This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft File: cIEc4M5zU_A-3py3ylEWJV-_t70.mft (raw, json) Hash identifier: NUoE/8vf7xjk3HNPvOlBqMlm34V5VmUg+WKPESFbP1U= Subject key identifier: 43:1E:6E:9D:4A:66:4C:F5:B0:CC:55:75:4F:C9:86:00:C0:2A:71:CE Authority key identifier: 70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD Certificate issuer: /CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd Certificate serial: 019C427E06DF5FA112212D86C54E85B0D50B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft Manifest number: 0CC9 Signing time: Mon 09 Feb 2026 13:01:21 +0000 Manifest this update: Mon 09 Feb 2026 13:01:21 +0000 Manifest next update: Tue 10 Feb 2026 13:01:21 +0000 Files and hashes: 1: cIEc4M5zU_A-3py3ylEWJV-_t70.crl (hash: LCZYuyFh8WMBmA4K8ST+K3HgsDHDkgJT9RBoLdpmpLo=) 2: wTEh6ej3g3Q7GGlsQ4YIzozQtnc.roa (hash: qEk4UNZu9aTZfRIMREb/ibtS04CGWHXkv598NCFoY14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:06:df:5f:a1:12:21:2d:86:c5:4e:85:b0:d5:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd Validity Not Before: Feb 9 13:01:21 2026 GMT Not After : Feb 10 13:01:21 2026 GMT Subject: CN=431e6e9d4a664cf5b0cc55754fc98600c02a71ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:29:04:ec:e6:8b:da:54:b1:64:e1:86:82:21: 40:fe:59:53:e9:15:d5:19:77:71:93:95:75:d8:94: 13:6d:78:1a:f5:df:3b:2d:8c:0e:e0:f7:89:e7:7f: e5:26:71:7f:c6:fa:18:6f:b0:d3:31:69:4b:88:da: 3a:f5:f4:6d:e0:ff:5b:36:93:42:15:14:05:e0:b9: 5a:64:53:26:b4:6a:53:3e:a0:6e:10:f0:4f:d1:d4: 4e:e6:e2:f6:48:00:31:2f:40:0f:b9:da:ff:58:0a: 74:10:90:fd:24:ef:54:4a:71:e7:be:2a:a2:5c:f2: b0:c2:a8:2a:0a:5c:c3:5c:83:64:39:cd:e1:33:a0: f1:ec:ab:bb:ea:e9:e8:9e:aa:79:95:bd:0d:74:38: 8c:74:43:ce:37:af:68:2c:6a:29:43:09:01:5a:80: 5b:ef:b4:b6:14:d4:eb:43:15:2a:37:3b:cf:a2:9e: 62:71:eb:c8:43:9e:fc:3a:c2:93:46:6d:24:3b:7f: 76:23:0d:c2:a0:43:79:73:17:78:e2:69:6f:75:50: 48:8a:79:12:c0:06:47:a9:78:ad:53:3d:32:c7:b6: 76:98:c2:81:e7:56:ba:1b:fc:97:61:56:03:b4:e9: e0:88:68:f2:b7:d7:6e:b9:26:ff:6f:3e:da:ac:ca: f3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:1E:6E:9D:4A:66:4C:F5:B0:CC:55:75:4F:C9:86:00:C0:2A:71:CE X509v3 Authority Key Identifier: keyid:70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:71:c1:ff:31:bb:4d:ba:9d:f4:51:ca:b5:fc:3b:16:9d:ae: 1c:44:66:bc:db:6a:8c:69:c8:26:0f:c8:17:4e:96:b9:58:b8: 66:9f:c5:8d:3a:96:2c:92:d4:74:7f:84:2e:f6:f9:29:42:37: 66:8b:81:c1:c2:96:22:88:ee:b8:51:60:93:45:44:7b:bc:20: 57:41:18:f2:d3:2e:72:08:d3:84:cc:c9:06:7b:3a:f1:1b:dc: 33:6c:de:6d:c5:55:35:73:5b:61:96:0e:81:5f:28:b7:c9:e4: 44:4c:54:83:a6:70:99:b8:5a:17:df:2e:a6:79:3a:69:2f:4b: 25:21:eb:21:ac:74:b1:49:50:ae:17:45:c0:d8:3d:6a:f8:44: 8a:20:3d:9f:b8:fb:a0:51:c4:59:89:0f:ae:f1:fb:85:59:16: 4c:59:57:2d:59:c5:46:2b:a0:5b:a0:89:63:42:55:15:e0:9a: 33:c0:18:c2:77:66:74:17:8f:f9:03:26:da:ac:86:90:61:67: 7f:e2:b9:bb:53:dc:57:48:3e:c1:ef:f8:5b:a6:f4:ec:b5:08: ab:8c:30:4b:f7:c5:58:2f:44:03:c1:2f:c3:e3:d9:68:4e:e5: 75:32:66:a8:6a:80:c9:06:49:af:00:7a:0c:87:42:ce:c6:51: ef:fb:25:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfgbfX6ESIS2GxU6FsNULMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwODExY2UwY2U3MzUzZjAzZWRlOWNiN2NhNTExNjI1NWZi ZmI3YmQwHhcNMjYwMjA5MTMwMTIxWhcNMjYwMjEwMTMwMTIxWjAzMTEwLwYDVQQD Eyg0MzFlNmU5ZDRhNjY0Y2Y1YjBjYzU1NzU0ZmM5ODYwMGMwMmE3MWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CkE7OaL2lSxZOGGgiFA/llT6RXV GXdxk5V12JQTbXga9d87LYwO4PeJ53/lJnF/xvoYb7DTMWlLiNo69fRt4P9bNpNC FRQF4LlaZFMmtGpTPqBuEPBP0dRO5uL2SAAxL0APudr/WAp0EJD9JO9USnHnviqi XPKwwqgqClzDXINkOc3hM6Dx7Ku76unonqp5lb0NdDiMdEPON69oLGopQwkBWoBb 77S2FNTrQxUqNzvPop5icevIQ578OsKTRm0kO392Iw3CoEN5cxd44mlvdVBIinkS wAZHqXitUz0yx7Z2mMKB51a6G/yXYVYDtOngiGjyt9duuSb/bz7arMrzwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEMebp1KZkz1sMxVdU/JhgDAKnHOMB8GA1UdIwQY MBaAFHCBHODOc1PwPt6ct8pRFiVfv7e9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0lFYzRNNXpVX0EtM3B5M3lsRVdKVi1fdDcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My80NWU2MzItYjBmZC00ZDgxLTljZjct OGZkMjIxMDU4MDZiLzEvY0lFYzRNNXpVX0EtM3B5M3lsRVdKVi1fdDcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My80NWU2MzItYjBmZC00ZDgxLTljZjctOGZkMjIxMDU4MDZi LzEvY0lFYzRNNXpVX0EtM3B5M3lsRVdKVi1fdDcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALXHB/zG7 Tbqd9FHKtfw7Fp2uHERmvNtqjGnIJg/IF06WuVi4Zp/FjTqWLJLUdH+ELvb5KUI3 ZouBwcKWIojuuFFgk0VEe7wgV0EY8tMucgjThMzJBns68RvcM2zebcVVNXNbYZYO gV8ot8nkRExUg6ZwmbhaF98upnk6aS9LJSHrIax0sUlQrhdFwNg9avhEiiA9n7j7 oFHEWYkPrvH7hVkWTFlXLVnFRiugW6CJY0JVFeCaM8AYwndmdBeP+QMm2qyGkGFn f+K5u1PcV0g+we/4W6b07LUIq4wwS/fFWC9EA8Evw+PZaE7ldTJmqGqAyQZJrwB6 DIdCzsZR7/slBA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:38 2026 by rpki-client