05: 74:76:50:fe:ab:50:f8:32:25:af:47:c5:3d:2c:08: 13:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C2:52:F9:CA:F3:42:B5:44:0D:80:C6:07:A6:38:89:7D:E9:C1:62 X509v3 Authority Key Identifier: keyid:1A:88:AF:93:84:5B:D2:53:86:45:2D:BD:FA:A0:21:6E:13:CA:F8:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Goivk4Rb0lOGRS29-qAhbhPK-Mc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:32:d7:a6:4b:77:df:39:63:ee:ba:82:9d:94:19:a9:31:1d: 12:b4:0c:a8:b6:1d:46:ce:44:28:25:d2:99:12:d3:d6:29:60: 78:f6:54:e6:7f:aa:21:0c:2c:bf:e6:b6:d3:29:58:59:20:3a: a8:6b:cd:0f:0e:a5:89:ce:52:39:63:03:a3:bd:5e:06:89:10: db:10:37:b3:4c:8c:75:85:11:11:27:a1:5c:f7:9b:18:ea:a8: ea:f4:7b:c2:c7:05:61:f3:7d:33:ab:6b:c5:b4:22:c8:80:f2: a6:97:63:fe:f5:17:37:7f:c8:f2:84:83:b0:bb:42:91:53:09: 39:8f:01:0d:55:20:c6:c6:c5:70:fa:1f:17:71:f4:c1:ac:65: 72:26:4c:f3:2f:52:44:61:db:8e:ea:37:ae:1d:c3:48:35:a0: d3:87:a0:50:0f:7d:f4:00:2a:5a:b5:10:99:df:04:37:19:46: 11:94:8f:25:33:4a:8d:dd:9a:32:8c:3f:c5:a7:6f:0f:fc:dd: b8:59:78:35:fb:a2:ed:55:1c:72:b7:04:0f:e9:90:b9:2e:a4: 52:d3:57:74:c6:ca:23:57:10:da:06:b8:48:4c:08:c4:0d:74: d0:1b:c5:93:04:92:fb:eb:e2:5e:83:62:bd:e6:28:d5:75:e4: 2d:9b:fa:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj+vVFYz/kW7o9EQNcfbrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhODhhZjkzODQ1YmQyNTM4NjQ1MmRiZGZhYTAyMTZlMTNj YWY4YzcwHhcNMjYwMjA5MTgwMDMxWhcNMjYwMjEwMTgwMDMxWjAzMTEwLwYDVQQD EygzOGMyNTJmOWNhZjM0MmI1NDQwZDgwYzYwN2E2Mzg4OTdkZTljMTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1dSSaOv1xnV+7t7H1lmtTcKzZCvP enw+LfOcQlksUxOLgTV4o1amXzCZu2aP+oiSGMpMaEXpd2MGXUxykd6FQLpvdJkw kUvbSCNrtcykV0mSnWFxC2ipNVSjPd2lIqZmUps4qd3LLfD6p1bomHu+a+pWU3Uf pd/3f40HFfsPzRaj4Z1X74dJU9sMBWj03H9a7rl50Z1KPsOCgatTBce91gZuEV05 mpAH+bOMrzIpiksmi78Ii0Dn6EgQjMApuu8mX/3Xit5HdXqm69rBQt5o+rthERSG tY/r3eKemEIyv58W6BuFgq0+L93pK1mtLQV0dlD+q1D4MiWvR8U9LAgTkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDjCUvnK80K1RA2AxgemOIl96cFiMB8GA1UdIwQY MBaAFBqIr5OEW9JThkUtvfqgIW4TyvjHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR29pdms0UmIwbE9HUlMyOS1xQWhiaFBLLU1jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy80YzdiOGMtZjEzMS00OTk2LWI4ZjUt NWY5ZjBhYzBmYWU3LzEvR29pdms0UmIwbE9HUlMyOS1xQWhiaFBLLU1jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy80YzdiOGMtZjEzMS00OTk2LWI4ZjUtNWY5ZjBhYzBmYWU3 LzEvR29pdms0UmIwbE9HUlMyOS1xQWhiaFBLLU1jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADjLXpkt3 3zlj7rqCnZQZqTEdErQMqLYdRs5EKCXSmRLT1ilgePZU5n+qIQwsv+a20ylYWSA6 qGvNDw6lic5SOWMDo71eBokQ2xA3s0yMdYURESehXPebGOqo6vR7wscFYfN9M6tr xbQiyIDyppdj/vUXN3/I8oSDsLtCkVMJOY8BDVUgxsbFcPofF3H0waxlciZM8y9S RGHbjuo3rh3DSDWg04egUA999AAqWrUQmd8ENxlGEZSPJTNKjd2aMow/xadvD/zd uFl4Nfui7VUccrcED+mQuS6kUtNXdMbKI1cQ2ga4SEwIxA100BvFkwSS++viXoNi veYo1XXkLZv6fg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:07 2026 by rpki-client