This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft File: S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft (raw, json) Hash identifier: 61WuknXMjrI84Pln6XhnS6QLDV2mQStUT7EwweRhIeY= Subject key identifier: CD:AC:41:3C:94:DB:A5:6B:4F:0C:C1:F7:7A:12:E6:F6:3B:14:06:75 Authority key identifier: 4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F Certificate issuer: /CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f Certificate serial: 019C4322474D8B746EF6100FDCE39E96C892 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft Manifest number: 14AB Signing time: Mon 09 Feb 2026 16:00:45 +0000 Manifest this update: Mon 09 Feb 2026 16:00:45 +0000 Manifest next update: Tue 10 Feb 2026 16:00:45 +0000 Files and hashes: 1: S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl (hash: 7dZtOSdVl9C+ksDrHNDioY9TZhN8L4MNDz025OJRtwk=) 2: oZ5KMTsfThBFq6HeEDiKMmNpYEI.roa (hash: Fya1WLYfdNkhjXqChkihYHmhU9AOfJPUlY74dXuOW2U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:47:4d:8b:74:6e:f6:10:0f:dc:e3:9e:96:c8:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f Validity Not Before: Feb 9 16:00:45 2026 GMT Not After : Feb 10 16:00:45 2026 GMT Subject: CN=cdac413c94dba56b4f0cc1f77a12e6f63b140675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d0:19:8b:ff:41:c0:ea:06:e6:27:dd:01:77: 38:6d:2d:01:c8:e2:d7:95:3a:1a:af:1d:40:fe:02: 16:6c:11:d6:3f:0f:4a:bd:b8:74:68:d9:44:54:36: cf:b8:e8:59:c6:70:bf:8e:88:36:a0:e8:75:d4:8c: 81:98:bf:02:5f:3b:ee:b6:3b:6f:73:67:d4:c3:f4: ef:52:3b:62:37:3a:ea:6f:d6:5f:e1:3e:37:3d:e8: a0:f2:93:4e:82:35:98:b1:88:4a:ec:6e:31:60:b9: bf:21:7d:ec:59:d7:1b:c7:fc:2c:0f:a4:9c:33:8d: b0:50:4a:5d:65:85:a0:c9:de:ea:4f:34:d6:a0:82: 18:89:5d:98:bb:07:53:91:06:18:6d:60:5b:54:63: dd:dd:e1:59:32:3c:e5:64:9e:f0:4f:0f:19:16:59: 8c:53:45:5e:70:47:1e:a7:e0:d9:6c:72:bb:1e:79: 3f:b8:4f:45:cf:5d:5b:45:5b:b5:ce:47:0d:de:9d: f7:de:a2:cb:03:5a:46:46:04:0b:55:77:80:ce:09: 80:b9:11:ae:49:a8:77:79:b8:0a:c8:62:b0:a3:e5: 85:3b:06:9b:1e:7f:1d:6e:43:e7:c2:15:46:fc:f6: a0:78:08:23:00:d3:fa:fc:ba:b9:c0:28:8a:2b:1c: ad:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AC:41:3C:94:DB:A5:6B:4F:0C:C1:F7:7A:12:E6:F6:3B:14:06:75 X509v3 Authority Key Identifier: keyid:4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:27:81:e5:c4:6e:56:b1:88:be:5e:24:a3:08:a4:dc:6a:40: c2:ee:4c:8e:fd:8e:d0:6a:1f:7e:31:13:e3:43:6f:c1:b3:93: 38:56:1f:f0:1e:9b:de:2f:21:72:9e:86:dd:33:2c:06:20:22: 5e:02:8f:25:a8:8f:6e:12:4a:a6:98:6a:81:aa:e2:95:7d:4f: c4:ca:22:77:b0:33:ee:e4:e7:0e:83:d0:5c:7f:42:ca:5e:ef: 58:1a:51:ac:dc:ae:59:36:69:09:e0:c2:48:c3:71:af:78:86: f6:f5:92:ff:cb:c8:87:73:bd:86:12:f3:f0:7d:01:5c:44:10: 71:f6:96:f6:3d:07:2d:d6:03:83:12:c5:77:0f:d5:41:19:c3: 59:e1:55:8e:0c:6a:f4:fe:07:77:e8:bf:79:b9:b2:d2:2e:7e: da:0f:e3:1a:81:2f:fe:1e:12:dd:db:3b:6c:cd:94:49:7a:64: da:be:34:a4:46:0c:8c:3b:ea:f6:e4:da:e4:a1:86:f2:6a:78: 85:77:0c:21:e5:20:a0:bc:41:72:ce:68:92:db:96:3c:ea:c0: 73:fe:e9:e8:cd:2e:16:34:b0:e9:a8:d1:5f:94:b8:8e:23:86: 9b:d0:1e:dd:41:e3:ab:a4:8e:68:4c:5c:3d:3a:89:8a:b9:8d: 70:99:d3:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkdNi3Ru9hAP3OOelsiSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNzIwNjZkN2U2Y2E4YWQyZmZhNjJhNjliMDY3OTIzYTQy ZGY5NmYwHhcNMjYwMjA5MTYwMDQ1WhcNMjYwMjEwMTYwMDQ1WjAzMTEwLwYDVQQD EyhjZGFjNDEzYzk0ZGJhNTZiNGYwY2MxZjc3YTEyZTZmNjNiMTQwNjc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtAZi/9BwOoG5ifdAXc4bS0ByOLX lToarx1A/gIWbBHWPw9Kvbh0aNlEVDbPuOhZxnC/jog2oOh11IyBmL8CXzvutjtv c2fUw/TvUjtiNzrqb9Zf4T43Peig8pNOgjWYsYhK7G4xYLm/IX3sWdcbx/wsD6Sc M42wUEpdZYWgyd7qTzTWoIIYiV2YuwdTkQYYbWBbVGPd3eFZMjzlZJ7wTw8ZFlmM U0VecEcep+DZbHK7Hnk/uE9Fz11bRVu1zkcN3p333qLLA1pGRgQLVXeAzgmAuRGu Sah3ebgKyGKwo+WFOwabHn8dbkPnwhVG/PageAgjANP6/Lq5wCiKKxytJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM2sQTyU26VrTwzB93oS5vY7FAZ1MB8GA1UdIwQY MBaAFEtyBm1+bKitL/pippsGeSOkLflvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzNJR2JYNXNxSzB2LW1LbW13WjVJNlF0LVc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9hNjRiMDktNjRkZi00NzBjLWE2NGQt MWY2OTkxODc3YjI2LzEvUzNJR2JYNXNxSzB2LW1LbW13WjVJNlF0LVc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9hNjRiMDktNjRkZi00NzBjLWE2NGQtMWY2OTkxODc3YjI2 LzEvUzNJR2JYNXNxSzB2LW1LbW13WjVJNlF0LVc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASyeB5cRu VrGIvl4kowik3GpAwu5Mjv2O0GoffjET40NvwbOTOFYf8B6b3i8hcp6G3TMsBiAi XgKPJaiPbhJKpphqgarilX1PxMoid7Az7uTnDoPQXH9Cyl7vWBpRrNyuWTZpCeDC SMNxr3iG9vWS/8vIh3O9hhLz8H0BXEQQcfaW9j0HLdYDgxLFdw/VQRnDWeFVjgxq 9P4Hd+i/ebmy0i5+2g/jGoEv/h4S3ds7bM2USXpk2r40pEYMjDvq9uTa5KGG8mp4 hXcMIeUgoLxBcs5oktuWPOrAc/7p6M0uFjSw6ajRX5S4jiOGm9Ae3UHjq6SOaExc PTqJirmNcJnTWQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:40:41 2026 by rpki-client