This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json) Hash identifier: oZw8yumPpCz1QXyrRmTaWg297OAGoMS4HZGLpNFH/d8= Subject key identifier: 79:ED:4C:43:0D:9A:A6:2E:EE:B6:63:7C:14:9D:97:4B:58:3A:1F:CC Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be Certificate serial: 019C41A20AB8D9AA2971A91C58440EE92BC4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft Manifest number: 1554 Signing time: Mon 09 Feb 2026 09:01:04 +0000 Manifest this update: Mon 09 Feb 2026 09:01:04 +0000 Manifest next update: Tue 10 Feb 2026 09:01:04 +0000 Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: ajixPZ8jjRzj93eO/jckc/W9dOb8aYNpo7QF19gb0jI=) 2: t0X5t_3y1eMrgSVfnROrir2IJb4.roa (hash: BPcyM2IeAIooAh+FVKFVf4qaLxjgFOkdsiFt2kQ2Eag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:0a:b8:d9:aa:29:71:a9:1c:58:44:0e:e9:2b:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be Validity Not Before: Feb 9 09:01:04 2026 GMT Not After : Feb 10 09:01:04 2026 GMT Subject: CN=79ed4c430d9aa62eeeb6637c149d974b583a1fcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2d:01:d4:d6:e8:db:4f:99:7b:3e:d8:b0:4a: ce:08:17:c3:95:48:45:de:fe:b4:4e:b6:ce:80:f1: 76:d9:d2:86:b1:f5:e3:ae:58:90:ba:eb:ff:52:da: 40:95:4e:f5:fa:f8:89:38:0d:6e:c2:67:68:ed:52: 57:c7:b1:f2:30:27:52:ca:78:4f:70:61:36:3a:ef: 76:37:cf:15:57:cb:e5:c0:74:a1:30:ee:10:66:eb: dd:5f:43:b0:8a:8c:3a:27:16:b9:1c:e0:45:c1:61: f3:4a:7e:fc:f9:a9:84:17:2f:ca:85:ee:3e:5f:eb: 9f:1d:25:cb:0b:3c:41:7a:66:4a:be:fa:03:02:7a: 4a:02:32:df:21:77:00:ed:e5:9c:08:18:7b:81:f9: 83:b5:3b:27:da:0c:ec:8e:c9:50:5b:93:2f:5f:be: da:6f:fd:53:b6:5d:5a:fa:8c:50:2b:c3:99:63:d5: 4d:c8:e3:43:ff:11:4b:79:3b:bc:27:96:9a:84:ce: 5b:cd:11:c9:1f:5c:7b:4e:c8:b0:f0:c7:3c:db:03: 06:91:89:83:12:73:85:90:e5:b8:2e:e9:6a:1a:21: a8:f9:bc:ff:66:6f:77:24:ae:53:09:a5:d7:c5:32: bf:84:b2:88:42:95:08:d5:a6:2b:ed:54:9c:09:85: 32:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:ED:4C:43:0D:9A:A6:2E:EE:B6:63:7C:14:9D:97:4B:58:3A:1F:CC X509v3 Authority Key Identifier: keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:ae:f9:dc:17:d4:f8:70:02:c2:66:0d:65:fa:90:d4:2d:2c: d3:95:fc:83:3c:14:d4:90:94:3e:65:ba:17:fd:b1:b7:bd:4c: 73:1a:bd:aa:0c:84:9e:a9:57:15:96:69:43:9b:23:75:1a:71: 3f:e9:3b:c8:19:b8:62:a6:c4:03:85:97:14:7f:c3:00:59:fa: e8:37:6f:a2:6e:a5:3a:31:9d:09:ea:4c:7e:0d:e0:3c:2f:25: f9:47:2c:5e:48:39:3a:a6:ce:f8:fb:93:57:54:05:48:57:94: 4c:92:3e:5e:09:28:bd:1d:68:82:33:9c:d3:16:9c:e6:36:7d: 4e:d8:2e:74:e9:a9:ff:39:bf:3a:fc:52:be:84:7c:df:fb:6d: 46:35:1c:df:95:ee:56:e6:a7:6b:57:81:ab:33:b4:8a:85:d3: 0d:14:4e:92:78:37:56:34:e9:6a:8f:3f:90:18:36:cc:35:ca: 7c:d3:96:27:71:32:6c:4d:83:ec:89:5b:13:4c:99:64:09:bb: 12:4c:25:75:35:e1:b8:18:22:f7:91:92:e3:62:c8:13:7d:59: a8:05:9f:ed:46:dc:a2:23:90:ae:b3:55:f8:1a:76:25:93:3e: f7:33:a6:6e:34:6a:f4:56:3a:3b:64:d9:60:95:fc:a1:31:3c: 96:8f:3c:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBogq42aopcakcWEQO6SvEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyYjM2YWQyOGU1MjFlZGFiNGI0ZGVhMzQ5YTI3NzcyZDRi MmE3YmUwHhcNMjYwMjA5MDkwMTA0WhcNMjYwMjEwMDkwMTA0WjAzMTEwLwYDVQQD Eyg3OWVkNGM0MzBkOWFhNjJlZWViNjYzN2MxNDlkOTc0YjU4M2ExZmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqy0B1Nbo20+Zez7YsErOCBfDlUhF 3v60TrbOgPF22dKGsfXjrliQuuv/UtpAlU71+viJOA1uwmdo7VJXx7HyMCdSynhP cGE2Ou92N88VV8vlwHShMO4QZuvdX0Owiow6Jxa5HOBFwWHzSn78+amEFy/Khe4+ X+ufHSXLCzxBemZKvvoDAnpKAjLfIXcA7eWcCBh7gfmDtTsn2gzsjslQW5MvX77a b/1Ttl1a+oxQK8OZY9VNyOND/xFLeTu8J5aahM5bzRHJH1x7Tsiw8Mc82wMGkYmD EnOFkOW4LulqGiGo+bz/Zm93JK5TCaXXxTK/hLKIQpUI1aYr7VScCYUyJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHntTEMNmqYu7rZjfBSdl0tYOh/MMB8GA1UdIwQY MBaAFNKzatKOUh7atLTeo0mid3LUsqe+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zYTlhMGItZDQyNC00ZWNhLWE5Mzgt OTJhODc3YmIxOWY3LzEvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8zYTlhMGItZDQyNC00ZWNhLWE5MzgtOTJhODc3YmIxOWY3 LzEvMHJOcTBvNVNIdHEwdE42alNhSjNjdFN5cDc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArK753BfU +HACwmYNZfqQ1C0s05X8gzwU1JCUPmW6F/2xt71Mcxq9qgyEnqlXFZZpQ5sjdRpx P+k7yBm4YqbEA4WXFH/DAFn66Ddvom6lOjGdCepMfg3gPC8l+UcsXkg5OqbO+PuT V1QFSFeUTJI+XgkovR1ogjOc0xac5jZ9TtgudOmp/zm/OvxSvoR83/ttRjUc35Xu Vuana1eBqzO0ioXTDRROkng3VjTpao8/kBg2zDXKfNOWJ3EybE2D7IlbE0yZZAm7 EkwldTXhuBgi95GS42LIE31ZqAWf7UbcoiOQrrNV+Bp2JZM+9zOmbjRq9FY6O2TZ YJX8oTE8lo88Gg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:43 2026 by rpki-client