This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft File: 4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft (raw, json) Hash identifier: qRxz5FWqDoj4NtBrOlZGKkTuGsNPTCp+K8wYhUDeX4U= Subject key identifier: 85:7A:E5:4E:54:FE:2F:77:59:CA:5A:EA:1A:79:25:04:C7:12:AB:C9 Authority key identifier: E0:39:64:9F:AA:8F:9D:E3:DA:E9:1B:E7:99:A2:7E:2C:A6:62:87:89 Certificate issuer: /CN=e039649faa8f9de3dae91be799a27e2ca6628789 Certificate serial: 019C446B5E3FDD5C6E8919AD51734B4F80D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft Manifest number: 1817 Signing time: Mon 09 Feb 2026 22:00:12 +0000 Manifest this update: Mon 09 Feb 2026 22:00:12 +0000 Manifest next update: Tue 10 Feb 2026 22:00:12 +0000 Files and hashes: 1: 4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl (hash: SXOPul81FiatTVTnDf9yfXfN41SAVOcTCeOYOkxFz2A=) 2: oxOUpQ0FwseclzcVvtlkSLjr_aM.roa (hash: 39PmeADT0B2o6dhGdHc5CXRqYkD6fuj6z5G5c2KqgVA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:5e:3f:dd:5c:6e:89:19:ad:51:73:4b:4f:80:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e039649faa8f9de3dae91be799a27e2ca6628789 Validity Not Before: Feb 9 22:00:12 2026 GMT Not After : Feb 10 22:00:12 2026 GMT Subject: CN=857ae54e54fe2f7759ca5aea1a792504c712abc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ed:fe:e2:9c:37:c8:23:25:2f:ba:be:89:ef: 08:6f:33:38:16:be:52:21:b0:21:9a:76:91:b5:07: b4:b9:bc:82:df:ee:be:57:36:21:b5:e9:55:32:80: 4a:fd:7b:71:df:bf:3d:ff:ee:b4:42:24:4b:1f:80: 06:d4:e6:5a:1a:c2:d5:b9:31:f9:0c:18:89:b4:4b: 18:82:4d:d4:85:ba:e4:5b:f9:06:57:37:0b:c6:7f: 2f:f3:ba:50:71:15:a9:61:8f:71:92:5f:b0:cf:99: 76:2b:76:ec:1d:b9:13:08:04:b0:bc:de:08:1b:1c: 70:06:1c:e4:cc:73:04:36:a4:6f:cf:a1:30:fd:b3: 16:e5:84:78:5b:fb:a6:4e:c7:e1:33:25:82:9a:d3: 8b:b5:61:d1:45:92:9a:a8:ad:9f:fc:2a:66:37:52: 91:8c:53:a8:67:5b:b7:0a:2f:ba:4d:14:b6:98:c8: 2e:fc:65:9c:34:f2:97:af:4e:27:df:4f:c5:68:e2: a7:69:9f:85:98:7d:34:ca:01:12:c3:8c:c1:aa:05: aa:f8:d3:7d:db:0e:11:a4:0a:ad:a7:85:cf:98:bc: 7a:cf:ce:8d:4f:be:50:40:04:4e:4d:ec:1c:65:02: 82:f1:40:e4:06:af:e2:6d:b2:59:2e:6e:41:b5:2c: ee:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7A:E5:4E:54:FE:2F:77:59:CA:5A:EA:1A:79:25:04:C7:12:AB:C9 X509v3 Authority Key Identifier: keyid:E0:39:64:9F:AA:8F:9D:E3:DA:E9:1B:E7:99:A2:7E:2C:A6:62:87:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:94:84:7a:4f:d6:39:2e:c1:2d:92:50:b4:a6:0b:20:bb:e0: ee:62:93:d4:42:01:44:84:97:8d:30:84:b8:24:93:0b:97:e1: 34:78:90:bc:cc:98:2e:2d:3f:d7:c2:9b:1d:80:0b:36:b9:93: 36:f0:35:ed:c4:16:25:72:b3:f2:ea:45:0b:05:73:cf:83:f5: 89:51:96:2f:ea:f5:95:f2:e3:ab:ab:d9:27:f9:a3:09:2c:0a: b1:6a:a7:48:fe:43:d2:c6:55:db:66:cd:ca:a4:d4:8a:42:7c: 1b:79:68:41:13:a5:61:c9:71:1d:e3:b8:fb:7d:e5:6d:9e:8c: 46:28:9d:1d:90:56:73:20:9d:0b:91:9a:f4:35:5d:e3:f5:22: 75:68:aa:37:89:0e:b5:d1:45:b1:e0:b2:96:e8:91:a0:3d:b9: 6b:bb:61:91:d1:ee:df:f7:fc:cb:0e:9f:30:49:6f:3e:0a:d5: 75:67:72:eb:b1:53:17:07:3c:50:f9:50:69:72:ce:eb:7e:99: 91:c1:7e:50:eb:80:c1:b8:9e:8d:af:59:12:80:91:1d:63:01: 21:d2:fd:9d:7c:82:82:46:98:38:47:c9:f8:a5:cd:22:97:fb: 44:bf:02:ae:4a:72:52:7e:08:02:cd:55:0f:b3:ea:f0:fc:cf: be:26:4c:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa14/3VxuiRmtUXNLT4DRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwMzk2NDlmYWE4ZjlkZTNkYWU5MWJlNzk5YTI3ZTJjYTY2 Mjg3ODkwHhcNMjYwMjA5MjIwMDEyWhcNMjYwMjEwMjIwMDEyWjAzMTEwLwYDVQQD Eyg4NTdhZTU0ZTU0ZmUyZjc3NTljYTVhZWExYTc5MjUwNGM3MTJhYmM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAru3+4pw3yCMlL7q+ie8IbzM4Fr5S IbAhmnaRtQe0ubyC3+6+VzYhtelVMoBK/Xtx3789/+60QiRLH4AG1OZaGsLVuTH5 DBiJtEsYgk3UhbrkW/kGVzcLxn8v87pQcRWpYY9xkl+wz5l2K3bsHbkTCASwvN4I GxxwBhzkzHMENqRvz6Ew/bMW5YR4W/umTsfhMyWCmtOLtWHRRZKaqK2f/CpmN1KR jFOoZ1u3Ci+6TRS2mMgu/GWcNPKXr04n30/FaOKnaZ+FmH00ygESw4zBqgWq+NN9 2w4RpAqtp4XPmLx6z86NT75QQAROTewcZQKC8UDkBq/ibbJZLm5BtSzugwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIV65U5U/i93Wcpa6hp5JQTHEqvJMB8GA1UdIwQY MBaAFOA5ZJ+qj53j2ukb55mifiymYoeJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNERsa242cVBuZVBhNlJ2bm1hSi1MS1ppaDRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8yZWZhY2UtZDBhMy00MzM5LTgwNjgt ZDc2NzhhMDc4N2QxLzEvNERsa242cVBuZVBhNlJ2bm1hSi1MS1ppaDRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8yZWZhY2UtZDBhMy00MzM5LTgwNjgtZDc2NzhhMDc4N2Qx LzEvNERsa242cVBuZVBhNlJ2bm1hSi1MS1ppaDRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeZSEek/W OS7BLZJQtKYLILvg7mKT1EIBRISXjTCEuCSTC5fhNHiQvMyYLi0/18KbHYALNrmT NvA17cQWJXKz8upFCwVzz4P1iVGWL+r1lfLjq6vZJ/mjCSwKsWqnSP5D0sZV22bN yqTUikJ8G3loQROlYclxHeO4+33lbZ6MRiidHZBWcyCdC5Ga9DVd4/UidWiqN4kO tdFFseCyluiRoD25a7thkdHu3/f8yw6fMElvPgrVdWdy67FTFwc8UPlQaXLO636Z kcF+UOuAwbieja9ZEoCRHWMBIdL9nXyCgkaYOEfJ+KXNIpf7RL8CrkpyUn4IAs1V D7Pq8PzPviZMRg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:49 2026 by rpki-client