This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft File: Mnib05LhxcabdCDMA2gDrxJYzvk.mft (raw, json) Hash identifier: IyQ7e+ZDG9kuZA0WHdQx1ITIppbW3luMKGH1PC6tuow= Subject key identifier: CE:DC:5B:71:6C:1B:DC:3E:A7:F9:50:E3:1E:8C:C8:03:D6:66:8A:FE Authority key identifier: 32:78:9B:D3:92:E1:C5:C6:9B:74:20:CC:03:68:03:AF:12:58:CE:F9 Certificate issuer: /CN=32789bd392e1c5c69b7420cc036803af1258cef9 Certificate serial: 019C438FB6AECFB59D55796E7FBFE22617D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mnib05LhxcabdCDMA2gDrxJYzvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft Manifest number: 0962 Signing time: Mon 09 Feb 2026 18:00:17 +0000 Manifest this update: Mon 09 Feb 2026 18:00:17 +0000 Manifest next update: Tue 10 Feb 2026 18:00:17 +0000 Files and hashes: 1: Mnib05LhxcabdCDMA2gDrxJYzvk.crl (hash: xLbDZJ59b2xm2anddIWNWcVAPe8MoEpUuC18y/CKmtg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.crl rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft rsync://rpki.ripe.net/repository/DEFAULT/Mnib05LhxcabdCDMA2gDrxJYzvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:b6:ae:cf:b5:9d:55:79:6e:7f:bf:e2:26:17:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32789bd392e1c5c69b7420cc036803af1258cef9 Validity Not Before: Feb 9 18:00:17 2026 GMT Not After : Feb 10 18:00:17 2026 GMT Subject: CN=cedc5b716c1bdc3ea7f950e31e8cc803d6668afe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:91:5a:d1:fd:a4:c2:63:7b:df:8d:ae:b9:d8: e3:e2:a1:32:79:8e:0c:5b:73:7b:83:81:1a:41:b1: 98:ca:2c:78:59:2e:b7:ba:67:00:33:00:2d:d4:68: 82:d4:f4:17:2a:f4:f7:43:e6:11:0e:08:85:24:ae: 8a:8f:78:c1:a4:b8:16:9b:0f:55:dc:a9:05:68:ff: 04:fb:4d:da:21:90:4e:43:9b:62:0c:2a:46:ba:df: 12:cb:6b:4f:94:3a:68:64:c6:0a:01:e5:ab:e2:3a: e8:02:a8:d6:03:a6:1d:c9:34:a8:19:20:bb:06:52: 08:45:9d:c3:0d:ac:ac:9c:fa:35:14:a7:71:27:95: ea:e1:1b:2a:7d:09:74:62:55:e5:44:8c:56:5e:46: ba:57:07:0b:e7:7c:7a:f4:a9:14:cb:f7:ec:79:9a: 4a:40:78:35:89:3f:67:b0:cf:dc:29:26:b5:0a:84: 43:bc:87:b6:9c:b4:8e:f5:cb:e9:fa:e4:88:8a:bb: 0d:51:1e:75:75:b8:b1:70:c3:1f:b4:b1:7e:e9:72: 0b:f6:bd:26:10:5e:41:61:3e:e7:97:f9:7b:d7:6b: 40:41:9e:09:03:a4:ad:63:38:b2:30:e7:6f:6a:fa: 6c:e6:6c:db:1a:21:ca:c0:f6:83:d0:42:95:e2:be: 60:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:DC:5B:71:6C:1B:DC:3E:A7:F9:50:E3:1E:8C:C8:03:D6:66:8A:FE X509v3 Authority Key Identifier: keyid:32:78:9B:D3:92:E1:C5:C6:9B:74:20:CC:03:68:03:AF:12:58:CE:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mnib05LhxcabdCDMA2gDrxJYzvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:0a:5f:57:49:08:da:57:33:e1:04:0e:bb:74:a2:72:0a:41: 1d:d5:c7:48:d9:03:e5:6f:8e:2f:f8:b4:ca:e9:66:3e:22:bd: cd:b0:e0:11:90:98:aa:17:d2:db:a5:d0:43:7c:d3:d4:e8:ee: cc:35:34:86:83:a9:a6:5f:d6:37:7b:9a:a4:c2:23:fb:b8:da: 4f:b6:54:c0:71:8d:b0:f7:bd:48:04:f4:93:4b:80:c1:be:29: 46:fe:d6:3c:ce:ed:3e:a2:18:9b:88:35:2e:92:c9:22:68:1e: 0d:30:bb:dd:be:fe:7e:76:88:de:97:9d:eb:4b:21:aa:0c:06: 7d:60:b2:cc:8a:98:77:08:70:93:13:23:36:92:25:4b:29:d1: c6:c2:69:5e:28:5e:dd:37:78:b9:58:fb:4f:1a:72:99:04:8d: d6:19:12:f0:22:dd:0c:fc:61:13:a1:e4:ac:51:10:22:19:e1: 2d:65:a4:cc:2b:1e:fb:3e:6c:64:33:66:56:7f:1b:0a:fd:85: 5c:bd:3b:38:38:f5:e4:68:13:02:5d:f1:82:f7:9e:a2:d8:6b: 66:12:e6:5b:cc:ca:8f:10:b5:f5:52:02:3b:1f:7b:69:7c:98: fa:34:82:cd:59:0d:de:86:b3:4c:a9:fd:04:89:6a:f6:78:b9: 31:de:03:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj7auz7WdVXluf7/iJhfSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNzg5YmQzOTJlMWM1YzY5Yjc0MjBjYzAzNjgwM2FmMTI1 OGNlZjkwHhcNMjYwMjA5MTgwMDE3WhcNMjYwMjEwMTgwMDE3WjAzMTEwLwYDVQQD EyhjZWRjNWI3MTZjMWJkYzNlYTdmOTUwZTMxZThjYzgwM2Q2NjY4YWZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA35Fa0f2kwmN7342uudjj4qEyeY4M W3N7g4EaQbGYyix4WS63umcAMwAt1GiC1PQXKvT3Q+YRDgiFJK6Kj3jBpLgWmw9V 3KkFaP8E+03aIZBOQ5tiDCpGut8Sy2tPlDpoZMYKAeWr4jroAqjWA6YdyTSoGSC7 BlIIRZ3DDaysnPo1FKdxJ5Xq4RsqfQl0YlXlRIxWXka6VwcL53x69KkUy/fseZpK QHg1iT9nsM/cKSa1CoRDvIe2nLSO9cvp+uSIirsNUR51dbixcMMftLF+6XIL9r0m EF5BYT7nl/l712tAQZ4JA6StYziyMOdvavps5mzbGiHKwPaD0EKV4r5ggwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM7cW3FsG9w+p/lQ4x6MyAPWZor+MB8GA1UdIwQY MBaAFDJ4m9OS4cXGm3QgzANoA68SWM75MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTW5pYjA1TGh4Y2FiZENETUEyZ0RyeEpZenZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xYzE3ZDYtM2ZkNC00YmExLWJlNGMt Mzg2NmQ0NDEyODkzLzEvTW5pYjA1TGh4Y2FiZENETUEyZ0RyeEpZenZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8xYzE3ZDYtM2ZkNC00YmExLWJlNGMtMzg2NmQ0NDEyODkz LzEvTW5pYjA1TGh4Y2FiZENETUEyZ0RyeEpZenZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACgpfV0kI 2lcz4QQOu3SicgpBHdXHSNkD5W+OL/i0yulmPiK9zbDgEZCYqhfS26XQQ3zT1Oju zDU0hoOppl/WN3uapMIj+7jaT7ZUwHGNsPe9SAT0k0uAwb4pRv7WPM7tPqIYm4g1 LpLJImgeDTC73b7+fnaI3ped60shqgwGfWCyzIqYdwhwkxMjNpIlSynRxsJpXihe 3Td4uVj7TxpymQSN1hkS8CLdDPxhE6HkrFEQIhnhLWWkzCse+z5sZDNmVn8bCv2F XL07ODj15GgTAl3xgveeothrZhLmW8zKjxC19VICOx97aXyY+jSCzVkN3oazTKn9 BIlq9ni5Md4DmA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:31:24 2026 by rpki-client