This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft File: CBg0SlIKOZknm7gkfheeiEBuNXg.mft (raw, json) Hash identifier: bu8hokyHz0R87Xc+ZsMWGzIXZ30pt1q1G/CjYplWZKU= Subject key identifier: F5:F2:94:39:F1:3F:52:92:8C:DB:FE:46:40:46:72:1A:F8:96:C5:F6 Authority key identifier: 08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78 Certificate issuer: /CN=0818344a520a3999279bb8247e179e88406e3578 Certificate serial: 019C42B474A21C39AEAE524EB1197C787285 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft Manifest number: 0ADE Signing time: Mon 09 Feb 2026 14:00:48 +0000 Manifest this update: Mon 09 Feb 2026 14:00:48 +0000 Manifest next update: Tue 10 Feb 2026 14:00:48 +0000 Files and hashes: 1: CBg0SlIKOZknm7gkfheeiEBuNXg.crl (hash: 83lh4WZ5Rq4DeC5hMgfB2YgJlvkdVHzTOkopGk1lGzM=) 2: jrESc5APENrqQkJhnFt6y_8ea-8.roa (hash: aS9GuOaG5e1hqXNc5Tek76eZwNGPGkUH9oPiGIbY26k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:74:a2:1c:39:ae:ae:52:4e:b1:19:7c:78:72:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0818344a520a3999279bb8247e179e88406e3578 Validity Not Before: Feb 9 14:00:48 2026 GMT Not After : Feb 10 14:00:48 2026 GMT Subject: CN=f5f29439f13f52928cdbfe464046721af896c5f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c4:5b:dd:22:0d:d3:00:72:ce:c9:6d:7e:4a: ae:05:f8:8e:95:9e:ca:3f:f9:14:eb:95:4e:2f:c5: 15:e7:66:bd:6b:a4:a8:bf:d3:c4:76:c5:c8:89:9e: 4b:ef:0f:3d:a0:64:e6:ae:fd:49:f1:ff:d3:70:a3: 7e:4f:46:9d:19:29:b4:9e:44:0a:21:52:2b:b2:5a: c2:d5:57:5f:26:d1:84:e3:72:20:49:6c:0b:8a:dd: b0:c2:d4:d2:de:ab:1d:08:a3:8b:b1:f4:83:0b:f9: 46:c3:a7:e0:fd:45:43:df:0e:1d:92:40:68:b9:11: b0:a5:df:4e:aa:57:a5:4a:47:12:d1:bb:70:60:f8: 15:f7:86:f5:96:ff:bc:34:68:0b:a3:02:64:c3:bd: 5b:67:c1:76:d8:ff:fc:f6:d9:b5:3f:34:a3:c5:b0: ef:27:02:d8:4d:0a:1b:42:df:1e:4c:60:e9:7d:ef: 41:47:05:20:d4:3d:be:e2:fc:ae:e3:82:ac:de:eb: ba:09:c4:70:8b:94:4d:8a:87:ea:96:6d:49:d7:50: 92:bb:56:c1:19:29:94:b4:23:e4:7f:43:21:a8:3c: ee:47:6d:ce:40:c3:14:75:fe:16:1e:1c:30:58:41: 4b:06:6d:d6:61:39:45:9d:e5:c3:ff:b2:01:18:c5: 86:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F2:94:39:F1:3F:52:92:8C:DB:FE:46:40:46:72:1A:F8:96:C5:F6 X509v3 Authority Key Identifier: keyid:08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:1a:06:ec:49:3d:9f:98:7e:0d:a3:a6:ba:24:d5:47:b4:ac: 63:dc:15:f3:50:55:43:51:bd:81:f7:82:51:5c:3e:4b:55:62: 79:9f:88:48:a3:f8:9b:ce:5a:e2:12:60:dd:0e:80:b9:b6:84: ef:b3:c2:47:69:ba:07:50:a6:59:05:0d:e4:ae:ac:07:77:e3: 8f:ce:d3:62:34:ff:4d:de:b5:b8:1b:d1:31:5b:f1:08:b0:12: fa:12:c9:2f:fe:e1:ed:90:82:03:78:78:e6:d7:03:80:ed:db: 29:6e:1e:4b:35:35:a0:db:04:ae:ba:40:c7:08:5d:20:05:27: 94:19:95:e5:4a:e8:4b:d0:6a:cd:06:0a:b8:0b:54:93:a3:33: a3:7b:75:b2:18:8f:63:f5:3c:2c:4d:dc:f0:10:2a:a4:4d:65: 2e:7d:0c:85:3f:62:b3:5f:ae:db:0a:d9:66:2c:68:5c:52:80: b5:30:f8:6c:61:fa:a1:8e:d6:6a:e4:f9:6e:b0:59:a1:1e:57: bd:1b:20:11:59:76:a7:4e:60:6a:27:d0:fd:e7:86:56:46:e5: 9b:c6:a7:52:75:4a:d8:9e:c2:de:0a:81:b6:37:fc:d3:a7:76: d9:51:07:b0:76:59:d6:df:c9:c1:93:7a:b4:b7:b9:39:35:58: 21:f5:ef:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtHSiHDmurlJOsRl8eHKFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MTgzNDRhNTIwYTM5OTkyNzliYjgyNDdlMTc5ZTg4NDA2 ZTM1NzgwHhcNMjYwMjA5MTQwMDQ4WhcNMjYwMjEwMTQwMDQ4WjAzMTEwLwYDVQQD EyhmNWYyOTQzOWYxM2Y1MjkyOGNkYmZlNDY0MDQ2NzIxYWY4OTZjNWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8Rb3SIN0wByzsltfkquBfiOlZ7K P/kU65VOL8UV52a9a6Sov9PEdsXIiZ5L7w89oGTmrv1J8f/TcKN+T0adGSm0nkQK IVIrslrC1VdfJtGE43IgSWwLit2wwtTS3qsdCKOLsfSDC/lGw6fg/UVD3w4dkkBo uRGwpd9OqlelSkcS0btwYPgV94b1lv+8NGgLowJkw71bZ8F22P/89tm1PzSjxbDv JwLYTQobQt8eTGDpfe9BRwUg1D2+4vyu44Ks3uu6CcRwi5RNiofqlm1J11CSu1bB GSmUtCPkf0MhqDzuR23OQMMUdf4WHhwwWEFLBm3WYTlFneXD/7IBGMWGKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPXylDnxP1KSjNv+RkBGchr4lsX2MB8GA1UdIwQY MBaAFAgYNEpSCjmZJ5u4JH4XnohAbjV4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0JnMFNsSUtPWmtubTdna2ZoZWVpRUJ1TlhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS81NmI4MTgtOWVlMS00YTA2LWE4ZWMt ODUxZWE2NWNiOThiLzEvQ0JnMFNsSUtPWmtubTdna2ZoZWVpRUJ1TlhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS81NmI4MTgtOWVlMS00YTA2LWE4ZWMtODUxZWE2NWNiOThi LzEvQ0JnMFNsSUtPWmtubTdna2ZoZWVpRUJ1TlhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgxoG7Ek9 n5h+DaOmuiTVR7SsY9wV81BVQ1G9gfeCUVw+S1VieZ+ISKP4m85a4hJg3Q6AubaE 77PCR2m6B1CmWQUN5K6sB3fjj87TYjT/Td61uBvRMVvxCLAS+hLJL/7h7ZCCA3h4 5tcDgO3bKW4eSzU1oNsErrpAxwhdIAUnlBmV5UroS9BqzQYKuAtUk6Mzo3t1shiP Y/U8LE3c8BAqpE1lLn0MhT9is1+u2wrZZixoXFKAtTD4bGH6oY7WauT5brBZoR5X vRsgEVl2p05gaifQ/eeGVkblm8anUnVK2J7C3gqBtjf806d22VEHsHZZ1t/JwZN6 tLe5OTVYIfXvRQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:17 2026 by rpki-client