This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft File: 20bM9fil_kT0v9m6ZrpRJG2osYQ.mft (raw, json) Hash identifier: mhPSbEKLwI+8mkN4fTUuOc+vAQeiLmilTT8KrSkhmHc= Subject key identifier: F2:ED:89:79:D8:12:03:E7:6A:40:C3:8E:11:F7:EF:C3:93:A3:F9:8E Authority key identifier: DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84 Certificate issuer: /CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184 Certificate serial: 019C43903945D63C12B515C71293CC30CC3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft Manifest number: 15D5 Signing time: Mon 09 Feb 2026 18:00:51 +0000 Manifest this update: Mon 09 Feb 2026 18:00:51 +0000 Manifest next update: Tue 10 Feb 2026 18:00:51 +0000 Files and hashes: 1: 20bM9fil_kT0v9m6ZrpRJG2osYQ.crl (hash: eMtg6UQR9aiqJYmWC4w6DBTxeoo95CC8ci1MxYImmXY=) 2: 7kzK7-E42Pa8w63nDviF_cLjzRw.roa (hash: UZPrhRmZER1+q3579qQlJmn/mR5/oV526WWY7+wNVgw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:39:45:d6:3c:12:b5:15:c7:12:93:cc:30:cc:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184 Validity Not Before: Feb 9 18:00:51 2026 GMT Not After : Feb 10 18:00:51 2026 GMT Subject: CN=f2ed8979d81203e76a40c38e11f7efc393a3f98e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:79:0f:dd:1f:55:83:0f:e3:d0:e2:54:ef: f1:d0:23:74:6b:35:bc:7f:75:55:06:08:33:1a:bd: e8:22:e7:ad:31:b8:e3:34:d4:18:78:5a:36:fd:67: 69:06:c1:34:ab:58:d1:a8:d0:06:1f:59:c2:83:e4: 09:50:82:db:49:0e:4a:42:5c:59:e0:67:03:2c:7e: be:30:fe:8c:99:61:db:cb:6e:dc:91:0b:b1:78:17: c0:78:03:91:56:8e:7b:ed:ab:b9:d3:ea:76:11:25: 25:e5:d1:5d:34:11:5a:8d:eb:2b:0a:bc:42:fe:70: 86:0a:8e:a0:5c:ec:66:bd:94:a8:df:5b:37:bc:ff: b8:87:e2:1a:a0:3a:8d:80:f6:67:0a:71:8a:d2:49: ac:2e:52:cb:f7:cb:05:25:9d:4e:08:bf:64:e6:88: 38:13:86:57:46:28:38:1a:f7:df:d8:cd:fb:f7:ea: 5c:1a:a1:47:2e:7e:a4:fe:c2:4e:45:e1:a0:93:2c: 7e:25:4f:d0:c2:e3:13:e8:6a:1e:50:b3:26:e4:e0: 9e:97:01:17:0f:1f:3b:a3:6b:9a:73:3d:0a:68:f4: 5d:57:c4:51:a9:ab:55:af:1e:34:2a:61:be:43:84: f8:f0:3a:47:c4:97:86:c4:92:e4:49:50:e7:df:ce: 96:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:ED:89:79:D8:12:03:E7:6A:40:C3:8E:11:F7:EF:C3:93:A3:F9:8E X509v3 Authority Key Identifier: keyid:DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:83:04:1d:28:3e:3b:4e:f2:8f:d0:8e:4f:b8:95:15:13:fa: f1:cc:a5:40:69:9e:9e:8b:a4:32:8a:8f:8b:c7:cf:06:52:d3: f6:ac:5a:4a:2e:1c:99:e2:6f:17:ba:e5:21:2f:ef:19:61:e2: ef:7c:e9:c4:1b:01:4c:ff:5d:41:e6:02:f6:d8:1a:5f:f9:d0: 54:ab:16:e2:12:67:b2:db:38:1a:93:b8:d2:2a:66:e3:87:f6: 10:2c:51:9d:23:58:cc:a9:62:bc:4b:66:8e:b0:7a:c8:21:07: 4f:2e:4b:df:02:4a:9b:dc:af:4e:33:16:e1:5e:7b:75:83:c5: ce:09:be:e3:bc:90:cb:77:d6:6b:d6:38:f1:40:36:53:28:29: f4:c3:11:ee:fd:2a:3e:81:e3:fd:be:04:a5:dc:1b:87:7e:d3: ad:f6:96:16:c7:38:7c:0c:44:00:13:05:16:b5:aa:3c:7d:bf: 35:fb:b0:25:56:da:20:46:df:e8:20:ec:84:dc:b0:f6:f7:bd: 36:f1:a0:04:af:1b:20:49:97:39:f4:a6:0e:2b:5d:b8:00:67: d1:2d:6b:ee:0c:4c:99:df:ca:55:3b:e4:9f:36:93:49:61:63: 9c:3f:6f:5f:56:ba:98:3d:80:8c:9a:dd:95:4a:b8:69:22:94: e6:d4:c4:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkDlF1jwStRXHEpPMMMw9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiNDZjY2Y1ZjhhNWZlNDRmNGJmZDliYTY2YmE1MTI0NmRh OGIxODQwHhcNMjYwMjA5MTgwMDUxWhcNMjYwMjEwMTgwMDUxWjAzMTEwLwYDVQQD EyhmMmVkODk3OWQ4MTIwM2U3NmE0MGMzOGUxMWY3ZWZjMzkzYTNmOThlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNN5D90fVYMP49DiVO/x0CN0azW8 f3VVBggzGr3oIuetMbjjNNQYeFo2/WdpBsE0q1jRqNAGH1nCg+QJUILbSQ5KQlxZ 4GcDLH6+MP6MmWHby27ckQuxeBfAeAORVo577au50+p2ESUl5dFdNBFajesrCrxC /nCGCo6gXOxmvZSo31s3vP+4h+IaoDqNgPZnCnGK0kmsLlLL98sFJZ1OCL9k5og4 E4ZXRig4Gvff2M379+pcGqFHLn6k/sJOReGgkyx+JU/QwuMT6GoeULMm5OCelwEX Dx87o2uacz0KaPRdV8RRqatVrx40KmG+Q4T48DpHxJeGxJLkSVDn386WcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPLtiXnYEgPnakDDjhH378OTo/mOMB8GA1UdIwQY MBaAFNtGzPX4pf5E9L/Zuma6USRtqLGEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjBiTTlmaWxfa1QwdjltNlpycFJKRzJvc1lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9mNzJhMWUtNmFkYi00MzAyLWEwZTgt ZDQyYTgxYjgxZTIzLzEvMjBiTTlmaWxfa1QwdjltNlpycFJKRzJvc1lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS9mNzJhMWUtNmFkYi00MzAyLWEwZTgtZDQyYTgxYjgxZTIz LzEvMjBiTTlmaWxfa1QwdjltNlpycFJKRzJvc1lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMoMEHSg+ O07yj9COT7iVFRP68cylQGmenoukMoqPi8fPBlLT9qxaSi4cmeJvF7rlIS/vGWHi 73zpxBsBTP9dQeYC9tgaX/nQVKsW4hJnsts4GpO40ipm44f2ECxRnSNYzKlivEtm jrB6yCEHTy5L3wJKm9yvTjMW4V57dYPFzgm+47yQy3fWa9Y48UA2Uygp9MMR7v0q PoHj/b4Epdwbh37TrfaWFsc4fAxEABMFFrWqPH2/NfuwJVbaIEbf6CDshNyw9ve9 NvGgBK8bIEmXOfSmDitduABn0S1r7gxMmd/KVTvknzaTSWFjnD9vX1a6mD2AjJrd lUq4aSKU5tTE9g== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:21 2026 by rpki-client