This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft File: Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft (raw, json) Hash identifier: WaslCFc2u4eovm+dhboYLKfQ2uJKtBbZSNjmsrlGKtw= Subject key identifier: 24:B4:80:7B:31:42:FC:FB:E2:62:03:07:50:17:7D:2F:BF:1B:BD:77 Authority key identifier: 46:7A:38:81:12:E6:8F:4C:7D:4D:80:C3:2D:37:CF:CD:6C:D2:3A:45 Certificate issuer: /CN=467a388112e68f4c7d4d80c32d37cfcd6cd23a45 Certificate serial: 019C43C732E2BDF3379B282FB54A84A1E236 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rno4gRLmj0x9TYDDLTfPzWzSOkU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft Manifest number: 14CD Signing time: Mon 09 Feb 2026 19:00:53 +0000 Manifest this update: Mon 09 Feb 2026 19:00:53 +0000 Manifest next update: Tue 10 Feb 2026 19:00:53 +0000 Files and hashes: 1: Rno4gRLmj0x9TYDDLTfPzWzSOkU.crl (hash: 2V63fydbStMi7Meqr4o3P1XCzAHDrg6bm2pi87qg1UY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.crl rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft rsync://rpki.ripe.net/repository/DEFAULT/Rno4gRLmj0x9TYDDLTfPzWzSOkU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:32:e2:bd:f3:37:9b:28:2f:b5:4a:84:a1:e2:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=467a388112e68f4c7d4d80c32d37cfcd6cd23a45 Validity Not Before: Feb 9 19:00:53 2026 GMT Not After : Feb 10 19:00:53 2026 GMT Subject: CN=24b4807b3142fcfbe262030750177d2fbf1bbd77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a6:33:8b:96:e8:c4:5c:3a:0b:76:60:a6:b5: 48:6e:bd:01:11:4b:85:c9:ad:54:18:2c:50:29:66: d3:37:0f:c5:44:e7:52:a7:be:83:ab:70:66:b6:d1: 5c:31:26:72:57:c7:25:07:92:96:0e:e1:0b:49:c3: fe:55:55:f8:b8:d1:99:55:d2:6e:22:fc:73:d3:9f: 71:be:85:08:4e:1b:d4:e5:89:cd:2a:8c:90:cf:ef: 20:46:81:12:3b:c3:ad:ee:8b:b0:7a:38:f3:3d:73: 3c:42:16:59:eb:b4:70:e4:c1:53:7a:90:55:de:2f: 14:38:70:6b:ba:2c:16:0a:26:2c:d6:83:7e:2f:cb: 4f:4d:70:3c:bb:5d:3b:aa:a7:db:fa:42:71:5e:fd: 61:0a:17:c1:71:68:fb:37:26:24:61:a9:c3:d8:3c: 54:3b:a8:52:60:06:f8:6d:74:d5:a3:88:4d:b1:41: ae:78:83:bf:d0:c0:5f:ee:8b:ea:82:6e:fa:67:56: 7b:dc:f2:6e:f6:2d:29:8d:24:08:83:e2:1a:df:37: 5a:f8:c1:8a:40:ed:2d:72:86:8e:95:cb:57:e5:d0: 3d:1d:be:b2:8a:5c:bc:a4:2f:6e:80:3e:68:6d:06: 57:36:34:79:67:86:e8:4c:6d:ee:36:b4:e1:9a:05: a6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B4:80:7B:31:42:FC:FB:E2:62:03:07:50:17:7D:2F:BF:1B:BD:77 X509v3 Authority Key Identifier: keyid:46:7A:38:81:12:E6:8F:4C:7D:4D:80:C3:2D:37:CF:CD:6C:D2:3A:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rno4gRLmj0x9TYDDLTfPzWzSOkU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/1d7727-a4de-4ae8-b6c5-c71845a01749/1/Rno4gRLmj0x9TYDDLTfPzWzSOkU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:c2:ff:4b:bf:bc:d0:44:96:76:e4:c5:8d:5d:76:cd:11:a7: 5e:5b:fb:f3:23:38:94:98:5c:44:32:89:2e:8c:58:c9:64:60: 4b:0b:56:43:c2:2a:4d:2d:29:af:31:32:6a:e1:16:5b:c8:3c: 72:bf:de:59:76:55:f7:88:02:c7:c6:00:2f:03:57:d3:18:21: b5:26:34:c1:02:97:9e:1d:69:24:2f:c0:a5:35:8b:20:07:42: a0:e1:f1:f4:59:75:06:d9:ae:c1:96:98:b8:d1:5d:c9:7f:63: 6d:74:98:3b:37:87:55:c5:0b:ae:03:c4:61:3a:4b:d4:37:a2: 80:f8:e7:97:e9:5e:71:a1:5e:c4:51:a3:1d:71:e5:76:d7:e0: 74:14:f2:ec:ed:e4:91:04:de:f4:ed:09:9e:48:7b:56:24:2f: fd:a8:ff:ae:2f:d0:3c:ff:5a:73:14:fa:e0:99:0b:7c:ba:2d: 54:88:fc:8e:7b:2e:56:37:83:d0:54:32:bf:6d:4d:99:26:e2: 1e:06:1b:6a:f8:6c:db:54:9b:d6:f5:45:a6:33:c1:97:3a:d3: 3a:5d:2d:b6:b8:72:33:62:0e:38:67:ae:9e:64:49:1a:a3:ac: fe:23:ec:92:93:20:d8:7f:7b:7b:5c:6a:a3:2a:d3:04:48:11: ee:75:12:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxzLivfM3mygvtUqEoeI2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2N2EzODgxMTJlNjhmNGM3ZDRkODBjMzJkMzdjZmNkNmNk MjNhNDUwHhcNMjYwMjA5MTkwMDUzWhcNMjYwMjEwMTkwMDUzWjAzMTEwLwYDVQQD EygyNGI0ODA3YjMxNDJmY2ZiZTI2MjAzMDc1MDE3N2QyZmJmMWJiZDc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqYzi5boxFw6C3ZgprVIbr0BEUuF ya1UGCxQKWbTNw/FROdSp76Dq3BmttFcMSZyV8clB5KWDuELScP+VVX4uNGZVdJu Ivxz059xvoUIThvU5YnNKoyQz+8gRoESO8Ot7ouwejjzPXM8QhZZ67Rw5MFTepBV 3i8UOHBruiwWCiYs1oN+L8tPTXA8u107qqfb+kJxXv1hChfBcWj7NyYkYanD2DxU O6hSYAb4bXTVo4hNsUGueIO/0MBf7ovqgm76Z1Z73PJu9i0pjSQIg+Ia3zda+MGK QO0tcoaOlctX5dA9Hb6yily8pC9ugD5obQZXNjR5Z4boTG3uNrThmgWm5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCS0gHsxQvz74mIDB1AXfS+/G713MB8GA1UdIwQY MBaAFEZ6OIES5o9MfU2Awy03z81s0jpFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUm5vNGdSTG1qMHg5VFlERExUZlB6V3pTT2tVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8xZDc3MjctYTRkZS00YWU4LWI2YzUt YzcxODQ1YTAxNzQ5LzEvUm5vNGdSTG1qMHg5VFlERExUZlB6V3pTT2tVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8xZDc3MjctYTRkZS00YWU4LWI2YzUtYzcxODQ1YTAxNzQ5 LzEvUm5vNGdSTG1qMHg5VFlERExUZlB6V3pTT2tVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaML/S7+8 0ESWduTFjV12zRGnXlv78yM4lJhcRDKJLoxYyWRgSwtWQ8IqTS0przEyauEWW8g8 cr/eWXZV94gCx8YALwNX0xghtSY0wQKXnh1pJC/ApTWLIAdCoOHx9Fl1BtmuwZaY uNFdyX9jbXSYOzeHVcULrgPEYTpL1DeigPjnl+lecaFexFGjHXHldtfgdBTy7O3k kQTe9O0Jnkh7ViQv/aj/ri/QPP9acxT64JkLfLotVIj8jnsuVjeD0FQyv21NmSbi HgYbavhs21Sb1vVFpjPBlzrTOl0ttrhyM2IOOGeunmRJGqOs/iPskpMg2H97e1xq oyrTBEgR7nUS0A== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:50 2026 by rpki-client