This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft File: s90R00a2O7HrIqB8JswSkaKgaJU.mft (raw, json) Hash identifier: FWyt3FWEZFOOUAnhlws9BTHwbtrPGRfErW2Zg/vc7HM= Subject key identifier: 91:E5:A1:C0:8F:AE:77:4A:D3:34:10:EA:4D:FF:68:61:4F:65:02:AC Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95 Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895 Certificate serial: 019C43FE862A09A6EB8CF32725B8367D6813 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft Manifest number: 101C Signing time: Mon 09 Feb 2026 20:01:19 +0000 Manifest this update: Mon 09 Feb 2026 20:01:19 +0000 Manifest next update: Tue 10 Feb 2026 20:01:19 +0000 Files and hashes: 1: W1I4zwk5u62kEWKU3w3ttcGBy2k.roa (hash: m2lBjL0FDEr7OnguUKCR+j/T0K4u4HNIAXm6k1LnPZo=) 2: s90R00a2O7HrIqB8JswSkaKgaJU.crl (hash: UYO0LXNdLxx8sdI8pSD9PDArVHxsXM83ak38OFNdMIE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:86:2a:09:a6:eb:8c:f3:27:25:b8:36:7d:68:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895 Validity Not Before: Feb 9 20:01:19 2026 GMT Not After : Feb 10 20:01:19 2026 GMT Subject: CN=91e5a1c08fae774ad33410ea4dff68614f6502ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:40:6e:d5:3e:85:8c:84:1a:68:5a:11:41:7a: 01:04:a3:2c:f7:1e:89:57:fd:04:43:8f:f8:c0:69: 60:e9:53:21:0e:69:b6:9f:2f:b0:3e:e3:63:6b:51: 60:e1:dc:21:8e:17:18:fc:11:8c:03:a6:21:7a:fd: c3:15:46:cd:33:07:f9:50:ce:b6:cc:32:39:b5:a6: 9a:c1:3a:ef:34:10:10:8c:6b:0e:5a:24:c1:68:82: 8c:22:40:f1:e3:a7:37:22:14:30:cf:81:bf:51:0c: e9:de:e3:a3:18:95:a2:3b:d2:60:e9:d4:4d:ae:4a: 85:e0:9a:96:44:b5:b6:36:67:83:92:e8:bd:d2:53: f3:9e:24:29:be:9a:a4:e5:ff:2c:57:7b:cd:7d:f3: cf:5f:1b:85:cd:68:0b:7d:3b:56:f7:ff:53:de:b6: 54:e4:ed:16:65:87:81:22:36:81:ae:ae:2d:c3:98: ac:bb:cf:0a:65:25:e1:7c:a8:d6:fa:36:0a:58:a2: e9:f9:4f:5c:8c:8a:a6:fd:68:1c:b9:00:0e:be:0e: 1e:8c:3a:06:3f:33:bc:3f:72:19:ed:23:59:fb:b7: b0:c5:1a:13:f6:ae:4a:f3:3c:33:d0:0d:74:6e:b8: e2:2c:a8:cc:cf:ee:93:64:01:40:3b:f3:a7:20:8a: a7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E5:A1:C0:8F:AE:77:4A:D3:34:10:EA:4D:FF:68:61:4F:65:02:AC X509v3 Authority Key Identifier: keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ea:24:7c:8d:01:d1:90:e4:ce:28:ca:74:b4:6d:e2:fe:21: 68:ce:49:57:9b:5f:ed:8b:59:36:d3:52:99:04:fd:d7:da:af: 3d:fc:af:2b:ba:c8:b7:c1:76:9b:5d:0d:fa:9f:81:a3:89:2e: d5:82:5e:94:48:a7:cf:d6:ef:a2:ed:d2:5c:f3:a0:8a:73:78: d0:2e:07:69:eb:bb:4b:67:b8:fd:05:02:b8:6e:c1:d8:34:83: 65:f6:1e:54:af:a1:33:c5:f8:a4:bc:31:84:79:62:31:3e:18: b8:f8:ce:0a:3b:94:96:44:1f:6e:83:95:03:4c:4c:12:53:63: 5a:4f:ac:6b:58:1c:e8:c2:e7:f7:3f:10:7f:08:f9:63:99:0c: cb:be:fc:82:8a:dd:25:72:83:c1:6b:54:de:94:31:ff:02:80: 94:9e:f1:9b:f0:f3:1b:ce:b7:36:33:6e:b3:9c:3c:e8:a1:05: 80:cf:da:f4:c4:1a:d9:21:5b:bc:0f:2d:4b:18:1b:36:1b:d6: ab:b1:b1:4c:91:64:ad:11:1d:91:a8:a2:06:53:c1:8c:ce:7e: 9b:6f:95:c6:9b:23:eb:61:4c:bc:dc:eb:8d:3c:04:51:84:af: 93:50:ed:30:a2:56:1b:78:3b:2e:9c:7c:da:e7:93:eb:de:00: b4:34:85:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/oYqCabrjPMnJbg2fWgTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzZGQxMWQzNDZiNjNiYjFlYjIyYTA3YzI2Y2MxMjkxYTJh MDY4OTUwHhcNMjYwMjA5MjAwMTE5WhcNMjYwMjEwMjAwMTE5WjAzMTEwLwYDVQQD Eyg5MWU1YTFjMDhmYWU3NzRhZDMzNDEwZWE0ZGZmNjg2MTRmNjUwMmFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEBu1T6FjIQaaFoRQXoBBKMs9x6J V/0EQ4/4wGlg6VMhDmm2ny+wPuNja1Fg4dwhjhcY/BGMA6Yhev3DFUbNMwf5UM62 zDI5taaawTrvNBAQjGsOWiTBaIKMIkDx46c3IhQwz4G/UQzp3uOjGJWiO9Jg6dRN rkqF4JqWRLW2NmeDkui90lPzniQpvpqk5f8sV3vNffPPXxuFzWgLfTtW9/9T3rZU 5O0WZYeBIjaBrq4tw5isu88KZSXhfKjW+jYKWKLp+U9cjIqm/WgcuQAOvg4ejDoG PzO8P3IZ7SNZ+7ewxRoT9q5K8zwz0A10brjiLKjMz+6TZAFAO/OnIIqnXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJHlocCPrndK0zQQ6k3/aGFPZQKsMB8GA1UdIwQY MBaAFLPdEdNGtjux6yKgfCbMEpGioGiVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9hNDE4OTgtZGEwOC00NjlkLWJlMWEt OGJiYzIyNmU2YzQ1LzEvczkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9hNDE4OTgtZGEwOC00NjlkLWJlMWEtOGJiYzIyNmU2YzQ1 LzEvczkwUjAwYTJPN0hySXFCOEpzd1NrYUtnYUpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK+okfI0B 0ZDkzijKdLRt4v4haM5JV5tf7YtZNtNSmQT919qvPfyvK7rIt8F2m10N+p+Bo4ku 1YJelEinz9bvou3SXPOginN40C4Haeu7S2e4/QUCuG7B2DSDZfYeVK+hM8X4pLwx hHliMT4YuPjOCjuUlkQfboOVA0xMElNjWk+sa1gc6MLn9z8Qfwj5Y5kMy778gord JXKDwWtU3pQx/wKAlJ7xm/DzG863NjNus5w86KEFgM/a9MQa2SFbvA8tSxgbNhvW q7GxTJFkrREdkaiiBlPBjM5+m2+Vxpsj62FMvNzrjTwEUYSvk1DtMKJWG3g7Lpx8 2ueT694AtDSF0Q== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:39 2026 by rpki-client