This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/a5ebcb-f011-4801-94ff-b82e53010597/1/M4YMg3IhmQcJz1rqKduBaJU-feA.mft File: M4YMg3IhmQcJz1rqKduBaJU-feA.mft (raw, json) Hash identifier: smZ3wfVx3UZHgKNs3ymcdbvKxGzf7Q+eciaOMavl9Xk= Subject key identifier: 0E:77:3E:9D:3F:66:CA:11:83:55:D3:CD:3D:04:42:C8:8F:88:4A:BD Authority key identifier: 33:86:0C:83:72:21:99:07:09:CF:5A:EA:29:DB:81:68:95:3E:7D:E0 Certificate issuer: /CN=33860c837221990709cf5aea29db8168953e7de0 Certificate serial: 019C41A25C748151DAB3FE763305A2740D92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M4YMg3IhmQcJz1rqKduBaJU-feA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/a5ebcb-f011-4801-94ff-b82e53010597/1/M4YMg3IhmQcJz1rqKduBaJU-feA.mft Manifest number: 0946 Signing time: Mon 09 Feb 2026 09:01:25 +0000 Manifest this update: Mon 09 Feb 2026 09:01:25 +0000 Manifest next update: Tue 10 Feb 2026 09:01:25 +0000 Files and hashes: 1: M4YMg3IhmQcJz1rqKduBaJU-feA.crl (hash: wJrLVsVgGH7RHup+vKMW8KAq+OGN5UKbkuc9Ik1aHww=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/a5ebcb-f011-4801-94ff-b82e53010597/1/M4YMg3IhmQcJz1rqKduBaJU-feA.crl rsync://rpki.ripe.net/repository/DEFAULT/25/a5ebcb-f011-4801-94ff-b82e53010597/1/M4YMg3IhmQcJz1rqKduBaJU-feA.mft rsync://rpki.ripe.net/repository/DEFAULT/M4YMg3IhmQcJz1rqKduBaJU-feA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:5c:74:81:51:da:b3:fe:76:33:05:a2:74:0d:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33860c837221990709cf5aea29db8168953e7de0 Validity Not Before: Feb 9 09:01:25 2026 GMT Not After : Feb 10 09:01:25 2026 GMT Subject: CN=0e773e9d3f66ca118355d3cd3d0442c88f884abd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c3:e0:db:3f:96:9b:0d:66:b2:b5:a6:0d:ae: ab:91:8e:68:f6:2f:a8:9d:50:b9:87:ae:c0:30:5a: 10:9b:57:f4:d4:db:6f:e5:69:dd:81:cf:5b:c0:7e: a0:d6:6c:24:0b:bb:8d:b8:f2:2d:fc:e4:fe:fd:f0: a4:b2:a9:ec:f6:22:c1:39:98:67:8c:0b:3e:34:22: 29:ae:d9:b3:02:87:bf:ea:b2:ab:0e:5b:c1:85:53: 42:5c:aa:a9:b0:ef:68:b6:7f:02:c7:00:47:b5:f6: 87:47:3e:1a:fc:5d:9f:fd:04:5e:7d:55:c8:18:de: 0d:d4:85:96:12:97:2c:9d:0e:6c:96:91:5f:ce:a1: f7:03:f8:3c:94:6e:da:e7:b7:eb:86:fe:6c:1e:bb: 68:8a:ce:ad:86:de:e0:91:8c:56:0c:1e:a7:f0:8d: 5e:98:1d:b5:3a:ab:01:da:e0:9d:62:7e:5b:ad:3a: f4:99:86:5e:7c:07:65:9c:93:cc:f8:51:79:6e:94: 03:88:4e:fa:61:ad:30:fb:6f:40:fa:e7:ec:c9:81: d6:77:f6:e4:7b:af:91:aa:5f:14:30:29:0a:0b:35: 5b:44:58:12:d8:c2:aa:99:93:f1:0a:9a:77:7e:f1: 32:5e:f7:57:cb:d5:54:55:89:ea:0a:7a:7e:9f:e9: 27:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:77:3E:9D:3F:66:CA:11:83:55:D3:CD:3D:04:42:C8:8F:88:4A:BD X509v3 Authority Key Identifier: keyid:33:86:0C:83:72:21:99:07:09:CF:5A:EA:29:DB:81:68:95:3E:7D:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M4YMg3IhmQcJz1rqKduBaJU-feA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/a5ebcb-f011-4801-94ff-b82e53010597/1/M4YMg3IhmQcJz1rqKduBaJU-feA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/a5ebcb-f011-4801-94ff-b82e53010597/1/M4YMg3IhmQcJz1rqKduBaJU-feA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:03:33:6c:84:6f:ea:c9:ba:67:1d:a0:45:ee:78:17:64:e6: ae:9a:b2:28:ff:55:2b:81:22:ab:15:88:72:5c:0a:2b:8b:f8: 59:cc:e4:76:a6:c2:72:fb:e1:3f:9a:3b:a0:ec:48:96:4b:a2: 1b:ba:2b:56:11:55:5a:a8:6a:8c:3e:9a:be:ca:bc:d8:26:2d: 89:f1:f4:5d:22:71:00:bb:dd:b9:54:9a:fd:7c:58:6b:09:5d: ca:d6:5a:48:c1:34:f0:1e:eb:f3:88:b6:55:7b:86:7b:a7:e8: db:37:95:99:ed:2b:59:64:cc:ad:1a:60:7b:18:c8:a4:9a:83: 57:56:12:4a:19:57:37:8a:ea:cb:45:70:61:08:7f:f1:56:e9: 24:e7:5d:4f:c5:af:a2:e9:89:f2:9b:12:d1:d9:e9:ca:9b:ab: 98:65:2c:c4:aa:f6:84:ce:c3:24:6d:9c:d9:cc:04:c3:46:d1: 59:0a:3e:28:87:f9:20:4e:19:1f:c1:c0:b7:d1:9a:bc:11:f5: 40:11:e3:5c:61:01:00:5f:c0:57:70:80:f5:70:d3:c9:b0:f3: 36:5a:6f:11:6b:11:30:75:10:d1:2f:19:11:59:cb:90:51:30: 9a:26:31:8a:28:8a:42:a2:c2:c2:f5:45:4f:9a:e2:d1:59:03: 8e:6e:9b:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBolx0gVHas/52MwWidA2SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzODYwYzgzNzIyMTk5MDcwOWNmNWFlYTI5ZGI4MTY4OTUz ZTdkZTAwHhcNMjYwMjA5MDkwMTI1WhcNMjYwMjEwMDkwMTI1WjAzMTEwLwYDVQQD EygwZTc3M2U5ZDNmNjZjYTExODM1NWQzY2QzZDA0NDJjODhmODg0YWJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm8Pg2z+Wmw1msrWmDa6rkY5o9i+o nVC5h67AMFoQm1f01Ntv5Wndgc9bwH6g1mwkC7uNuPIt/OT+/fCksqns9iLBOZhn jAs+NCIprtmzAoe/6rKrDlvBhVNCXKqpsO9otn8CxwBHtfaHRz4a/F2f/QRefVXI GN4N1IWWEpcsnQ5slpFfzqH3A/g8lG7a57frhv5sHrtois6tht7gkYxWDB6n8I1e mB21OqsB2uCdYn5brTr0mYZefAdlnJPM+FF5bpQDiE76Ya0w+29A+ufsyYHWd/bk e6+Rql8UMCkKCzVbRFgS2MKqmZPxCpp3fvEyXvdXy9VUVYnqCnp+n+knNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA53Pp0/ZsoRg1XTzT0EQsiPiEq9MB8GA1UdIwQY MBaAFDOGDINyIZkHCc9a6inbgWiVPn3gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTRZTWczSWhtUWNKejFycUtkdUJhSlUtZmVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9hNWViY2ItZjAxMS00ODAxLTk0ZmYt YjgyZTUzMDEwNTk3LzEvTTRZTWczSWhtUWNKejFycUtkdUJhSlUtZmVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9hNWViY2ItZjAxMS00ODAxLTk0ZmYtYjgyZTUzMDEwNTk3 LzEvTTRZTWczSWhtUWNKejFycUtkdUJhSlUtZmVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhgMzbIRv 6sm6Zx2gRe54F2TmrpqyKP9VK4EiqxWIclwKK4v4WczkdqbCcvvhP5o7oOxIlkui G7orVhFVWqhqjD6avsq82CYtifH0XSJxALvduVSa/XxYawldytZaSME08B7r84i2 VXuGe6fo2zeVme0rWWTMrRpgexjIpJqDV1YSShlXN4rqy0VwYQh/8VbpJOddT8Wv oumJ8psS0dnpypurmGUsxKr2hM7DJG2c2cwEw0bRWQo+KIf5IE4ZH8HAt9GavBH1 QBHjXGEBAF/AV3CA9XDTybDzNlpvEWsRMHUQ0S8ZEVnLkFEwmiYxiiiKQqLCwvVF T5ri0VkDjm6bsQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:57:15 2026 by rpki-client