This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft File: rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft (raw, json) Hash identifier: u8O9qYyXWiD6zSiqyfJ+W2dwuGlgUquQzSEkZiNnPaY= Subject key identifier: CD:EA:5B:CF:21:AC:C7:09:18:D2:19:96:DD:95:BB:CB:52:56:7E:DD Authority key identifier: AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78 Certificate issuer: /CN=ad30fb4388ee67144ae04ddc86812d63e028f478 Certificate serial: 019C432264AE1CD4DA6C89CB13D965B3C2D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:53 +0000 Manifest this update: Mon 09 Feb 2026 16:00:53 +0000 Manifest next update: Tue 10 Feb 2026 16:00:53 +0000 Files and hashes: 1: rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl (hash: peknJOM7L3Zt1PI/+WTrfU17T5IgnwEzDhUhW9yiCB0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:64:ae:1c:d4:da:6c:89:cb:13:d9:65:b3:c2:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad30fb4388ee67144ae04ddc86812d63e028f478 Validity Not Before: Feb 9 16:00:53 2026 GMT Not After : Feb 10 16:00:53 2026 GMT Subject: CN=cdea5bcf21acc70918d21996dd95bbcb52567edd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bc:79:1d:d6:ff:b1:94:92:7f:4a:48:20:45: 66:47:95:66:29:0b:51:d8:d9:f2:df:74:3a:da:3d: d2:6a:a8:a1:7e:1b:8a:5b:77:e3:74:f3:f1:85:7e: 20:86:48:66:95:1f:2e:51:47:ba:86:96:e9:ae:8e: c6:30:ed:a1:45:e3:10:e6:4a:be:b9:3c:a4:e5:00: 6f:4e:bb:3e:ac:12:e6:c9:3d:90:7d:c5:40:bd:ea: c8:0f:84:3f:5b:33:81:2a:f6:b1:8d:7b:54:f4:9b: 1f:07:e5:69:ad:18:ea:12:d7:06:7c:ef:ba:00:81: 32:42:d8:a6:ed:19:33:3b:23:df:24:69:39:f0:91: 3e:d2:c6:36:bf:14:a4:cf:08:58:29:b5:ed:1d:ce: c1:b3:93:91:a2:59:86:2f:e4:54:4c:05:92:2d:f0: d9:ed:c5:c2:da:34:c7:0c:e7:73:3e:59:0e:7d:18: 67:34:a4:ff:2b:ba:ee:25:88:05:58:80:6c:94:4b: 82:55:9b:a2:bf:56:9a:79:2a:f3:1e:83:bf:86:5e: 32:a7:9b:3d:67:94:b9:d1:d2:fc:69:f0:99:45:e9: ff:6e:f2:60:f5:0f:91:55:b5:9f:06:05:38:83:f6: 09:a3:f9:19:ea:e1:d7:bc:b0:9e:8c:e5:51:e4:04: f3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:EA:5B:CF:21:AC:C7:09:18:D2:19:96:DD:95:BB:CB:52:56:7E:DD X509v3 Authority Key Identifier: keyid:AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f1:48:4d:c2:d2:39:e3:57:e7:f4:7b:2e:f1:a9:ca:2c:a3: af:8a:7b:86:88:25:55:8d:be:e8:54:14:95:8e:25:fb:c8:ef: dd:95:2f:7e:b8:35:e6:e7:59:b7:d8:cb:2f:58:ae:21:2d:66: c1:2b:d6:a0:7a:f4:ff:01:5d:48:3a:f5:fb:a8:80:06:38:83: 26:c9:64:db:c1:4c:8a:63:5f:a5:f8:1b:67:87:b3:d2:8a:f7: 80:33:43:7d:21:cc:a7:8e:06:23:81:5d:8f:56:d7:ac:ea:f9: bd:84:b8:fe:73:13:a7:99:c1:2e:72:f8:62:0d:26:d8:f1:cf: e1:b2:94:fc:be:8d:1e:64:af:ab:9b:27:56:c0:1e:8a:51:31: 25:cc:2e:1f:17:77:2c:f2:0a:9d:f5:29:04:38:10:6e:a9:39: 91:a5:ab:08:18:44:d4:ad:98:0f:d2:6e:6a:db:be:ca:9e:6f: 8e:00:23:54:0c:5a:67:dd:b2:97:d7:80:6b:98:83:b8:bb:17: 1d:7b:fb:c9:18:83:2c:0c:34:5c:26:6c:c3:29:c2:54:3e:06: 2f:5a:6a:56:e5:9c:af:cd:ca:9b:d4:1e:95:39:b4:a0:86:46: 18:57:6f:f3:5f:8c:05:70:0c:4d:cd:16:82:8a:1f:d3:8a:30: c8:8c:67:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImSuHNTabInLE9lls8LUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMzBmYjQzODhlZTY3MTQ0YWUwNGRkYzg2ODEyZDYzZTAy OGY0NzgwHhcNMjYwMjA5MTYwMDUzWhcNMjYwMjEwMTYwMDUzWjAzMTEwLwYDVQQD EyhjZGVhNWJjZjIxYWNjNzA5MThkMjE5OTZkZDk1YmJjYjUyNTY3ZWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA87x5Hdb/sZSSf0pIIEVmR5VmKQtR 2Nny33Q62j3SaqihfhuKW3fjdPPxhX4ghkhmlR8uUUe6hpbpro7GMO2hReMQ5kq+ uTyk5QBvTrs+rBLmyT2QfcVAverID4Q/WzOBKvaxjXtU9JsfB+VprRjqEtcGfO+6 AIEyQtim7RkzOyPfJGk58JE+0sY2vxSkzwhYKbXtHc7Bs5ORolmGL+RUTAWSLfDZ 7cXC2jTHDOdzPlkOfRhnNKT/K7ruJYgFWIBslEuCVZuiv1aaeSrzHoO/hl4yp5s9 Z5S50dL8afCZRen/bvJg9Q+RVbWfBgU4g/YJo/kZ6uHXvLCejOVR5ATzaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM3qW88hrMcJGNIZlt2Vu8tSVn7dMB8GA1UdIwQY MBaAFK0w+0OI7mcUSuBN3IaBLWPgKPR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclREN1E0anVaeFJLNEUzY2hvRXRZLUFvOUhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9kMzQxYTYtOThhMi00YjFlLTliYTQt YjY2MDQ0YWRiY2IxLzEvclREN1E0anVaeFJLNEUzY2hvRXRZLUFvOUhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9kMzQxYTYtOThhMi00YjFlLTliYTQtYjY2MDQ0YWRiY2Ix LzEvclREN1E0anVaeFJLNEUzY2hvRXRZLUFvOUhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAivFITcLS OeNX5/R7LvGpyiyjr4p7hoglVY2+6FQUlY4l+8jv3ZUvfrg15udZt9jLL1iuIS1m wSvWoHr0/wFdSDr1+6iABjiDJslk28FMimNfpfgbZ4ez0or3gDNDfSHMp44GI4Fd j1bXrOr5vYS4/nMTp5nBLnL4Yg0m2PHP4bKU/L6NHmSvq5snVsAeilExJcwuHxd3 LPIKnfUpBDgQbqk5kaWrCBhE1K2YD9Juatu+yp5vjgAjVAxaZ92yl9eAa5iDuLsX HXv7yRiDLAw0XCZswynCVD4GL1pqVuWcr83Km9QelTm0oIZGGFdv81+MBXAMTc0W goof04owyIxnuw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:06 2026 by rpki-client