This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json) Hash identifier: /q+5yXZkEuDHWRpqkXyvbEWi9QcnFS3aXO0itBuQR3k= Subject key identifier: 12:7E:04:15:D5:7A:43:7A:D5:9E:03:B4:87:81:8E:E9:BA:01:5A:7D Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e Certificate serial: 019C4246895287B5C0AD91AED50D0FA1DD94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 12:00:44 +0000 Manifest this update: Mon 09 Feb 2026 12:00:44 +0000 Manifest next update: Tue 10 Feb 2026 12:00:44 +0000 Files and hashes: 1: UPwsUnhe4MrjeZvPRYpIDhPDKiI.roa (hash: gTNgkF2m3yFT5Gp1TKn07e+49JHxGZGWx9toGyIkemc=) 2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: 9zpWB4vRNLgQDz1Pk1xYJSgL/mDel6JJtFtibzpX9IA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:89:52:87:b5:c0:ad:91:ae:d5:0d:0f:a1:dd:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e Validity Not Before: Feb 9 12:00:44 2026 GMT Not After : Feb 10 12:00:44 2026 GMT Subject: CN=127e0415d57a437ad59e03b487818ee9ba015a7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:69:78:ad:f1:14:cc:52:e3:42:31:b6:eb:5a: 57:78:04:6e:85:c0:5a:a6:1b:c5:e2:23:0e:d6:9d: 4d:df:1a:ab:14:2e:5a:5a:c0:f4:ff:73:ab:f3:5c: 54:61:d5:37:49:9d:59:d3:73:4a:31:53:7c:5c:d0: b6:60:8c:f6:14:ff:fb:05:de:fb:54:28:00:0a:d2: ef:fd:b9:39:ee:99:d6:15:30:7b:2b:00:82:f7:bf: 3c:9b:6a:37:b7:6b:6e:2e:02:33:24:21:5a:34:ec: 22:94:6b:d1:4f:c2:c8:16:a1:3b:1e:26:22:45:fc: 77:fc:72:91:91:6a:a6:5c:7d:c1:7c:d1:8d:86:92: b3:1f:3e:df:24:01:10:13:75:5d:85:d5:8f:16:0b: 72:85:48:ad:f5:ff:95:f4:db:f7:23:f3:16:67:a0: 82:86:ff:7c:d8:b7:f3:4e:ee:bc:d8:1c:87:c6:48: 1a:50:84:cd:d7:73:73:c2:90:5c:08:77:af:5e:fa: c7:b9:b4:04:d5:fc:a2:fe:1e:aa:26:5d:51:fe:1c: e0:39:f5:95:2b:2f:5e:c3:73:fd:88:8a:6c:9c:63: 5a:43:c4:c5:e8:19:4c:a5:a0:8d:56:dc:2a:c5:b6: 16:eb:f8:8b:fc:0a:7f:bf:7f:92:8e:ec:41:e3:ce: 30:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:7E:04:15:D5:7A:43:7A:D5:9E:03:B4:87:81:8E:E9:BA:01:5A:7D X509v3 Authority Key Identifier: keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:7e:be:e2:f8:31:7a:76:9f:d9:c5:8d:99:16:43:77:59:d0: 4f:ee:24:7f:ef:83:b6:56:25:71:6a:4e:6b:f8:de:f3:53:1c: bd:ab:ee:5d:0f:07:92:95:f7:1e:a8:ea:e4:65:ec:f2:aa:28: 2b:e3:11:61:e4:78:91:7f:8c:d9:c2:ba:11:a2:a9:d3:82:aa: c3:bd:93:58:c7:ab:53:24:ff:e8:a1:76:90:5f:52:17:b0:96: 60:45:d5:4d:c6:2b:9d:02:9c:19:16:5f:e8:d0:0e:ff:c4:67: ce:38:83:47:b5:51:f1:cb:85:de:36:62:fc:bb:72:6f:f7:50: fa:84:07:db:af:ef:41:51:2e:6c:d6:fb:6f:43:d9:6d:c1:d8: 7d:94:c8:6e:c6:ed:47:e1:9d:79:66:33:b2:bc:b1:43:76:b5: f0:48:e7:71:6c:65:2c:75:1f:55:9b:6a:de:1c:36:a2:63:92: 6b:02:89:76:fe:4f:49:ec:30:17:d5:8c:64:8c:55:a5:1d:5a: 6a:4d:22:b1:97:7e:73:89:cf:01:90:58:4f:bc:13:49:9d:c1: f3:e6:22:63:46:7b:40:38:f3:c7:da:fd:99:52:ca:ce:f2:f4: a5:56:3f:3f:7e:33:32:89:f8:20:cd:85:33:50:ea:a2:22:d4: a9:96:c5:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRolSh7XArZGu1Q0Pod2UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0ZmIzMzFmYTQyZmI0NTFlNDU1MWM2ZjkxY2JiOWMxOWVl MzdhNGUwHhcNMjYwMjA5MTIwMDQ0WhcNMjYwMjEwMTIwMDQ0WjAzMTEwLwYDVQQD EygxMjdlMDQxNWQ1N2E0MzdhZDU5ZTAzYjQ4NzgxOGVlOWJhMDE1YTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGl4rfEUzFLjQjG261pXeARuhcBa phvF4iMO1p1N3xqrFC5aWsD0/3Or81xUYdU3SZ1Z03NKMVN8XNC2YIz2FP/7Bd77 VCgACtLv/bk57pnWFTB7KwCC9788m2o3t2tuLgIzJCFaNOwilGvRT8LIFqE7HiYi Rfx3/HKRkWqmXH3BfNGNhpKzHz7fJAEQE3VdhdWPFgtyhUit9f+V9Nv3I/MWZ6CC hv982LfzTu682ByHxkgaUITN13NzwpBcCHevXvrHubQE1fyi/h6qJl1R/hzgOfWV Ky9ew3P9iIpsnGNaQ8TF6BlMpaCNVtwqxbYW6/iL/Ap/v3+SjuxB484wkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBJ+BBXVekN61Z4DtIeBjum6AVp9MB8GA1UdIwQY MBaAFLT7Mx+kL7RR5FUcb5HLucGe43pOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9kOWE2NzItMjZjMy00YWI0LWI1M2It MDk5ZmQyMTAxMzg1LzEvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9kOWE2NzItMjZjMy00YWI0LWI1M2ItMDk5ZmQyMTAxMzg1 LzEvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl36+4vgx enaf2cWNmRZDd1nQT+4kf++DtlYlcWpOa/je81McvavuXQ8HkpX3Hqjq5GXs8qoo K+MRYeR4kX+M2cK6EaKp04Kqw72TWMerUyT/6KF2kF9SF7CWYEXVTcYrnQKcGRZf 6NAO/8RnzjiDR7VR8cuF3jZi/Ltyb/dQ+oQH26/vQVEubNb7b0PZbcHYfZTIbsbt R+GdeWYzsryxQ3a18EjncWxlLHUfVZtq3hw2omOSawKJdv5PSewwF9WMZIxVpR1a ak0isZd+c4nPAZBYT7wTSZ3B8+YiY0Z7QDjzx9r9mVLKzvL0pVY/P34zMon4IM2F M1DqoiLUqZbFvw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:11 2026 by rpki-client