This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft File: 25ebiYwPWDTLyDimmgXjq-jAKQM.mft (raw, json) Hash identifier: 1kL7QXc4W6eqBpH1ttWyU9oEpZV8mkRNp0OCRM6F77M= Subject key identifier: 63:E4:06:0B:68:60:A5:6E:77:9A:10:60:F7:79:8A:FE:E5:06:2E:87 Authority key identifier: DB:97:9B:89:8C:0F:58:34:CB:C8:38:A6:9A:05:E3:AB:E8:C0:29:03 Certificate issuer: /CN=db979b898c0f5834cbc838a69a05e3abe8c02903 Certificate serial: 019C41D885A664BBA7DD249C7602FDA4814D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft Manifest number: 0BA2 Signing time: Mon 09 Feb 2026 10:00:34 +0000 Manifest this update: Mon 09 Feb 2026 10:00:34 +0000 Manifest next update: Tue 10 Feb 2026 10:00:34 +0000 Files and hashes: 1: 25ebiYwPWDTLyDimmgXjq-jAKQM.crl (hash: HSiEkdItDaA7ktVtnIqhGPq+p3Z0S4aqtZ8R6XZydEI=) 2: FjKOaSffmodjULE60Uqyds_9UrY.roa (hash: Cvv1kQqsgheFH6HLElDwGFzdf6a+v+I+lfZ3+Gpg/Ko=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.crl rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:85:a6:64:bb:a7:dd:24:9c:76:02:fd:a4:81:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=db979b898c0f5834cbc838a69a05e3abe8c02903 Validity Not Before: Feb 9 10:00:34 2026 GMT Not After : Feb 10 10:00:34 2026 GMT Subject: CN=63e4060b6860a56e779a1060f7798afee5062e87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f8:f4:99:3e:22:3e:9a:d3:9c:a0:b1:9a:dd: 9f:78:da:83:82:5a:ce:c5:c5:cd:76:c5:1b:ce:c2: 7e:75:28:80:c1:55:da:46:02:67:61:00:0a:ba:db: c6:14:1e:a2:c9:d0:39:ca:4f:74:9d:5b:38:40:08: 63:84:ee:54:f8:e8:40:b5:5e:70:23:51:63:44:76: 75:64:82:2d:d9:61:4c:73:99:c8:d5:57:4d:84:23: 39:90:f5:c3:c6:b1:9e:76:2b:3c:c2:d8:92:55:41: 4f:af:44:e6:5c:e7:4a:a6:ed:1c:7e:10:e1:b7:dd: 4f:75:d6:ba:80:1f:23:47:e4:14:a4:eb:c2:df:d0: 06:51:e0:cc:fb:bb:cc:e8:25:fa:6a:0c:c4:15:c8: 4c:e6:09:9f:b1:6d:b2:91:2f:7d:8b:89:f7:ce:a6: 00:4f:7d:08:3e:94:7d:e8:b0:9f:98:a0:54:3d:5d: 4a:9f:6e:81:8e:29:6c:95:58:de:e1:0c:32:d2:8c: 3a:93:24:94:ee:fb:d6:63:4d:50:cb:c3:32:bd:05: 97:3c:ba:10:b6:22:f9:af:45:23:00:b1:01:78:fd: 7e:ff:8d:92:31:17:41:43:55:57:6f:f2:56:0f:80: 5b:14:1a:d1:0f:3a:d8:31:25:19:f8:d2:a7:72:0e: 0f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E4:06:0B:68:60:A5:6E:77:9A:10:60:F7:79:8A:FE:E5:06:2E:87 X509v3 Authority Key Identifier: keyid:DB:97:9B:89:8C:0F:58:34:CB:C8:38:A6:9A:05:E3:AB:E8:C0:29:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:49:1c:fd:d2:0f:aa:a0:83:1c:bf:eb:7c:d5:eb:88:24:6a: 33:e6:a5:e9:1c:86:b0:b5:4a:fe:67:2e:33:a0:25:90:1e:13: 9b:66:0f:cf:d9:fe:39:fe:a2:d2:2f:3c:3a:1d:80:5f:b5:4b: b2:1f:c2:6d:20:a4:e4:27:5b:4e:c5:a6:47:ae:df:b6:68:48: f2:ee:16:07:e9:31:6d:f1:55:24:d4:af:ca:9c:dc:1a:b7:82: 93:16:88:35:33:4d:5b:cb:29:e6:ac:ed:18:d3:d1:68:f6:31: 82:db:5b:a8:6e:09:d9:52:10:03:07:ec:46:e3:76:9b:8b:05: a1:f5:c9:bf:6a:5f:54:6a:68:c6:55:af:13:3e:4d:83:3c:2e: 31:73:8d:2f:85:07:31:ef:5b:15:41:38:59:66:5f:80:af:24: e1:ce:5c:c3:dc:92:f7:de:18:ac:13:f9:75:5e:0e:87:2d:07: 6b:48:a4:c0:e4:61:6a:69:da:a4:af:b2:c2:99:3f:63:ce:46: 76:13:71:ad:c4:d1:41:01:d0:3f:17:a0:b4:15:ef:55:32:87: 85:5c:47:e8:85:0d:0e:48:2f:6a:5d:25:28:50:5e:e5:d6:bf: 5d:74:51:0f:cc:54:65:b5:8e:94:57:4e:7a:19:21:fe:fa:4a: 6e:0e:cc:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2IWmZLun3SScdgL9pIFNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiOTc5Yjg5OGMwZjU4MzRjYmM4MzhhNjlhMDVlM2FiZThj MDI5MDMwHhcNMjYwMjA5MTAwMDM0WhcNMjYwMjEwMTAwMDM0WjAzMTEwLwYDVQQD Eyg2M2U0MDYwYjY4NjBhNTZlNzc5YTEwNjBmNzc5OGFmZWU1MDYyZTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0fj0mT4iPprTnKCxmt2feNqDglrO xcXNdsUbzsJ+dSiAwVXaRgJnYQAKutvGFB6iydA5yk90nVs4QAhjhO5U+OhAtV5w I1FjRHZ1ZIIt2WFMc5nI1VdNhCM5kPXDxrGedis8wtiSVUFPr0TmXOdKpu0cfhDh t91Pdda6gB8jR+QUpOvC39AGUeDM+7vM6CX6agzEFchM5gmfsW2ykS99i4n3zqYA T30IPpR96LCfmKBUPV1Kn26BjilslVje4Qwy0ow6kySU7vvWY01Qy8MyvQWXPLoQ tiL5r0UjALEBeP1+/42SMRdBQ1VXb/JWD4BbFBrRDzrYMSUZ+NKncg4P4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGPkBgtoYKVud5oQYPd5iv7lBi6HMB8GA1UdIwQY MBaAFNuXm4mMD1g0y8g4ppoF46vowCkDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjVlYmlZd1BXRFRMeURpbW1nWGpxLWpBS1FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9kNWZkZTYtMTk1MS00N2I4LWEzMjUt NGNiMjU3ZWUxOTJjLzEvMjVlYmlZd1BXRFRMeURpbW1nWGpxLWpBS1FNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS9kNWZkZTYtMTk1MS00N2I4LWEzMjUtNGNiMjU3ZWUxOTJj LzEvMjVlYmlZd1BXRFRMeURpbW1nWGpxLWpBS1FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkkkc/dIP qqCDHL/rfNXriCRqM+al6RyGsLVK/mcuM6AlkB4Tm2YPz9n+Of6i0i88Oh2AX7VL sh/CbSCk5CdbTsWmR67ftmhI8u4WB+kxbfFVJNSvypzcGreCkxaINTNNW8sp5qzt GNPRaPYxgttbqG4J2VIQAwfsRuN2m4sFofXJv2pfVGpoxlWvEz5NgzwuMXONL4UH Me9bFUE4WWZfgK8k4c5cw9yS994YrBP5dV4Ohy0Ha0ikwORhamnapK+ywpk/Y85G dhNxrcTRQQHQPxegtBXvVTKHhVxH6IUNDkgval0lKFBe5da/XXRRD8xUZbWOlFdO ehkh/vpKbg7M1A== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:30 2026 by rpki-client