This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft File: TgfHPboamfW7wV94xjkKqZwmmCQ.mft (raw, json) Hash identifier: 8tVSZMTugpuysvQbuHVXi/XFpSv3hmWcZNTE3CX6KwE= Subject key identifier: E6:3C:45:6D:E5:6A:0D:F4:C4:ED:52:EC:BB:69:99:10:25:F8:AB:BF Authority key identifier: 4E:07:C7:3D:BA:1A:99:F5:BB:C1:5F:78:C6:39:0A:A9:9C:26:98:24 Certificate issuer: /CN=4e07c73dba1a99f5bbc15f78c6390aa99c269824 Certificate serial: 019C4321F303EB46C475DCEE5513A671ED53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft Manifest number: 15D7 Signing time: Mon 09 Feb 2026 16:00:24 +0000 Manifest this update: Mon 09 Feb 2026 16:00:24 +0000 Manifest next update: Tue 10 Feb 2026 16:00:24 +0000 Files and hashes: 1: TgfHPboamfW7wV94xjkKqZwmmCQ.crl (hash: PTenlmgyEOWLG5WrhMLOrzoIBl6Iaf5HSB6vwTlTrc0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:f3:03:eb:46:c4:75:dc:ee:55:13:a6:71:ed:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e07c73dba1a99f5bbc15f78c6390aa99c269824 Validity Not Before: Feb 9 16:00:24 2026 GMT Not After : Feb 10 16:00:24 2026 GMT Subject: CN=e63c456de56a0df4c4ed52ecbb69991025f8abbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b4:65:9e:70:43:a5:ae:42:60:11:5e:71:e5: 48:47:d6:9b:3e:14:31:cb:a7:e0:29:28:01:63:c1: bd:37:67:9d:ac:60:0f:12:35:7f:f9:fb:b4:6d:fb: 77:4b:24:70:b7:3b:f9:02:cf:95:bf:89:3c:1a:54: e5:b4:63:20:9b:f0:fd:5c:3c:3b:72:66:78:05:88: b0:06:72:24:d2:ea:ea:66:d7:00:36:c0:8e:45:15: 7f:12:ac:b3:84:1f:88:cb:bf:61:eb:5d:fd:9b:55: e9:00:d3:3a:2c:23:59:5f:38:1d:72:01:2c:6c:f5: fb:3c:fa:24:03:e4:e7:1d:a3:4d:a4:29:55:1e:c9: 68:2f:bf:5a:b2:bf:18:14:f6:25:5a:20:28:f9:1f: 98:e4:0b:51:12:3c:45:29:84:54:fe:19:a4:28:cf: f8:eb:45:6a:8d:cd:5c:ab:16:95:32:67:a7:e0:44: 4c:ac:b6:ed:b5:77:50:0c:a2:de:4a:f6:12:4f:a9: 04:ba:b2:3c:65:c0:10:b9:b1:33:5e:dc:28:d0:f4: 7c:ee:a5:8b:f2:b5:5a:f1:01:88:37:15:95:3d:2a: 7c:73:ef:24:d0:1c:32:92:0a:74:a6:0c:b2:bc:a9: 18:21:f2:bf:6c:00:40:f7:35:04:91:6a:5f:7f:3e: df:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3C:45:6D:E5:6A:0D:F4:C4:ED:52:EC:BB:69:99:10:25:F8:AB:BF X509v3 Authority Key Identifier: keyid:4E:07:C7:3D:BA:1A:99:F5:BB:C1:5F:78:C6:39:0A:A9:9C:26:98:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TgfHPboamfW7wV94xjkKqZwmmCQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/1f1e7b-5907-48c1-90fd-5602712baa5b/1/TgfHPboamfW7wV94xjkKqZwmmCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:90:b6:c0:38:59:42:5f:43:a6:8f:40:d2:1e:7d:93:11:45: 88:18:16:0a:4a:5a:54:fe:41:52:7d:62:e3:b3:f7:aa:fa:22: 32:08:69:e4:54:5d:0a:9c:d2:97:15:e8:a8:a3:cf:a5:13:c8: 15:52:fb:65:80:40:a4:fa:1d:8d:bf:e7:1b:4f:24:5f:d0:4d: e2:8b:4d:eb:5a:e3:52:4a:9c:87:67:23:ea:dc:49:b7:20:c8: be:0c:8c:e1:e3:1e:4e:4a:83:ef:bc:b8:4e:78:a2:ad:45:38: ea:a3:e9:f0:fc:00:34:9b:e5:2c:da:a4:fe:5d:38:b0:a8:9e: d4:46:f4:9b:cf:d6:fb:7d:ed:d0:48:db:a7:b2:cb:4c:b4:1d: 6e:d0:ea:89:77:d4:e8:94:18:d4:d2:18:9f:da:22:d2:b2:d3: 9b:71:c3:c2:96:64:86:74:e9:56:53:4f:7e:99:67:c5:07:a6: a1:de:91:37:c0:d8:66:a9:40:5a:b7:f8:ae:93:67:fb:10:ad: b2:2d:48:07:31:2f:86:4e:1b:f1:de:63:78:c3:60:9e:c9:31: 9f:93:0f:da:d7:b4:47:2f:12:0f:16:73:21:fb:fd:60:dc:00: 78:b1:2a:1a:68:13:85:44:d0:72:58:ba:f1:51:04:7a:7c:6f: 36:ea:36:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIfMD60bEddzuVROmce1TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlMDdjNzNkYmExYTk5ZjViYmMxNWY3OGM2MzkwYWE5OWMy Njk4MjQwHhcNMjYwMjA5MTYwMDI0WhcNMjYwMjEwMTYwMDI0WjAzMTEwLwYDVQQD EyhlNjNjNDU2ZGU1NmEwZGY0YzRlZDUyZWNiYjY5OTkxMDI1ZjhhYmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7RlnnBDpa5CYBFeceVIR9abPhQx y6fgKSgBY8G9N2edrGAPEjV/+fu0bft3SyRwtzv5As+Vv4k8GlTltGMgm/D9XDw7 cmZ4BYiwBnIk0urqZtcANsCORRV/EqyzhB+Iy79h6139m1XpANM6LCNZXzgdcgEs bPX7PPokA+TnHaNNpClVHsloL79asr8YFPYlWiAo+R+Y5AtREjxFKYRU/hmkKM/4 60Vqjc1cqxaVMmen4ERMrLbttXdQDKLeSvYST6kEurI8ZcAQubEzXtwo0PR87qWL 8rVa8QGINxWVPSp8c+8k0Bwykgp0pgyyvKkYIfK/bABA9zUEkWpffz7ffQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOY8RW3lag30xO1S7LtpmRAl+Ku/MB8GA1UdIwQY MBaAFE4Hxz26Gpn1u8FfeMY5CqmcJpgkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGdmSFBib2FtZlc3d1Y5NHhqa0txWndtbUNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8xZjFlN2ItNTkwNy00OGMxLTkwZmQt NTYwMjcxMmJhYTViLzEvVGdmSFBib2FtZlc3d1Y5NHhqa0txWndtbUNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8xZjFlN2ItNTkwNy00OGMxLTkwZmQtNTYwMjcxMmJhYTVi LzEvVGdmSFBib2FtZlc3d1Y5NHhqa0txWndtbUNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVpC2wDhZ Ql9Dpo9A0h59kxFFiBgWCkpaVP5BUn1i47P3qvoiMghp5FRdCpzSlxXoqKPPpRPI FVL7ZYBApPodjb/nG08kX9BN4otN61rjUkqch2cj6txJtyDIvgyM4eMeTkqD77y4 TniirUU46qPp8PwANJvlLNqk/l04sKie1Eb0m8/W+33t0Ejbp7LLTLQdbtDqiXfU 6JQY1NIYn9oi0rLTm3HDwpZkhnTpVlNPfplnxQemod6RN8DYZqlAWrf4rpNn+xCt si1IBzEvhk4b8d5jeMNgnskxn5MP2te0Ry8SDxZzIfv9YNwAeLEqGmgThUTQcli6 8VEEenxvNuo2Uw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:10 2026 by rpki-client