This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft File: INShQtHjFwTrW88Dp4X2N4NVt5k.mft (raw, json) Hash identifier: RHPTcN3csvgtJ8WF9FOrWH+rwzgMCQhqz8lHmy3HLl8= Subject key identifier: A2:E2:8C:85:16:3D:C6:B3:8A:D1:8D:84:E3:8D:37:50:8E:E7:DF:3A Authority key identifier: 20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99 Certificate issuer: /CN=20d4a142d1e31704eb5bcf03a785f6378355b799 Certificate serial: 019C41A29C8D1EEB301FD9206E008F4999A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft Manifest number: 0834 Signing time: Mon 09 Feb 2026 09:01:41 +0000 Manifest this update: Mon 09 Feb 2026 09:01:41 +0000 Manifest next update: Tue 10 Feb 2026 09:01:41 +0000 Files and hashes: 1: INShQtHjFwTrW88Dp4X2N4NVt5k.crl (hash: YNkWF7X90hXQY89OaR7NXQU4rFjsusFIBzAN4D5mFAk=) 2: g082PDAHpiRZAocEJGI8VaarFzs.roa (hash: Au5SOTFMsi2+OrZE63a9/Ibnr7Cniiip3FgMbm/9rrs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:9c:8d:1e:eb:30:1f:d9:20:6e:00:8f:49:99:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20d4a142d1e31704eb5bcf03a785f6378355b799 Validity Not Before: Feb 9 09:01:41 2026 GMT Not After : Feb 10 09:01:41 2026 GMT Subject: CN=a2e28c85163dc6b38ad18d84e38d37508ee7df3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:28:45:80:f7:96:43:9c:db:85:eb:32:a1:2d: b3:30:81:4b:ea:35:93:0e:64:20:3c:f3:30:df:4e: a2:a0:2e:27:f8:2a:80:5a:5f:9a:5a:00:66:e9:c7: a7:d4:6f:48:7c:18:4a:8a:06:0e:96:96:76:52:88: bf:5f:fd:b8:51:bb:1d:2c:90:8b:82:d7:ab:4d:df: 08:fd:77:03:5a:c4:2f:04:c5:d7:19:cc:c9:ad:2c: 2e:6e:07:08:c5:d7:ce:e6:ca:9e:56:b5:c7:5c:d8: 36:5b:7b:4b:b2:1e:c9:94:cb:83:b8:87:ba:c3:6c: 1d:12:67:3f:9d:ba:c6:0d:da:4b:03:11:9a:b9:7a: 13:86:d0:6b:fd:ba:30:69:0d:a6:ac:93:70:88:91: ba:e4:09:e2:68:63:0e:77:bf:65:18:e2:59:19:72: 2a:05:79:c7:cd:62:eb:b7:af:cc:e9:81:53:6d:c2: 9a:af:6c:6c:75:db:c6:21:4e:c5:24:46:5a:a2:a2: 6c:e1:b7:00:0a:99:df:de:56:78:2f:15:81:b1:c3: 61:23:f8:ac:44:a5:56:a3:67:6b:b9:c1:2d:42:ce: 15:8e:48:a1:51:c5:4a:f3:90:9a:7b:2c:5a:b0:95: d0:f1:14:f3:0e:a9:dc:15:ca:c8:2e:10:5e:73:4a: ef:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E2:8C:85:16:3D:C6:B3:8A:D1:8D:84:E3:8D:37:50:8E:E7:DF:3A X509v3 Authority Key Identifier: keyid:20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:51:ac:2a:2a:cc:55:17:f7:85:ef:dd:05:38:67:e0:c6:3a: 1e:85:15:28:93:60:d2:a7:39:2a:4d:3a:c8:14:ea:ce:4b:39: 81:10:05:80:51:91:c0:71:12:f5:1a:84:d2:6c:20:98:8f:c6: 67:ef:50:97:5d:5a:57:44:04:ae:9c:16:b8:66:85:70:5a:58: da:be:83:48:02:ef:d8:fb:2b:0a:88:8b:eb:df:9c:dd:eb:a3: 1b:77:0d:1f:dd:33:75:f1:72:ff:39:bd:f1:2f:2d:8b:0f:f8: fd:10:ec:cc:b9:21:35:bd:b8:73:a4:ab:4b:ef:dc:35:73:f7: 4b:dd:46:74:dd:a0:20:8e:6c:e5:1a:a6:c1:05:67:04:b2:d7: 59:1c:7a:bb:30:41:07:c8:40:9e:a7:c2:5e:fd:17:40:a5:06: ae:bf:1a:38:ed:34:b4:bd:e4:19:86:11:aa:47:51:ac:78:82: 1e:f6:6b:5b:fa:2a:bb:ea:a2:dc:cd:d0:73:42:2e:86:83:70: a9:5f:cb:b0:bb:9f:68:35:25:9e:b1:31:a9:a7:fb:d5:ae:9e: 26:61:f5:0d:22:5a:6b:b4:3a:3c:dc:62:d2:b2:9b:3f:bc:e9: 6e:35:0a:a0:c6:b9:4f:3e:37:c2:02:b5:94:b7:7f:d9:0f:90: 6f:32:56:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBopyNHuswH9kgbgCPSZmoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwZDRhMTQyZDFlMzE3MDRlYjViY2YwM2E3ODVmNjM3ODM1 NWI3OTkwHhcNMjYwMjA5MDkwMTQxWhcNMjYwMjEwMDkwMTQxWjAzMTEwLwYDVQQD EyhhMmUyOGM4NTE2M2RjNmIzOGFkMThkODRlMzhkMzc1MDhlZTdkZjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArShFgPeWQ5zbhesyoS2zMIFL6jWT DmQgPPMw306ioC4n+CqAWl+aWgBm6cen1G9IfBhKigYOlpZ2Uoi/X/24UbsdLJCL gterTd8I/XcDWsQvBMXXGczJrSwubgcIxdfO5sqeVrXHXNg2W3tLsh7JlMuDuIe6 w2wdEmc/nbrGDdpLAxGauXoThtBr/bowaQ2mrJNwiJG65AniaGMOd79lGOJZGXIq BXnHzWLrt6/M6YFTbcKar2xsddvGIU7FJEZaoqJs4bcACpnf3lZ4LxWBscNhI/is RKVWo2drucEtQs4VjkihUcVK85CaeyxasJXQ8RTzDqncFcrILhBec0rvDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKLijIUWPcazitGNhOONN1CO5986MB8GA1UdIwQY MBaAFCDUoULR4xcE61vPA6eF9jeDVbeZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSU5TaFF0SGpGd1RyVzg4RHA0WDJONE5WdDVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8wOTllNzktMTZmYi00MGJlLWE5MTgt ZGI3YzFhZjNhMDczLzEvSU5TaFF0SGpGd1RyVzg4RHA0WDJONE5WdDVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS8wOTllNzktMTZmYi00MGJlLWE5MTgtZGI3YzFhZjNhMDcz LzEvSU5TaFF0SGpGd1RyVzg4RHA0WDJONE5WdDVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtlGsKirM VRf3he/dBThn4MY6HoUVKJNg0qc5Kk06yBTqzks5gRAFgFGRwHES9RqE0mwgmI/G Z+9Ql11aV0QErpwWuGaFcFpY2r6DSALv2PsrCoiL69+c3eujG3cNH90zdfFy/zm9 8S8tiw/4/RDszLkhNb24c6SrS+/cNXP3S91GdN2gII5s5RqmwQVnBLLXWRx6uzBB B8hAnqfCXv0XQKUGrr8aOO00tL3kGYYRqkdRrHiCHvZrW/oqu+qi3M3Qc0IuhoNw qV/LsLufaDUlnrExqaf71a6eJmH1DSJaa7Q6PNxi0rKbP7zpbjUKoMa5Tz43wgK1 lLd/2Q+QbzJWQw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:43 2026 by rpki-client