This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft File: coCW6KzXbpqhfz62eAQG49pWPtI.mft (raw, json) Hash identifier: 2uG6uMipdo4Iq9zUsGQ1T0sSNvChFPoFbJOnUmhgIgw= Subject key identifier: A0:32:8F:6D:4A:94:6E:2D:1F:D7:51:D4:13:A5:1C:B5:BD:F8:4C:2B Authority key identifier: 72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2 Certificate issuer: /CN=728096e8acd76e9aa17f3eb6780406e3da563ed2 Certificate serial: 019C420FE27671F1C07BAAB707654EAEF850 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft Manifest number: 16C9 Signing time: Mon 09 Feb 2026 11:01:03 +0000 Manifest this update: Mon 09 Feb 2026 11:01:03 +0000 Manifest next update: Tue 10 Feb 2026 11:01:03 +0000 Files and hashes: 1: coCW6KzXbpqhfz62eAQG49pWPtI.crl (hash: 6Bm13NUlKyDc40EmnSNSJg+Lqhg7E3GXptQ/AUKRnNE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:e2:76:71:f1:c0:7b:aa:b7:07:65:4e:ae:f8:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=728096e8acd76e9aa17f3eb6780406e3da563ed2 Validity Not Before: Feb 9 11:01:03 2026 GMT Not After : Feb 10 11:01:03 2026 GMT Subject: CN=a0328f6d4a946e2d1fd751d413a51cb5bdf84c2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:97:89:eb:08:51:fc:ce:4f:b5:7b:00:cd:f8: 29:d6:b8:6f:8f:12:20:d2:d9:60:9b:e5:0b:28:1f: 64:e5:bc:d1:7f:c8:8f:6c:75:1c:4e:e5:82:e1:f2: dc:f3:01:21:51:29:fb:cc:86:ee:c8:b2:42:24:d7: 82:d8:b3:b3:a0:bd:a8:2a:bf:73:f1:6e:2b:52:a2: 14:3f:ab:66:b1:c9:c9:02:ea:48:be:ce:35:bd:1f: ba:b5:d9:05:8f:a7:a4:99:ae:a4:53:67:4c:c9:74: 4f:00:33:34:e1:dc:22:25:00:de:23:55:39:9e:08: c9:16:6a:9b:10:df:28:56:45:d3:71:6b:e1:32:fa: da:fd:d0:5b:47:63:e0:4c:a0:a2:0b:8b:51:d6:5f: c1:9e:1e:c4:53:82:84:04:9c:75:6b:66:b1:5a:0b: c3:55:c4:32:50:27:59:48:77:07:fc:54:bc:0f:35: 32:f0:d6:f5:73:18:d5:0f:d5:f9:ef:b9:f6:0e:b1: 49:c9:b3:eb:58:b8:97:09:5f:d5:5c:bd:2a:a1:a7: 54:9b:90:69:2d:18:18:57:38:ce:92:4e:39:4b:a8: 08:88:51:af:96:c3:c1:37:e5:6d:55:0c:6c:2c:54: aa:62:13:3a:40:20:76:5d:53:e9:90:f0:66:3b:9e: 80:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:32:8F:6D:4A:94:6E:2D:1F:D7:51:D4:13:A5:1C:B5:BD:F8:4C:2B X509v3 Authority Key Identifier: keyid:72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:f1:01:f9:1c:d4:9a:52:03:5f:a5:d7:dc:d8:7a:0c:11:dd: 7b:ae:e3:35:e8:ca:93:e6:99:02:d3:9f:cc:52:1a:4b:f2:fd: b0:08:16:5a:fe:e4:ab:00:c6:8c:6e:e2:6a:cf:e8:8c:a3:a3: 52:cb:e6:69:f2:8f:ae:da:0f:04:95:fd:f3:5f:40:bd:8d:b2: c1:f0:63:87:d7:5f:4f:ee:1b:0c:10:57:1a:57:e3:1f:04:c9: 12:1a:6c:93:fb:a5:b2:97:eb:19:79:42:86:2c:74:c5:be:67: fe:45:41:7e:2c:bd:40:fa:65:02:2f:0c:8f:88:f4:74:bb:8a: 17:63:f0:8d:64:71:e0:29:9f:e0:fc:2b:b7:c9:45:ac:00:5f: 3a:b9:a6:de:3d:07:3a:53:96:20:ab:1e:49:bf:74:25:60:ec: b2:65:d8:9e:d3:f3:2a:06:6b:8d:cf:e2:0f:8c:91:50:66:e9: 09:92:ed:a2:37:70:cf:4e:76:40:53:fb:99:7f:a7:0e:62:08: 12:23:6a:8f:4d:fc:62:6f:58:b8:b5:16:72:64:9a:f8:00:d7: 84:48:93:17:1e:57:16:dd:5e:55:ac:79:16:d2:f0:89:46:bd: db:d5:8a:44:73:94:2b:e9:18:78:9e:ef:e4:c5:20:0d:e9:f5: c5:fd:89:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD+J2cfHAe6q3B2VOrvhQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyODA5NmU4YWNkNzZlOWFhMTdmM2ViNjc4MDQwNmUzZGE1 NjNlZDIwHhcNMjYwMjA5MTEwMTAzWhcNMjYwMjEwMTEwMTAzWjAzMTEwLwYDVQQD EyhhMDMyOGY2ZDRhOTQ2ZTJkMWZkNzUxZDQxM2E1MWNiNWJkZjg0YzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZeJ6whR/M5PtXsAzfgp1rhvjxIg 0tlgm+ULKB9k5bzRf8iPbHUcTuWC4fLc8wEhUSn7zIbuyLJCJNeC2LOzoL2oKr9z 8W4rUqIUP6tmscnJAupIvs41vR+6tdkFj6ekma6kU2dMyXRPADM04dwiJQDeI1U5 ngjJFmqbEN8oVkXTcWvhMvra/dBbR2PgTKCiC4tR1l/Bnh7EU4KEBJx1a2axWgvD VcQyUCdZSHcH/FS8DzUy8Nb1cxjVD9X577n2DrFJybPrWLiXCV/VXL0qoadUm5Bp LRgYVzjOkk45S6gIiFGvlsPBN+VtVQxsLFSqYhM6QCB2XVPpkPBmO56A2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKAyj21KlG4tH9dR1BOlHLW9+EwrMB8GA1UdIwQY MBaAFHKAluis126aoX8+tngEBuPaVj7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY29DVzZLelhicHFoZno2MmVBUUc0OXBXUHRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9iZjE0NGItYWFiNS00MDdlLTkwNGYt YzE3MzRkNTBjYjNiLzEvY29DVzZLelhicHFoZno2MmVBUUc0OXBXUHRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9iZjE0NGItYWFiNS00MDdlLTkwNGYtYzE3MzRkNTBjYjNi LzEvY29DVzZLelhicHFoZno2MmVBUUc0OXBXUHRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL/EB+RzU mlIDX6XX3Nh6DBHde67jNejKk+aZAtOfzFIaS/L9sAgWWv7kqwDGjG7ias/ojKOj UsvmafKPrtoPBJX9819AvY2ywfBjh9dfT+4bDBBXGlfjHwTJEhpsk/ulspfrGXlC hix0xb5n/kVBfiy9QPplAi8Mj4j0dLuKF2PwjWRx4Cmf4Pwrt8lFrABfOrmm3j0H OlOWIKseSb90JWDssmXYntPzKgZrjc/iD4yRUGbpCZLtojdwz052QFP7mX+nDmII EiNqj038Ym9YuLUWcmSa+ADXhEiTFx5XFt1eVax5FtLwiUa929WKRHOUK+kYeJ7v 5MUgDen1xf2Jew== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:14 2026 by rpki-client