This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft File: tZXiFxdovJspQknw46U1kBecUu4.mft (raw, json) Hash identifier: ptKFVboaglJT32VmP0w5MR3SUau4GvnuUokm9dB14qM= Subject key identifier: D8:8E:E4:07:3A:81:EE:35:1E:0A:27:60:11:D9:20:70:46:01:E8:E7 Authority key identifier: B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE Certificate issuer: /CN=b595e2171768bc9b294249f0e3a53590179c52ee Certificate serial: 019C43221C8ABAD8A81BE44F4B0D80D6B477 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 16:00:34 +0000 Manifest this update: Mon 09 Feb 2026 16:00:34 +0000 Manifest next update: Tue 10 Feb 2026 16:00:34 +0000 Files and hashes: 1: tZXiFxdovJspQknw46U1kBecUu4.crl (hash: kY1hSSXMuWLbtwHnFSLbzZcjPflX3aoQqQT5xx/z/hg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:1c:8a:ba:d8:a8:1b:e4:4f:4b:0d:80:d6:b4:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b595e2171768bc9b294249f0e3a53590179c52ee Validity Not Before: Feb 9 16:00:34 2026 GMT Not After : Feb 10 16:00:34 2026 GMT Subject: CN=d88ee4073a81ee351e0a276011d920704601e8e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:4f:1d:02:25:3d:1a:2f:0a:48:27:88:0c:43: 69:4a:99:b4:cf:22:d0:86:5a:44:7f:91:4e:a2:11: de:e2:1e:9c:d2:d7:33:e0:93:65:81:d5:85:7a:f3: d2:8a:8e:0b:d3:1a:9a:66:aa:58:62:5a:b9:f7:77: ad:e6:c1:fc:4d:8f:2c:a8:b2:eb:56:26:16:8b:4a: 13:97:05:c4:ca:f3:ae:ad:2d:9c:09:4b:3e:58:79: 6b:dd:ab:37:3e:85:ec:b1:15:43:88:b9:55:1e:3a: 1c:38:76:a2:d2:47:3c:6c:09:fc:12:6f:d4:b4:bb: 31:13:df:cb:2d:65:ec:ee:ea:c1:0c:b5:de:83:2d: d0:c3:59:e9:5a:f9:ad:a6:5a:6b:50:be:2f:d7:d7: 92:d8:86:b9:ee:eb:41:6c:c3:98:cc:75:f4:db:5b: 4e:51:b6:cf:cf:a2:e4:32:d9:08:91:e9:af:57:ef: 36:72:58:64:3a:30:d3:bc:2a:fd:04:57:6b:b7:d6: e0:10:ba:6e:59:cc:0e:a6:d5:85:a5:8c:3f:4f:b1: 40:f5:81:c6:b4:47:2a:20:dc:46:c6:46:db:7d:33: 47:c4:5a:23:21:5e:92:1c:36:ab:e9:90:85:83:64: cb:44:b2:0c:7f:6f:d0:0e:3b:62:28:56:9e:0c:83: 02:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8E:E4:07:3A:81:EE:35:1E:0A:27:60:11:D9:20:70:46:01:E8:E7 X509v3 Authority Key Identifier: keyid:B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:27:b2:4b:c9:71:0e:a1:a3:a2:5e:78:7c:62:30:eb:af:1b: 6f:80:75:24:fd:37:36:b4:fe:a4:95:cf:fe:8f:45:5d:97:43: f2:72:f9:56:b2:6b:37:fb:75:05:b7:82:d5:9b:52:95:13:28: 90:4a:9c:9b:62:c2:bf:3e:7c:45:3f:3e:d3:b5:28:25:64:5e: 7f:31:f1:c3:d5:2e:63:b8:1a:d2:6c:19:0a:fc:99:57:c0:7d: 7b:d8:e5:43:76:84:01:2d:02:18:f0:9b:02:8f:23:b5:86:8f: d4:51:fd:ef:7a:ee:aa:a8:68:3f:ba:e8:d7:34:ac:dc:2d:7a: f2:e1:27:84:de:2b:71:53:95:e0:4f:38:71:35:c9:df:70:96: a4:89:14:d3:d9:81:90:a5:05:c9:29:c7:99:5a:66:1d:f6:56: d9:b2:df:aa:17:b3:1c:04:d5:34:f2:13:ea:c8:e9:fc:35:69: f4:4a:0a:19:c0:1a:6f:f0:e5:41:57:77:ac:23:52:a8:e1:4a: 99:bc:96:d5:21:13:46:e7:c2:d2:55:63:51:37:8e:23:43:35: c7:4f:65:77:d5:af:8f:16:46:aa:b7:f8:b1:3d:0f:06:88:3a: 30:ce:13:5a:60:9c:b2:15:2a:e0:56:d9:dc:83:b5:6f:3f:44: f5:d8:77:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIhyKutioG+RPSw2A1rR3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1OTVlMjE3MTc2OGJjOWIyOTQyNDlmMGUzYTUzNTkwMTc5 YzUyZWUwHhcNMjYwMjA5MTYwMDM0WhcNMjYwMjEwMTYwMDM0WjAzMTEwLwYDVQQD EyhkODhlZTQwNzNhODFlZTM1MWUwYTI3NjAxMWQ5MjA3MDQ2MDFlOGU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhE8dAiU9Gi8KSCeIDENpSpm0zyLQ hlpEf5FOohHe4h6c0tcz4JNlgdWFevPSio4L0xqaZqpYYlq593et5sH8TY8sqLLr ViYWi0oTlwXEyvOurS2cCUs+WHlr3as3PoXssRVDiLlVHjocOHai0kc8bAn8Em/U tLsxE9/LLWXs7urBDLXegy3Qw1npWvmtplprUL4v19eS2Ia57utBbMOYzHX021tO UbbPz6LkMtkIkemvV+82clhkOjDTvCr9BFdrt9bgELpuWcwOptWFpYw/T7FA9YHG tEcqINxGxkbbfTNHxFojIV6SHDar6ZCFg2TLRLIMf2/QDjtiKFaeDIMCWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNiO5Ac6ge41HgonYBHZIHBGAejnMB8GA1UdIwQY MBaAFLWV4hcXaLybKUJJ8OOlNZAXnFLuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFpYaUZ4ZG92SnNwUWtudzQ2VTFrQmVjVXU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9hMzRmYjktZjY0ZS00MjkxLTkyOTEt NjBiNGFjZTAwNGI1LzEvdFpYaUZ4ZG92SnNwUWtudzQ2VTFrQmVjVXU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC9hMzRmYjktZjY0ZS00MjkxLTkyOTEtNjBiNGFjZTAwNGI1 LzEvdFpYaUZ4ZG92SnNwUWtudzQ2VTFrQmVjVXU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbCeyS8lx DqGjol54fGIw668bb4B1JP03NrT+pJXP/o9FXZdD8nL5VrJrN/t1BbeC1ZtSlRMo kEqcm2LCvz58RT8+07UoJWRefzHxw9UuY7ga0mwZCvyZV8B9e9jlQ3aEAS0CGPCb Ao8jtYaP1FH973ruqqhoP7ro1zSs3C168uEnhN4rcVOV4E84cTXJ33CWpIkU09mB kKUFySnHmVpmHfZW2bLfqhezHATVNPIT6sjp/DVp9EoKGcAab/DlQVd3rCNSqOFK mbyW1SETRufC0lVjUTeOI0M1x09ld9WvjxZGqrf4sT0PBog6MM4TWmCcshUq4FbZ 3IO1bz9E9dh3JQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:01:27 2026 by rpki-client