This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft File: TNN3vorxFHipq-Jx-L3i3j0zNAg.mft (raw, json) Hash identifier: 3wn59X//V94+TSbmIpP14tXrYp0MrOuk4DZQVY20mbA= Subject key identifier: C9:C9:AB:A6:8E:5C:B4:EF:A6:23:B5:1D:29:45:AA:1E:6C:B1:FB:19 Authority key identifier: 4C:D3:77:BE:8A:F1:14:78:A9:AB:E2:71:F8:BD:E2:DE:3D:33:34:08 Certificate issuer: /CN=4cd377be8af11478a9abe271f8bde2de3d333408 Certificate serial: 019C41A163B64A7C40B2BBAC5676E49B6D1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNN3vorxFHipq-Jx-L3i3j0zNAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft Manifest number: 0A5F Signing time: Mon 09 Feb 2026 09:00:21 +0000 Manifest this update: Mon 09 Feb 2026 09:00:21 +0000 Manifest next update: Tue 10 Feb 2026 09:00:21 +0000 Files and hashes: 1: TNN3vorxFHipq-Jx-L3i3j0zNAg.crl (hash: kdB3HgOHeRhzP4Tf4XLQ8+LKFpw0+tKUULga80Pw+Ao=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.crl rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft rsync://rpki.ripe.net/repository/DEFAULT/TNN3vorxFHipq-Jx-L3i3j0zNAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:63:b6:4a:7c:40:b2:bb:ac:56:76:e4:9b:6d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4cd377be8af11478a9abe271f8bde2de3d333408 Validity Not Before: Feb 9 09:00:21 2026 GMT Not After : Feb 10 09:00:21 2026 GMT Subject: CN=c9c9aba68e5cb4efa623b51d2945aa1e6cb1fb19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:30:c9:e0:dc:14:86:93:23:89:80:73:1f:9c: 79:a3:18:8c:e8:39:cf:b6:be:8d:40:31:ef:d7:88: 26:bf:40:73:ba:40:3f:09:7f:3c:47:a0:89:e8:ff: 2e:c1:30:3d:5f:36:70:60:78:32:0d:33:af:e0:d3: 8f:21:7f:d3:e7:00:72:0c:57:c7:b7:7e:2c:e1:14: 1e:f5:93:52:55:5e:fe:3d:e9:33:b8:ff:a4:f5:35: 45:60:16:31:50:7c:7f:37:b3:85:61:08:88:01:c7: 76:17:de:55:f8:dd:58:96:9b:96:2a:fd:d2:5f:e3: 75:d7:e8:d1:53:80:68:ed:70:1a:3c:fc:62:ba:73: 7e:37:95:ed:ae:3f:70:b5:3f:64:a6:da:3a:38:cc: e2:5c:78:99:6f:dd:a8:d3:4b:34:8b:e1:49:5f:b6: 9d:0a:4a:e5:7d:44:ce:42:63:eb:8a:90:2a:27:31: 31:65:18:74:76:3d:6b:af:c2:93:d6:c2:36:f4:5e: fc:5e:f6:ed:e6:d1:a8:b1:06:e9:6d:33:e2:82:bf: 07:7d:d8:b9:05:60:e7:4b:21:6a:a9:80:85:3f:e9: f2:f7:10:67:55:93:f1:9e:63:6f:6b:8d:57:21:ec: 46:5b:19:3f:4a:4e:f4:5e:f9:f7:1d:a3:dc:a8:3c: 13:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C9:AB:A6:8E:5C:B4:EF:A6:23:B5:1D:29:45:AA:1E:6C:B1:FB:19 X509v3 Authority Key Identifier: keyid:4C:D3:77:BE:8A:F1:14:78:A9:AB:E2:71:F8:BD:E2:DE:3D:33:34:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNN3vorxFHipq-Jx-L3i3j0zNAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:1b:1f:ad:69:77:04:4e:88:04:9b:c7:7c:f8:2f:08:1b:76: d7:33:42:6f:30:21:bc:80:f3:08:4a:72:f7:cb:23:d8:9b:47: 6e:a4:2d:e9:04:46:04:87:22:a4:93:ae:43:69:7c:5f:7b:e6: cc:53:35:d2:97:a4:32:f2:25:c5:91:20:6e:f7:2b:e8:29:ba: 0b:da:73:31:7c:0d:cc:1c:8c:d7:03:7e:2c:88:c4:fe:84:33: e3:24:36:36:00:4b:02:07:ec:1c:a4:89:c0:9a:52:97:d0:27: 2f:7d:f0:2b:88:9c:38:85:91:0a:f3:6d:c8:44:70:24:db:c9: f2:e9:69:8a:80:0b:a0:7f:cb:b1:c0:ed:91:56:7e:ae:be:4c: e1:ee:53:b4:6e:f7:01:29:00:a6:49:2f:2e:dd:26:f3:ff:0e: 13:4d:ec:16:37:b9:0f:b2:28:03:b6:c2:15:a0:d1:ab:e5:99: bf:49:b1:75:aa:87:63:1b:00:22:aa:c1:47:9f:69:53:42:4e: a7:4f:de:39:43:d5:63:f4:88:aa:08:0a:6a:91:13:20:ae:4b: 8b:e9:68:f8:2b:e6:0d:2f:ab:87:28:2a:15:9d:64:9c:a5:13: 7d:6f:b1:6b:72:cb:a9:47:e6:ae:d7:4a:ee:24:06:9b:ca:eb: cf:90:db:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoWO2SnxAsrusVnbkm20aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjZDM3N2JlOGFmMTE0NzhhOWFiZTI3MWY4YmRlMmRlM2Qz MzM0MDgwHhcNMjYwMjA5MDkwMDIxWhcNMjYwMjEwMDkwMDIxWjAzMTEwLwYDVQQD EyhjOWM5YWJhNjhlNWNiNGVmYTYyM2I1MWQyOTQ1YWExZTZjYjFmYjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTDJ4NwUhpMjiYBzH5x5oxiM6DnP tr6NQDHv14gmv0BzukA/CX88R6CJ6P8uwTA9XzZwYHgyDTOv4NOPIX/T5wByDFfH t34s4RQe9ZNSVV7+PekzuP+k9TVFYBYxUHx/N7OFYQiIAcd2F95V+N1YlpuWKv3S X+N11+jRU4Bo7XAaPPxiunN+N5Xtrj9wtT9kpto6OMziXHiZb92o00s0i+FJX7ad CkrlfUTOQmPripAqJzExZRh0dj1rr8KT1sI29F78Xvbt5tGosQbpbTPigr8Hfdi5 BWDnSyFqqYCFP+ny9xBnVZPxnmNva41XIexGWxk/Sk70Xvn3HaPcqDwTdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMnJq6aOXLTvpiO1HSlFqh5ssfsZMB8GA1UdIwQY MBaAFEzTd76K8RR4qavicfi94t49MzQIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVE5OM3ZvcnhGSGlwcS1KeC1MM2kzajB6TkFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni81MWU4YjUtN2UyYy00MDA4LWJmODMt YjEyZWIxY2VhYTE0LzEvVE5OM3ZvcnhGSGlwcS1KeC1MM2kzajB6TkFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni81MWU4YjUtN2UyYy00MDA4LWJmODMtYjEyZWIxY2VhYTE0 LzEvVE5OM3ZvcnhGSGlwcS1KeC1MM2kzajB6TkFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfhsfrWl3 BE6IBJvHfPgvCBt21zNCbzAhvIDzCEpy98sj2JtHbqQt6QRGBIcipJOuQ2l8X3vm zFM10pekMvIlxZEgbvcr6Cm6C9pzMXwNzByM1wN+LIjE/oQz4yQ2NgBLAgfsHKSJ wJpSl9AnL33wK4icOIWRCvNtyERwJNvJ8ulpioALoH/LscDtkVZ+rr5M4e5TtG73 ASkApkkvLt0m8/8OE03sFje5D7IoA7bCFaDRq+WZv0mxdaqHYxsAIqrBR59pU0JO p0/eOUPVY/SIqggKapETIK5Li+lo+CvmDS+rhygqFZ1knKUTfW+xa3LLqUfmrtdK 7iQGm8rrz5Dbig== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:13 2026 by rpki-client