This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft File: FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft (raw, json) Hash identifier: UF4WnrJakxVrx0xn7tsiXq18Fe0Cnm/gfwuG+Q+yFtw= Subject key identifier: 47:B7:1C:AF:46:EC:7F:6D:73:C5:D4:74:05:08:AE:7D:51:8F:D5:51 Authority key identifier: 14:C2:EA:B6:A2:96:05:06:04:6A:1D:A4:31:27:73:D9:8E:97:CD:5A Certificate issuer: /CN=14c2eab6a2960506046a1da4312773d98e97cd5a Certificate serial: 019C432229A65F1D13B38746902C34B9FDD5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft Manifest number: 0CB2 Signing time: Mon 09 Feb 2026 16:00:38 +0000 Manifest this update: Mon 09 Feb 2026 16:00:38 +0000 Manifest next update: Tue 10 Feb 2026 16:00:38 +0000 Files and hashes: 1: FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl (hash: bKM1/XQy8HNsD1exv/v4i1ExRDn3ARjbtFDUOdeeHVY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:29:a6:5f:1d:13:b3:87:46:90:2c:34:b9:fd:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14c2eab6a2960506046a1da4312773d98e97cd5a Validity Not Before: Feb 9 16:00:38 2026 GMT Not After : Feb 10 16:00:38 2026 GMT Subject: CN=47b71caf46ec7f6d73c5d4740508ae7d518fd551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4f:28:63:c1:d4:0d:a0:8b:60:6b:e4:69:bb: c3:27:de:32:6a:bd:0d:9a:58:d2:65:99:82:bb:f1: b4:cf:8a:43:04:8b:3d:2b:4c:34:fa:41:1b:7e:5e: 9c:70:d7:57:eb:6e:96:bd:28:4c:98:73:17:bd:00: a9:11:f5:30:69:a8:f0:74:65:db:25:30:5c:87:72: f7:36:33:b9:ec:83:7e:d8:8e:cf:8d:80:58:3f:ed: 60:a9:6f:9b:8e:46:9d:17:f9:81:54:d7:db:3f:b4: 23:6e:16:c6:96:2f:0f:45:1d:68:ab:72:89:5c:b6: d7:1e:49:69:ee:4e:8f:4a:2a:94:f9:e8:8b:d9:91: 29:91:a4:ce:4a:e6:6c:09:df:05:95:4b:9c:1b:20: 85:7e:33:04:e6:50:ec:d8:25:a8:81:d3:59:18:20: 9a:7e:db:63:a1:1e:32:09:61:66:3b:89:9f:bb:cc: 8f:dc:31:3c:7b:71:f1:60:ef:4f:33:76:cf:33:f5: df:2b:cc:fb:0d:b7:16:3c:08:54:4c:9c:1d:16:c6: 8a:04:bd:4a:06:45:49:a4:68:ea:20:51:69:b0:cc: fc:de:da:bf:db:01:8b:91:3f:87:77:10:18:24:6f: 4a:37:07:26:55:10:00:84:75:55:95:71:10:0a:c4: 8d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B7:1C:AF:46:EC:7F:6D:73:C5:D4:74:05:08:AE:7D:51:8F:D5:51 X509v3 Authority Key Identifier: keyid:14:C2:EA:B6:A2:96:05:06:04:6A:1D:A4:31:27:73:D9:8E:97:CD:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMLqtqKWBQYEah2kMSdz2Y6XzVo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/4b4d7a-ce48-47a4-a3c4-611e57da95c0/1/FMLqtqKWBQYEah2kMSdz2Y6XzVo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:19:d4:e8:94:08:6c:b0:de:c1:7e:d1:f0:56:7d:97:eb:f2: c5:da:6f:fa:e5:50:6f:aa:3e:ce:02:fc:c4:15:1b:9a:cc:9a: dc:de:7d:42:1a:9a:76:a2:c0:73:26:c1:98:b3:74:79:83:8a: bf:34:25:86:86:6a:19:d5:21:a6:f6:ec:59:ba:01:6a:1c:55: 17:47:aa:2e:8e:ff:12:b1:77:78:7e:c5:de:32:63:ad:68:05: b0:d9:a1:d7:80:9e:b7:40:4e:a6:ea:43:f6:d0:94:12:ff:08: a1:c7:8f:86:ff:75:c6:f7:f3:95:18:4a:00:79:9f:cb:f5:8b: 2f:29:7b:57:c1:fe:c2:2b:47:e5:81:0e:33:a9:e2:60:36:87: a3:8e:4c:d4:88:92:36:4e:8a:3b:d7:ab:c6:1a:b9:c6:73:cf: d3:a1:4a:cb:45:ca:b7:0b:cf:e2:47:26:85:53:24:ed:99:6b: 8c:7e:63:f5:2f:e8:01:24:e2:5b:44:8a:76:64:f3:c6:22:48: 51:6e:dc:d2:3f:9a:16:51:07:4d:cb:10:b6:c4:82:75:9d:e1: 76:5e:46:05:86:c6:4a:1f:95:4b:67:a7:1f:47:6e:08:5e:e5: 8c:0e:e9:7f:cd:5e:aa:4f:cf:84:38:5e:75:7b:00:7e:01:75: df:df:f7:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIimmXx0Ts4dGkCw0uf3VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0YzJlYWI2YTI5NjA1MDYwNDZhMWRhNDMxMjc3M2Q5OGU5 N2NkNWEwHhcNMjYwMjA5MTYwMDM4WhcNMjYwMjEwMTYwMDM4WjAzMTEwLwYDVQQD Eyg0N2I3MWNhZjQ2ZWM3ZjZkNzNjNWQ0NzQwNTA4YWU3ZDUxOGZkNTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsU8oY8HUDaCLYGvkabvDJ94yar0N mljSZZmCu/G0z4pDBIs9K0w0+kEbfl6ccNdX626WvShMmHMXvQCpEfUwaajwdGXb JTBch3L3NjO57IN+2I7PjYBYP+1gqW+bjkadF/mBVNfbP7QjbhbGli8PRR1oq3KJ XLbXHklp7k6PSiqU+eiL2ZEpkaTOSuZsCd8FlUucGyCFfjME5lDs2CWogdNZGCCa fttjoR4yCWFmO4mfu8yP3DE8e3HxYO9PM3bPM/XfK8z7DbcWPAhUTJwdFsaKBL1K BkVJpGjqIFFpsMz83tq/2wGLkT+HdxAYJG9KNwcmVRAAhHVVlXEQCsSNMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEe3HK9G7H9tc8XUdAUIrn1Rj9VRMB8GA1UdIwQY MBaAFBTC6railgUGBGodpDEnc9mOl81aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRk1McXRxS1dCUVlFYWgya01TZHoyWTZYelZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS80YjRkN2EtY2U0OC00N2E0LWEzYzQt NjExZTU3ZGE5NWMwLzEvRk1McXRxS1dCUVlFYWgya01TZHoyWTZYelZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS80YjRkN2EtY2U0OC00N2E0LWEzYzQtNjExZTU3ZGE5NWMw LzEvRk1McXRxS1dCUVlFYWgya01TZHoyWTZYelZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJRnU6JQI bLDewX7R8FZ9l+vyxdpv+uVQb6o+zgL8xBUbmsya3N59QhqadqLAcybBmLN0eYOK vzQlhoZqGdUhpvbsWboBahxVF0eqLo7/ErF3eH7F3jJjrWgFsNmh14Cet0BOpupD 9tCUEv8IocePhv91xvfzlRhKAHmfy/WLLyl7V8H+witH5YEOM6niYDaHo45M1IiS Nk6KO9erxhq5xnPP06FKy0XKtwvP4kcmhVMk7ZlrjH5j9S/oASTiW0SKdmTzxiJI UW7c0j+aFlEHTcsQtsSCdZ3hdl5GBYbGSh+VS2enH0duCF7ljA7pf81eqk/PhDhe dXsAfgF139/3vg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:52 2026 by rpki-client