This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft File: _4MmzOvF_DL70ONP7n85u6iPuaI.mft (raw, json) Hash identifier: 8j+6Ij8YqvgeRR9IQw9QG58eqzpMZUf0hWzhw7wfSlI= Subject key identifier: B1:AA:89:93:F5:19:F1:EF:D0:05:A6:70:AA:27:B7:29:23:BD:92:03 Authority key identifier: FF:83:26:CC:EB:C5:FC:32:FB:D0:E3:4F:EE:7F:39:BB:A8:8F:B9:A2 Certificate issuer: /CN=ff8326ccebc5fc32fbd0e34fee7f39bba88fb9a2 Certificate serial: 019C43FE0BFEE7AA506CAD68DF228F55B617 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4MmzOvF_DL70ONP7n85u6iPuaI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft Manifest number: 1390 Signing time: Mon 09 Feb 2026 20:00:48 +0000 Manifest this update: Mon 09 Feb 2026 20:00:48 +0000 Manifest next update: Tue 10 Feb 2026 20:00:48 +0000 Files and hashes: 1: _4MmzOvF_DL70ONP7n85u6iPuaI.crl (hash: U7cU+lG/j1D9q8Y5vndzDJtJiUmDRQ7Aj0ioWQzshh8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.crl rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft rsync://rpki.ripe.net/repository/DEFAULT/_4MmzOvF_DL70ONP7n85u6iPuaI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:0b:fe:e7:aa:50:6c:ad:68:df:22:8f:55:b6:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff8326ccebc5fc32fbd0e34fee7f39bba88fb9a2 Validity Not Before: Feb 9 20:00:48 2026 GMT Not After : Feb 10 20:00:48 2026 GMT Subject: CN=b1aa8993f519f1efd005a670aa27b72923bd9203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f1:89:05:78:22:d9:09:1c:f3:9e:81:20:63: e7:1d:d6:ea:01:57:a9:44:ea:1d:02:ef:f5:96:77: f4:e2:fd:93:5e:13:35:6e:5d:e2:dc:2b:e1:7b:59: 49:3e:b3:1f:a1:59:af:24:82:8c:94:e5:d7:4c:d5: 3d:5e:2a:90:f6:45:d6:50:09:0b:83:84:45:8f:80: d2:04:25:5b:4d:fb:30:da:1f:d9:2f:eb:38:6b:31: 66:b2:4e:ad:af:92:83:de:6e:32:5a:e6:f0:a9:b8: fb:3c:d5:0b:ee:c3:85:b9:1a:67:2f:86:7b:6c:d2: 02:19:9f:7d:fd:3c:32:66:83:2d:46:9b:2e:91:8f: e3:2c:7b:dd:04:e4:26:fe:39:8b:15:55:16:de:9c: 3e:cb:6f:2c:c5:f0:7a:d5:c3:32:03:9e:ad:a8:7a: 4d:8c:2d:b6:fd:4a:61:97:b9:9e:f1:8e:17:a2:83: 0e:13:d1:eb:42:21:13:41:3e:df:30:3a:4b:dd:71: 79:3a:bb:c6:fb:cd:ae:c3:5d:97:45:97:35:43:cc: 99:9a:02:e5:58:05:f6:f2:4a:b3:eb:b3:0d:f9:54: 42:c2:98:4f:45:81:c8:de:89:28:b3:3e:a9:b8:59: 88:3c:fb:68:60:cf:68:10:f8:ef:a3:38:53:9d:ef: f5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:AA:89:93:F5:19:F1:EF:D0:05:A6:70:AA:27:B7:29:23:BD:92:03 X509v3 Authority Key Identifier: keyid:FF:83:26:CC:EB:C5:FC:32:FB:D0:E3:4F:EE:7F:39:BB:A8:8F:B9:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4MmzOvF_DL70ONP7n85u6iPuaI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:34:b8:ee:ca:3e:3b:d1:1c:f7:ca:16:67:0b:14:e8:5d:57: 9d:f4:32:68:06:0f:ad:12:82:68:d2:4f:b5:da:5a:32:3c:26: 88:43:51:5e:03:2a:1a:a2:9d:17:22:f9:18:93:79:78:93:8b: c5:27:cb:88:bb:54:99:3c:33:b0:e1:03:cc:b8:6b:87:21:cf: b2:bc:f1:57:fd:ac:2d:db:07:a2:ec:2a:d4:57:52:6e:e9:a0: 2a:58:c0:ba:c9:2a:cb:62:0d:bf:75:3b:25:8b:4b:35:7e:7c: e1:29:da:f9:52:f9:fb:62:3f:48:58:92:7f:54:98:2a:ff:55: 06:6c:3a:4c:bd:ea:a5:2e:f1:2b:d3:b0:b6:8c:9f:d0:b3:7f: bf:c2:a5:f0:a1:be:34:4f:90:51:9f:80:3c:e7:d4:18:05:2e: b9:d8:bd:f5:69:c2:85:cf:6f:d9:7f:92:07:ec:37:2d:e4:51: 93:c8:9b:8f:1c:57:5a:76:37:c3:81:f0:db:de:b0:a7:dd:36: bd:9c:b9:97:df:b4:42:f7:65:46:93:26:72:2c:9a:c9:10:bb: 88:2e:47:9a:92:64:93:18:e1:4b:21:6f:e7:14:fa:1b:b7:06: f0:4e:d0:0e:bf:6e:e7:a1:b8:3a:63:af:48:23:51:04:70:ba: 20:8d:dd:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/gv+56pQbK1o3yKPVbYXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmODMyNmNjZWJjNWZjMzJmYmQwZTM0ZmVlN2YzOWJiYTg4 ZmI5YTIwHhcNMjYwMjA5MjAwMDQ4WhcNMjYwMjEwMjAwMDQ4WjAzMTEwLwYDVQQD EyhiMWFhODk5M2Y1MTlmMWVmZDAwNWE2NzBhYTI3YjcyOTIzYmQ5MjAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuvGJBXgi2Qkc856BIGPnHdbqAVep ROodAu/1lnf04v2TXhM1bl3i3Cvhe1lJPrMfoVmvJIKMlOXXTNU9XiqQ9kXWUAkL g4RFj4DSBCVbTfsw2h/ZL+s4azFmsk6tr5KD3m4yWubwqbj7PNUL7sOFuRpnL4Z7 bNICGZ99/TwyZoMtRpsukY/jLHvdBOQm/jmLFVUW3pw+y28sxfB61cMyA56tqHpN jC22/Uphl7me8Y4XooMOE9HrQiETQT7fMDpL3XF5OrvG+82uw12XRZc1Q8yZmgLl WAX28kqz67MN+VRCwphPRYHI3okosz6puFmIPPtoYM9oEPjvozhTne/1/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLGqiZP1GfHv0AWmcKontykjvZIDMB8GA1UdIwQY MBaAFP+DJszrxfwy+9DjT+5/Obuoj7miMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzRNbXpPdkZfREw3ME9OUDduODV1NmlQdWFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS82ZjViNmEtZjRiYi00ZmRlLThhNTEt OGIxMzQ0YjdkNWE2LzEvXzRNbXpPdkZfREw3ME9OUDduODV1NmlQdWFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS82ZjViNmEtZjRiYi00ZmRlLThhNTEtOGIxMzQ0YjdkNWE2 LzEvXzRNbXpPdkZfREw3ME9OUDduODV1NmlQdWFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgzS47so+ O9Ec98oWZwsU6F1XnfQyaAYPrRKCaNJPtdpaMjwmiENRXgMqGqKdFyL5GJN5eJOL xSfLiLtUmTwzsOEDzLhrhyHPsrzxV/2sLdsHouwq1FdSbumgKljAuskqy2INv3U7 JYtLNX584Sna+VL5+2I/SFiSf1SYKv9VBmw6TL3qpS7xK9Owtoyf0LN/v8Kl8KG+ NE+QUZ+APOfUGAUuudi99WnChc9v2X+SB+w3LeRRk8ibjxxXWnY3w4Hw296wp902 vZy5l9+0QvdlRpMmciyayRC7iC5HmpJkkxjhSyFv5xT6G7cG8E7QDr9u56G4OmOv SCNRBHC6II3dVw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:42 2026 by rpki-client