This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft File: TkB_fq2BapVV9HrxCQPvRcgXC4I.mft (raw, json) Hash identifier: OHFo1f9WAX0H0MjvrTyCgOI3dd+MSEoZoAQaQFtYo0A= Subject key identifier: B6:71:EF:F0:8F:54:59:4B:65:DD:2D:99:83:E8:1D:FF:94:8E:D0:03 Authority key identifier: 4E:40:7F:7E:AD:81:6A:95:55:F4:7A:F1:09:03:EF:45:C8:17:0B:82 Certificate issuer: /CN=4e407f7ead816a9555f47af10903ef45c8170b82 Certificate serial: 019C420F34BBA8902C053F937423B714D8E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkB_fq2BapVV9HrxCQPvRcgXC4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft Manifest number: 08F4 Signing time: Mon 09 Feb 2026 11:00:18 +0000 Manifest this update: Mon 09 Feb 2026 11:00:18 +0000 Manifest next update: Tue 10 Feb 2026 11:00:18 +0000 Files and hashes: 1: TkB_fq2BapVV9HrxCQPvRcgXC4I.crl (hash: HZ85Uzs3xVGJW2M5G8+Oir39kKYkCTYtmuT/jCbSmgA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft rsync://rpki.ripe.net/repository/DEFAULT/TkB_fq2BapVV9HrxCQPvRcgXC4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:34:bb:a8:90:2c:05:3f:93:74:23:b7:14:d8:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e407f7ead816a9555f47af10903ef45c8170b82 Validity Not Before: Feb 9 11:00:18 2026 GMT Not After : Feb 10 11:00:18 2026 GMT Subject: CN=b671eff08f54594b65dd2d9983e81dff948ed003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ac:2c:7f:9b:bb:48:7f:f0:fe:80:89:c8:69: d7:f2:96:56:cb:7e:fe:cf:d0:72:90:f4:ae:0d:0d: c1:56:1d:9e:68:b7:ff:a1:24:97:ab:6d:dc:3a:d3: 75:a2:df:6f:cf:9e:aa:f3:57:0e:5e:19:c5:95:35: 2d:7a:66:bc:37:34:e9:82:31:88:02:3b:cb:8d:4a: 81:ed:84:a0:03:da:6b:65:60:b5:80:fa:14:20:13: e2:38:66:ec:39:e2:06:6b:a6:b5:fd:06:c3:8f:29: 20:ea:0b:f1:30:a8:d5:70:b1:ac:c7:00:34:40:cb: ca:29:49:90:1c:83:c4:f7:73:cb:b8:bd:12:20:ee: c9:ce:d0:4a:52:9f:c1:44:17:53:b6:d5:cc:f4:c3: d8:a2:ae:7d:01:5d:e3:45:5b:36:83:e5:87:6a:76: 31:92:27:02:4e:c2:25:bd:84:c2:d1:d0:06:85:da: c2:2d:80:13:24:29:26:b4:a2:ba:39:da:6d:fd:e8: 2d:cc:67:09:c7:55:15:0e:98:dc:c3:86:2f:bd:60: 20:2e:9e:cf:18:ac:5e:ba:17:b8:37:62:e1:bf:b4: da:a1:36:fc:bd:91:d6:83:0f:3b:f0:cb:1d:69:9e: e5:68:25:85:ad:0a:1d:14:4b:21:38:1e:ec:af:14: a4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:71:EF:F0:8F:54:59:4B:65:DD:2D:99:83:E8:1D:FF:94:8E:D0:03 X509v3 Authority Key Identifier: keyid:4E:40:7F:7E:AD:81:6A:95:55:F4:7A:F1:09:03:EF:45:C8:17:0B:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkB_fq2BapVV9HrxCQPvRcgXC4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:2d:7c:d9:0d:2b:a8:e9:08:33:a4:62:17:08:e3:f8:7c:87: 1e:13:16:3e:42:03:7d:25:75:fa:83:97:56:3d:9f:ae:4c:bc: 2e:46:c2:73:56:f6:10:e1:6d:60:66:63:6c:e6:17:0f:2e:7d: 06:81:1b:b9:fc:d7:9d:20:6e:41:41:28:29:2e:74:94:d3:72: ba:4b:6f:ed:6d:96:cc:d9:d7:c8:8b:aa:7a:e9:18:fc:b4:89: 32:51:fb:da:52:67:0f:2c:4c:90:c0:c0:61:77:b2:e3:a9:14: 61:42:de:25:fd:bd:af:05:94:01:db:09:22:21:94:83:19:29: 81:40:fb:53:b0:05:2c:b8:71:5b:eb:24:81:8b:a7:09:f8:48: 36:21:89:3e:24:70:6b:ce:05:e5:1d:22:5b:d1:4f:83:d5:1c: a5:60:5a:69:98:b0:93:bf:a4:77:f1:41:00:3d:ef:ff:02:59: 37:a6:20:ad:61:8c:12:78:0d:97:90:c6:fe:d5:3b:20:2e:22: f1:ce:21:0f:cc:d4:f9:fb:a9:7b:14:ec:e5:f0:35:02:17:6e: bc:37:3b:ed:e2:8e:e0:ae:90:ed:93:b0:88:93:a3:01:35:15: 7f:43:64:b0:0c:c3:c7:6d:cf:5c:7e:0d:eb:d9:9b:58:c6:c4: 19:bb:c3:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCDzS7qJAsBT+TdCO3FNjgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNDA3ZjdlYWQ4MTZhOTU1NWY0N2FmMTA5MDNlZjQ1Yzgx NzBiODIwHhcNMjYwMjA5MTEwMDE4WhcNMjYwMjEwMTEwMDE4WjAzMTEwLwYDVQQD EyhiNjcxZWZmMDhmNTQ1OTRiNjVkZDJkOTk4M2U4MWRmZjk0OGVkMDAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2qwsf5u7SH/w/oCJyGnX8pZWy37+ z9BykPSuDQ3BVh2eaLf/oSSXq23cOtN1ot9vz56q81cOXhnFlTUtema8NzTpgjGI AjvLjUqB7YSgA9prZWC1gPoUIBPiOGbsOeIGa6a1/QbDjykg6gvxMKjVcLGsxwA0 QMvKKUmQHIPE93PLuL0SIO7JztBKUp/BRBdTttXM9MPYoq59AV3jRVs2g+WHanYx kicCTsIlvYTC0dAGhdrCLYATJCkmtKK6Odpt/egtzGcJx1UVDpjcw4YvvWAgLp7P GKxeuhe4N2Lhv7TaoTb8vZHWgw878MsdaZ7laCWFrQodFEshOB7srxSkAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLZx7/CPVFlLZd0tmYPoHf+UjtADMB8GA1UdIwQY MBaAFE5Af36tgWqVVfR68QkD70XIFwuCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGtCX2ZxMkJhcFZWOUhyeENRUHZSY2dYQzRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8zNTY1NTItMzEyYS00NGNlLTg2Nzct NDA1NTA1ZmM0NjBlLzEvVGtCX2ZxMkJhcFZWOUhyeENRUHZSY2dYQzRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8zNTY1NTItMzEyYS00NGNlLTg2NzctNDA1NTA1ZmM0NjBl LzEvVGtCX2ZxMkJhcFZWOUhyeENRUHZSY2dYQzRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXy182Q0r qOkIM6RiFwjj+HyHHhMWPkIDfSV1+oOXVj2frky8LkbCc1b2EOFtYGZjbOYXDy59 BoEbufzXnSBuQUEoKS50lNNyuktv7W2WzNnXyIuqeukY/LSJMlH72lJnDyxMkMDA YXey46kUYULeJf29rwWUAdsJIiGUgxkpgUD7U7AFLLhxW+skgYunCfhINiGJPiRw a84F5R0iW9FPg9UcpWBaaZiwk7+kd/FBAD3v/wJZN6YgrWGMEngNl5DG/tU7IC4i 8c4hD8zU+fupexTs5fA1AhduvDc77eKO4K6Q7ZOwiJOjATUVf0NksAzDx23PXH4N 69mbWMbEGbvDSw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:33 2026 by rpki-client