This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft File: s_sdIFBvVM-5oflFH6EKiP87L2Q.mft (raw, json) Hash identifier: vBV9ndfNQrhgp1YgEQmMxtbhtIZchHStYdFoLEU04vQ= Subject key identifier: 2B:E5:38:96:D7:53:C1:21:84:37:3D:9F:53:7C:22:F5:AD:BB:7C:ED Authority key identifier: B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64 Certificate issuer: /CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64 Certificate serial: 019C43903FDF0BC7C616B3261A16E0E38A99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft Manifest number: 0EB5 Signing time: Mon 09 Feb 2026 18:00:52 +0000 Manifest this update: Mon 09 Feb 2026 18:00:52 +0000 Manifest next update: Tue 10 Feb 2026 18:00:52 +0000 Files and hashes: 1: s_sdIFBvVM-5oflFH6EKiP87L2Q.crl (hash: koT34Eq3AQkifBr7eet49CBwR1UP3cKrk5AYtYlxpoc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:3f:df:0b:c7:c6:16:b3:26:1a:16:e0:e3:8a:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64 Validity Not Before: Feb 9 18:00:52 2026 GMT Not After : Feb 10 18:00:52 2026 GMT Subject: CN=2be53896d753c12184373d9f537c22f5adbb7ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:74:4c:0e:51:51:25:d8:55:39:12:d4:a1:be: f6:f2:69:d8:0c:2b:a9:5a:35:4e:c3:fc:90:d8:24: 07:66:73:3e:d0:fa:76:62:96:d9:fe:ed:0f:49:3c: af:60:20:28:a0:75:c9:8e:33:1f:79:bb:bb:63:6d: 4c:f3:97:5e:66:fc:8e:2b:ab:c4:fc:83:85:32:38: 7b:47:71:c3:e0:d9:80:35:d1:58:17:f7:aa:28:22: 14:61:b0:a8:a6:99:73:22:af:13:66:d1:25:68:a7: 31:2f:1f:82:ee:2a:a4:93:54:eb:8d:13:c0:48:b6: 56:e5:77:71:3d:90:d4:0a:a8:3d:a2:b3:96:37:2e: 01:9c:35:bd:2d:a7:2f:2f:33:86:82:1d:cd:04:23: 71:3f:b5:ad:98:4d:a6:83:0d:17:ea:03:f5:c1:99: f2:bd:54:85:a8:af:f5:3d:c8:81:8a:fd:bf:ec:77: 94:50:dd:bf:c9:ba:bf:d9:de:2e:c2:d1:ed:af:f9: 7a:a1:bb:1d:ce:84:4f:f1:2b:6f:31:d2:b5:38:e4: 55:d5:06:b3:e9:4d:81:6c:e0:4c:27:d3:f5:c5:02: f1:59:a7:ed:cd:af:d1:3b:79:cd:fd:ff:63:e1:d2: 22:21:bc:2e:bb:e4:5e:b3:13:71:8d:eb:5a:d3:56: 2d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E5:38:96:D7:53:C1:21:84:37:3D:9F:53:7C:22:F5:AD:BB:7C:ED X509v3 Authority Key Identifier: keyid:B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:12:51:65:b2:55:7b:62:30:c6:23:19:56:98:45:4f:a6:7c: 18:ef:0c:ac:fc:c9:09:9a:03:5f:f3:37:5d:b3:ba:2b:07:f7: 77:6f:03:64:fb:e1:43:ea:3a:3d:b5:35:cc:1f:3e:91:83:2d: b6:6c:8d:c3:18:30:fe:d6:30:b0:69:a7:cc:97:dc:c1:c8:6b: 95:d4:3f:8f:c8:0b:28:f3:bd:3f:8d:ca:d2:17:2f:19:fd:e8: 60:5c:35:68:4c:38:34:3f:02:55:37:e7:f7:f5:9d:26:2d:ce: f4:59:36:29:fb:3d:78:6c:aa:a1:a1:e6:70:d2:9d:08:20:17: 60:53:15:eb:8f:5a:e1:02:d8:5a:8a:34:ec:1b:7a:77:9a:24: 5c:50:ea:69:d9:e2:f5:e0:52:bb:ba:38:38:e3:7b:ce:58:30: 2e:9b:11:dd:9f:3a:1b:d1:36:6e:fa:55:cb:04:70:a2:9c:4a: 69:a2:a2:8e:48:d1:e5:33:7d:30:ba:b1:9c:1f:f2:60:5e:5a: 6a:0b:e6:ac:db:57:2d:84:1b:bc:58:08:80:78:c1:19:07:2f: e2:06:07:2f:c3:7a:6e:a5:54:c2:77:15:07:ed:35:43:9e:3b: b8:d7:fe:8b:d2:84:32:3c:9f:43:33:06:93:15:11:f5:b5:1a: 80:cb:0d:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkD/fC8fGFrMmGhbg44qZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzZmIxZDIwNTA2ZjU0Y2ZiOWExZjk0NTFmYTEwYTg4ZmYz YjJmNjQwHhcNMjYwMjA5MTgwMDUyWhcNMjYwMjEwMTgwMDUyWjAzMTEwLwYDVQQD EygyYmU1Mzg5NmQ3NTNjMTIxODQzNzNkOWY1MzdjMjJmNWFkYmI3Y2VkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3RMDlFRJdhVORLUob728mnYDCup WjVOw/yQ2CQHZnM+0Pp2YpbZ/u0PSTyvYCAooHXJjjMfebu7Y21M85deZvyOK6vE /IOFMjh7R3HD4NmANdFYF/eqKCIUYbCopplzIq8TZtElaKcxLx+C7iqkk1TrjRPA SLZW5XdxPZDUCqg9orOWNy4BnDW9LacvLzOGgh3NBCNxP7WtmE2mgw0X6gP1wZny vVSFqK/1PciBiv2/7HeUUN2/ybq/2d4uwtHtr/l6obsdzoRP8StvMdK1OORV1Qaz 6U2BbOBMJ9P1xQLxWaftza/RO3nN/f9j4dIiIbwuu+ResxNxjeta01YtzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCvlOJbXU8EhhDc9n1N8IvWtu3ztMB8GA1UdIwQY MBaAFLP7HSBQb1TPuaH5RR+hCoj/Oy9kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc19zZElGQnZWTS01b2ZsRkg2RUtpUDg3TDJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jNDJkZjUtNGY5Mi00NDdkLWJkMjUt ODZkNmUyZjQ2NjQyLzEvc19zZElGQnZWTS01b2ZsRkg2RUtpUDg3TDJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9jNDJkZjUtNGY5Mi00NDdkLWJkMjUtODZkNmUyZjQ2NjQy LzEvc19zZElGQnZWTS01b2ZsRkg2RUtpUDg3TDJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlBJRZbJV e2IwxiMZVphFT6Z8GO8MrPzJCZoDX/M3XbO6Kwf3d28DZPvhQ+o6PbU1zB8+kYMt tmyNwxgw/tYwsGmnzJfcwchrldQ/j8gLKPO9P43K0hcvGf3oYFw1aEw4ND8CVTfn 9/WdJi3O9Fk2Kfs9eGyqoaHmcNKdCCAXYFMV649a4QLYWoo07Bt6d5okXFDqadni 9eBSu7o4OON7zlgwLpsR3Z86G9E2bvpVywRwopxKaaKijkjR5TN9MLqxnB/yYF5a agvmrNtXLYQbvFgIgHjBGQcv4gYHL8N6bqVUwncVB+01Q547uNf+i9KEMjyfQzMG kxUR9bUagMsNQg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:23 2026 by rpki-client