This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.mft File: 9Lf2q209ljfV1-rM4943lLnPPg8.mft (raw, json) Hash identifier: yCsGOrmcHNpdHf21aPSopF/g1fk4JnoYT7878t0zMNY= Subject key identifier: 37:1B:E7:3E:C3:15:F3:35:8F:C0:6C:6C:C4:4A:F3:84:1D:0F:D7:60 Authority key identifier: F4:B7:F6:AB:6D:3D:96:37:D5:D7:EA:CC:E3:DE:37:94:B9:CF:3E:0F Certificate issuer: /CN=f4b7f6ab6d3d9637d5d7eacce3de3794b9cf3e0f Certificate serial: 019C439002A5A7FEA6A568E81B0A20602C70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Lf2q209ljfV1-rM4943lLnPPg8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.mft Manifest number: 03BA Signing time: Mon 09 Feb 2026 18:00:37 +0000 Manifest this update: Mon 09 Feb 2026 18:00:37 +0000 Manifest next update: Tue 10 Feb 2026 18:00:37 +0000 Files and hashes: 1: 9Lf2q209ljfV1-rM4943lLnPPg8.crl (hash: 6T2grXaqz0LUTmFVYlRhbUX32809FYN/5STg9i8vkyY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.mft rsync://rpki.ripe.net/repository/DEFAULT/9Lf2q209ljfV1-rM4943lLnPPg8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:02:a5:a7:fe:a6:a5:68:e8:1b:0a:20:60:2c:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4b7f6ab6d3d9637d5d7eacce3de3794b9cf3e0f Validity Not Before: Feb 9 18:00:37 2026 GMT Not After : Feb 10 18:00:37 2026 GMT Subject: CN=371be73ec315f3358fc06c6cc44af3841d0fd760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:90:3b:0a:40:bf:5f:10:35:cd:b5:38:9c:3c: c2:98:d1:ea:4a:f0:1e:97:3f:4b:7d:d9:cd:4e:1f: 4c:99:41:53:32:ed:bc:7c:d7:21:79:3a:b0:08:a7: 89:3d:1d:f5:f0:0c:36:eb:26:c7:ca:3d:bc:6a:6f: 29:4f:a5:ef:6f:3b:91:d6:4e:90:f1:f7:7e:b6:06: d5:b0:2a:1f:4d:66:e9:39:da:2f:66:9a:4a:16:d3: 68:ee:6a:2c:44:e5:a4:86:ab:d1:b0:ab:13:29:ed: 9d:3e:e6:ce:b2:b0:32:b4:48:b2:eb:7d:2b:63:77: 6e:9c:b9:86:fd:cb:c7:a3:b3:1d:ce:ca:cc:82:2e: 12:aa:74:08:d0:4b:e3:bc:51:df:12:37:02:63:92: c6:69:ac:67:14:2a:26:f4:3f:80:e8:48:e0:d8:e1: e1:3e:ea:bd:16:21:c0:92:b2:cd:9c:fa:f6:fa:b9: 8d:68:74:f1:1f:b5:e5:0d:97:bf:61:10:01:1e:45: 63:4c:dd:a3:3f:83:3b:2d:a5:19:d9:aa:60:69:b6: ef:31:45:5e:e0:c4:0a:6e:42:33:41:4e:db:14:d1: 7c:7e:84:8d:07:ff:f1:96:2f:00:2a:98:88:a7:42: b7:b0:f7:2f:36:e9:70:8d:87:f8:ba:ed:46:af:2f: 53:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:1B:E7:3E:C3:15:F3:35:8F:C0:6C:6C:C4:4A:F3:84:1D:0F:D7:60 X509v3 Authority Key Identifier: keyid:F4:B7:F6:AB:6D:3D:96:37:D5:D7:EA:CC:E3:DE:37:94:B9:CF:3E:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Lf2q209ljfV1-rM4943lLnPPg8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2aa9f9-bdb4-4ab9-8f9b-6b8aa0a2c960/1/9Lf2q209ljfV1-rM4943lLnPPg8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:3c:a2:97:e6:4e:8c:ee:1f:39:61:bb:b7:ae:2e:dd:81:f2: 11:a7:d8:1f:67:0f:4d:c9:f7:b9:b4:fd:91:b4:67:30:1e:31: 19:fa:4e:97:59:03:8f:9f:b0:5e:7a:34:c7:fd:14:ef:4e:7e: 0e:9a:40:2a:a9:33:66:66:26:ad:ad:42:12:d8:31:51:1f:ea: 2e:93:86:f1:82:66:6a:34:2a:2e:75:29:43:04:4a:12:ff:23: 61:f4:39:e7:0e:63:9a:a7:a0:e7:77:b4:fd:96:24:13:38:36: 41:18:e1:9f:62:12:d2:32:23:ae:2e:9c:5e:f1:2d:72:ab:49: ee:40:11:f2:09:63:18:1f:22:05:f6:db:c2:bf:e2:49:8e:2b: a2:58:15:63:0d:fd:59:d1:5e:51:33:11:2a:f4:60:2b:46:bc: d3:3b:e0:81:56:4e:5a:1c:f6:6b:01:3e:5d:9c:39:1e:f8:0b: b4:15:7a:44:4b:2e:6f:fd:e5:92:32:75:93:48:e0:1b:9e:7b: 96:37:6f:87:5f:cc:72:84:5b:c4:eb:38:2c:45:08:cc:35:9f: e5:bf:79:31:8f:92:c7:08:d8:22:91:37:7f:7a:2d:41:f0:cb: cd:cd:a9:2e:9c:23:73:dd:07:fa:a5:c8:55:05:52:74:37:40: f0:f2:e4:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkAKlp/6mpWjoGwogYCxwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0YjdmNmFiNmQzZDk2MzdkNWQ3ZWFjY2UzZGUzNzk0Yjlj ZjNlMGYwHhcNMjYwMjA5MTgwMDM3WhcNMjYwMjEwMTgwMDM3WjAzMTEwLwYDVQQD EygzNzFiZTczZWMzMTVmMzM1OGZjMDZjNmNjNDRhZjM4NDFkMGZkNzYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZA7CkC/XxA1zbU4nDzCmNHqSvAe lz9LfdnNTh9MmUFTMu28fNcheTqwCKeJPR318Aw26ybHyj28am8pT6XvbzuR1k6Q 8fd+tgbVsCofTWbpOdovZppKFtNo7mosROWkhqvRsKsTKe2dPubOsrAytEiy630r Y3dunLmG/cvHo7MdzsrMgi4SqnQI0EvjvFHfEjcCY5LGaaxnFCom9D+A6Ejg2OHh Puq9FiHAkrLNnPr2+rmNaHTxH7XlDZe/YRABHkVjTN2jP4M7LaUZ2apgabbvMUVe 4MQKbkIzQU7bFNF8foSNB//xli8AKpiIp0K3sPcvNulwjYf4uu1Gry9TnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDcb5z7DFfM1j8BsbMRK84QdD9dgMB8GA1UdIwQY MBaAFPS39qttPZY31dfqzOPeN5S5zz4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOUxmMnEyMDlsamZWMS1yTTQ5NDNsTG5QUGc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8yYWE5ZjktYmRiNC00YWI5LThmOWIt NmI4YWEwYTJjOTYwLzEvOUxmMnEyMDlsamZWMS1yTTQ5NDNsTG5QUGc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8yYWE5ZjktYmRiNC00YWI5LThmOWItNmI4YWEwYTJjOTYw LzEvOUxmMnEyMDlsamZWMS1yTTQ5NDNsTG5QUGc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIzyil+ZO jO4fOWG7t64u3YHyEafYH2cPTcn3ubT9kbRnMB4xGfpOl1kDj5+wXno0x/0U705+ DppAKqkzZmYmra1CEtgxUR/qLpOG8YJmajQqLnUpQwRKEv8jYfQ55w5jmqeg53e0 /ZYkEzg2QRjhn2IS0jIjri6cXvEtcqtJ7kAR8gljGB8iBfbbwr/iSY4rolgVYw39 WdFeUTMRKvRgK0a80zvggVZOWhz2awE+XZw5HvgLtBV6REsub/3lkjJ1k0jgG557 ljdvh1/McoRbxOs4LEUIzDWf5b95MY+SxwjYIpE3f3otQfDLzc2pLpwjc90H+qXI VQVSdDdA8PLklg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:55 2026 by rpki-client