This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json) Hash identifier: dxwyuk1/etJF2mKI7FiUKvEauZVODQg5xocSajoOxWg= Subject key identifier: 02:0C:06:D0:AF:45:9F:85:0C:6D:D7:54:8B:98:56:A0:46:81:87:E2 Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c Certificate serial: 019C4322F95557C05AF1C13005E0D37DE4E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 16:01:31 +0000 Manifest this update: Mon 09 Feb 2026 16:01:31 +0000 Manifest next update: Tue 10 Feb 2026 16:01:31 +0000 Files and hashes: 1: N79dGcqXOAWTraGm-dUGr_n7g5o.roa (hash: izRmr4QFMP3HYYiVhDYKTcRuMtp1aQuZsgseKcKqny4=) 2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: Y5jBaAxtZxY14mFcCpUOBeWkInbqwROlA9ENNmcbOEg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:f9:55:57:c0:5a:f1:c1:30:05:e0:d3:7d:e4:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c Validity Not Before: Feb 9 16:01:31 2026 GMT Not After : Feb 10 16:01:31 2026 GMT Subject: CN=020c06d0af459f850c6dd7548b9856a0468187e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:df:12:61:60:a5:40:6c:8a:03:94:84:fd:b3: 95:25:c9:04:fc:d8:9d:20:2b:5f:50:87:53:bd:97: 44:aa:80:33:94:5d:ce:57:ab:8c:71:51:06:bc:df: 02:e5:0e:d6:d1:19:d2:3f:e6:15:aa:2e:7b:36:24: 2f:cb:73:9f:30:8d:b2:23:a3:cb:b7:56:02:ed:66: 23:cb:10:59:ea:05:54:b7:55:49:21:b1:6b:ef:f2: 60:2a:96:20:ae:d8:24:b0:c2:f7:2d:5c:4d:ef:a2: ae:eb:8b:cc:7f:70:60:82:b0:2c:2c:fd:20:56:d7: 44:b2:fc:a5:a3:3d:59:ef:d1:87:00:af:e0:91:0f: b9:fc:3d:77:1d:18:ac:0a:e3:30:1d:d5:e2:e8:d0: ef:45:11:5f:12:2a:bb:16:8f:dc:ff:47:b1:02:0a: a4:4e:a4:cd:c3:d7:30:66:92:e4:9d:a7:a0:8a:fa: db:b5:30:7c:f3:4f:a2:64:35:cb:23:9a:9d:fd:1d: 12:d4:71:d7:3e:84:db:b2:d9:64:68:b3:ba:41:8a: 50:b6:ea:e6:13:72:2e:60:d5:b9:c6:f4:af:3e:6e: b5:d7:4f:86:9b:49:f7:18:9a:16:61:40:28:2b:19: 77:36:41:b7:97:99:d4:1f:c4:ec:cd:4b:3b:f5:0a: 08:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0C:06:D0:AF:45:9F:85:0C:6D:D7:54:8B:98:56:A0:46:81:87:E2 X509v3 Authority Key Identifier: keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:30:34:cc:e9:cb:28:38:81:03:ce:e0:58:b2:6d:22:5b:b8: 53:24:b2:13:40:f6:2b:1d:5c:40:76:d2:41:a7:96:5a:32:6e: d0:ce:e0:1a:87:6f:2c:1c:86:e5:a7:4e:49:3a:c7:63:3a:9c: 78:44:37:75:35:b4:23:8d:0f:54:07:1c:cb:cc:65:6b:07:14: c7:e5:c9:0a:b8:13:d2:8e:ad:9a:42:9d:fc:37:fb:cd:6e:23: a3:f7:7a:0e:e4:f1:31:b6:88:13:e6:48:a5:ce:0b:1b:11:32: 75:54:4f:b6:e1:75:cf:f5:22:3c:2f:d2:43:bb:b6:2e:67:16: 6a:2a:c9:d0:5d:3a:2a:c3:6a:6a:df:3a:a8:82:c4:6c:a4:e1: 5e:93:7c:9d:f6:c6:33:6d:bb:fa:ba:d3:18:36:54:64:92:1b: 99:80:c9:34:f2:ac:3e:57:45:88:0e:52:74:99:9b:35:53:56: 8e:32:ff:dc:08:a1:51:98:4c:81:1c:9b:5d:ae:da:61:76:41: 15:07:8d:40:cd:7e:81:51:cf:5b:c7:15:a2:11:fd:40:f6:80: 9f:9d:29:57:68:25:a6:e3:24:c0:e5:d7:d3:d1:57:11:b9:58: 72:37:a9:c3:52:da:a5:78:29:b4:49:b2:a3:83:5b:80:33:2d: a6:ea:7d:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIvlVV8Ba8cEwBeDTfeTlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0M2I5N2ExZDIxZjYzN2I1NDkxMzBmMDg1N2E2ODFjYzdm Njg4NGMwHhcNMjYwMjA5MTYwMTMxWhcNMjYwMjEwMTYwMTMxWjAzMTEwLwYDVQQD EygwMjBjMDZkMGFmNDU5Zjg1MGM2ZGQ3NTQ4Yjk4NTZhMDQ2ODE4N2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA198SYWClQGyKA5SE/bOVJckE/Nid ICtfUIdTvZdEqoAzlF3OV6uMcVEGvN8C5Q7W0RnSP+YVqi57NiQvy3OfMI2yI6PL t1YC7WYjyxBZ6gVUt1VJIbFr7/JgKpYgrtgksML3LVxN76Ku64vMf3BggrAsLP0g VtdEsvyloz1Z79GHAK/gkQ+5/D13HRisCuMwHdXi6NDvRRFfEiq7Fo/c/0exAgqk TqTNw9cwZpLknaegivrbtTB880+iZDXLI5qd/R0S1HHXPoTbstlkaLO6QYpQturm E3IuYNW5xvSvPm6110+Gm0n3GJoWYUAoKxl3NkG3l5nUH8TszUs79QoI0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAIMBtCvRZ+FDG3XVIuYVqBGgYfiMB8GA1UdIwQY MBaAFLQ7l6HSH2N7VJEw8IV6aBzH9ohMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0Yjkt MDQ2NGU5NDVmMWNjLzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0YjktMDQ2NGU5NDVmMWNj LzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhjA0zOnL KDiBA87gWLJtIlu4UySyE0D2Kx1cQHbSQaeWWjJu0M7gGodvLByG5adOSTrHYzqc eEQ3dTW0I40PVAccy8xlawcUx+XJCrgT0o6tmkKd/Df7zW4jo/d6DuTxMbaIE+ZI pc4LGxEydVRPtuF1z/UiPC/SQ7u2LmcWairJ0F06KsNqat86qILEbKThXpN8nfbG M227+rrTGDZUZJIbmYDJNPKsPldFiA5SdJmbNVNWjjL/3AihUZhMgRybXa7aYXZB FQeNQM1+gVHPW8cVohH9QPaAn50pV2glpuMkwOXX09FXEblYcjepw1LapXgptEmy o4NbgDMtpup9ug== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:00 2026 by rpki-client