This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft File: cnS17iqgd4rxMENYIlrGflUXCog.mft (raw, json) Hash identifier: gRVvotoUfz2sC/XIWz0bkZ5BGcloT+dVb3fC1vRL4GU= Subject key identifier: DC:1C:E6:81:60:DD:42:FC:8D:9F:BE:0A:99:05:96:74:27:4F:0A:A1 Authority key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88 Certificate issuer: /CN=7274b5ee2aa0778af1304358225ac67e55170a88 Certificate serial: 019C4390675250B2E2F1B8C0B96632CE6E88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft Manifest number: 0B3C Signing time: Mon 09 Feb 2026 18:01:02 +0000 Manifest this update: Mon 09 Feb 2026 18:01:02 +0000 Manifest next update: Tue 10 Feb 2026 18:01:02 +0000 Files and hashes: 1: HBecOjtWbDhPtARPUUTLEgbUp6g.roa (hash: ZUGOFV89K06s4uTeXxt/3j8cGsfgNWnfAk2/FK+XmzA=) 2: cnS17iqgd4rxMENYIlrGflUXCog.crl (hash: q+EKW7HYr8+HzcM0Np0xhBBqmVdJERJZjchh8Uqbp2I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:67:52:50:b2:e2:f1:b8:c0:b9:66:32:ce:6e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7274b5ee2aa0778af1304358225ac67e55170a88 Validity Not Before: Feb 9 18:01:02 2026 GMT Not After : Feb 10 18:01:02 2026 GMT Subject: CN=dc1ce68160dd42fc8d9fbe0a99059674274f0aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:92:fb:7f:09:07:35:eb:09:a7:cd:c7:82:52: d1:66:15:c2:6a:bd:ec:4b:b1:ee:5a:11:af:56:32: 43:32:2b:26:06:6d:c7:e0:a7:d1:0b:21:81:c2:b8: fd:68:5e:3c:90:f0:41:d1:59:74:81:0c:fa:7d:5e: af:0f:b4:5c:b2:b7:11:ef:fb:fc:f8:d8:80:34:9f: 7f:11:29:a9:f0:06:4a:7b:87:b1:e0:09:79:53:16: f0:aa:30:44:92:03:1d:3a:34:68:0b:a7:6b:50:bf: 51:fb:6e:1f:72:d5:a5:7d:d3:f7:37:15:61:66:3e: 67:f1:4d:69:33:e0:83:63:ca:31:0e:6d:48:f6:e8: 1e:21:89:ae:a7:fd:73:d2:55:bf:cd:57:2d:20:4a: 7f:da:c5:cc:da:e2:c3:07:d9:80:4c:6e:89:69:f2: ea:c5:c2:57:1d:10:7c:fe:a1:dc:bf:b1:a4:b1:39: 1f:be:78:e9:cc:a1:b5:ff:37:9e:68:91:c6:f5:a3: f4:4f:09:27:15:1b:f8:54:21:b0:72:69:0e:28:ea: 82:e7:d6:42:47:1f:50:ca:75:3e:1b:ad:7d:de:6d: c3:ab:ee:02:26:cc:bb:80:2e:c7:60:84:66:c4:f0: bf:0b:f2:03:4d:7b:ae:91:45:0f:48:98:b9:dc:aa: cd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:1C:E6:81:60:DD:42:FC:8D:9F:BE:0A:99:05:96:74:27:4F:0A:A1 X509v3 Authority Key Identifier: keyid:72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:ea:f3:93:66:79:d5:1b:27:2e:d4:8b:e4:52:fa:65:6f:5e: 56:e6:30:83:14:ec:61:45:e6:81:ba:9d:98:86:d9:46:4a:c5: 42:c4:87:ca:db:25:ba:c1:87:38:cb:1c:8e:81:00:65:26:c0: 63:1a:20:c4:a4:ef:87:34:f7:d9:fe:92:9f:8c:fb:85:3f:66: c0:4e:79:0e:d0:f5:7e:72:77:e8:02:c8:30:70:d0:ab:3a:46: 7c:cc:4f:b8:4f:f3:32:2b:82:c6:07:41:8b:84:82:3c:29:cb: 5a:37:7b:58:f4:f5:21:aa:f7:41:fd:6f:13:99:6b:b3:cb:8c: 24:37:95:a1:06:90:e6:b7:a4:8b:c0:1a:f4:2f:fa:0c:ef:1b: b8:8c:5d:e7:aa:7d:1c:ff:43:ad:80:49:71:63:7f:a5:96:ab: 8d:71:a6:21:e2:a7:58:68:f8:5f:80:74:91:49:18:11:26:da: 52:09:21:cf:fc:5f:ea:40:7e:9e:95:7b:99:f2:3b:c1:13:c0: b9:fe:00:e2:5e:83:03:88:d8:bf:14:e2:f2:e9:67:3a:87:81: 1f:cd:95:e3:0f:49:85:3e:9f:b8:9f:bd:10:53:36:93:20:18: 7c:0f:68:32:56:d6:21:06:b5:c4:18:3e:1f:ab:00:29:b1:8a: e1:fe:82:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkGdSULLi8bjAuWYyzm6IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNzRiNWVlMmFhMDc3OGFmMTMwNDM1ODIyNWFjNjdlNTUx NzBhODgwHhcNMjYwMjA5MTgwMTAyWhcNMjYwMjEwMTgwMTAyWjAzMTEwLwYDVQQD EyhkYzFjZTY4MTYwZGQ0MmZjOGQ5ZmJlMGE5OTA1OTY3NDI3NGYwYWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5L7fwkHNesJp83HglLRZhXCar3s S7HuWhGvVjJDMismBm3H4KfRCyGBwrj9aF48kPBB0Vl0gQz6fV6vD7RcsrcR7/v8 +NiANJ9/ESmp8AZKe4ex4Al5UxbwqjBEkgMdOjRoC6drUL9R+24fctWlfdP3NxVh Zj5n8U1pM+CDY8oxDm1I9ugeIYmup/1z0lW/zVctIEp/2sXM2uLDB9mATG6JafLq xcJXHRB8/qHcv7GksTkfvnjpzKG1/zeeaJHG9aP0TwknFRv4VCGwcmkOKOqC59ZC Rx9QynU+G6193m3Dq+4CJsy7gC7HYIRmxPC/C/IDTXuukUUPSJi53KrNvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNwc5oFg3UL8jZ++CpkFlnQnTwqhMB8GA1UdIwQY MBaAFHJ0te4qoHeK8TBDWCJaxn5VFwqIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY25TMTdpcWdkNHJ4TUVOWUlsckdmbFVYQ29nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi84MTA2YzYtOTZlMy00ODU2LThlNTMt NjllYmVkMTc4MTRhLzEvY25TMTdpcWdkNHJ4TUVOWUlsckdmbFVYQ29nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi84MTA2YzYtOTZlMy00ODU2LThlNTMtNjllYmVkMTc4MTRh LzEvY25TMTdpcWdkNHJ4TUVOWUlsckdmbFVYQ29nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASurzk2Z5 1RsnLtSL5FL6ZW9eVuYwgxTsYUXmgbqdmIbZRkrFQsSHytslusGHOMscjoEAZSbA YxogxKTvhzT32f6Sn4z7hT9mwE55DtD1fnJ36ALIMHDQqzpGfMxPuE/zMiuCxgdB i4SCPCnLWjd7WPT1Iar3Qf1vE5lrs8uMJDeVoQaQ5reki8Aa9C/6DO8buIxd56p9 HP9DrYBJcWN/pZarjXGmIeKnWGj4X4B0kUkYESbaUgkhz/xf6kB+npV7mfI7wRPA uf4A4l6DA4jYvxTi8ulnOoeBH82V4w9JhT6fuJ+9EFM2kyAYfA9oMlbWIQa1xBg+ H6sAKbGK4f6COw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:14 2026 by rpki-client