This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft File: 70AaUuP95plIbplnjb9Ih1Mpwz0.mft (raw, json) Hash identifier: L42r64Z3M9RdFargHG9kw9vd7spEocXIp/6V/EBfJGc= Subject key identifier: C0:61:85:D3:4C:D5:17:FA:25:C2:36:D5:A0:69:FC:A4:7F:8A:28:6E Authority key identifier: EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D Certificate issuer: /CN=ef401a52e3fde699486e99678dbf48875329c33d Certificate serial: 019C439027E64CB3569D4728B0BBDBCAF084 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft Manifest number: 0F7C Signing time: Mon 09 Feb 2026 18:00:46 +0000 Manifest this update: Mon 09 Feb 2026 18:00:46 +0000 Manifest next update: Tue 10 Feb 2026 18:00:46 +0000 Files and hashes: 1: 1-SL9hlivQGt-mLTuChMVipJ552A.roa (hash: M4LxMEo5XBi46ojcg/gR85XlQ9Z1KIxYuUCF1vDeIuI=) 2: 70AaUuP95plIbplnjb9Ih1Mpwz0.crl (hash: BdXz6t/fU+QsRavoEHiP1an+NrdKs7u64OejG+OIeOs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:27:e6:4c:b3:56:9d:47:28:b0:bb:db:ca:f0:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef401a52e3fde699486e99678dbf48875329c33d Validity Not Before: Feb 9 18:00:46 2026 GMT Not After : Feb 10 18:00:46 2026 GMT Subject: CN=c06185d34cd517fa25c236d5a069fca47f8a286e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:10:eb:ce:74:78:40:8a:3f:e5:3b:32:3a:b5: 4e:6a:b4:8d:56:aa:96:76:0e:57:2e:45:49:81:6b: e0:40:82:cb:8c:06:b4:0e:ed:7c:57:40:7d:05:85: ed:86:d1:46:61:f0:85:b4:55:12:ed:6b:49:e5:e3: 15:fd:f4:cc:b7:f5:58:d3:53:7a:79:1c:69:79:e8: 5e:21:09:65:30:d3:e9:3a:3c:0e:2b:72:c3:b9:ea: ff:05:c3:44:b0:12:16:29:53:9a:fd:d5:30:5e:67: 8c:fc:98:9b:36:e7:bc:0e:41:92:1d:6c:0a:ee:7f: dd:81:45:3f:a8:55:6f:59:29:bf:f8:93:df:21:69: 2d:e6:52:b1:66:a5:f6:55:61:d5:11:5c:c2:42:39: ca:af:ce:cf:42:a1:d2:e8:0f:5b:97:3d:03:e5:ce: 6a:52:f6:1b:01:33:8d:d5:17:9b:ed:7e:1b:1e:f9: 2a:53:5f:00:73:a1:59:18:1f:db:d6:2a:78:4f:d8: 0c:13:64:ec:9f:50:f0:50:46:a9:43:44:5a:17:24: 50:e6:74:fd:c6:f5:03:7a:a7:d5:b3:44:43:26:18: 0b:90:74:ce:5c:93:25:61:d6:b1:67:af:03:5d:95: 84:f2:a9:c4:0d:43:7c:9b:4e:c1:28:43:01:ee:6d: a1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:61:85:D3:4C:D5:17:FA:25:C2:36:D5:A0:69:FC:A4:7F:8A:28:6E X509v3 Authority Key Identifier: keyid:EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:d2:97:be:93:bc:9c:af:c6:bb:1a:40:ff:fe:2f:a9:7e:e2: be:25:87:ca:e9:e3:27:fb:dc:a9:d1:62:47:8c:98:3a:5f:e3: 3d:18:96:50:f3:b7:ee:0f:10:84:d4:fb:c0:eb:f1:6f:04:0d: a1:cd:b4:8d:1c:d3:18:a7:76:55:49:e6:96:27:6a:47:7d:17: 91:c3:6f:f3:60:e9:04:73:c7:3f:2f:d9:34:40:48:3f:9d:70: 79:4b:08:81:e2:27:6c:9c:1e:bf:b1:95:fb:6b:b4:04:b0:c8: fb:a8:36:92:24:08:52:65:e0:53:c4:f4:e2:11:f9:d0:ea:73: 1a:cf:4e:db:8e:47:15:d3:ac:32:24:89:0b:7b:6d:aa:18:38: cf:b8:ad:b6:2b:dd:ab:c8:ca:45:26:0b:29:67:c6:9a:a2:b5: bd:70:f1:e4:32:48:b1:57:c2:e0:76:ce:48:5b:cd:52:8c:78: 0d:39:5e:fc:7c:03:5f:d5:92:42:ce:9d:03:13:e9:e2:63:7c: 0a:f8:72:d1:12:33:bd:14:e3:5d:ab:91:42:b0:b6:70:81:f3: 6e:47:53:7b:a6:8f:f6:88:97:e9:c1:f4:06:7e:bd:1c:29:63: dc:43:99:cd:28:50:c1:58:fb:02:67:29:d4:0d:cc:18:49:89: 9b:c2:3b:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkCfmTLNWnUcosLvbyvCEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNDAxYTUyZTNmZGU2OTk0ODZlOTk2NzhkYmY0ODg3NTMy OWMzM2QwHhcNMjYwMjA5MTgwMDQ2WhcNMjYwMjEwMTgwMDQ2WjAzMTEwLwYDVQQD EyhjMDYxODVkMzRjZDUxN2ZhMjVjMjM2ZDVhMDY5ZmNhNDdmOGEyODZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3hDrznR4QIo/5TsyOrVOarSNVqqW dg5XLkVJgWvgQILLjAa0Du18V0B9BYXthtFGYfCFtFUS7WtJ5eMV/fTMt/VY01N6 eRxpeeheIQllMNPpOjwOK3LDuer/BcNEsBIWKVOa/dUwXmeM/JibNue8DkGSHWwK 7n/dgUU/qFVvWSm/+JPfIWkt5lKxZqX2VWHVEVzCQjnKr87PQqHS6A9blz0D5c5q UvYbATON1Reb7X4bHvkqU18Ac6FZGB/b1ip4T9gME2Tsn1DwUEapQ0RaFyRQ5nT9 xvUDeqfVs0RDJhgLkHTOXJMlYdaxZ68DXZWE8qnEDUN8m07BKEMB7m2hwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMBhhdNM1Rf6JcI21aBp/KR/iihuMB8GA1UdIwQY MBaAFO9AGlLj/eaZSG6ZZ42/SIdTKcM9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzBBYVV1UDk1cGxJYnBsbmpiOUloMU1wd3owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8yNTIzOGMtOGVlZS00NDAzLTkxMDQt OWNhOTQ3YWE2NjVhLzEvNzBBYVV1UDk1cGxJYnBsbmpiOUloMU1wd3owLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy8yNTIzOGMtOGVlZS00NDAzLTkxMDQtOWNhOTQ3YWE2NjVh LzEvNzBBYVV1UDk1cGxJYnBsbmpiOUloMU1wd3owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARtKXvpO8 nK/GuxpA//4vqX7iviWHyunjJ/vcqdFiR4yYOl/jPRiWUPO37g8QhNT7wOvxbwQN oc20jRzTGKd2VUnmlidqR30XkcNv82DpBHPHPy/ZNEBIP51weUsIgeInbJwev7GV +2u0BLDI+6g2kiQIUmXgU8T04hH50OpzGs9O245HFdOsMiSJC3ttqhg4z7ittivd q8jKRSYLKWfGmqK1vXDx5DJIsVfC4HbOSFvNUox4DTle/HwDX9WSQs6dAxPp4mN8 Cvhy0RIzvRTjXauRQrC2cIHzbkdTe6aP9oiX6cH0Bn69HClj3EOZzShQwVj7Amcp 1A3MGEmJm8I7Yg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:17 2026 by rpki-client