This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft File: T03F1MB2_YQmOrcubxe1_0rLhEg.mft (raw, json) Hash identifier: e4CvkneV1ZnclndRkS/QaTBCaLRcXniV/dsPIzSyB/0= Subject key identifier: C7:7A:ED:E8:3A:8D:EF:B2:02:A8:46:81:C8:CD:A1:15:0C:82:DC:1A Authority key identifier: 4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48 Certificate issuer: /CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448 Certificate serial: 019C42EB5247B626254EAA8EB9C74FC74EB9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft Manifest number: 0B2D Signing time: Mon 09 Feb 2026 15:00:44 +0000 Manifest this update: Mon 09 Feb 2026 15:00:44 +0000 Manifest next update: Tue 10 Feb 2026 15:00:44 +0000 Files and hashes: 1: T03F1MB2_YQmOrcubxe1_0rLhEg.crl (hash: ORpsQXSxyCpBXAIl1dW08+I6b50JB1YKhDNPOKH/QE8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:52:47:b6:26:25:4e:aa:8e:b9:c7:4f:c7:4e:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448 Validity Not Before: Feb 9 15:00:44 2026 GMT Not After : Feb 10 15:00:44 2026 GMT Subject: CN=c77aede83a8defb202a84681c8cda1150c82dc1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:95:92:f7:42:44:dd:3e:ff:03:53:02:2c:45: e4:4f:37:23:6b:f9:f9:f9:7a:b4:98:0f:21:9e:72: c4:ff:68:8f:6a:85:43:6f:46:86:3c:16:18:5a:11: 53:b4:d6:d0:ad:44:ba:4f:15:b4:64:04:79:18:26: 4b:3d:80:26:5b:3e:d6:30:3a:16:bc:49:37:3b:db: d3:02:bb:c1:df:0c:f2:a8:1f:41:f7:3a:df:6e:63: 49:e6:9d:3c:eb:92:23:74:ce:e7:d8:15:ce:a3:6e: 9e:c4:da:f0:ea:c3:74:d9:d3:b2:21:5c:46:5d:4b: da:75:5c:37:b7:4d:5b:af:04:b8:b6:4c:a4:f1:89: 03:4f:24:eb:87:6b:c8:42:fd:ec:4d:ff:b5:87:aa: d9:bb:89:70:25:26:4e:d8:79:46:3a:e1:65:1b:9c: b3:38:8a:ce:1d:ef:60:8d:af:e8:fd:03:5a:87:db: d8:ea:9a:53:9e:b5:31:b7:50:84:09:b4:d9:51:c3: 01:93:c9:e3:f6:5a:6f:21:d1:98:d7:d8:25:af:12: 18:58:71:6d:c2:dd:f0:9c:4a:f5:b4:89:bd:b8:13: 21:10:e6:37:86:60:4f:b5:e4:58:00:f6:c9:99:1d: e4:49:a6:09:62:86:44:af:a0:86:a5:3b:22:11:c2: a2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7A:ED:E8:3A:8D:EF:B2:02:A8:46:81:C8:CD:A1:15:0C:82:DC:1A X509v3 Authority Key Identifier: keyid:4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:34:b0:d0:43:23:29:38:65:1a:ea:39:1a:ca:57:52:70:71: 18:5c:2f:c2:2f:0b:d8:7b:df:7d:a5:50:fb:50:36:6a:bf:61: 3f:2e:f0:ce:c6:5e:23:4b:0b:d3:1c:39:da:ff:a8:bd:9c:03: cb:d1:3e:e5:93:b5:45:d2:3d:34:d4:48:34:90:5a:3f:f5:97: 56:6f:5b:32:50:75:af:14:10:90:d5:60:e8:dd:cf:bf:0e:81: 0c:31:7f:2a:9d:da:86:6a:1d:b6:d5:6c:0d:71:b9:5f:ce:85: ce:1c:39:22:94:ba:97:c6:fe:90:f2:c1:4f:b0:53:fc:8c:f2: 84:59:03:c3:cf:9e:36:d2:1a:d6:e4:5d:86:48:e9:11:c7:f7: 08:5d:43:1c:b6:fd:41:ef:6f:9c:53:d3:4d:7d:14:77:25:a2: 6a:49:58:df:c7:be:1e:7a:2e:9e:0e:ac:df:2e:d3:91:d2:23: 9e:9f:f3:22:d0:01:67:8f:dd:d1:09:b8:58:cd:db:06:a0:35: 25:32:ac:df:d9:3a:bf:4f:7d:08:e6:34:a5:5b:89:0c:1f:37: 8f:30:95:93:3b:e4:ec:fa:11:8e:0a:47:a6:1d:9d:86:99:71: 53:eb:83:ad:2e:dc:e5:56:a3:3e:1e:b6:81:5c:15:e1:17:04: 2f:0d:e0:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC61JHtiYlTqqOucdPx065MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmNGRjNWQ0YzA3NmZkODQyNjNhYjcyZTZmMTdiNWZmNGFj Yjg0NDgwHhcNMjYwMjA5MTUwMDQ0WhcNMjYwMjEwMTUwMDQ0WjAzMTEwLwYDVQQD EyhjNzdhZWRlODNhOGRlZmIyMDJhODQ2ODFjOGNkYTExNTBjODJkYzFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5WS90JE3T7/A1MCLEXkTzcja/n5 +Xq0mA8hnnLE/2iPaoVDb0aGPBYYWhFTtNbQrUS6TxW0ZAR5GCZLPYAmWz7WMDoW vEk3O9vTArvB3wzyqB9B9zrfbmNJ5p0865IjdM7n2BXOo26exNrw6sN02dOyIVxG XUvadVw3t01brwS4tkyk8YkDTyTrh2vIQv3sTf+1h6rZu4lwJSZO2HlGOuFlG5yz OIrOHe9gja/o/QNah9vY6ppTnrUxt1CECbTZUcMBk8nj9lpvIdGY19glrxIYWHFt wt3wnEr1tIm9uBMhEOY3hmBPteRYAPbJmR3kSaYJYoZEr6CGpTsiEcKiVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMd67eg6je+yAqhGgcjNoRUMgtwaMB8GA1UdIwQY MBaAFE9NxdTAdv2EJjq3Lm8Xtf9Ky4RIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDAzRjFNQjJfWVFtT3JjdWJ4ZTFfMHJMaEVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8yNTc1ZmUtYTUyNi00MTk1LTk3NDUt ZmE5NmJkZDJmZmEzLzEvVDAzRjFNQjJfWVFtT3JjdWJ4ZTFfMHJMaEVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8yNTc1ZmUtYTUyNi00MTk1LTk3NDUtZmE5NmJkZDJmZmEz LzEvVDAzRjFNQjJfWVFtT3JjdWJ4ZTFfMHJMaEVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACDSw0EMj KThlGuo5GspXUnBxGFwvwi8L2HvffaVQ+1A2ar9hPy7wzsZeI0sL0xw52v+ovZwD y9E+5ZO1RdI9NNRINJBaP/WXVm9bMlB1rxQQkNVg6N3Pvw6BDDF/Kp3ahmodttVs DXG5X86Fzhw5IpS6l8b+kPLBT7BT/IzyhFkDw8+eNtIa1uRdhkjpEcf3CF1DHLb9 Qe9vnFPTTX0UdyWiaklY38e+Hnoung6s3y7TkdIjnp/zItABZ4/d0Qm4WM3bBqA1 JTKs39k6v099COY0pVuJDB83jzCVkzvk7PoRjgpHph2dhplxU+uDrS7c5VajPh62 gVwV4RcELw3g4w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:46 2026 by rpki-client