This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft File: 4tccU1qnoKzpP62r22WD-ISmxiY.mft (raw, json) Hash identifier: YPeWtMoxdl+gD0th/u4pbTWtjEVwjRPDcdtgIOy7zIM= Subject key identifier: 75:E7:FC:84:F7:1B:A1:44:E9:4C:7B:C0:04:A0:97:1B:BB:23:23:7A Authority key identifier: E2:D7:1C:53:5A:A7:A0:AC:E9:3F:AD:AB:DB:65:83:F8:84:A6:C6:26 Certificate issuer: /CN=e2d71c535aa7a0ace93fadabdb6583f884a6c626 Certificate serial: 019C432252ED260209D5D3FB931358406846 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tccU1qnoKzpP62r22WD-ISmxiY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft Manifest number: 08E9 Signing time: Mon 09 Feb 2026 16:00:48 +0000 Manifest this update: Mon 09 Feb 2026 16:00:48 +0000 Manifest next update: Tue 10 Feb 2026 16:00:48 +0000 Files and hashes: 1: 4tccU1qnoKzpP62r22WD-ISmxiY.crl (hash: OxUD7yHRXBq7RcDcbURy60BpKUSQWECYpPEIvDnTW54=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.crl rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft rsync://rpki.ripe.net/repository/DEFAULT/4tccU1qnoKzpP62r22WD-ISmxiY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:52:ed:26:02:09:d5:d3:fb:93:13:58:40:68:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2d71c535aa7a0ace93fadabdb6583f884a6c626 Validity Not Before: Feb 9 16:00:48 2026 GMT Not After : Feb 10 16:00:48 2026 GMT Subject: CN=75e7fc84f71ba144e94c7bc004a0971bbb23237a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:61:a7:69:55:c7:5f:d0:4c:b1:c1:35:f9:9f: e4:4a:6e:65:62:14:05:4c:43:34:b4:58:d1:d9:a5: 84:0c:4e:2c:bb:1e:d0:f5:88:12:19:2a:0f:96:94: fb:5f:d5:e9:e7:4a:b4:39:d4:ae:e1:73:70:d0:6a: 42:1c:51:93:fb:d7:01:86:5e:d0:51:55:59:74:43: fa:51:c2:ae:a3:4f:65:cb:c3:d2:91:63:6b:46:7b: e9:dc:43:ce:4d:fd:31:3b:8e:c1:c7:02:85:5b:44: c4:71:97:0f:e7:7d:56:16:55:73:a9:b9:38:18:13: 20:d9:9b:08:ab:11:4c:b9:83:6d:77:52:cf:6b:c4: d8:13:5c:9e:89:b6:94:f7:4d:53:10:50:c2:62:0c: 2a:65:e5:24:de:da:70:5e:8f:e8:17:0e:d3:7e:00: da:7e:f0:42:20:dc:f4:e4:f7:56:50:d7:c7:d2:fd: 36:5a:28:49:46:a5:2b:50:d2:99:7d:dc:f1:0a:7a: 77:68:33:2a:47:2a:18:4d:2e:2f:ab:bd:56:16:13: 87:15:d1:cc:31:0f:4f:54:d6:05:9b:cd:da:3c:29: bb:d7:6f:1c:83:b3:36:cc:5a:ed:cd:6b:36:96:14: 41:f4:f9:af:27:78:9c:75:f2:b0:a4:67:18:5a:46: f6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E7:FC:84:F7:1B:A1:44:E9:4C:7B:C0:04:A0:97:1B:BB:23:23:7A X509v3 Authority Key Identifier: keyid:E2:D7:1C:53:5A:A7:A0:AC:E9:3F:AD:AB:DB:65:83:F8:84:A6:C6:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tccU1qnoKzpP62r22WD-ISmxiY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:89:55:28:91:a1:1c:58:8c:cd:ee:ad:af:43:d8:7f:93:0c: 3d:21:83:a6:aa:4b:97:ec:45:3b:86:40:ec:16:c6:2b:80:bf: d6:27:77:47:85:1d:b6:ad:19:38:a5:36:63:77:77:0c:55:cf: 99:17:d4:75:2a:fc:41:df:53:e7:7e:2d:30:09:77:ef:10:1f: 2d:6f:63:2c:30:99:d1:cf:b1:b9:43:0c:05:6c:94:17:84:5e: fd:46:13:88:12:7c:5e:5e:ed:a0:48:87:5d:ba:23:12:68:22: 2d:aa:19:d5:89:fa:b0:d7:75:d2:79:50:ca:5e:70:1d:fb:ad: 30:cb:55:41:31:90:47:d2:e3:12:a0:07:b0:e9:80:fa:1c:9d: 2f:ec:fa:6c:6e:f6:18:ee:d6:d4:fc:0b:74:e8:92:3b:3b:20: ec:0f:27:26:1a:53:5d:d8:f6:3f:7f:62:05:1b:01:f3:28:0b: 45:8a:ad:ea:71:cb:66:10:f0:3a:53:75:2b:27:a3:ae:64:bf: 5a:eb:4c:a5:2a:65:b5:8e:0e:d6:9b:11:c3:fa:46:d3:aa:66: 75:f0:f9:ae:a4:7c:12:92:7b:ce:75:51:66:5e:1b:dd:ee:e2: 47:f2:bf:1c:56:de:14:74:ba:ca:26:e3:10:6e:9b:4b:b8:20: 65:49:65:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlLtJgIJ1dP7kxNYQGhGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyZDcxYzUzNWFhN2EwYWNlOTNmYWRhYmRiNjU4M2Y4ODRh NmM2MjYwHhcNMjYwMjA5MTYwMDQ4WhcNMjYwMjEwMTYwMDQ4WjAzMTEwLwYDVQQD Eyg3NWU3ZmM4NGY3MWJhMTQ0ZTk0YzdiYzAwNGEwOTcxYmJiMjMyMzdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxmGnaVXHX9BMscE1+Z/kSm5lYhQF TEM0tFjR2aWEDE4sux7Q9YgSGSoPlpT7X9Xp50q0OdSu4XNw0GpCHFGT+9cBhl7Q UVVZdEP6UcKuo09ly8PSkWNrRnvp3EPOTf0xO47BxwKFW0TEcZcP531WFlVzqbk4 GBMg2ZsIqxFMuYNtd1LPa8TYE1yeibaU901TEFDCYgwqZeUk3tpwXo/oFw7TfgDa fvBCINz05PdWUNfH0v02WihJRqUrUNKZfdzxCnp3aDMqRyoYTS4vq71WFhOHFdHM MQ9PVNYFm83aPCm7128cg7M2zFrtzWs2lhRB9PmvJ3icdfKwpGcYWkb2XwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHXn/IT3G6FE6Ux7wASglxu7IyN6MB8GA1UdIwQY MBaAFOLXHFNap6Cs6T+tq9tlg/iEpsYmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHRjY1UxcW5vS3pwUDYycjIyV0QtSVNteGlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8yYzcwOGItYjZlMi00ZGVmLWEyZDkt YjMxMDExMTM3YTU3LzEvNHRjY1UxcW5vS3pwUDYycjIyV0QtSVNteGlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS8yYzcwOGItYjZlMi00ZGVmLWEyZDktYjMxMDExMTM3YTU3 LzEvNHRjY1UxcW5vS3pwUDYycjIyV0QtSVNteGlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ4lVKJGh HFiMze6tr0PYf5MMPSGDpqpLl+xFO4ZA7BbGK4C/1id3R4Udtq0ZOKU2Y3d3DFXP mRfUdSr8Qd9T534tMAl37xAfLW9jLDCZ0c+xuUMMBWyUF4Re/UYTiBJ8Xl7toEiH XbojEmgiLaoZ1Yn6sNd10nlQyl5wHfutMMtVQTGQR9LjEqAHsOmA+hydL+z6bG72 GO7W1PwLdOiSOzsg7A8nJhpTXdj2P39iBRsB8ygLRYqt6nHLZhDwOlN1KyejrmS/ WutMpSpltY4O1psRw/pG06pmdfD5rqR8EpJ7znVRZl4b3e7iR/K/HFbeFHS6yibj EG6bS7ggZUllJQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:01 2026 by rpki-client