This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft File: Cl9hKRQr0Kncad_UAkif8l9bPvI.mft (raw, json) Hash identifier: r7o7GatSy8JFWbWoILdnKXG88Rxw0f3fULLNL1vJ4sg= Subject key identifier: B9:28:A7:48:CF:CF:F0:29:56:CB:FB:83:5F:D5:00:FE:BC:A2:9D:CD Authority key identifier: 0A:5F:61:29:14:2B:D0:A9:DC:69:DF:D4:02:48:9F:F2:5F:5B:3E:F2 Certificate issuer: /CN=0a5f6129142bd0a9dc69dfd402489ff25f5b3ef2 Certificate serial: 019C41D88663D16A26DDC153EFED5B2311D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 10:00:35 +0000 Manifest this update: Mon 09 Feb 2026 10:00:35 +0000 Manifest next update: Tue 10 Feb 2026 10:00:35 +0000 Files and hashes: 1: Cl9hKRQr0Kncad_UAkif8l9bPvI.crl (hash: iQvTxx/90Z3jw0mnRtJuSDa4Uo0STrUW+ThIj4bT7ac=) 2: sPT_dPM8M-1DZ37Rs-G1BW6_lkg.roa (hash: rvqXHRiB6yIq5Ga7UKUI3l/uI3IYPLJIYXXxgzP0H8o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:86:63:d1:6a:26:dd:c1:53:ef:ed:5b:23:11:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a5f6129142bd0a9dc69dfd402489ff25f5b3ef2 Validity Not Before: Feb 9 10:00:35 2026 GMT Not After : Feb 10 10:00:35 2026 GMT Subject: CN=b928a748cfcff02956cbfb835fd500febca29dcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bb:c6:5c:00:29:3f:bf:99:89:0c:be:69:5d: 4a:bc:7c:b6:9b:0d:fb:57:e6:db:ea:38:a2:cc:2b: a3:e0:a6:37:a3:e9:67:a8:0e:c3:47:69:bb:a0:f0: bc:cf:fc:08:6f:0b:8f:cb:e6:0b:fd:b1:08:d7:6c: 55:e9:cb:2e:f7:69:85:a6:7f:2a:49:1c:fc:8a:77: d5:16:6e:f8:c7:42:a3:75:51:0b:49:ae:f8:7e:e0: 86:83:23:2a:c3:70:df:1c:96:c3:0f:61:ff:da:a3: 95:d7:8a:76:29:29:e3:f1:4a:d7:a4:ed:61:e1:f9: 88:d0:d8:09:9b:3d:99:4b:a8:3a:1d:f4:72:e2:56: d5:18:1e:7a:47:df:f5:da:7b:91:3e:1a:e0:fd:7e: 46:6e:e1:e3:d7:e6:d4:d5:71:86:62:74:2a:3f:13: 10:df:2d:8a:50:ad:40:ad:9c:a8:66:f0:c5:26:03: fc:8b:2b:a8:50:76:e5:8b:5c:2e:47:d3:d3:5e:ac: 51:e0:47:87:71:03:98:c1:5e:d1:12:4f:91:9a:8f: aa:7a:ce:2f:f9:32:1f:15:2d:07:65:91:0f:e5:ce: 2c:26:7f:64:4d:70:0c:4d:c4:0d:c8:5a:73:90:8e: 8c:e3:9f:8c:cb:c1:d6:d6:60:e4:52:fe:32:f1:ce: 00:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:28:A7:48:CF:CF:F0:29:56:CB:FB:83:5F:D5:00:FE:BC:A2:9D:CD X509v3 Authority Key Identifier: keyid:0A:5F:61:29:14:2B:D0:A9:DC:69:DF:D4:02:48:9F:F2:5F:5B:3E:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:84:c2:df:7f:8d:aa:e6:79:3f:69:ae:af:55:bb:6f:72:b9: 9e:12:f7:c3:27:ff:fd:92:41:50:5c:30:dc:a9:0a:c9:e3:dc: d4:af:0c:97:46:e6:bc:25:61:04:df:d6:63:a5:82:5e:f2:b3: 37:2c:1c:12:a7:91:73:d2:d4:66:54:32:98:86:f3:3d:b5:94: 54:ee:13:52:61:98:65:4f:72:e2:82:80:2c:5c:12:b1:a7:d4: 8d:90:3a:6f:2c:fd:45:0f:91:5a:a3:24:fa:b5:8a:0e:9c:10: 40:3b:d7:dd:7a:89:1c:53:cd:3f:f6:e3:55:c9:50:68:24:92: 50:e4:0b:7b:d4:0e:e7:29:32:f9:7e:c8:af:6a:72:a2:85:1b: 34:d2:9a:25:87:3e:42:98:ca:59:a5:fd:33:47:28:55:9f:28: 19:d4:00:db:22:64:29:98:b2:3f:03:98:ab:c0:04:c9:50:0e: 0d:70:9d:f2:bb:66:c7:51:fc:d0:73:6c:64:6f:a2:95:3a:23: 94:6f:29:43:26:97:c1:2a:35:7d:3e:dc:27:4e:23:7c:ea:a2: f4:5a:70:40:2e:ac:8f:43:71:52:81:28:29:e6:a9:7c:c4:15: 6d:88:bd:c5:af:87:01:6e:48:a2:99:87:72:56:a4:75:0d:5e: d3:d8:45:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2IZj0Wom3cFT7+1bIxHTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhNWY2MTI5MTQyYmQwYTlkYzY5ZGZkNDAyNDg5ZmYyNWY1 YjNlZjIwHhcNMjYwMjA5MTAwMDM1WhcNMjYwMjEwMTAwMDM1WjAzMTEwLwYDVQQD EyhiOTI4YTc0OGNmY2ZmMDI5NTZjYmZiODM1ZmQ1MDBmZWJjYTI5ZGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubvGXAApP7+ZiQy+aV1KvHy2mw37 V+bb6jiizCuj4KY3o+lnqA7DR2m7oPC8z/wIbwuPy+YL/bEI12xV6csu92mFpn8q SRz8infVFm74x0KjdVELSa74fuCGgyMqw3DfHJbDD2H/2qOV14p2KSnj8UrXpO1h 4fmI0NgJmz2ZS6g6HfRy4lbVGB56R9/12nuRPhrg/X5GbuHj1+bU1XGGYnQqPxMQ 3y2KUK1ArZyoZvDFJgP8iyuoUHbli1wuR9PTXqxR4EeHcQOYwV7REk+Rmo+qes4v +TIfFS0HZZEP5c4sJn9kTXAMTcQNyFpzkI6M45+My8HW1mDkUv4y8c4AjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLkop0jPz/ApVsv7g1/VAP68op3NMB8GA1UdIwQY MBaAFApfYSkUK9Cp3Gnf1AJIn/JfWz7yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2w5aEtSUXIwS25jYWRfVUFraWY4bDliUHZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8wYWQyNjQtM2E1MC00NTYzLWEzNWEt MGQyYmJlNThjMTQ1LzEvQ2w5aEtSUXIwS25jYWRfVUFraWY4bDliUHZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8wYWQyNjQtM2E1MC00NTYzLWEzNWEtMGQyYmJlNThjMTQ1 LzEvQ2w5aEtSUXIwS25jYWRfVUFraWY4bDliUHZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV4TC33+N quZ5P2mur1W7b3K5nhL3wyf//ZJBUFww3KkKyePc1K8Ml0bmvCVhBN/WY6WCXvKz NywcEqeRc9LUZlQymIbzPbWUVO4TUmGYZU9y4oKALFwSsafUjZA6byz9RQ+RWqMk +rWKDpwQQDvX3XqJHFPNP/bjVclQaCSSUOQLe9QO5yky+X7Ir2pyooUbNNKaJYc+ QpjKWaX9M0coVZ8oGdQA2yJkKZiyPwOYq8AEyVAODXCd8rtmx1H80HNsZG+ilToj lG8pQyaXwSo1fT7cJ04jfOqi9FpwQC6sj0NxUoEoKeapfMQVbYi9xa+HAW5IopmH clakdQ1e09hFug== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:33 2026 by rpki-client