This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft File: SiHJG2O7vaiASnSfPWEOiyF_m3M.mft (raw, json) Hash identifier: +BFvCqtCuIQq3C0R3j08dRzguo0orqJwwGBprJOscy4= Subject key identifier: 1F:38:C5:2C:60:94:A8:26:DD:ED:6F:D5:0D:4B:DF:4A:91:74:62:10 Authority key identifier: 4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73 Certificate issuer: /CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73 Certificate serial: 019C4210337038AC2BAF38375CA6FA2B1F8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft Manifest number: 140E Signing time: Mon 09 Feb 2026 11:01:23 +0000 Manifest this update: Mon 09 Feb 2026 11:01:23 +0000 Manifest next update: Tue 10 Feb 2026 11:01:23 +0000 Files and hashes: 1: GARLhjoCY1mEifSMgHt3b3BOaHE.roa (hash: 1d3/nrn41VkXwlPSthRsl6eFjVEWud4PfGpAlTVZnhg=) 2: SiHJG2O7vaiASnSfPWEOiyF_m3M.crl (hash: DJtQgP1Kz2+B0IbCWkuVskbmOpS1ndf+iJlmD/uxFq8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:33:70:38:ac:2b:af:38:37:5c:a6:fa:2b:1f:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73 Validity Not Before: Feb 9 11:01:23 2026 GMT Not After : Feb 10 11:01:23 2026 GMT Subject: CN=1f38c52c6094a826dded6fd50d4bdf4a91746210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4c:d9:06:7d:3c:1e:fc:7f:25:a4:fa:a8:c4: a7:bb:57:b7:f6:1b:1a:c9:f0:48:7d:3f:4b:42:90: 3e:5e:3f:53:d2:16:cb:b2:40:d9:21:9e:c7:58:d6: 31:94:09:23:97:6e:5e:51:1c:65:42:e8:e7:9e:ff: 5e:0e:80:93:26:37:70:7e:bb:0f:16:21:f5:7d:11: 3b:93:4f:98:25:b9:9e:01:cb:e5:7c:04:bf:a4:f6: d9:81:ac:0b:93:f3:21:6a:b1:2b:6d:0c:d3:b9:1a: e6:66:da:1c:45:91:aa:09:e9:c0:44:e0:e4:53:fc: 03:66:d6:04:b4:ad:39:f8:96:50:ad:70:8d:b6:f5: d4:53:13:ca:2a:30:75:9b:2a:99:d2:3e:14:18:9f: 09:43:34:3b:ec:39:4b:e7:7e:25:bf:4e:e3:d8:2c: 5e:b9:0b:dc:e8:26:a4:42:72:ae:a6:37:02:b6:ae: 6d:48:10:31:43:54:d8:63:cd:1e:3c:09:b9:cc:26: 53:0c:85:c5:16:a5:4c:50:f0:d3:e2:db:c5:67:ac: 33:1a:28:70:e9:c5:17:4e:32:f9:4a:c8:fa:2c:5e: 47:74:25:a5:20:c0:20:3c:53:a8:38:fd:b0:e2:d2: e6:7a:24:6c:a6:31:91:f1:b7:08:5a:0a:fd:4f:45: 8e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:38:C5:2C:60:94:A8:26:DD:ED:6F:D5:0D:4B:DF:4A:91:74:62:10 X509v3 Authority Key Identifier: keyid:4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:2e:e2:c9:d9:0a:99:e9:e5:6f:a8:ee:9a:07:0b:1a:74:74: 85:7f:0d:e8:e2:26:2a:c0:90:6c:dc:8d:2c:62:5a:77:d7:bd: f9:0c:6b:2c:8f:ae:a9:6c:f4:97:92:7c:4f:ae:d7:b5:27:12: b2:05:42:4a:62:46:70:2f:77:71:95:60:3a:c2:7d:50:9a:5d: c9:0c:91:92:7f:2c:1d:6c:af:bd:2b:7b:06:4a:83:89:2e:ff: 29:34:f3:3f:32:89:70:64:61:6b:0a:b3:58:08:92:e8:d1:73: 18:e9:1d:41:a5:b5:4f:0d:b2:17:77:9b:80:b7:ac:5f:32:ff: 96:63:fb:62:37:59:48:d0:3c:34:f4:3b:61:16:c3:e9:b4:2b: aa:6a:c3:00:68:9a:bb:8b:cd:6f:0a:89:e3:46:af:32:b3:77: 6d:1b:fe:fa:bd:6d:42:11:24:e1:80:48:94:3d:f1:52:78:1e: 62:49:03:62:18:14:3e:a4:0e:99:cc:0b:fd:b2:ba:e8:c4:26: bc:fb:15:06:63:d5:b7:db:32:8e:91:d3:50:e3:e4:38:d7:1c: 7b:59:2d:58:5f:6e:f3:ee:99:2f:5c:0b:17:44:77:e5:96:d0: b1:32:57:d7:15:c4:de:04:4c:10:2c:61:d8:dd:13:04:68:b7: 32:0a:ff:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEDNwOKwrrzg3XKb6Kx+PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhMjFjOTFiNjNiYmJkYTg4MDRhNzQ5ZjNkNjEwZThiMjE3 ZjliNzMwHhcNMjYwMjA5MTEwMTIzWhcNMjYwMjEwMTEwMTIzWjAzMTEwLwYDVQQD EygxZjM4YzUyYzYwOTRhODI2ZGRlZDZmZDUwZDRiZGY0YTkxNzQ2MjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkzZBn08Hvx/JaT6qMSnu1e39hsa yfBIfT9LQpA+Xj9T0hbLskDZIZ7HWNYxlAkjl25eURxlQujnnv9eDoCTJjdwfrsP FiH1fRE7k0+YJbmeAcvlfAS/pPbZgawLk/MharErbQzTuRrmZtocRZGqCenARODk U/wDZtYEtK05+JZQrXCNtvXUUxPKKjB1myqZ0j4UGJ8JQzQ77DlL534lv07j2Cxe uQvc6CakQnKupjcCtq5tSBAxQ1TYY80ePAm5zCZTDIXFFqVMUPDT4tvFZ6wzGihw 6cUXTjL5Ssj6LF5HdCWlIMAgPFOoOP2w4tLmeiRspjGR8bcIWgr9T0WO/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB84xSxglKgm3e1v1Q1L30qRdGIQMB8GA1UdIwQY MBaAFEohyRtju72ogEp0nz1hDoshf5tzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2lISkcyTzd2YWlBU25TZlBXRU9peUZfbTNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS82ZThjYTAtY2Q0MC00NmZkLThlZTQt NDdmYmU0YzRhNGZkLzEvU2lISkcyTzd2YWlBU25TZlBXRU9peUZfbTNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS82ZThjYTAtY2Q0MC00NmZkLThlZTQtNDdmYmU0YzRhNGZk LzEvU2lISkcyTzd2YWlBU25TZlBXRU9peUZfbTNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkS7iydkK menlb6jumgcLGnR0hX8N6OImKsCQbNyNLGJad9e9+QxrLI+uqWz0l5J8T67XtScS sgVCSmJGcC93cZVgOsJ9UJpdyQyRkn8sHWyvvSt7BkqDiS7/KTTzPzKJcGRhawqz WAiS6NFzGOkdQaW1Tw2yF3ebgLesXzL/lmP7YjdZSNA8NPQ7YRbD6bQrqmrDAGia u4vNbwqJ40avMrN3bRv++r1tQhEk4YBIlD3xUngeYkkDYhgUPqQOmcwL/bK66MQm vPsVBmPVt9syjpHTUOPkONcce1ktWF9u8+6ZL1wLF0R35ZbQsTJX1xXE3gRMECxh 2N0TBGi3Mgr/cA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:02 2026 by rpki-client