This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft File: 4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json) Hash identifier: kE2JLZPiP95naBwY7vsrZD7D+oPmtZcVM1ygdwaucwg= Subject key identifier: AF:5A:DB:7D:49:5C:25:C1:96:D5:0B:DC:B0:6D:C9:CA:D3:83:E5:4C Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48 Certificate issuer: /CN=e0a3370a841b893e7b68f86a393363582e105648 Certificate serial: 019C438FB9F328D5D80758B0D93BB62FC12D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft Manifest number: 0CEA Signing time: Mon 09 Feb 2026 18:00:18 +0000 Manifest this update: Mon 09 Feb 2026 18:00:18 +0000 Manifest next update: Tue 10 Feb 2026 18:00:18 +0000 Files and hashes: 1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: Y31YUShwcaYiUDqFoCpblobZSaRKswErUWaoZtEhhHs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:b9:f3:28:d5:d8:07:58:b0:d9:3b:b6:2f:c1:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648 Validity Not Before: Feb 9 18:00:18 2026 GMT Not After : Feb 10 18:00:18 2026 GMT Subject: CN=af5adb7d495c25c196d50bdcb06dc9cad383e54c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:26:89:4f:a5:23:e0:99:94:b3:e6:71:26:da: ed:bf:83:67:12:ae:f5:52:aa:b8:03:61:56:0b:23: e3:ae:23:27:9e:23:0d:17:b9:de:a8:d2:af:5a:db: 8a:5a:72:f8:8f:f7:85:3f:6c:28:94:68:85:10:f4: 4e:a1:73:30:c7:f5:c3:86:28:61:c0:75:29:32:75: 91:e3:43:88:b2:85:9c:cc:39:c7:a2:f2:e3:33:58: 96:65:d4:b2:aa:10:c3:d1:4b:4a:95:69:22:06:ba: a1:00:ba:a9:e9:93:f3:90:c9:d7:1b:56:be:ec:cd: fe:c8:43:23:5d:15:81:2f:d2:b2:da:eb:eb:b5:fc: 28:ce:32:d2:cb:c9:fb:00:04:a9:83:b8:fb:1e:b4: f1:ff:39:63:80:91:8a:8f:69:aa:ed:32:1c:77:2f: 22:4d:0e:d9:1e:1d:9b:c3:e6:a0:51:db:65:32:c9: a2:9a:66:3b:83:27:24:7e:96:d2:99:3c:fb:d0:54: 2b:ad:f7:f2:02:ba:0c:a3:4c:0a:b0:27:0b:15:19: b2:bb:22:11:92:3d:18:54:0d:d9:ec:50:4b:81:88: 54:8f:cc:44:8b:42:d8:f5:9b:5b:ab:d0:9d:f6:96: f9:89:6e:d6:ac:5f:0a:75:1d:2f:44:80:ec:7a:4d: d7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:5A:DB:7D:49:5C:25:C1:96:D5:0B:DC:B0:6D:C9:CA:D3:83:E5:4C X509v3 Authority Key Identifier: keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:f3:45:95:80:27:83:10:84:bb:d7:ab:bb:65:49:a8:fa:ee: 4a:f5:49:74:e2:55:68:07:77:18:da:d8:95:34:4f:fc:a6:43: cf:a6:ac:d8:51:ce:b0:b9:c0:2d:f2:34:5b:04:b6:11:66:66: 92:15:f9:01:f5:c6:33:34:bc:49:2b:5c:e8:10:0b:0d:2c:b2: 94:b7:50:39:03:21:31:06:bb:bf:2c:60:33:13:40:7d:e1:43: 7c:f3:4a:1a:93:92:93:fb:90:da:0e:44:4e:de:9a:77:4d:73: 9f:5a:ee:16:48:63:2b:32:00:4b:78:e7:70:4a:d3:80:38:8a: bc:96:be:ae:5f:73:48:6b:9c:8f:3b:6e:f3:91:4b:70:88:a0: 39:48:a6:3c:55:da:95:b4:8a:58:8f:32:e2:4c:04:99:e5:a2: c0:18:9a:f6:e6:9f:93:0a:41:6d:d1:e3:3d:31:b0:c7:b1:c2: 8a:9f:c4:97:1d:71:f3:89:fe:93:2d:a4:41:eb:5e:5f:80:5f: 34:db:52:8f:aa:41:c2:20:60:7a:f5:b5:e5:6c:59:37:19:ed: e2:4a:82:d9:08:0a:72:52:1a:43:24:dd:e4:3a:06:05:70:19: 87:21:43:2b:d5:cc:f2:35:22:1a:82:31:e7:09:82:6d:82:f6: f8:5c:35:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj7nzKNXYB1iw2Tu2L8EtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwYTMzNzBhODQxYjg5M2U3YjY4Zjg2YTM5MzM2MzU4MmUx MDU2NDgwHhcNMjYwMjA5MTgwMDE4WhcNMjYwMjEwMTgwMDE4WjAzMTEwLwYDVQQD EyhhZjVhZGI3ZDQ5NWMyNWMxOTZkNTBiZGNiMDZkYzljYWQzODNlNTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCaJT6Uj4JmUs+ZxJtrtv4NnEq71 Uqq4A2FWCyPjriMnniMNF7neqNKvWtuKWnL4j/eFP2wolGiFEPROoXMwx/XDhihh wHUpMnWR40OIsoWczDnHovLjM1iWZdSyqhDD0UtKlWkiBrqhALqp6ZPzkMnXG1a+ 7M3+yEMjXRWBL9Ky2uvrtfwozjLSy8n7AASpg7j7HrTx/zljgJGKj2mq7TIcdy8i TQ7ZHh2bw+agUdtlMsmimmY7gyckfpbSmTz70FQrrffyAroMo0wKsCcLFRmyuyIR kj0YVA3Z7FBLgYhUj8xEi0LY9Ztbq9Cd9pb5iW7WrF8KdR0vRIDsek3X2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK9a231JXCXBltUL3LBtycrTg+VMMB8GA1UdIwQY MBaAFOCjNwqEG4k+e2j4ajkzY1guEFZIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEtNM0NvUWJpVDU3YVBocU9UTmpXQzRRVmtnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC85NTc0NmUtYmU1Mi00MmVlLTljYzgt YzNlZGI0ZDhmNzFlLzEvNEtNM0NvUWJpVDU3YVBocU9UTmpXQzRRVmtnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC85NTc0NmUtYmU1Mi00MmVlLTljYzgtYzNlZGI0ZDhmNzFl LzEvNEtNM0NvUWJpVDU3YVBocU9UTmpXQzRRVmtnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMPNFlYAn gxCEu9eru2VJqPruSvVJdOJVaAd3GNrYlTRP/KZDz6as2FHOsLnALfI0WwS2EWZm khX5AfXGMzS8SStc6BALDSyylLdQOQMhMQa7vyxgMxNAfeFDfPNKGpOSk/uQ2g5E Tt6ad01zn1ruFkhjKzIAS3jncErTgDiKvJa+rl9zSGucjztu85FLcIigOUimPFXa lbSKWI8y4kwEmeWiwBia9uafkwpBbdHjPTGwx7HCip/Elx1x84n+ky2kQeteX4Bf NNtSj6pBwiBgevW15WxZNxnt4kqC2QgKclIaQyTd5DoGBXAZhyFDK9XM8jUiGoIx 5wmCbYL2+Fw1Ig== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:38 2026 by rpki-client