This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.mft File: 4BpLB7xMpvoFciL96uhg9kRAR-A.mft (raw, json) Hash identifier: XBpMwpQ97lQGtGiTBC1Tg11IOhlYc4xHmwMAfRNUUms= Subject key identifier: 39:CD:40:2E:7A:80:D1:10:4E:DF:63:BE:A7:28:23:59:6E:6E:80:8A Authority key identifier: E0:1A:4B:07:BC:4C:A6:FA:05:72:22:FD:EA:E8:60:F6:44:40:47:E0 Certificate issuer: /CN=e01a4b07bc4ca6fa057222fdeae860f6444047e0 Certificate serial: 019C42B421CFBF295B856075BA20023DB3F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4BpLB7xMpvoFciL96uhg9kRAR-A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.mft Manifest number: 05E1 Signing time: Mon 09 Feb 2026 14:00:27 +0000 Manifest this update: Mon 09 Feb 2026 14:00:27 +0000 Manifest next update: Tue 10 Feb 2026 14:00:27 +0000 Files and hashes: 1: 4BpLB7xMpvoFciL96uhg9kRAR-A.crl (hash: v7+NJUtPEPJSUFA+yxDwIF1AQuq5e/0lO6eBlpr/lVI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.crl rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.mft rsync://rpki.ripe.net/repository/DEFAULT/4BpLB7xMpvoFciL96uhg9kRAR-A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:21:cf:bf:29:5b:85:60:75:ba:20:02:3d:b3:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e01a4b07bc4ca6fa057222fdeae860f6444047e0 Validity Not Before: Feb 9 14:00:27 2026 GMT Not After : Feb 10 14:00:27 2026 GMT Subject: CN=39cd402e7a80d1104edf63bea72823596e6e808a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:98:ff:60:f9:2b:9d:12:af:a6:94:63:2c:84: b8:e2:bf:35:bc:32:0b:e3:90:b8:20:04:48:6b:dc: 32:90:ce:44:83:12:3e:94:d8:f3:9d:be:f1:60:9b: d6:6f:c2:9d:5a:5a:60:b7:43:55:f4:1c:93:22:09: eb:37:e3:06:10:53:89:37:71:5f:2a:3a:b0:bf:a2: d5:5f:db:4c:4f:60:d0:62:e8:f3:c1:fa:ae:83:6a: 6a:fb:88:6e:df:91:97:06:2b:22:37:50:69:58:8d: 62:4e:32:4f:2c:0e:82:e7:85:6a:1a:cd:f3:ea:64: 0a:45:a6:0e:f3:cd:2f:05:b6:2a:c7:ae:e2:5a:21: 2b:7d:a1:c6:39:98:2e:1e:d9:6d:80:d3:8c:6e:d3: ee:04:18:cd:20:4a:94:66:9b:cd:bd:5a:97:cb:e2: 6c:a2:e9:e0:78:c0:21:73:b3:ac:a7:8b:d4:3d:e4: 78:8e:b0:d0:e7:d4:91:17:13:5b:ce:e1:42:d1:9d: 99:1c:da:22:f6:ab:c4:16:a9:ac:e4:f9:7f:e3:2e: 79:aa:0e:71:d3:94:bf:e3:94:62:ae:47:1a:35:90: 4d:15:5d:72:41:84:f8:09:7c:1d:45:3a:3b:4e:59: 1b:0b:c4:1b:86:c6:36:44:8f:03:9d:c8:66:00:35: 1e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:CD:40:2E:7A:80:D1:10:4E:DF:63:BE:A7:28:23:59:6E:6E:80:8A X509v3 Authority Key Identifier: keyid:E0:1A:4B:07:BC:4C:A6:FA:05:72:22:FD:EA:E8:60:F6:44:40:47:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4BpLB7xMpvoFciL96uhg9kRAR-A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:27:f2:ee:a4:40:a8:f8:8c:73:a1:0f:73:c8:29:35:03:2c: 1e:47:da:9b:d4:1e:c9:d5:d7:93:9d:2b:8e:68:38:e2:41:06: ac:f3:b3:8b:57:26:eb:82:09:d7:ee:fb:51:f0:43:9e:fb:4f: 85:f2:51:8c:22:7e:61:2b:9e:07:d6:cb:84:44:e6:81:8e:ad: 5d:5d:ae:44:e5:3f:c9:34:c2:89:34:5a:a1:52:7e:2b:05:18: 76:2a:62:9f:c6:9c:1a:5e:4e:63:d4:7a:cf:47:4b:47:44:b2: f8:9d:6f:da:8f:45:94:b5:10:29:94:63:16:62:dc:87:26:54: ad:67:f7:ff:19:53:37:0f:29:c2:4e:db:f0:3d:f2:93:e3:fb: a7:84:1e:1e:f3:60:47:6c:f4:d8:73:22:a5:a5:4f:ff:c8:1c: cb:80:7b:6e:aa:e4:80:22:e0:a1:95:86:5d:7a:d7:41:89:9c: 1f:09:28:03:9f:2f:58:92:dd:3d:5d:17:3f:1a:09:d8:2d:36: 68:bd:ee:e8:09:50:46:7c:48:ea:e7:bc:10:db:10:9f:ff:9a: e6:f8:46:0e:9f:93:ed:52:8f:ce:ff:cd:10:4b:81:1b:07:0c: 74:ee:56:ec:4b:07:fa:77:57:b0:dc:f7:fa:9e:5e:33:1a:a9: 61:a4:20:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtCHPvylbhWB1uiACPbPzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwMWE0YjA3YmM0Y2E2ZmEwNTcyMjJmZGVhZTg2MGY2NDQ0 MDQ3ZTAwHhcNMjYwMjA5MTQwMDI3WhcNMjYwMjEwMTQwMDI3WjAzMTEwLwYDVQQD EygzOWNkNDAyZTdhODBkMTEwNGVkZjYzYmVhNzI4MjM1OTZlNmU4MDhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq5j/YPkrnRKvppRjLIS44r81vDIL 45C4IARIa9wykM5EgxI+lNjznb7xYJvWb8KdWlpgt0NV9ByTIgnrN+MGEFOJN3Ff Kjqwv6LVX9tMT2DQYujzwfqug2pq+4hu35GXBisiN1BpWI1iTjJPLA6C54VqGs3z 6mQKRaYO880vBbYqx67iWiErfaHGOZguHtltgNOMbtPuBBjNIEqUZpvNvVqXy+Js oungeMAhc7Osp4vUPeR4jrDQ59SRFxNbzuFC0Z2ZHNoi9qvEFqms5Pl/4y55qg5x 05S/45RirkcaNZBNFV1yQYT4CXwdRTo7TlkbC8QbhsY2RI8DnchmADUeaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDnNQC56gNEQTt9jvqcoI1luboCKMB8GA1UdIwQY MBaAFOAaSwe8TKb6BXIi/eroYPZEQEfgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNEJwTEI3eE1wdm9GY2lMOTZ1aGc5a1JBUi1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My85NDRjOGYtZjBmOC00YzcxLTllZGUt N2EzYzUzMmQzYTU1LzEvNEJwTEI3eE1wdm9GY2lMOTZ1aGc5a1JBUi1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My85NDRjOGYtZjBmOC00YzcxLTllZGUtN2EzYzUzMmQzYTU1 LzEvNEJwTEI3eE1wdm9GY2lMOTZ1aGc5a1JBUi1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATSfy7qRA qPiMc6EPc8gpNQMsHkfam9QeydXXk50rjmg44kEGrPOzi1cm64IJ1+77UfBDnvtP hfJRjCJ+YSueB9bLhETmgY6tXV2uROU/yTTCiTRaoVJ+KwUYdipin8acGl5OY9R6 z0dLR0Sy+J1v2o9FlLUQKZRjFmLchyZUrWf3/xlTNw8pwk7b8D3yk+P7p4QeHvNg R2z02HMipaVP/8gcy4B7bqrkgCLgoZWGXXrXQYmcHwkoA58vWJLdPV0XPxoJ2C02 aL3u6AlQRnxI6ue8ENsQn/+a5vhGDp+T7VKPzv/NEEuBGwcMdO5W7EsH+ndXsNz3 +p5eMxqpYaQgkA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:06 2026 by rpki-client