This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft File: rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft (raw, json) Hash identifier: DZYDd8ZycmNGfYcXUhnW7DbxySjn8YGrVBNy6ZdkP9Q= Subject key identifier: 4C:0E:73:53:BF:9D:7C:B9:9E:60:DC:D6:4C:C7:63:0F:66:59:18:25 Authority key identifier: AC:21:19:17:8B:FD:92:3A:4B:5E:C4:06:D9:FE:14:52:B2:77:6E:FA Certificate issuer: /CN=ac2119178bfd923a4b5ec406d9fe1452b2776efa Certificate serial: 019C42467202D4F0B0D82061070972D60770 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft Manifest number: 0D2E Signing time: Mon 09 Feb 2026 12:00:38 +0000 Manifest this update: Mon 09 Feb 2026 12:00:38 +0000 Manifest next update: Tue 10 Feb 2026 12:00:38 +0000 Files and hashes: 1: 6PvsgVwbpjjge_V2egl4nj0Eov4.roa (hash: U1ac2CnvIyxkgh4LffLq2pt3hg9vUAszqogwRbgBBLY=) 2: rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl (hash: BS6H+keh9LsqqNLPKxvHkevFqguUJ5UHoz4GeEwPrRg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:72:02:d4:f0:b0:d8:20:61:07:09:72:d6:07:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac2119178bfd923a4b5ec406d9fe1452b2776efa Validity Not Before: Feb 9 12:00:38 2026 GMT Not After : Feb 10 12:00:38 2026 GMT Subject: CN=4c0e7353bf9d7cb99e60dcd64cc7630f66591825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9a:c5:cc:8b:42:d1:2a:a9:3e:72:a2:fd:65: 6e:03:c5:0a:fe:67:a5:0a:e9:a2:63:0e:77:e4:f0: c1:7b:f6:57:f5:78:d3:05:f6:ab:6b:16:1e:b7:7b: a6:8c:00:3c:bd:28:2d:a8:d1:dd:4c:ef:f1:6e:43: a6:a9:b6:78:84:1a:ea:92:81:47:ad:80:54:ff:19: 9f:e7:4c:7d:5f:e7:a7:ec:ef:96:d2:5c:79:65:e2: 02:b7:b4:83:e4:ae:88:4c:b1:cf:8a:66:2f:f0:85: f6:9d:f1:fc:53:60:d7:52:d5:fd:c6:2d:1c:5c:8f: 31:2d:84:9d:b8:6e:fc:cd:e1:f7:a7:6d:37:b1:b5: c1:f0:f8:fc:2f:57:7a:96:6d:23:e1:f3:4b:7d:5a: 54:04:f7:3f:9e:37:1b:a1:a4:a4:c7:f5:49:48:9e: 5c:ae:49:8a:6e:1d:f1:5a:aa:ea:e7:a2:c1:ab:de: 6a:48:b2:88:89:fe:5c:58:26:e8:80:8f:61:3d:18: 07:a6:ac:1e:fa:e6:40:e5:3a:55:71:9a:7c:b1:1f: ca:36:70:85:ce:ad:9d:77:ca:72:5d:ea:d7:29:bd: 89:4b:39:a9:1a:1f:6b:85:68:5a:0a:5d:3c:10:2f: a7:17:e3:cb:a0:d0:bd:f2:46:29:f5:1e:c4:c5:19: 25:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:0E:73:53:BF:9D:7C:B9:9E:60:DC:D6:4C:C7:63:0F:66:59:18:25 X509v3 Authority Key Identifier: keyid:AC:21:19:17:8B:FD:92:3A:4B:5E:C4:06:D9:FE:14:52:B2:77:6E:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2a8f7e-e605-4114-90e8-f600d0fd03ce/1/rCEZF4v9kjpLXsQG2f4UUrJ3bvo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:7e:ea:af:96:f0:df:8f:d1:04:31:e9:8c:06:97:7a:3b:15: 8e:b9:ae:86:14:7a:d5:b0:73:4c:9f:0d:7d:48:07:f3:7b:26: 70:e4:df:2d:03:38:ec:29:60:8a:bf:08:bc:68:74:07:31:28: ea:7a:09:92:b5:f4:a5:93:51:c3:0d:53:2d:96:c0:8b:ce:05: 8f:08:1c:2b:ff:b5:a2:ce:31:f3:87:11:e0:64:a3:1d:75:6d: 98:4c:0d:1a:4c:f1:7e:f9:7c:cc:d7:a4:43:f9:4e:8f:95:2b: 29:9e:be:c0:a0:ff:96:ba:d5:cf:62:7f:27:07:ea:18:73:d8: 63:be:60:c3:50:8c:25:83:ac:f4:d5:b0:66:43:4c:be:4b:4b: 66:2b:8b:9f:ae:bc:f9:20:94:33:07:e0:f9:9a:02:26:d7:47: f1:80:0d:f5:87:d8:c4:d9:5b:64:3f:3e:eb:39:ff:6e:a7:f3: 11:f4:85:90:03:b7:03:e7:bd:09:5c:f0:c8:85:06:91:4d:07: 82:50:56:b0:f3:55:38:e1:af:03:ba:e8:0f:55:57:f5:e5:2d: f7:08:53:3c:24:19:44:72:6d:9c:11:40:1f:4f:48:fe:fc:46: ac:55:a5:86:8d:6d:22:5e:ba:71:f3:b0:14:9a:76:cf:33:e8: ba:aa:c6:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRnIC1PCw2CBhBwly1gdwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjMjExOTE3OGJmZDkyM2E0YjVlYzQwNmQ5ZmUxNDUyYjI3 NzZlZmEwHhcNMjYwMjA5MTIwMDM4WhcNMjYwMjEwMTIwMDM4WjAzMTEwLwYDVQQD Eyg0YzBlNzM1M2JmOWQ3Y2I5OWU2MGRjZDY0Y2M3NjMwZjY2NTkxODI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmprFzItC0SqpPnKi/WVuA8UK/mel CumiYw535PDBe/ZX9XjTBfaraxYet3umjAA8vSgtqNHdTO/xbkOmqbZ4hBrqkoFH rYBU/xmf50x9X+en7O+W0lx5ZeICt7SD5K6ITLHPimYv8IX2nfH8U2DXUtX9xi0c XI8xLYSduG78zeH3p203sbXB8Pj8L1d6lm0j4fNLfVpUBPc/njcboaSkx/VJSJ5c rkmKbh3xWqrq56LBq95qSLKIif5cWCbogI9hPRgHpqwe+uZA5TpVcZp8sR/KNnCF zq2dd8pyXerXKb2JSzmpGh9rhWhaCl08EC+nF+PLoNC98kYp9R7ExRklHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEwOc1O/nXy5nmDc1kzHYw9mWRglMB8GA1UdIwQY MBaAFKwhGReL/ZI6S17EBtn+FFKyd276MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckNFWkY0djlranBMWHNRRzJmNFVVckozYnZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yYThmN2UtZTYwNS00MTE0LTkwZTgt ZjYwMGQwZmQwM2NlLzEvckNFWkY0djlranBMWHNRRzJmNFVVckozYnZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yYThmN2UtZTYwNS00MTE0LTkwZTgtZjYwMGQwZmQwM2Nl LzEvckNFWkY0djlranBMWHNRRzJmNFVVckozYnZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVH7qr5bw 34/RBDHpjAaXejsVjrmuhhR61bBzTJ8NfUgH83smcOTfLQM47Clgir8IvGh0BzEo 6noJkrX0pZNRww1TLZbAi84FjwgcK/+1os4x84cR4GSjHXVtmEwNGkzxfvl8zNek Q/lOj5UrKZ6+wKD/lrrVz2J/JwfqGHPYY75gw1CMJYOs9NWwZkNMvktLZiuLn668 +SCUMwfg+ZoCJtdH8YAN9YfYxNlbZD8+6zn/bqfzEfSFkAO3A+e9CVzwyIUGkU0H glBWsPNVOOGvA7roD1VX9eUt9whTPCQZRHJtnBFAH09I/vxGrFWlho1tIl66cfOw FJp2zzPouqrGug== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:35 2026 by rpki-client