This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft File: TnzINx7SS6z2esqLkCzucGr8Yks.mft (raw, json) Hash identifier: WNvNXy/eNmzTENCIkGjXnWLyoKdguQmp0tMt4vdxpOQ= Subject key identifier: 78:84:DA:FF:8F:35:A6:65:66:C3:00:C5:5F:C8:D9:BD:A0:6C:02:6C Authority key identifier: 4E:7C:C8:37:1E:D2:4B:AC:F6:7A:CA:8B:90:2C:EE:70:6A:FC:62:4B Certificate issuer: /CN=4e7cc8371ed24bacf67aca8b902cee706afc624b Certificate serial: 019C41D842803221105CB3CD3CD1774E2F69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 10:00:17 +0000 Manifest this update: Mon 09 Feb 2026 10:00:17 +0000 Manifest next update: Tue 10 Feb 2026 10:00:17 +0000 Files and hashes: 1: TnzINx7SS6z2esqLkCzucGr8Yks.crl (hash: quJR8bcslOXjWiVkomKYh8VxkL+GEqa9L3KMzFiir5A=) 2: wlxifpAvi3KnZGmbDR-ny66_Gks.roa (hash: T7gVPusKxBgkDKZBte1yrg8sQCBMVaEOfioHHj0VULo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:42:80:32:21:10:5c:b3:cd:3c:d1:77:4e:2f:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e7cc8371ed24bacf67aca8b902cee706afc624b Validity Not Before: Feb 9 10:00:17 2026 GMT Not After : Feb 10 10:00:17 2026 GMT Subject: CN=7884daff8f35a66566c300c55fc8d9bda06c026c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ed:c7:73:95:0d:53:cd:24:84:d5:22:e7:d9: ec:42:fb:6d:4e:73:a0:ca:52:5e:df:56:0c:2b:d0: 6e:27:69:4d:7a:c3:1d:13:53:8e:fa:8e:63:cd:b5: 81:58:1a:5e:aa:4e:06:d5:22:be:f1:be:78:1c:7f: f4:ac:89:8a:d9:b6:35:ab:36:3a:77:06:40:99:ea: cd:ef:8d:1a:b8:f1:12:aa:24:76:c2:31:e1:38:20: 01:d8:be:8c:70:49:85:4f:c1:74:ed:43:d3:05:ce: 29:91:10:a1:3b:a1:91:5c:4b:c1:2a:a7:d8:37:27: b5:14:87:8a:32:5c:68:5b:09:28:d4:d2:40:ce:3b: 67:50:9d:25:94:b6:06:9d:63:61:cd:b8:b4:67:9e: a0:97:2e:c2:7a:96:6e:17:b9:d8:f7:3d:de:96:dc: 28:6b:9f:28:ca:9b:c2:17:70:45:f1:e3:03:2d:90: 64:c8:1e:19:2d:1a:ae:ba:e1:56:bf:fb:d9:90:c8: dc:39:5b:3b:af:37:5a:13:12:8e:5f:6f:71:c8:9b: 0f:44:3d:44:e9:36:e6:9e:6d:46:dc:27:4f:5e:58: ac:36:8a:7c:33:18:71:c8:3e:37:c4:fb:42:bd:b3: 0a:4b:3e:65:7f:c3:e0:95:25:e7:77:ce:1f:0d:83: 6a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:84:DA:FF:8F:35:A6:65:66:C3:00:C5:5F:C8:D9:BD:A0:6C:02:6C X509v3 Authority Key Identifier: keyid:4E:7C:C8:37:1E:D2:4B:AC:F6:7A:CA:8B:90:2C:EE:70:6A:FC:62:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:22:ee:f7:b7:6b:08:7f:28:91:49:47:85:0d:4d:88:2d:63: ea:ae:88:8f:3f:9b:bd:97:e3:e1:02:f8:b7:8a:30:da:52:82: ca:ca:d6:1c:7b:a5:f6:22:ce:bc:3f:a7:54:29:09:eb:c5:e4: 22:0e:36:c6:ea:fc:bb:7f:e5:1a:5c:a6:ea:64:c2:c5:3c:55: da:bb:ca:05:2a:d6:87:34:03:28:d6:71:15:0f:5d:32:40:46: ba:88:44:c0:ba:88:a8:60:97:f1:65:da:29:ec:3b:4d:cf:04: ce:6d:81:8d:71:44:72:1a:74:56:89:1c:ca:da:6a:17:39:86: 80:c9:54:5a:1b:28:f6:41:03:a1:a2:49:0f:b2:f3:43:3b:ee: 81:92:26:3a:60:2a:1f:d8:c6:38:1e:16:73:5d:02:d2:1d:95: a6:d0:bc:9a:e9:e2:c0:26:1a:00:dc:fd:c0:15:24:80:1d:4f: 8c:23:cb:77:f4:93:cc:bb:62:8e:30:3d:c5:5e:92:d2:c3:07: 2e:41:69:b4:4c:7b:da:5b:96:17:4e:9d:2a:a0:65:4b:70:30: 38:4e:95:16:13:cf:b6:5c:4b:84:15:b8:3a:f7:cc:b5:10:0f: b1:56:f9:d1:4e:2d:36:4b:34:7c:6c:b8:13:a0:c1:e5:ea:7c: 11:80:dd:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2EKAMiEQXLPNPNF3Ti9pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlN2NjODM3MWVkMjRiYWNmNjdhY2E4YjkwMmNlZTcwNmFm YzYyNGIwHhcNMjYwMjA5MTAwMDE3WhcNMjYwMjEwMTAwMDE3WjAzMTEwLwYDVQQD Eyg3ODg0ZGFmZjhmMzVhNjY1NjZjMzAwYzU1ZmM4ZDliZGEwNmMwMjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqe3Hc5UNU80khNUi59nsQvttTnOg ylJe31YMK9BuJ2lNesMdE1OO+o5jzbWBWBpeqk4G1SK+8b54HH/0rImK2bY1qzY6 dwZAmerN740auPESqiR2wjHhOCAB2L6McEmFT8F07UPTBc4pkRChO6GRXEvBKqfY Nye1FIeKMlxoWwko1NJAzjtnUJ0llLYGnWNhzbi0Z56gly7CepZuF7nY9z3eltwo a58oypvCF3BF8eMDLZBkyB4ZLRquuuFWv/vZkMjcOVs7rzdaExKOX29xyJsPRD1E 6Tbmnm1G3CdPXlisNop8MxhxyD43xPtCvbMKSz5lf8PglSXnd84fDYNqQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHiE2v+PNaZlZsMAxV/I2b2gbAJsMB8GA1UdIwQY MBaAFE58yDce0kus9nrKi5As7nBq/GJLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVG56SU54N1NTNnoyZXNxTGtDenVjR3I4WWtzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8wYjRjZGYtYjQ4Ni00YTU4LTgwMGQt OGVkNWE3OWRlODM1LzEvVG56SU54N1NTNnoyZXNxTGtDenVjR3I4WWtzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8wYjRjZGYtYjQ4Ni00YTU4LTgwMGQtOGVkNWE3OWRlODM1 LzEvVG56SU54N1NTNnoyZXNxTGtDenVjR3I4WWtzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiiLu97dr CH8okUlHhQ1NiC1j6q6Ijz+bvZfj4QL4t4ow2lKCysrWHHul9iLOvD+nVCkJ68Xk Ig42xur8u3/lGlym6mTCxTxV2rvKBSrWhzQDKNZxFQ9dMkBGuohEwLqIqGCX8WXa Kew7Tc8Ezm2BjXFEchp0VokcytpqFzmGgMlUWhso9kEDoaJJD7LzQzvugZImOmAq H9jGOB4Wc10C0h2VptC8muniwCYaANz9wBUkgB1PjCPLd/STzLtijjA9xV6S0sMH LkFptEx72luWF06dKqBlS3AwOE6VFhPPtlxLhBW4OvfMtRAPsVb50U4tNks0fGy4 E6DB5ep8EYDdjw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:55 2026 by rpki-client