This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft File: TRYkCJewEwVoHJQl_lI_WPqydBU.mft (raw, json) Hash identifier: N8UZ1Kp6dGxXO/HxqE0kj9bRY79OaDAQJfWp1/oWjOY= Subject key identifier: CF:96:3F:B7:8D:F6:6E:BC:88:C5:5C:39:25:D2:8F:ED:71:2F:84:38 Authority key identifier: 4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15 Certificate issuer: /CN=4d16240897b01305681c9425fe523f58fab27415 Certificate serial: 019C427E1874DED87780D2A108055293AA19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 13:01:25 +0000 Manifest this update: Mon 09 Feb 2026 13:01:25 +0000 Manifest next update: Tue 10 Feb 2026 13:01:25 +0000 Files and hashes: 1: NlDeDV4WzeoUvKdIW3pq1ndiD6Q.roa (hash: gXt+Eq5uxoOgBwvqy+Kxf+ntZAhbrgykVlmEcwvKBeA=) 2: TRYkCJewEwVoHJQl_lI_WPqydBU.crl (hash: QZUk8zaLHmHBBGgzGphCO6g2+p8Bf0LWYvteVkx35Ac=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:18:74:de:d8:77:80:d2:a1:08:05:52:93:aa:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d16240897b01305681c9425fe523f58fab27415 Validity Not Before: Feb 9 13:01:25 2026 GMT Not After : Feb 10 13:01:25 2026 GMT Subject: CN=cf963fb78df66ebc88c55c3925d28fed712f8438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3f:81:e7:d8:48:03:61:06:c2:1f:95:fb:11: 64:68:b4:91:b5:9e:2a:7e:77:9e:f6:a8:48:e2:55: 80:40:f2:f3:29:dc:be:74:1c:6c:26:75:3a:09:13: 1e:92:28:81:94:01:bd:8e:7a:7a:aa:29:d4:55:ce: e9:8b:d5:ab:c9:34:df:9f:06:4a:8a:b3:08:13:ea: fa:ca:bd:b5:0d:07:ac:cb:25:93:7b:0c:f5:60:fd: 29:70:5c:74:24:61:9f:65:a0:04:aa:8f:4b:38:84: e4:79:6d:90:c6:12:40:c7:4b:bc:a4:e0:1d:ba:14: 34:d8:e6:87:23:9e:13:12:40:e3:86:3b:6b:20:5e: 4a:2e:64:07:ed:09:60:41:51:6e:e9:65:3f:1b:75: 28:cd:07:db:2f:bd:48:8c:22:a6:f5:d4:3f:ab:ac: ad:4d:0a:e6:b3:cb:00:2c:a2:95:71:45:2c:08:9f: 21:6c:65:c2:d8:a8:e0:3d:f9:36:a4:0d:7f:ea:1d: e4:cc:cf:81:9f:0e:27:32:68:a1:65:c9:8c:dc:2b: 3d:a7:fa:18:c6:4b:fc:f0:c9:96:b7:c9:92:f6:04: 5f:0f:7c:53:99:c7:5b:bf:7c:72:13:b7:61:7e:57: 11:fb:de:26:b8:e3:d0:57:68:5f:ab:20:bd:14:7d: a7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:96:3F:B7:8D:F6:6E:BC:88:C5:5C:39:25:D2:8F:ED:71:2F:84:38 X509v3 Authority Key Identifier: keyid:4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:3b:a4:da:cc:8d:f4:c9:5b:06:88:8c:b4:79:a7:cf:bd:4f: 5c:ce:06:f3:1d:5a:24:f2:3b:88:d0:3b:f5:50:f3:77:c9:0b: 48:51:b8:37:22:5f:d6:ec:b3:bb:62:3c:dc:94:bc:01:60:4d: 63:67:89:a0:e5:c8:eb:67:b9:e2:05:be:7e:a3:7c:6c:21:ce: 0a:15:8e:bc:6c:da:4e:78:fb:8f:5e:18:5c:4a:d7:9e:75:02: 47:f8:aa:8a:ee:0b:fa:7d:fd:60:b3:26:b4:39:89:cd:ce:9e: ff:8a:4b:e4:44:63:aa:3f:dd:19:06:14:6d:15:8b:cc:20:97: b2:fa:d5:70:85:89:c2:6d:a0:14:ea:82:11:cb:b1:af:52:58: d8:1c:84:4e:1f:63:83:47:a0:36:6c:4f:eb:b2:14:d0:43:1d: 4e:cf:9a:d4:13:24:9e:2f:12:b5:11:85:27:4f:20:d2:da:b7: a5:45:c2:6d:6b:46:c2:4a:c9:5e:d3:b1:0f:96:8b:00:25:5a: d0:1b:2f:b0:2c:ba:8b:80:70:ea:fc:fb:7f:09:13:c9:b7:b1: ba:ab:51:80:78:5c:02:f6:8d:1d:6f:50:39:e2:6f:66:84:ee: 32:0f:4c:58:59:6c:4e:d9:52:4c:62:25:9b:b5:85:70:82:4f: 7c:6e:23:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfhh03th3gNKhCAVSk6oZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMTYyNDA4OTdiMDEzMDU2ODFjOTQyNWZlNTIzZjU4ZmFi Mjc0MTUwHhcNMjYwMjA5MTMwMTI1WhcNMjYwMjEwMTMwMTI1WjAzMTEwLwYDVQQD EyhjZjk2M2ZiNzhkZjY2ZWJjODhjNTVjMzkyNWQyOGZlZDcxMmY4NDM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvj+B59hIA2EGwh+V+xFkaLSRtZ4q fnee9qhI4lWAQPLzKdy+dBxsJnU6CRMekiiBlAG9jnp6qinUVc7pi9WryTTfnwZK irMIE+r6yr21DQesyyWTewz1YP0pcFx0JGGfZaAEqo9LOITkeW2QxhJAx0u8pOAd uhQ02OaHI54TEkDjhjtrIF5KLmQH7QlgQVFu6WU/G3UozQfbL71IjCKm9dQ/q6yt TQrms8sALKKVcUUsCJ8hbGXC2KjgPfk2pA1/6h3kzM+Bnw4nMmihZcmM3Cs9p/oY xkv88MmWt8mS9gRfD3xTmcdbv3xyE7dhflcR+94muOPQV2hfqyC9FH2ndwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM+WP7eN9m68iMVcOSXSj+1xL4Q4MB8GA1UdIwQY MBaAFE0WJAiXsBMFaByUJf5SP1j6snQVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFJZa0NKZXdFd1ZvSEpRbF9sSV9XUHF5ZEJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9mYzQ4MWEtYWIwMS00ZjgyLTllNmUt ZWIwMmYzZDNmNDBjLzEvVFJZa0NKZXdFd1ZvSEpRbF9sSV9XUHF5ZEJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS9mYzQ4MWEtYWIwMS00ZjgyLTllNmUtZWIwMmYzZDNmNDBj LzEvVFJZa0NKZXdFd1ZvSEpRbF9sSV9XUHF5ZEJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUjuk2syN 9MlbBoiMtHmnz71PXM4G8x1aJPI7iNA79VDzd8kLSFG4NyJf1uyzu2I83JS8AWBN Y2eJoOXI62e54gW+fqN8bCHOChWOvGzaTnj7j14YXErXnnUCR/iqiu4L+n39YLMm tDmJzc6e/4pL5ERjqj/dGQYUbRWLzCCXsvrVcIWJwm2gFOqCEcuxr1JY2ByETh9j g0egNmxP67IU0EMdTs+a1BMkni8StRGFJ08g0tq3pUXCbWtGwkrJXtOxD5aLACVa 0BsvsCy6i4Bw6vz7fwkTybexuqtRgHhcAvaNHW9QOeJvZoTuMg9MWFlsTtlSTGIl m7WFcIJPfG4jZA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:23 2026 by rpki-client