This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft File: cG_6qbf85AgnGBpaoKzumaRmkVY.mft (raw, json) Hash identifier: QEkJSyeQw7lTMPXsQjgI7AUvaH1yWkLycAhOCB/PDBo= Subject key identifier: 87:50:30:D5:D3:CD:B2:BA:46:73:41:77:29:2D:CD:F5:26:F7:33:F4 Authority key identifier: 70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56 Certificate issuer: /CN=706ffaa9b7fce40827181a5aa0acee99a4669156 Certificate serial: 019C427D567A40A26F693B1EA9A60FDE58B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft Manifest number: 0D54 Signing time: Mon 09 Feb 2026 13:00:36 +0000 Manifest this update: Mon 09 Feb 2026 13:00:36 +0000 Manifest next update: Tue 10 Feb 2026 13:00:36 +0000 Files and hashes: 1: cG_6qbf85AgnGBpaoKzumaRmkVY.crl (hash: dVBOnyuvw9TWG/Q5CLPAqJAqSHCdqqmyEenxPyvPe7Q=) 2: eYoEpqe4Uv6U3Q-JThdm1cZns_c.roa (hash: 10KRq+2t5E30gi8VhOOLk5+bD9qKlbZmUWl2P2qS7Vw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:56:7a:40:a2:6f:69:3b:1e:a9:a6:0f:de:58:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=706ffaa9b7fce40827181a5aa0acee99a4669156 Validity Not Before: Feb 9 13:00:36 2026 GMT Not After : Feb 10 13:00:36 2026 GMT Subject: CN=875030d5d3cdb2ba46734177292dcdf526f733f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2d:fc:be:ef:3a:5d:94:9d:fe:f0:c4:41:cc: c6:a5:63:01:4a:45:ac:29:14:05:88:b5:30:a7:85: 46:ee:8b:18:df:f8:90:99:7d:94:e1:81:05:f3:53: bf:43:a1:e2:a0:38:1b:56:3d:86:1e:65:82:68:a3: df:fb:fc:43:82:90:05:eb:9e:cb:7c:22:84:a3:91: b2:a9:dc:4b:29:ea:d8:31:75:64:74:77:11:19:93: 5d:ac:54:2c:cd:08:e2:3c:b3:d9:4a:24:a6:c5:6e: 85:a6:7d:7d:d3:5e:ea:2f:1f:e9:80:ec:4c:54:80: b8:8c:9d:31:6b:ba:61:c9:3f:c7:e6:36:a5:be:42: 02:ea:a2:01:c2:e2:ef:5b:a2:ae:c7:24:59:b9:11: 86:c6:3d:d2:66:e1:18:02:28:cd:26:94:fa:7c:8e: dc:b1:c8:cb:bd:77:7f:51:b4:18:a2:69:62:a7:24: 96:6c:4f:84:88:bb:b4:c9:0c:fc:f1:3c:3b:08:51: f7:50:35:91:43:13:4e:ff:a5:2a:cb:59:fb:86:a7: 0f:ab:1d:9b:2e:fd:57:66:53:95:13:1a:fe:14:f2: 24:cd:12:28:de:10:8c:2b:ad:5c:11:71:08:84:d3: f0:01:99:7f:94:b6:93:ee:de:2e:3e:89:ec:7b:de: db:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:50:30:D5:D3:CD:B2:BA:46:73:41:77:29:2D:CD:F5:26:F7:33:F4 X509v3 Authority Key Identifier: keyid:70:6F:FA:A9:B7:FC:E4:08:27:18:1A:5A:A0:AC:EE:99:A4:66:91:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG_6qbf85AgnGBpaoKzumaRmkVY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/29678f-c605-4655-9359-10fedccd2924/1/cG_6qbf85AgnGBpaoKzumaRmkVY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:21:bc:3f:f7:42:05:89:37:de:c2:2c:f9:63:02:37:50:f6: 59:d6:12:7d:5f:5e:00:23:50:61:7c:4e:e1:07:b8:41:8c:46: fa:4d:7b:72:c7:46:ea:0d:86:77:63:e2:0e:f7:58:08:66:a9: 7d:3a:5d:78:36:91:a1:ad:29:cf:aa:f2:b4:64:99:e3:6e:bc: 99:30:c2:34:24:01:49:52:7c:93:53:87:14:e1:bf:3d:b2:1b: fa:e7:b0:3a:2c:b8:5b:93:e5:bb:49:31:60:c8:1c:b8:ef:f8: 98:88:f2:be:0d:65:e2:6d:2d:e0:b5:52:9b:0e:02:f0:11:95: 6c:41:4f:1b:fa:08:d6:f9:05:41:62:8e:3e:99:c2:b5:26:40: 3c:57:2e:ff:f5:6f:4e:c1:ac:93:92:fc:44:3f:0c:43:ac:23: 0c:eb:a1:2b:50:35:4c:ee:76:d3:7a:01:fb:47:c0:0a:32:1c: fa:ad:e1:21:87:59:6d:3c:42:d3:4d:ee:05:5c:c3:fa:2f:b4: 2a:a5:55:bd:7d:df:d3:cf:50:3d:ae:e8:d1:25:38:47:69:b9: 4e:90:d9:d8:22:0e:90:17:0b:17:91:8a:e9:90:57:c8:c2:00: 79:08:7f:96:1a:65:46:74:03:1e:d3:f2:63:95:ac:54:27:96: 78:cf:7b:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfVZ6QKJvaTseqaYP3li4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwNmZmYWE5YjdmY2U0MDgyNzE4MWE1YWEwYWNlZTk5YTQ2 NjkxNTYwHhcNMjYwMjA5MTMwMDM2WhcNMjYwMjEwMTMwMDM2WjAzMTEwLwYDVQQD Eyg4NzUwMzBkNWQzY2RiMmJhNDY3MzQxNzcyOTJkY2RmNTI2ZjczM2Y0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyC38vu86XZSd/vDEQczGpWMBSkWs KRQFiLUwp4VG7osY3/iQmX2U4YEF81O/Q6HioDgbVj2GHmWCaKPf+/xDgpAF657L fCKEo5GyqdxLKerYMXVkdHcRGZNdrFQszQjiPLPZSiSmxW6Fpn19017qLx/pgOxM VIC4jJ0xa7phyT/H5jalvkIC6qIBwuLvW6KuxyRZuRGGxj3SZuEYAijNJpT6fI7c scjLvXd/UbQYomlipySWbE+EiLu0yQz88Tw7CFH3UDWRQxNO/6Uqy1n7hqcPqx2b Lv1XZlOVExr+FPIkzRIo3hCMK61cEXEIhNPwAZl/lLaT7t4uPonse97beQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIdQMNXTzbK6RnNBdyktzfUm9zP0MB8GA1UdIwQY MBaAFHBv+qm3/OQIJxgaWqCs7pmkZpFWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8yOTY3OGYtYzYwNS00NjU1LTkzNTkt MTBmZWRjY2QyOTI0LzEvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS8yOTY3OGYtYzYwNS00NjU1LTkzNTktMTBmZWRjY2QyOTI0 LzEvY0dfNnFiZjg1QWduR0JwYW9LenVtYVJta1ZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlyG8P/dC BYk33sIs+WMCN1D2WdYSfV9eACNQYXxO4Qe4QYxG+k17csdG6g2Gd2PiDvdYCGap fTpdeDaRoa0pz6rytGSZ4268mTDCNCQBSVJ8k1OHFOG/PbIb+uewOiy4W5Plu0kx YMgcuO/4mIjyvg1l4m0t4LVSmw4C8BGVbEFPG/oI1vkFQWKOPpnCtSZAPFcu//Vv TsGsk5L8RD8MQ6wjDOuhK1A1TO5203oB+0fACjIc+q3hIYdZbTxC003uBVzD+i+0 KqVVvX3f089QPa7o0SU4R2m5TpDZ2CIOkBcLF5GK6ZBXyMIAeQh/lhplRnQDHtPy Y5WsVCeWeM970A== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:30 2026 by rpki-client