This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json) Hash identifier: n0xjj5GYaMq7TJqs+HcWJTeVRZcLb5IaiLKKLnPdVRE= Subject key identifier: 03:24:BF:83:0C:6F:2A:7A:4C:C2:D1:9D:03:85:E0:3F:58:71:49:C7 Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29 Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729 Certificate serial: 019C3830C832F04C5845F6D4C290D23F2235 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft Manifest number: 1658 Signing time: Sat 07 Feb 2026 13:00:46 +0000 Manifest this update: Sat 07 Feb 2026 13:00:46 +0000 Manifest next update: Sun 08 Feb 2026 13:00:46 +0000 Files and hashes: 1: bLRsbjwrHl85CS_7pV5-UUKmgDU.roa (hash: wRWPjMaqEtjkWAV9xCnB4Aq9mP2pz2n/Qg6SuBrxsSE=) 2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: +Y2dA+B+KEEePxj7lSW6sqq/lLEvMZr+4wZYYq62ZDs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 09:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:38:30:c8:32:f0:4c:58:45:f6:d4:c2:90:d2:3f:22:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729 Validity Not Before: Feb 7 13:00:46 2026 GMT Not After : Feb 8 13:00:46 2026 GMT Subject: CN=0324bf830c6f2a7a4cc2d19d0385e03f587149c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4a:2f:95:86:2f:83:a6:6c:19:0c:ec:a0:06: 30:e7:4b:07:67:95:04:a6:21:63:7c:dd:bd:99:b6: 12:06:0a:ab:5d:59:b3:b9:3b:45:6e:54:42:cf:2d: a0:0a:a8:e5:70:ea:fc:7a:89:04:96:4a:dc:71:68: 30:a4:0c:05:0b:2f:5e:73:3b:7f:c8:58:c9:de:cf: c5:6b:6d:8c:af:74:19:73:d6:84:c0:5d:e8:d8:a9: f4:45:54:bf:c6:a8:dd:cc:4f:04:38:90:5f:b1:d3: 8d:19:3b:85:0c:10:82:44:e1:5b:d6:25:3a:15:49: 55:84:2d:a1:f9:93:b5:32:22:8b:77:da:10:65:7e: 34:d0:ee:a0:06:90:6c:be:49:67:96:a2:54:c5:6e: 81:2d:98:ef:67:4a:31:35:35:13:e8:4e:5b:35:52: 5a:f9:9f:ea:c3:b9:b0:3d:7d:6b:56:aa:fb:4b:78: 1a:a4:66:cb:3b:6f:4f:bd:55:86:ac:23:3c:79:1b: 33:bb:5d:ad:6a:0d:e2:9b:c1:26:06:4f:1b:d6:f9: 89:ad:3e:a8:5a:62:2b:41:d6:ca:87:a6:9d:a2:01: 7c:a1:ca:93:83:85:d6:e1:da:7a:c8:34:3d:d4:c3: 43:4d:21:34:5d:ad:67:a9:67:a9:ee:99:c3:2a:80: d6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:24:BF:83:0C:6F:2A:7A:4C:C2:D1:9D:03:85:E0:3F:58:71:49:C7 X509v3 Authority Key Identifier: keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:a3:09:aa:91:01:14:2c:cf:3d:35:f6:66:78:6f:a3:7f:75: 3a:95:90:bb:e6:52:9d:21:cc:3b:16:35:67:06:7f:17:4a:8f: 9e:64:e8:6e:8b:70:a2:5f:6c:c0:5e:40:f5:a8:20:ad:82:1c: 6f:f6:a5:05:f0:6f:94:0b:43:ec:bf:8e:b2:5c:c0:56:0e:70: 97:ee:7d:d2:ee:0a:95:6d:9e:81:18:3d:5e:0d:5d:ee:8c:bc: 6a:c3:0a:15:af:af:f2:3e:94:bc:e5:57:ee:90:29:e1:44:ca: 53:17:43:ed:05:94:7d:c6:24:41:99:f9:f7:de:5a:9d:35:2a: a3:47:9f:71:df:5a:a4:4a:a8:b0:27:72:96:f9:bd:70:3d:64: 86:b2:70:75:2b:54:03:97:08:e7:aa:6e:50:04:43:ff:c9:46: 05:d9:d2:75:de:ce:1c:73:8e:f4:d1:72:64:7a:8e:28:17:76: db:90:ad:8c:10:44:e8:ca:ee:9b:6e:17:1c:f5:0d:a6:bf:9f: a5:9a:12:4c:88:70:9c:f2:5f:7b:67:25:fb:f0:09:81:e2:fe: a6:1c:ba:63:ff:f6:2c:27:f8:18:de:45:31:d9:82:ae:93:14: 21:bf:f7:39:03:db:ec:18:dc:25:df:da:b4:66:d1:e3:4f:70: c2:82:09:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZw4MMgy8ExYRfbUwpDSPyI1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxZDJlNjgxZmYyM2RkZGYzZDUxNzg1OGUxYzY0YTFkYWQy OTg3MjkwHhcNMjYwMjA3MTMwMDQ2WhcNMjYwMjA4MTMwMDQ2WjAzMTEwLwYDVQQD EygwMzI0YmY4MzBjNmYyYTdhNGNjMmQxOWQwMzg1ZTAzZjU4NzE0OWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxEovlYYvg6ZsGQzsoAYw50sHZ5UE piFjfN29mbYSBgqrXVmzuTtFblRCzy2gCqjlcOr8eokElkrccWgwpAwFCy9eczt/ yFjJ3s/Fa22Mr3QZc9aEwF3o2Kn0RVS/xqjdzE8EOJBfsdONGTuFDBCCROFb1iU6 FUlVhC2h+ZO1MiKLd9oQZX400O6gBpBsvklnlqJUxW6BLZjvZ0oxNTUT6E5bNVJa +Z/qw7mwPX1rVqr7S3gapGbLO29PvVWGrCM8eRszu12tag3im8EmBk8b1vmJrT6o WmIrQdbKh6adogF8ocqTg4XW4dp6yDQ91MNDTSE0Xa1nqWep7pnDKoDWOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAMkv4MMbyp6TMLRnQOF4D9YcUnHMB8GA1UdIwQY MBaAFLHS5oH/I93fPVF4WOHGSh2tKYcpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2RMbWdmOGozZDg5VVhoWTRjWktIYTBwaHlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9kNTY4ZWQtMTc4MC00ZDYwLWE2Zjct NWE4MzYwZGVhM2EzLzEvc2RMbWdmOGozZDg5VVhoWTRjWktIYTBwaHlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy9kNTY4ZWQtMTc4MC00ZDYwLWE2ZjctNWE4MzYwZGVhM2Ez LzEvc2RMbWdmOGozZDg5VVhoWTRjWktIYTBwaHlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaaMJqpEB FCzPPTX2Znhvo391OpWQu+ZSnSHMOxY1ZwZ/F0qPnmTobotwol9swF5A9aggrYIc b/alBfBvlAtD7L+OslzAVg5wl+590u4KlW2egRg9Xg1d7oy8asMKFa+v8j6UvOVX 7pAp4UTKUxdD7QWUfcYkQZn5995anTUqo0efcd9apEqosCdylvm9cD1khrJwdStU A5cI56puUARD/8lGBdnSdd7OHHOO9NFyZHqOKBd225CtjBBE6Mrum24XHPUNpr+f pZoSTIhwnPJfe2cl+/AJgeL+phy6Y//2LCf4GN5FMdmCrpMUIb/3OQPb7BjcJd/a tGbR409wwoIJZg== -----END CERTIFICATE-----Generated at Sat Feb 7 17:39:34 2026 by rpki-client