This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft File: sszaHFSHy5ONV-phzC1i0xBw21E.mft (raw, json) Hash identifier: 4z7Hpg+Vm7bxq/ac4kuo6+vBAxus1SzAHDzRN8A+BH4= Subject key identifier: F3:FD:20:F9:25:24:67:E4:0C:E3:1D:CC:A6:F2:5D:12:43:92:E8:85 Authority key identifier: B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51 Certificate issuer: /CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51 Certificate serial: 019C42B40D08D628654E82AB4B91A2DE6AE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft Manifest number: 0E17 Signing time: Mon 09 Feb 2026 14:00:21 +0000 Manifest this update: Mon 09 Feb 2026 14:00:21 +0000 Manifest next update: Tue 10 Feb 2026 14:00:21 +0000 Files and hashes: 1: 5WXSL9wWB5JNwpdm1UP4ejoSsRw.roa (hash: 2CKZu3jOCHO6Fw6CJElWpqf72yG47yIKnLWAvdNr280=) 2: sszaHFSHy5ONV-phzC1i0xBw21E.crl (hash: P1uCRh81a6ANxaoii28S9jHpqALaYWT4qXbNyuXmo64=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:0d:08:d6:28:65:4e:82:ab:4b:91:a2:de:6a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51 Validity Not Before: Feb 9 14:00:21 2026 GMT Not After : Feb 10 14:00:21 2026 GMT Subject: CN=f3fd20f9252467e40ce31dcca6f25d124392e885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:67:a6:60:bf:9e:b4:cc:c4:0a:43:d7:c6:ca: 97:5e:c9:85:50:29:e3:1f:6b:9d:3d:25:e6:63:fe: 61:ef:ef:e6:48:6b:01:a3:3c:c1:7a:bb:00:d0:92: 2e:3d:0e:9e:a4:e1:23:6d:ee:5a:bd:5b:5f:6b:77: be:76:c2:79:55:15:f9:42:40:2c:81:fa:a5:4c:e1: 29:93:63:82:f2:e0:6c:df:e9:09:c0:55:8e:75:3e: d1:48:3a:b0:0b:34:b4:16:d5:3f:4f:e2:0d:da:4b: 0a:ca:54:fa:22:47:29:be:74:0a:85:9e:e0:72:91: 1b:fd:9c:41:28:86:f0:42:50:96:ac:18:3a:c2:7d: 33:a7:a3:bb:9c:99:51:59:82:df:ab:8f:d9:7c:0e: d0:dd:45:5d:a8:14:a0:ab:ba:fb:35:76:6f:f4:80: 5d:71:f5:fb:3d:1a:eb:2a:d8:d1:dd:82:b1:53:42: 6a:ed:e3:59:b7:82:e2:66:97:0b:c7:ea:d7:3d:f0: 93:6d:18:4f:a2:ea:6e:c0:db:e4:8f:61:89:54:d7: 66:66:41:90:5d:65:20:6e:ba:ef:8a:98:31:43:fc: ed:99:ef:df:31:c7:75:35:57:47:ab:4b:e0:bb:52: 5c:3b:3e:4e:6f:08:f8:dd:8a:16:eb:c4:72:e1:14: 3f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:FD:20:F9:25:24:67:E4:0C:E3:1D:CC:A6:F2:5D:12:43:92:E8:85 X509v3 Authority Key Identifier: keyid:B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:1b:67:d1:fc:9c:10:2a:c5:f5:a6:08:bc:f6:f8:1e:30:c3: a9:37:a4:69:03:c2:5e:f9:25:6c:b7:24:40:3f:08:45:46:5c: a5:b8:54:a5:4f:84:87:6c:8c:f4:34:9a:cf:c9:32:7e:59:f2: 46:ca:3c:5e:b3:63:a2:5c:51:f9:68:ef:69:e0:22:8a:d4:d3: 4c:59:ba:3e:ad:f5:6d:a8:b7:38:d6:47:b7:7b:9a:7d:13:2a: 04:8b:a9:b1:ab:c1:4f:3c:23:3a:3a:70:9d:1e:24:07:54:6c: b1:1b:c1:c0:4e:fb:1d:06:80:a9:aa:3d:c9:ba:02:07:70:4b: b2:52:b3:07:d7:50:1d:24:65:6e:9a:80:4e:76:b3:59:b4:04: 30:1e:88:0b:af:5b:55:68:89:41:fa:39:d3:e1:62:49:12:cc: bb:86:59:94:77:0e:3c:b8:34:53:3b:be:34:88:60:82:4c:64: 34:21:f6:d4:aa:df:3c:d5:96:cf:39:f1:2b:7b:4b:88:67:ce: eb:1e:30:6c:85:33:78:21:6e:56:ae:cf:33:36:09:07:4a:d8: 9d:76:63:4d:79:62:1a:de:7f:c0:a0:3c:70:4f:ba:df:01:09: c1:89:72:ae:05:d3:34:51:a5:c7:26:7b:50:85:0c:78:f5:96: 80:b6:1d:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtA0I1ihlToKrS5Gi3mrnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyY2NkYTFjNTQ4N2NiOTM4ZDU3ZWE2MWNjMmQ2MmQzMTA3 MGRiNTEwHhcNMjYwMjA5MTQwMDIxWhcNMjYwMjEwMTQwMDIxWjAzMTEwLwYDVQQD EyhmM2ZkMjBmOTI1MjQ2N2U0MGNlMzFkY2NhNmYyNWQxMjQzOTJlODg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWemYL+etMzECkPXxsqXXsmFUCnj H2udPSXmY/5h7+/mSGsBozzBersA0JIuPQ6epOEjbe5avVtfa3e+dsJ5VRX5QkAs gfqlTOEpk2OC8uBs3+kJwFWOdT7RSDqwCzS0FtU/T+IN2ksKylT6IkcpvnQKhZ7g cpEb/ZxBKIbwQlCWrBg6wn0zp6O7nJlRWYLfq4/ZfA7Q3UVdqBSgq7r7NXZv9IBd cfX7PRrrKtjR3YKxU0Jq7eNZt4LiZpcLx+rXPfCTbRhPoupuwNvkj2GJVNdmZkGQ XWUgbrrvipgxQ/ztme/fMcd1NVdHq0vgu1JcOz5Obwj43YoW68Ry4RQ/hQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPP9IPklJGfkDOMdzKbyXRJDkuiFMB8GA1UdIwQY MBaAFLLM2hxUh8uTjVfqYcwtYtMQcNtRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3N6YUhGU0h5NU9OVi1waHpDMWkweEJ3MjFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9lNmI3N2YtNDBlNi00YzkzLWFjMzIt M2RiOTYxNzAzZWE5LzEvc3N6YUhGU0h5NU9OVi1waHpDMWkweEJ3MjFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9lNmI3N2YtNDBlNi00YzkzLWFjMzItM2RiOTYxNzAzZWE5 LzEvc3N6YUhGU0h5NU9OVi1waHpDMWkweEJ3MjFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGBtn0fyc ECrF9aYIvPb4HjDDqTekaQPCXvklbLckQD8IRUZcpbhUpU+Eh2yM9DSaz8kyflny Rso8XrNjolxR+WjvaeAiitTTTFm6Pq31bai3ONZHt3uafRMqBIupsavBTzwjOjpw nR4kB1RssRvBwE77HQaAqao9yboCB3BLslKzB9dQHSRlbpqATnazWbQEMB6IC69b VWiJQfo50+FiSRLMu4ZZlHcOPLg0Uzu+NIhggkxkNCH21KrfPNWWzznxK3tLiGfO 6x4wbIUzeCFuVq7PMzYJB0rYnXZjTXliGt5/wKA8cE+63wEJwYlyrgXTNFGlxyZ7 UIUMePWWgLYdog== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:04 2026 by rpki-client