This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.mft File: 861SH4OIdIPIybDG895f1e1Whck.mft (raw, json) Hash identifier: ug2x/iP+o6sVmWDWYXjvRmUhIphezSEjjIIwL/L+Q70= Subject key identifier: CF:9F:1B:BF:A3:AB:DA:05:70:5E:92:F5:68:B1:65:00:13:56:6B:65 Authority key identifier: F3:AD:52:1F:83:88:74:83:C8:C9:B0:C6:F3:DE:5F:D5:ED:56:85:C9 Certificate issuer: /CN=f3ad521f83887483c8c9b0c6f3de5fd5ed5685c9 Certificate serial: 019C43230CFFB4F3A5B8F887BCB8E886075C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/861SH4OIdIPIybDG895f1e1Whck.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.mft Manifest number: 0D9A Signing time: Mon 09 Feb 2026 16:01:36 +0000 Manifest this update: Mon 09 Feb 2026 16:01:36 +0000 Manifest next update: Tue 10 Feb 2026 16:01:36 +0000 Files and hashes: 1: 861SH4OIdIPIybDG895f1e1Whck.crl (hash: /TKxH3O0UdODozmt6YI1BCLkzpZgWOtswokzUL2KzM4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.mft rsync://rpki.ripe.net/repository/DEFAULT/861SH4OIdIPIybDG895f1e1Whck.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:23:0c:ff:b4:f3:a5:b8:f8:87:bc:b8:e8:86:07:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f3ad521f83887483c8c9b0c6f3de5fd5ed5685c9 Validity Not Before: Feb 9 16:01:36 2026 GMT Not After : Feb 10 16:01:36 2026 GMT Subject: CN=cf9f1bbfa3abda05705e92f568b1650013566b65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:60:17:34:95:a7:da:78:58:25:a8:f3:fe:7b: 52:f9:61:3b:8d:b9:a4:64:8f:0f:d8:ba:42:53:b4: 42:93:8e:d0:00:83:8c:11:60:5f:72:aa:86:21:62: eb:26:61:e1:2e:38:ae:a1:8b:73:d2:72:1e:74:85: 64:7c:e6:58:cb:a4:f1:19:a2:d0:d1:3c:90:38:1b: fd:db:cc:f6:93:88:30:ee:39:d9:c9:c9:3f:b1:27: f8:9f:14:5f:22:f4:cd:ee:c4:cc:e6:3e:21:6e:f5: 8d:40:83:99:d1:f9:b5:c9:a3:c5:bc:19:91:54:ee: 5b:f3:05:40:e3:d7:a5:7a:22:7f:30:39:75:b2:2c: cf:00:69:60:ab:3c:3e:14:3e:58:f2:82:4f:37:44: fe:72:60:75:c2:98:a9:87:26:e9:af:b8:6c:f4:cd: 61:25:72:18:cc:46:3c:c3:e3:89:03:9d:88:ec:69: 8d:84:92:6d:6a:a6:67:72:0f:4e:c9:c3:d5:87:62: 14:96:a5:1e:56:9b:5c:a4:b4:94:e9:61:3e:fb:4d: 7c:3d:ee:78:de:5b:24:06:84:5b:54:f6:19:da:6d: da:4f:41:40:35:11:d7:f3:36:fd:30:15:9f:bd:b8: cb:aa:4c:80:36:45:e5:f5:3c:ae:d3:2b:fd:4c:32: 2d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:9F:1B:BF:A3:AB:DA:05:70:5E:92:F5:68:B1:65:00:13:56:6B:65 X509v3 Authority Key Identifier: keyid:F3:AD:52:1F:83:88:74:83:C8:C9:B0:C6:F3:DE:5F:D5:ED:56:85:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/861SH4OIdIPIybDG895f1e1Whck.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/cdd985-334c-4a0d-a7a8-75c0ccedf976/1/861SH4OIdIPIybDG895f1e1Whck.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:81:3c:c3:43:15:79:16:92:a9:9e:da:a5:13:3e:3b:68:ed: fc:50:2a:b5:f8:08:29:97:77:b0:53:3b:5a:86:06:5a:60:a3: 47:cc:22:95:10:b5:f4:61:89:a5:91:ea:25:c2:29:fc:e9:99: d4:e6:1c:bd:e5:3a:6b:9d:19:ca:ca:e2:eb:29:50:a7:6b:68: 28:46:b6:e4:1d:2f:01:3e:89:a1:39:08:12:75:4c:f0:cf:4c: f4:07:57:bb:e0:23:d5:02:0c:27:0d:4c:23:7a:93:fc:0b:9a: 62:48:3a:79:b4:c9:4e:aa:8c:ac:f7:b1:28:cf:00:d9:3d:84: 7a:dd:52:e2:bd:43:d4:27:70:0c:c5:36:48:ad:85:a4:7d:6a: 77:9e:b2:3f:ad:7e:36:72:f8:0f:1d:5f:ff:f0:b6:cc:01:b6: 92:b6:30:90:57:c3:3c:25:56:da:9b:26:da:cb:bc:ba:4d:2c: 99:3c:9d:96:5e:00:d5:5e:8d:41:4d:87:2f:d8:0e:5e:be:d1: 49:37:f3:51:13:bc:1c:76:ad:be:ec:1c:ab:f4:ba:f4:e1:93: e7:77:a3:a8:8e:1f:d3:14:23:b9:57:d5:eb:1a:3e:4b:f8:44: ef:34:a1:88:1c:5f:14:40:82:f6:a0:44:69:c2:3c:b1:a6:22: bc:d6:d6:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIwz/tPOluPiHvLjohgdcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzYWQ1MjFmODM4ODc0ODNjOGM5YjBjNmYzZGU1ZmQ1ZWQ1 Njg1YzkwHhcNMjYwMjA5MTYwMTM2WhcNMjYwMjEwMTYwMTM2WjAzMTEwLwYDVQQD EyhjZjlmMWJiZmEzYWJkYTA1NzA1ZTkyZjU2OGIxNjUwMDEzNTY2YjY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2AXNJWn2nhYJajz/ntS+WE7jbmk ZI8P2LpCU7RCk47QAIOMEWBfcqqGIWLrJmHhLjiuoYtz0nIedIVkfOZYy6TxGaLQ 0TyQOBv928z2k4gw7jnZyck/sSf4nxRfIvTN7sTM5j4hbvWNQIOZ0fm1yaPFvBmR VO5b8wVA49eleiJ/MDl1sizPAGlgqzw+FD5Y8oJPN0T+cmB1wpiphybpr7hs9M1h JXIYzEY8w+OJA52I7GmNhJJtaqZncg9OycPVh2IUlqUeVptcpLSU6WE++018Pe54 3lskBoRbVPYZ2m3aT0FANRHX8zb9MBWfvbjLqkyANkXl9Tyu0yv9TDItHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM+fG7+jq9oFcF6S9WixZQATVmtlMB8GA1UdIwQY MBaAFPOtUh+DiHSDyMmwxvPeX9XtVoXJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvODYxU0g0T0lkSVBJeWJERzg5NWYxZTFXaGNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9jZGQ5ODUtMzM0Yy00YTBkLWE3YTgt NzVjMGNjZWRmOTc2LzEvODYxU0g0T0lkSVBJeWJERzg5NWYxZTFXaGNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9jZGQ5ODUtMzM0Yy00YTBkLWE3YTgtNzVjMGNjZWRmOTc2 LzEvODYxU0g0T0lkSVBJeWJERzg5NWYxZTFXaGNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACoE8w0MV eRaSqZ7apRM+O2jt/FAqtfgIKZd3sFM7WoYGWmCjR8wilRC19GGJpZHqJcIp/OmZ 1OYcveU6a50Zysri6ylQp2toKEa25B0vAT6JoTkIEnVM8M9M9AdXu+Aj1QIMJw1M I3qT/AuaYkg6ebTJTqqMrPexKM8A2T2Eet1S4r1D1CdwDMU2SK2FpH1qd56yP61+ NnL4Dx1f//C2zAG2krYwkFfDPCVW2psm2su8uk0smTydll4A1V6NQU2HL9gOXr7R STfzURO8HHatvuwcq/S69OGT53ejqI4f0xQjuVfV6xo+S/hE7zShiBxfFECC9qBE acI8saYivNbWUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:51:58 2026 by rpki-client