This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft File: RdGncWAlFxEzoyAslGKg6r1mBoI.mft (raw, json) Hash identifier: 3kJ4Wo7PVsHkqqEH/pi/69s7RJmddJ2m+fXXFmgDIWw= Subject key identifier: 6D:FA:FA:E7:8C:94:0C:97:7A:F9:02:62:1F:82:0B:26:16:AE:67:D6 Authority key identifier: 45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82 Certificate issuer: /CN=45d1a7716025171133a3202c9462a0eabd660682 Certificate serial: 019C435921766185BF082C929E4361A865CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft Manifest number: 07A5 Signing time: Mon 09 Feb 2026 17:00:40 +0000 Manifest this update: Mon 09 Feb 2026 17:00:40 +0000 Manifest next update: Tue 10 Feb 2026 17:00:40 +0000 Files and hashes: 1: RdGncWAlFxEzoyAslGKg6r1mBoI.crl (hash: s/FdA3QsV47gIJvIx3mXtjXoPzxTcpnz+nck7kFKhyY=) 2: yS7JOrLZP4AOFmgm3gsxJRJWJXE.roa (hash: IrIgEVW7MNtRvbALuTRFogWK6/R+xoKvrCBDKRLo8XA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:21:76:61:85:bf:08:2c:92:9e:43:61:a8:65:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45d1a7716025171133a3202c9462a0eabd660682 Validity Not Before: Feb 9 17:00:40 2026 GMT Not After : Feb 10 17:00:40 2026 GMT Subject: CN=6dfafae78c940c977af902621f820b2616ae67d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:66:5a:e2:34:0f:8a:b1:04:3e:9b:ee:20:27: 2f:42:f5:5d:94:dc:16:c0:b4:ee:b4:89:04:74:28: af:bb:fe:bc:dc:d2:ee:7d:10:68:40:16:8c:a9:c0: b3:52:db:96:51:7d:1f:27:ab:20:e3:f9:0b:f8:b0: 9b:92:8f:41:28:27:38:82:61:ab:98:8c:ef:25:f7: 10:66:d8:40:d8:6a:31:d7:f1:ac:91:df:49:b7:c2: 34:77:91:73:00:38:dc:d1:86:f4:c9:e8:4c:48:90: 46:a1:06:3c:b2:ad:33:ac:68:0d:22:7c:ac:de:f4: 80:69:72:f0:6e:bb:1d:1d:74:c3:ba:65:43:a5:4e: 71:c3:6e:6b:74:ad:a6:67:12:2d:94:5d:f3:b4:41: 0a:3b:44:4f:13:82:d3:ed:90:32:53:41:1f:ec:c2: fc:92:18:80:30:9e:99:b3:03:72:cc:06:a3:8b:b5: 5b:78:f0:21:f5:a5:c0:64:b4:56:03:99:2d:b8:38: 90:49:e7:5c:d1:5a:de:19:f1:07:d4:fd:c1:a8:86: 7c:53:2d:ac:55:03:b1:2f:7b:64:2f:04:22:0d:88: 15:42:fb:56:77:7e:d2:b2:7d:b9:47:1f:b6:fa:6f: ca:c1:c9:ce:f8:1c:9f:bf:28:10:3b:13:25:f4:e8: ba:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:FA:FA:E7:8C:94:0C:97:7A:F9:02:62:1F:82:0B:26:16:AE:67:D6 X509v3 Authority Key Identifier: keyid:45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:9c:97:d3:7a:c2:f5:eb:74:5f:ce:45:64:46:21:18:5d:c2: d7:2d:03:6a:95:f2:b7:35:d1:50:78:b1:0d:1b:0b:3f:2c:94: 1c:11:0b:71:83:a5:54:6e:7b:90:ff:ea:db:fb:1c:c1:28:dd: 64:bd:8d:5d:27:4d:6c:31:14:dc:08:11:48:fd:41:d6:16:b8: f8:19:e8:43:e0:20:d9:ee:73:ff:de:b7:de:91:0a:6c:6e:7d: 3c:14:ec:e9:92:0c:61:fa:37:b3:b2:42:d6:59:76:b2:5c:b2: 72:0b:fd:aa:11:e8:4f:27:9e:06:2d:6b:10:a4:8f:20:bc:66: 5b:17:87:91:f5:be:21:24:3d:58:c4:9b:41:e0:15:c5:fc:ef: 8c:ea:45:c8:3b:d8:6a:a3:cc:c7:0b:20:bb:f2:8c:8e:ef:ac: 3b:3b:d5:d6:79:e2:d7:94:da:a4:27:86:36:a4:b9:5c:15:4d: ed:9c:c3:ff:21:f6:f4:7b:8f:df:7d:40:44:d3:d4:e9:9f:fa: b3:42:fc:ec:2f:54:56:f8:d2:ac:78:2f:d3:d7:db:75:87:c0: 35:59:1d:ef:0a:c0:3a:61:24:11:60:ea:99:87:da:48:32:81: 82:36:ef:bd:68:8b:a1:7b:ce:d7:eb:93:7f:ee:b1:40:eb:ab: 1c:02:fa:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWSF2YYW/CCySnkNhqGXNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1ZDFhNzcxNjAyNTE3MTEzM2EzMjAyYzk0NjJhMGVhYmQ2 NjA2ODIwHhcNMjYwMjA5MTcwMDQwWhcNMjYwMjEwMTcwMDQwWjAzMTEwLwYDVQQD Eyg2ZGZhZmFlNzhjOTQwYzk3N2FmOTAyNjIxZjgyMGIyNjE2YWU2N2Q2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWZa4jQPirEEPpvuICcvQvVdlNwW wLTutIkEdCivu/683NLufRBoQBaMqcCzUtuWUX0fJ6sg4/kL+LCbko9BKCc4gmGr mIzvJfcQZthA2Gox1/Gskd9Jt8I0d5FzADjc0Yb0yehMSJBGoQY8sq0zrGgNInys 3vSAaXLwbrsdHXTDumVDpU5xw25rdK2mZxItlF3ztEEKO0RPE4LT7ZAyU0Ef7ML8 khiAMJ6ZswNyzAaji7VbePAh9aXAZLRWA5ktuDiQSedc0VreGfEH1P3BqIZ8Uy2s VQOxL3tkLwQiDYgVQvtWd37Ssn25Rx+2+m/KwcnO+ByfvygQOxMl9Oi6IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG36+ueMlAyXevkCYh+CCyYWrmfWMB8GA1UdIwQY MBaAFEXRp3FgJRcRM6MgLJRioOq9ZgaCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmRHbmNXQWxGeEV6b3lBc2xHS2c2cjFtQm9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8xNWM0N2MtMmM3Yy00ODFjLWJmODkt ODA3MjQ2Y2E3YTI0LzEvUmRHbmNXQWxGeEV6b3lBc2xHS2c2cjFtQm9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC8xNWM0N2MtMmM3Yy00ODFjLWJmODktODA3MjQ2Y2E3YTI0 LzEvUmRHbmNXQWxGeEV6b3lBc2xHS2c2cjFtQm9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdpyX03rC 9et0X85FZEYhGF3C1y0DapXytzXRUHixDRsLPyyUHBELcYOlVG57kP/q2/scwSjd ZL2NXSdNbDEU3AgRSP1B1ha4+BnoQ+Ag2e5z/9633pEKbG59PBTs6ZIMYfo3s7JC 1ll2slyycgv9qhHoTyeeBi1rEKSPILxmWxeHkfW+ISQ9WMSbQeAVxfzvjOpFyDvY aqPMxwsgu/KMju+sOzvV1nni15TapCeGNqS5XBVN7ZzD/yH29HuP331ARNPU6Z/6 s0L87C9UVvjSrHgv09fbdYfANVkd7wrAOmEkEWDqmYfaSDKBgjbvvWiLoXvO1+uT f+6xQOurHAL64g== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:25 2026 by rpki-client