This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json) Hash identifier: 4LdljEfaCiAe/agiPxPneSmJf6Zm4RuWoAOuWDsGc3I= Subject key identifier: 7D:7B:AD:A9:FC:A0:08:5A:38:F8:6C:B4:15:7E:92:D2:C5:F1:27:9A Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70 Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670 Certificate serial: 019C427D7E333A980648F864B52DD864AB15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft Manifest number: 04FC Signing time: Mon 09 Feb 2026 13:00:46 +0000 Manifest this update: Mon 09 Feb 2026 13:00:46 +0000 Manifest next update: Tue 10 Feb 2026 13:00:46 +0000 Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: DJ0B4qnO0L5hhnaykAUGH6WttBqvyCzjYRV60nGZlfI=) 2: tnDfRz3mtoeU30Gx8WzTPcfLyR8.roa (hash: pAE394zjlQUYsuracxTr1PN3S+HncJZRyV9JQFY9+ac=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:7e:33:3a:98:06:48:f8:64:b5:2d:d8:64:ab:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670 Validity Not Before: Feb 9 13:00:46 2026 GMT Not After : Feb 10 13:00:46 2026 GMT Subject: CN=7d7bada9fca0085a38f86cb4157e92d2c5f1279a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7e:8a:a5:fb:db:fe:7e:c5:38:1b:6c:bc:c1: eb:49:95:f3:04:d3:77:1a:56:ea:d4:24:cf:1b:63: 3b:33:6b:8a:d9:24:34:54:88:81:6d:65:c1:13:da: 2a:1b:c1:20:bb:cc:77:8f:c5:f5:19:cf:a9:14:5e: b6:86:d7:05:dd:af:44:53:d1:6f:c5:a7:7e:a0:9d: a9:19:4c:c3:da:4e:e8:3f:44:22:6d:b9:6a:b0:da: 49:d9:74:f3:df:7b:5a:6d:80:34:48:51:02:1b:7c: 52:64:c1:1d:e8:76:fe:75:8e:8b:6f:87:45:62:a0: fe:61:dc:9b:f2:1d:42:37:75:1a:8a:8c:30:29:64: 6d:23:47:b8:43:73:09:8f:a7:0a:44:0e:75:09:2f: fb:c9:d0:36:93:0f:45:c4:7f:ff:86:dc:96:f3:88: 17:49:fb:3a:a2:c9:2a:43:66:dd:d0:18:bd:2b:bc: f3:4e:83:38:91:ac:e6:50:bf:0a:38:3d:cd:04:d0: e9:76:28:87:5e:4f:c2:e3:f7:41:6e:d3:b4:a9:76: 0e:c4:47:cc:b0:d5:67:2a:44:d3:1c:41:f5:cd:29: 80:21:d2:5a:f8:6a:74:e1:f1:a6:7c:96:69:97:d2: 08:92:c7:ce:48:08:db:83:99:0f:9c:b1:9d:84:9a: 1e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7B:AD:A9:FC:A0:08:5A:38:F8:6C:B4:15:7E:92:D2:C5:F1:27:9A X509v3 Authority Key Identifier: keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:55:96:c9:c0:37:98:22:6d:76:03:4c:e1:cb:bc:52:42:fc: c3:a9:45:dd:1d:16:90:1e:31:92:ce:8b:14:1f:7f:cd:01:54: b8:53:f3:6c:0c:42:70:fd:25:b5:65:87:2a:cf:6b:71:60:b9: a0:5b:a7:ca:29:09:db:a6:b9:b9:d9:6f:36:70:0d:26:08:ee: 57:65:73:ee:25:98:71:3b:64:51:34:b8:83:4c:8b:cb:bf:ca: 95:3c:ad:46:99:5a:eb:8b:3f:c2:67:3b:d5:cc:14:6c:ca:3b: 33:84:e1:bf:65:89:47:a2:7c:99:58:c2:fa:22:08:b5:28:ea: a4:0a:e0:fd:f0:48:f1:09:b7:d0:9a:dc:ce:17:ec:1f:d7:10: f5:a7:e2:0b:05:1a:67:58:04:37:de:bf:89:c9:c9:66:72:52: 4b:ad:dd:6d:b6:92:c4:ab:8b:1b:b3:93:52:0e:b4:f6:6b:77: 15:67:be:be:7b:51:15:39:29:9b:08:60:0a:f3:4b:06:dd:35: f0:6b:8a:07:66:37:4a:04:4d:eb:79:ee:cb:88:bf:0d:e2:94: 2e:ab:5e:86:97:a3:d8:4a:72:3e:0a:f0:10:2d:0b:b2:78:7e: bf:0b:e7:db:bf:3b:ef:14:55:42:4b:6d:cf:bf:11:ba:f4:3f: 6e:8f:26:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfX4zOpgGSPhktS3YZKsVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwYjYxZDFmMWQ5Y2NkYWI2YjZkOGUxNDUwYzJjOTM2ZDM5 N2U2NzAwHhcNMjYwMjA5MTMwMDQ2WhcNMjYwMjEwMTMwMDQ2WjAzMTEwLwYDVQQD Eyg3ZDdiYWRhOWZjYTAwODVhMzhmODZjYjQxNTdlOTJkMmM1ZjEyNzlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0H6Kpfvb/n7FOBtsvMHrSZXzBNN3 Glbq1CTPG2M7M2uK2SQ0VIiBbWXBE9oqG8Egu8x3j8X1Gc+pFF62htcF3a9EU9Fv xad+oJ2pGUzD2k7oP0QibblqsNpJ2XTz33tabYA0SFECG3xSZMEd6Hb+dY6Lb4dF YqD+Ydyb8h1CN3UaiowwKWRtI0e4Q3MJj6cKRA51CS/7ydA2kw9FxH//htyW84gX Sfs6oskqQ2bd0Bi9K7zzToM4kazmUL8KOD3NBNDpdiiHXk/C4/dBbtO0qXYOxEfM sNVnKkTTHEH1zSmAIdJa+Gp04fGmfJZpl9IIksfOSAjbg5kPnLGdhJoeeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH17ran8oAhaOPhstBV+ktLF8SeaMB8GA1UdIwQY MBaAFNC2HR8dnM2ra22OFFDCyTbTl+ZwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzIt MTVmNjJjODkwYWY4LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzItMTVmNjJjODkwYWY4 LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfVWWycA3 mCJtdgNM4cu8UkL8w6lF3R0WkB4xks6LFB9/zQFUuFPzbAxCcP0ltWWHKs9rcWC5 oFunyikJ26a5udlvNnANJgjuV2Vz7iWYcTtkUTS4g0yLy7/KlTytRpla64s/wmc7 1cwUbMo7M4Thv2WJR6J8mVjC+iIItSjqpArg/fBI8Qm30JrczhfsH9cQ9afiCwUa Z1gEN96/icnJZnJSS63dbbaSxKuLG7OTUg609mt3FWe+vntRFTkpmwhgCvNLBt01 8GuKB2Y3SgRN63nuy4i/DeKULqtehpej2EpyPgrwEC0Lsnh+vwvn27877xRVQktt z78RuvQ/bo8mCw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:12 2026 by rpki-client