This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft File: egtky28YoRQXQjEFCwF5kxteSG0.mft (raw, json) Hash identifier: s+OWBsMtApUXwpxxfs0BJvBVjwN2SYw3i8KFBJqIXA0= Subject key identifier: 8F:E2:0B:7E:FC:E6:EA:FB:EC:FC:F9:0C:BD:60:14:79:1C:B4:61:4D Authority key identifier: 7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D Certificate issuer: /CN=7a0b64cb6f18a114174231050b0179931b5e486d Certificate serial: 019C427E26B44EDEB00771035F6F67CF97ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft Manifest number: 051D Signing time: Mon 09 Feb 2026 13:01:29 +0000 Manifest this update: Mon 09 Feb 2026 13:01:29 +0000 Manifest next update: Tue 10 Feb 2026 13:01:29 +0000 Files and hashes: 1: 1q4BtkfepJc-raZEhj-gGf2uWvE.roa (hash: 3v5nIZKVUJNwnzavqdu5v3q5UyDoCLmVDzmJ4965j9Q=) 2: egtky28YoRQXQjEFCwF5kxteSG0.crl (hash: Gz+3wJ0I1OMSNKA6Css+p4V6UOalAyPEUNrMFLhO5Ao=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:26:b4:4e:de:b0:07:71:03:5f:6f:67:cf:97:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a0b64cb6f18a114174231050b0179931b5e486d Validity Not Before: Feb 9 13:01:29 2026 GMT Not After : Feb 10 13:01:29 2026 GMT Subject: CN=8fe20b7efce6eafbecfcf90cbd6014791cb4614d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:60:85:7e:13:8a:86:93:33:18:f8:5f:e4:2a: 53:5d:2c:73:fe:70:84:ca:a4:43:73:c7:e4:4d:9b: 79:8b:63:3e:78:39:39:73:54:8a:81:3f:eb:d2:db: d2:b6:93:59:8e:3d:f3:15:d9:c1:a3:96:22:8d:4a: a6:6c:f7:b9:e8:46:eb:a4:b4:a5:f6:39:09:9c:37: 3b:a8:79:42:d4:2b:9c:2e:c0:da:71:97:9d:ec:7c: cb:53:b3:61:2e:22:d0:ba:bd:89:ca:c9:f2:ce:b0: a4:c4:0f:1e:09:01:80:90:dc:45:91:85:ed:44:fa: 3c:8e:0e:8e:3e:59:ca:52:ac:10:8d:e3:ce:fe:eb: b3:8e:23:53:8e:a5:30:a4:95:38:d5:e7:6f:09:6d: 87:ac:92:0e:25:24:c2:86:25:64:c1:18:1b:55:b1: f3:a8:69:17:07:0c:38:5f:2d:ef:76:8d:e6:8e:51: e7:f2:a8:b0:54:6f:3c:b0:e4:47:d8:26:65:41:14: 72:66:e3:d4:20:6a:5e:d9:7c:a1:b1:c7:e4:d6:32: 11:08:44:66:2f:01:43:87:40:51:6f:6d:d3:c2:e3: 06:0b:8d:c1:b7:6a:64:f1:bc:31:c0:00:fc:50:b4: 11:09:95:16:5b:4a:2d:e3:17:d5:5f:11:81:12:4d: dd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E2:0B:7E:FC:E6:EA:FB:EC:FC:F9:0C:BD:60:14:79:1C:B4:61:4D X509v3 Authority Key Identifier: keyid:7A:0B:64:CB:6F:18:A1:14:17:42:31:05:0B:01:79:93:1B:5E:48:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/egtky28YoRQXQjEFCwF5kxteSG0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/4039d9-a8b0-4654-a5c3-22ae542eb5df/1/egtky28YoRQXQjEFCwF5kxteSG0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:aa:16:79:6a:f4:0c:59:27:4d:5b:ed:b6:67:09:fa:23:55: 57:ac:35:ff:f6:cc:7e:12:8c:9f:27:5b:05:05:28:1e:97:2c: 7f:9d:c5:82:8c:f0:4a:dd:e7:5d:9f:f2:0c:15:cd:30:f7:bc: d4:9c:40:0b:a5:2b:3d:81:78:74:27:a1:70:48:ed:f2:08:10: 6f:b2:95:ef:3e:ac:51:28:82:ae:05:94:55:27:47:27:56:8b: 05:31:4a:17:44:f1:ae:61:98:3f:60:95:70:b4:77:71:8d:ed: 83:41:31:ec:af:48:41:40:a4:fb:ab:44:7e:9d:bf:4a:cf:91: 9e:0c:51:48:8c:22:8f:6a:ba:08:eb:52:96:40:e2:3c:f8:88: 58:90:15:0e:bb:a2:fa:b8:7a:1a:a3:a8:40:6a:ab:9e:e9:fc: bb:17:10:3a:44:7a:ff:46:c7:96:a1:9e:a5:95:e3:0b:29:7c: f2:77:66:93:bc:0b:a6:2b:7e:da:a5:66:80:5c:6d:f0:0c:c6: b3:35:64:4e:50:86:3a:4f:c5:56:60:72:d1:a7:a0:4f:81:6a: bf:d1:da:71:bc:ab:b5:59:32:b4:07:7b:b6:e9:ce:5c:76:e2: 23:5b:4a:5a:bf:10:03:b2:2a:6e:39:33:cc:1a:3d:a6:51:68: 45:37:25:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfia0Tt6wB3EDX29nz5ftMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMGI2NGNiNmYxOGExMTQxNzQyMzEwNTBiMDE3OTkzMWI1 ZTQ4NmQwHhcNMjYwMjA5MTMwMTI5WhcNMjYwMjEwMTMwMTI5WjAzMTEwLwYDVQQD Eyg4ZmUyMGI3ZWZjZTZlYWZiZWNmY2Y5MGNiZDYwMTQ3OTFjYjQ2MTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxmCFfhOKhpMzGPhf5CpTXSxz/nCE yqRDc8fkTZt5i2M+eDk5c1SKgT/r0tvStpNZjj3zFdnBo5YijUqmbPe56EbrpLSl 9jkJnDc7qHlC1CucLsDacZed7HzLU7NhLiLQur2JysnyzrCkxA8eCQGAkNxFkYXt RPo8jg6OPlnKUqwQjePO/uuzjiNTjqUwpJU41edvCW2HrJIOJSTChiVkwRgbVbHz qGkXBww4Xy3vdo3mjlHn8qiwVG88sORH2CZlQRRyZuPUIGpe2Xyhscfk1jIRCERm LwFDh0BRb23TwuMGC43Bt2pk8bwxwAD8ULQRCZUWW0ot4xfVXxGBEk3dFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI/iC3785ur77Pz5DL1gFHkctGFNMB8GA1UdIwQY MBaAFHoLZMtvGKEUF0IxBQsBeZMbXkhtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS80MDM5ZDktYThiMC00NjU0LWE1YzMt MjJhZTU0MmViNWRmLzEvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS80MDM5ZDktYThiMC00NjU0LWE1YzMtMjJhZTU0MmViNWRm LzEvZWd0a3kyOFlvUlFYUWpFRkN3RjVreHRlU0cwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF6oWeWr0 DFknTVvttmcJ+iNVV6w1//bMfhKMnydbBQUoHpcsf53FgozwSt3nXZ/yDBXNMPe8 1JxAC6UrPYF4dCehcEjt8ggQb7KV7z6sUSiCrgWUVSdHJ1aLBTFKF0TxrmGYP2CV cLR3cY3tg0Ex7K9IQUCk+6tEfp2/Ss+RngxRSIwij2q6COtSlkDiPPiIWJAVDrui +rh6GqOoQGqrnun8uxcQOkR6/0bHlqGepZXjCyl88ndmk7wLpit+2qVmgFxt8AzG szVkTlCGOk/FVmBy0aegT4Fqv9HacbyrtVkytAd7tunOXHbiI1tKWr8QA7Iqbjkz zBo9plFoRTclrA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:27 2026 by rpki-client