This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft File: T4BFzPUJd-vDBmo87tj9MvHwI94.mft (raw, json) Hash identifier: SHjmdG0cnsZ+YKs5TuuBSCURciXXGuEK6ZcNhppiB0o= Subject key identifier: A5:46:F3:6C:E7:45:C1:A0:A7:D2:50:98:F2:DA:74:EF:97:22:31:2C Authority key identifier: 4F:80:45:CC:F5:09:77:EB:C3:06:6A:3C:EE:D8:FD:32:F1:F0:23:DE Certificate issuer: /CN=4f8045ccf50977ebc3066a3ceed8fd32f1f023de Certificate serial: 019C43C6A1D163AC218631009D7BC7D45581 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft Manifest number: 174F Signing time: Mon 09 Feb 2026 19:00:16 +0000 Manifest this update: Mon 09 Feb 2026 19:00:16 +0000 Manifest next update: Tue 10 Feb 2026 19:00:16 +0000 Files and hashes: 1: A6gi-so3kFc6wSPDrN7dSs0W0Xw.roa (hash: eMXdGzp0+E8BUJOejeN9hz+moObGIQrtjp1B5O+rfYQ=) 2: T4BFzPUJd-vDBmo87tj9MvHwI94.crl (hash: 5bPDiYjDTzwuYFC0Dxqfyr56ZPkHyw2uNQ/Jhpwzo50=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:a1:d1:63:ac:21:86:31:00:9d:7b:c7:d4:55:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f8045ccf50977ebc3066a3ceed8fd32f1f023de Validity Not Before: Feb 9 19:00:16 2026 GMT Not After : Feb 10 19:00:16 2026 GMT Subject: CN=a546f36ce745c1a0a7d25098f2da74ef9722312c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a1:14:fa:d8:04:c8:c9:9e:55:c0:7d:17:7b: 3a:17:b7:75:c5:da:d9:a8:ba:45:62:43:a7:92:7c: 79:cd:c2:8a:d1:2f:23:4b:7e:6a:4e:2d:b0:43:e1: 57:5f:18:18:09:da:3f:9f:3f:6f:b5:67:a8:46:4c: 09:eb:b4:95:d1:98:2d:0a:cb:a3:0c:f4:5a:a6:51: 22:a9:62:c2:26:72:44:15:cd:f5:46:39:ff:59:12: 89:ca:41:4b:e4:a5:f5:41:9d:9a:8f:72:98:17:5e: 92:2d:9c:95:13:aa:9c:75:d2:90:ad:ad:ca:41:dc: ce:b8:93:89:81:ea:01:17:da:22:1b:fa:d4:93:d4: 27:ff:29:10:5a:83:3d:0f:2e:88:1e:e9:1c:99:81: 7d:47:7c:9b:f9:bc:ef:51:5e:68:0b:c2:bd:19:2f: a8:a8:f6:d2:a7:d2:49:e8:91:85:ba:20:38:05:c8: b9:ba:2c:48:4f:c9:3f:50:28:b5:82:3d:7c:b0:78: 53:0b:85:22:bd:2c:b9:1b:3d:f2:a5:b7:3d:b8:bb: 02:a2:e4:9c:c0:9e:c9:f4:c9:4f:b2:7f:3b:2d:6e: 73:df:e0:04:e1:46:09:4e:cd:14:02:ac:94:3a:41: 8b:45:52:4c:92:94:61:b9:86:e9:ba:57:eb:fa:b9: fa:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:46:F3:6C:E7:45:C1:A0:A7:D2:50:98:F2:DA:74:EF:97:22:31:2C X509v3 Authority Key Identifier: keyid:4F:80:45:CC:F5:09:77:EB:C3:06:6A:3C:EE:D8:FD:32:F1:F0:23:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:90:55:7b:ae:c9:c7:27:70:de:b4:30:c9:51:16:4d:d6:71: 05:6e:04:52:7b:2e:cc:56:a1:85:7b:8a:e2:6d:0d:0e:51:0f: d9:3e:f8:d5:fe:6a:18:8d:28:7c:e9:01:fe:ef:7a:5c:14:65: 8a:a0:d7:e4:fe:40:3f:9c:74:11:17:9c:ee:ba:5a:70:8e:c1: b8:c3:44:23:ab:ed:cc:15:63:4c:ac:f2:08:e9:ff:1b:b5:17: 1b:52:59:60:5d:9c:b1:f3:15:8b:5c:62:d7:55:7d:1a:94:4e: ce:d0:44:5b:cb:9f:76:d1:b4:03:41:7d:f7:79:35:22:40:4c: 78:9e:e1:ca:f7:29:30:d5:1f:34:e6:dd:f9:11:0b:41:ae:61: d5:e8:b9:3b:52:69:55:ed:a1:0b:8a:d8:91:b7:3e:1c:ec:e3: e4:71:d0:93:af:b0:fb:70:6d:19:6a:55:42:50:bb:f8:c1:67: 86:69:24:d4:52:77:15:a6:b8:f9:a0:45:b6:59:83:7d:48:11: 89:a1:74:3e:8b:3a:e3:7c:bc:64:ec:f7:54:9d:8b:b3:a9:9c: 23:99:da:46:ee:a3:f0:7f:e0:06:13:c6:ff:06:fc:ca:38:99: c7:d1:8a:04:15:f9:dc:bd:20:c6:e3:45:ef:3d:aa:12:f8:90: 0a:c3:37:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxqHRY6whhjEAnXvH1FWBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmODA0NWNjZjUwOTc3ZWJjMzA2NmEzY2VlZDhmZDMyZjFm MDIzZGUwHhcNMjYwMjA5MTkwMDE2WhcNMjYwMjEwMTkwMDE2WjAzMTEwLwYDVQQD EyhhNTQ2ZjM2Y2U3NDVjMWEwYTdkMjUwOThmMmRhNzRlZjk3MjIzMTJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnaEU+tgEyMmeVcB9F3s6F7d1xdrZ qLpFYkOnknx5zcKK0S8jS35qTi2wQ+FXXxgYCdo/nz9vtWeoRkwJ67SV0ZgtCsuj DPRaplEiqWLCJnJEFc31Rjn/WRKJykFL5KX1QZ2aj3KYF16SLZyVE6qcddKQra3K QdzOuJOJgeoBF9oiG/rUk9Qn/ykQWoM9Dy6IHukcmYF9R3yb+bzvUV5oC8K9GS+o qPbSp9JJ6JGFuiA4Bci5uixIT8k/UCi1gj18sHhTC4UivSy5Gz3ypbc9uLsCouSc wJ7J9MlPsn87LW5z3+AE4UYJTs0UAqyUOkGLRVJMkpRhuYbpulfr+rn6sQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKVG82znRcGgp9JQmPLadO+XIjEsMB8GA1UdIwQY MBaAFE+ARcz1CXfrwwZqPO7Y/TLx8CPeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDRCRnpQVUpkLXZEQm1vODd0ajlNdkh3STk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83ZDllMTAtMmMxOS00ZGQ4LWE4MGYt NDBjODY5N2JiZGU5LzEvVDRCRnpQVUpkLXZEQm1vODd0ajlNdkh3STk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi83ZDllMTAtMmMxOS00ZGQ4LWE4MGYtNDBjODY5N2JiZGU5 LzEvVDRCRnpQVUpkLXZEQm1vODd0ajlNdkh3STk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjZBVe67J xydw3rQwyVEWTdZxBW4EUnsuzFahhXuK4m0NDlEP2T741f5qGI0ofOkB/u96XBRl iqDX5P5AP5x0ERec7rpacI7BuMNEI6vtzBVjTKzyCOn/G7UXG1JZYF2csfMVi1xi 11V9GpROztBEW8ufdtG0A0F993k1IkBMeJ7hyvcpMNUfNObd+RELQa5h1ei5O1Jp Ve2hC4rYkbc+HOzj5HHQk6+w+3BtGWpVQlC7+MFnhmkk1FJ3Faa4+aBFtlmDfUgR iaF0Pos643y8ZOz3VJ2Ls6mcI5naRu6j8H/gBhPG/wb8yjiZx9GKBBX53L0gxuNF 7z2qEviQCsM3WA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:25 2026 by rpki-client