This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft File: f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft (raw, json) Hash identifier: 0wYDdCpFGxOhWRI8p6I6f/D0aSmthusf/Gtp6BXSqCc= Subject key identifier: A2:C1:45:43:D6:55:39:21:5A:10:EA:F2:4D:6A:3A:23:50:44:A5:5D Authority key identifier: 7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46 Certificate issuer: /CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46 Certificate serial: 019C1CF1A5F16CA4370F4C95F09CD348394F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft Manifest number: 074C Signing time: Mon 02 Feb 2026 06:02:04 +0000 Manifest this update: Mon 02 Feb 2026 06:02:04 +0000 Manifest next update: Tue 03 Feb 2026 06:02:04 +0000 Files and hashes: 1: PEg5N3hiRtOVV8rz1xnm1FLpzfA.asa (hash: /eJ9DZOYmS6hBGU+9TUQE3rgjFypqVE71n2H5f3gxU8=) 2: f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl (hash: UVYWSwbONDY2HErp1zGveV4qEhwGJgPT7KIo8P9hedo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:f1:a5:f1:6c:a4:37:0f:4c:95:f0:9c:d3:48:39:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46 Validity Not Before: Feb 2 06:02:04 2026 GMT Not After : Feb 3 06:02:04 2026 GMT Subject: CN=a2c14543d65539215a10eaf24d6a3a235044a55d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d1:7c:5a:d1:09:8d:b0:c9:5f:89:bd:07:b4: 05:f2:ca:8c:f2:ca:d6:f5:0c:bf:10:42:23:5c:dd: c8:e3:8b:29:8a:14:79:69:20:45:17:f4:33:63:32: f1:a4:20:26:8c:f6:a0:54:2f:7a:61:d1:c3:0a:07: 9b:0e:62:7d:bd:71:5e:76:33:0e:b0:d8:d4:10:cf: 43:55:c7:13:91:f5:e5:8d:9e:68:bd:6d:12:99:34: 58:c9:68:74:93:d9:ae:83:b0:a5:08:cd:3f:d3:ce: 80:98:7f:8a:43:3f:4c:4a:e9:b7:f7:97:64:dc:92: 30:bc:4d:b6:af:5f:41:e5:52:33:85:68:77:de:3f: a2:ec:f7:2f:84:d8:76:6f:02:46:ec:07:36:7a:31: ab:24:11:d9:ee:05:70:be:24:c1:19:d1:b5:53:78: cd:51:31:eb:48:c4:3e:20:09:db:d9:af:a8:31:a9: a5:96:f1:df:9a:52:41:50:52:38:3a:fc:37:c4:75: 4e:63:57:02:99:3c:72:f7:63:33:6e:43:53:b1:61: 69:aa:50:bc:dd:dd:90:6d:3c:2b:48:06:26:fa:f1: 4f:62:8d:69:9f:d4:53:dd:6b:5f:f6:51:4c:c8:85: 99:34:ed:5e:bd:4e:a8:35:20:7e:d0:2c:15:3e:18: 84:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C1:45:43:D6:55:39:21:5A:10:EA:F2:4D:6A:3A:23:50:44:A5:5D X509v3 Authority Key Identifier: keyid:7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:0f:89:2d:cf:70:49:f4:58:9e:37:77:6e:f1:4d:c9:e8:17: 01:f6:35:1a:7e:45:31:b6:8f:97:11:97:9f:48:77:1e:f7:8f: c1:72:ad:ef:64:66:2a:00:94:bd:68:a0:3a:85:e6:e0:38:17: 4b:71:f9:1d:47:34:04:26:6c:20:bc:f3:ab:26:13:c7:61:7a: 45:07:58:3f:c9:32:23:fe:bf:b0:83:40:7b:86:16:af:80:7d: 8a:3e:8f:2d:3a:ee:32:d7:ac:e3:29:7c:b6:4d:ae:ab:6d:97: 8d:e9:ef:89:72:74:23:e1:5f:91:ff:6a:a2:c5:d4:67:d2:14: ea:ca:07:b8:2c:e5:fa:e6:b9:ae:db:f1:74:4a:16:27:09:85: 99:7a:c9:ba:bd:92:03:12:94:ce:f5:27:7c:d9:0e:2d:e3:d8: 3f:8c:a2:32:65:af:bb:e7:16:71:bf:de:4c:ca:84:06:fd:0a: 37:ee:cd:df:fd:99:c2:48:2a:08:98:72:46:f3:41:0e:e4:39: fb:c0:c4:7b:63:48:aa:d5:d5:b2:3d:5f:e2:f7:8a:4b:9a:6c: eb:44:b9:d4:87:63:03:1d:7a:a5:e2:0f:44:ac:54:1f:d0:fa: 4c:3f:b3:d5:9a:e5:67:5e:ed:ef:5d:bd:c8:80:95:65:1a:82: fa:c0:23:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwc8aXxbKQ3D0yV8JzTSDlPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmNGFlNTdlZTZlMGE5YzUxMDFmYzE0YTg3YTUzMzQxNTBi YmFiNDYwHhcNMjYwMjAyMDYwMjA0WhcNMjYwMjAzMDYwMjA0WjAzMTEwLwYDVQQD EyhhMmMxNDU0M2Q2NTUzOTIxNWExMGVhZjI0ZDZhM2EyMzUwNDRhNTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2dF8WtEJjbDJX4m9B7QF8sqM8srW 9Qy/EEIjXN3I44spihR5aSBFF/QzYzLxpCAmjPagVC96YdHDCgebDmJ9vXFedjMO sNjUEM9DVccTkfXljZ5ovW0SmTRYyWh0k9mug7ClCM0/086AmH+KQz9MSum395dk 3JIwvE22r19B5VIzhWh33j+i7PcvhNh2bwJG7Ac2ejGrJBHZ7gVwviTBGdG1U3jN UTHrSMQ+IAnb2a+oMamllvHfmlJBUFI4Ovw3xHVOY1cCmTxy92MzbkNTsWFpqlC8 3d2QbTwrSAYm+vFPYo1pn9RT3Wtf9lFMyIWZNO1evU6oNSB+0CwVPhiExwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKLBRUPWVTkhWhDq8k1qOiNQRKVdMB8GA1UdIwQY MBaAFH9K5X7m4KnFEB/BSoelM0FQu6tGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZjBybGZ1YmdxY1VRSDhGS2g2VXpRVkM3cTBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8xMWZhNDQtODg3OS00ZDE5LWI0Njgt NWI1ZDk4ZjUzNjFlLzEvZjBybGZ1YmdxY1VRSDhGS2g2VXpRVkM3cTBZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8xMWZhNDQtODg3OS00ZDE5LWI0NjgtNWI1ZDk4ZjUzNjFl LzEvZjBybGZ1YmdxY1VRSDhGS2g2VXpRVkM3cTBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALA+JLc9w SfRYnjd3bvFNyegXAfY1Gn5FMbaPlxGXn0h3HvePwXKt72RmKgCUvWigOoXm4DgX S3H5HUc0BCZsILzzqyYTx2F6RQdYP8kyI/6/sINAe4YWr4B9ij6PLTruMtes4yl8 tk2uq22XjenviXJ0I+Ffkf9qosXUZ9IU6soHuCzl+ua5rtvxdEoWJwmFmXrJur2S AxKUzvUnfNkOLePYP4yiMmWvu+cWcb/eTMqEBv0KN+7N3/2ZwkgqCJhyRvNBDuQ5 +8DEe2NIqtXVsj1f4veKS5ps60S51IdjAx16peIPRKxUH9D6TD+z1ZrlZ17t7129 yICVZRqC+sAjVw== -----END CERTIFICATE-----Generated at Mon Feb 2 12:48:52 2026 by rpki-client