This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.mft File: Tm32g40DOAFB635O5V3AXYcGHck.mft (raw, json) Hash identifier: 5M/7GvYpScZP4Y5CAtGtWkMT5K9oSEPXfRPqLPwdBv0= Subject key identifier: 9E:D3:D4:81:75:C8:71:65:6A:58:E2:B1:30:C8:9C:1C:BD:D7:4B:4A Authority key identifier: 4E:6D:F6:83:8D:03:38:01:41:EB:7E:4E:E5:5D:C0:5D:87:06:1D:C9 Certificate issuer: /CN=4e6df6838d03380141eb7e4ee55dc05d87061dc9 Certificate serial: 019C43595D1941B06776380B61B8618234A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tm32g40DOAFB635O5V3AXYcGHck.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.mft Manifest number: 125E Signing time: Mon 09 Feb 2026 17:00:55 +0000 Manifest this update: Mon 09 Feb 2026 17:00:55 +0000 Manifest next update: Tue 10 Feb 2026 17:00:55 +0000 Files and hashes: 1: Tm32g40DOAFB635O5V3AXYcGHck.crl (hash: g4+TwDbzUBwG62ACUpGYr9uM9iMAZcjriWumQm5qDGs=) 2: xdrQzD8F-W74pVt7R0a-P7c9upU.roa (hash: abblQYTkxZVFW1Ns3PROXNnoRQdUS1zz9CUYdEet9Bc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.mft rsync://rpki.ripe.net/repository/DEFAULT/Tm32g40DOAFB635O5V3AXYcGHck.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:5d:19:41:b0:67:76:38:0b:61:b8:61:82:34:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e6df6838d03380141eb7e4ee55dc05d87061dc9 Validity Not Before: Feb 9 17:00:55 2026 GMT Not After : Feb 10 17:00:55 2026 GMT Subject: CN=9ed3d48175c871656a58e2b130c89c1cbdd74b4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5d:15:7c:b5:22:b9:69:ce:10:67:c7:a7:08: f9:63:31:f4:b3:7f:36:2e:16:4c:cb:55:b6:c0:db: da:fc:6d:63:cd:28:0a:dc:06:f8:7d:a4:b3:71:f9: 67:2f:1e:8d:32:cd:05:e5:06:ff:5f:af:6c:69:da: 34:92:f3:15:78:84:9f:21:2b:25:d2:dc:07:c7:28: 1f:ea:79:c9:f1:2a:54:6c:54:36:ba:87:b1:6c:54: cf:ac:d6:ba:b7:1c:3f:70:ab:ef:f3:64:b9:8f:35: 54:a1:60:88:47:18:1e:c4:f8:e0:a0:a5:a5:da:5a: 5f:52:c7:ec:7f:d6:e3:0c:e6:45:5d:e9:1b:29:9c: c8:79:8b:4e:9f:2f:f5:f1:96:7d:7d:d7:83:5f:7f: 07:d4:5c:e5:00:3c:82:a1:6a:71:90:da:7e:71:57: cf:d7:f5:ba:2d:8d:35:39:73:0b:2a:ae:6b:2e:e2: 86:80:54:0c:1f:c1:34:7e:4b:e8:9e:88:dc:64:d2: 09:aa:b7:5e:68:b9:8b:53:38:a1:43:68:17:1d:db: 3f:ae:55:d9:ba:b5:b3:fb:63:b4:ac:d3:82:1e:15: 4a:63:04:f5:1e:ae:41:f5:38:ff:da:d1:84:de:1a: dc:f4:64:4e:e0:f1:d9:0e:cf:4c:dc:e9:9c:59:dd: 97:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D3:D4:81:75:C8:71:65:6A:58:E2:B1:30:C8:9C:1C:BD:D7:4B:4A X509v3 Authority Key Identifier: keyid:4E:6D:F6:83:8D:03:38:01:41:EB:7E:4E:E5:5D:C0:5D:87:06:1D:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tm32g40DOAFB635O5V3AXYcGHck.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/6eeb5c-d251-470a-a7cd-318362004e8a/1/Tm32g40DOAFB635O5V3AXYcGHck.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:95:37:2c:7d:72:87:ed:c5:e0:d1:70:48:e9:24:58:b4:4d: 6b:a4:14:cc:2e:af:63:5b:64:bc:20:36:6a:75:6d:c4:52:5b: c8:3f:bc:12:86:01:49:ce:66:c6:53:8b:be:f2:93:71:b7:42: 4e:71:f4:09:ff:9b:19:b9:f9:45:c7:84:46:4a:b3:3f:57:3a: 3d:60:33:c3:6d:34:5c:0e:20:a3:c8:d5:43:50:15:fd:a5:2b: 0a:82:7e:ec:19:2a:38:99:5b:52:1d:03:b0:ca:01:1e:0d:66: 14:9d:8d:07:a0:0c:a4:72:d7:d9:2a:1d:f6:5f:84:a6:79:69: fd:00:75:d0:33:28:2b:a0:58:ce:6c:93:fd:70:e2:73:cc:02: fb:9b:e1:a3:31:ce:46:8f:9f:fe:19:6d:1c:86:64:5d:81:95: e8:b4:c5:b2:25:7f:54:d2:55:51:44:d5:10:e1:f6:89:10:da: 96:1b:92:54:08:d6:de:76:6e:4e:9d:94:2a:58:d6:4e:51:0e: f5:33:fd:80:49:a3:c8:c0:9a:33:5a:35:11:db:7f:82:93:b0: be:ca:1f:ce:d4:e4:37:75:69:b5:80:b9:94:91:87:7d:ed:b8: 75:67:77:c8:83:a4:3a:35:4e:eb:d4:58:72:87:e3:32:40:a7: 5f:11:01:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWV0ZQbBndjgLYbhhgjSiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNmRmNjgzOGQwMzM4MDE0MWViN2U0ZWU1NWRjMDVkODcw NjFkYzkwHhcNMjYwMjA5MTcwMDU1WhcNMjYwMjEwMTcwMDU1WjAzMTEwLwYDVQQD Eyg5ZWQzZDQ4MTc1Yzg3MTY1NmE1OGUyYjEzMGM4OWMxY2JkZDc0YjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx10VfLUiuWnOEGfHpwj5YzH0s382 LhZMy1W2wNva/G1jzSgK3Ab4faSzcflnLx6NMs0F5Qb/X69sado0kvMVeISfISsl 0twHxygf6nnJ8SpUbFQ2uoexbFTPrNa6txw/cKvv82S5jzVUoWCIRxgexPjgoKWl 2lpfUsfsf9bjDOZFXekbKZzIeYtOny/18ZZ9fdeDX38H1FzlADyCoWpxkNp+cVfP 1/W6LY01OXMLKq5rLuKGgFQMH8E0fkvonojcZNIJqrdeaLmLUzihQ2gXHds/rlXZ urWz+2O0rNOCHhVKYwT1Hq5B9Tj/2tGE3hrc9GRO4PHZDs9M3OmcWd2XqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ7T1IF1yHFlaljisTDInBy910tKMB8GA1UdIwQY MBaAFE5t9oONAzgBQet+TuVdwF2HBh3JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVG0zMmc0MERPQUZCNjM1TzVWM0FYWWNHSGNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi82ZWViNWMtZDI1MS00NzBhLWE3Y2Qt MzE4MzYyMDA0ZThhLzEvVG0zMmc0MERPQUZCNjM1TzVWM0FYWWNHSGNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi82ZWViNWMtZDI1MS00NzBhLWE3Y2QtMzE4MzYyMDA0ZThh LzEvVG0zMmc0MERPQUZCNjM1TzVWM0FYWWNHSGNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARpU3LH1y h+3F4NFwSOkkWLRNa6QUzC6vY1tkvCA2anVtxFJbyD+8EoYBSc5mxlOLvvKTcbdC TnH0Cf+bGbn5RceERkqzP1c6PWAzw200XA4go8jVQ1AV/aUrCoJ+7BkqOJlbUh0D sMoBHg1mFJ2NB6AMpHLX2Sod9l+Epnlp/QB10DMoK6BYzmyT/XDic8wC+5vhozHO Ro+f/hltHIZkXYGV6LTFsiV/VNJVUUTVEOH2iRDalhuSVAjW3nZuTp2UKljWTlEO 9TP9gEmjyMCaM1o1Edt/gpOwvsofztTkN3VptYC5lJGHfe24dWd3yIOkOjVO69RY cofjMkCnXxEBUw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:56 2026 by rpki-client