This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft File: vNgzeodIrlhibqk9my9YmNAY3fE.mft (raw, json) Hash identifier: qVitLGsnA77+sg0Mi0YN6BEglePr0nkcDiRGTkkC2CE= Subject key identifier: F7:9D:6C:A1:70:EB:84:F7:90:FB:F7:97:4B:F5:8F:98:67:B6:47:37 Authority key identifier: BC:D8:33:7A:87:48:AE:58:62:6E:A9:3D:9B:2F:58:98:D0:18:DD:F1 Certificate issuer: /CN=bcd8337a8748ae58626ea93d9b2f5898d018ddf1 Certificate serial: 019C420FEFB8AACC6071E4BC3B0A0E07929F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vNgzeodIrlhibqk9my9YmNAY3fE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft Manifest number: 179D Signing time: Mon 09 Feb 2026 11:01:06 +0000 Manifest this update: Mon 09 Feb 2026 11:01:06 +0000 Manifest next update: Tue 10 Feb 2026 11:01:06 +0000 Files and hashes: 1: vNgzeodIrlhibqk9my9YmNAY3fE.crl (hash: yZ8uCNRYxgabdUHUXHIYBR28HjAVdxajLIX8pv1sDZc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.crl rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft rsync://rpki.ripe.net/repository/DEFAULT/vNgzeodIrlhibqk9my9YmNAY3fE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:ef:b8:aa:cc:60:71:e4:bc:3b:0a:0e:07:92:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bcd8337a8748ae58626ea93d9b2f5898d018ddf1 Validity Not Before: Feb 9 11:01:06 2026 GMT Not After : Feb 10 11:01:06 2026 GMT Subject: CN=f79d6ca170eb84f790fbf7974bf58f9867b64737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1d:00:19:45:94:0a:2c:a3:2b:90:19:51:56: 0f:1a:da:95:73:41:86:66:d1:7b:31:30:8e:46:d6: 00:9d:44:7d:e6:99:d0:b2:25:e5:d1:ac:36:43:e1: 34:c5:33:af:2d:d9:60:47:0c:2d:6e:26:03:b8:51: c4:1e:07:08:ad:3b:ed:4d:b2:4e:43:c4:ce:a4:dd: c5:c3:81:ba:37:5b:08:dd:f3:c1:8d:19:b4:ce:0c: 1b:f3:5f:80:b9:1d:75:41:c4:8b:0f:aa:e4:55:08: 9e:05:4b:49:39:b2:87:60:d2:09:f7:ed:86:6e:a0: 58:89:45:81:d9:27:15:71:ab:1e:83:6b:07:07:0e: 4d:27:ca:41:67:30:7e:1b:94:6d:c9:f4:9a:1e:f8: e7:bf:1c:2f:38:06:3f:d3:10:64:c8:66:e8:a5:b2: 61:6b:ff:01:63:38:82:fc:35:5b:53:f9:95:ed:f4: fa:bb:c0:bd:45:f0:78:6a:67:45:90:39:65:97:89: 38:8c:4d:21:df:e5:29:fa:e3:7c:a2:9e:2b:05:45: b3:f9:7c:7d:3c:9d:f4:f3:79:08:d1:05:13:24:e2: 06:11:93:7d:39:09:4b:00:91:48:1b:13:2a:f0:3a: 38:d8:2c:f1:59:0f:51:e9:89:da:60:9a:e9:f5:69: d0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:9D:6C:A1:70:EB:84:F7:90:FB:F7:97:4B:F5:8F:98:67:B6:47:37 X509v3 Authority Key Identifier: keyid:BC:D8:33:7A:87:48:AE:58:62:6E:A9:3D:9B:2F:58:98:D0:18:DD:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vNgzeodIrlhibqk9my9YmNAY3fE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8d6068-acca-4777-9448-b7cf6a7b2a29/1/vNgzeodIrlhibqk9my9YmNAY3fE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:71:e7:9f:ac:90:96:32:5c:ef:ff:b0:47:48:95:7a:01:bb: 05:3a:63:19:6f:9a:72:a9:87:9c:d4:7f:ab:a1:5e:78:09:c6: c2:6a:bb:04:6d:a8:33:90:ac:31:e0:f9:fd:ba:3a:3c:78:8c: 6f:de:0e:ff:e2:46:b1:cf:40:da:57:a2:8d:37:7b:4a:d2:47: 67:9b:44:17:a9:c8:b5:84:ec:a2:a1:84:60:02:d5:06:19:ee: cf:84:6e:2a:36:d0:4d:7e:27:36:b0:30:ce:36:b0:91:7b:77: eb:9d:1b:80:11:2b:0c:de:2f:4d:4b:d9:59:83:ac:01:0e:77: 27:c5:cd:e7:34:1e:02:90:7a:7f:e5:0e:17:51:4e:dd:7f:5e: 9a:ac:e4:7b:6d:a1:e8:81:0d:4b:d8:8e:fb:40:4c:79:58:f2: 5e:c2:5c:a2:2a:20:03:c1:a8:05:f5:0a:1d:66:b1:c8:73:d0: 7f:dc:7f:57:41:da:47:82:74:6d:6b:25:f8:cf:8c:06:f0:52: 86:ac:29:f4:07:a0:be:cf:86:9c:02:b6:34:5a:31:9d:7d:07: 7a:40:53:90:59:ec:25:21:67:cf:51:b4:7a:c8:fe:72:d9:f2: ef:e4:97:4d:4a:ad:ec:93:36:c7:d6:53:4d:23:9d:cd:02:25: 2e:e5:b5:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD++4qsxgceS8OwoOB5KfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjZDgzMzdhODc0OGFlNTg2MjZlYTkzZDliMmY1ODk4ZDAx OGRkZjEwHhcNMjYwMjA5MTEwMTA2WhcNMjYwMjEwMTEwMTA2WjAzMTEwLwYDVQQD EyhmNzlkNmNhMTcwZWI4NGY3OTBmYmY3OTc0YmY1OGY5ODY3YjY0NzM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4B0AGUWUCiyjK5AZUVYPGtqVc0GG ZtF7MTCORtYAnUR95pnQsiXl0aw2Q+E0xTOvLdlgRwwtbiYDuFHEHgcIrTvtTbJO Q8TOpN3Fw4G6N1sI3fPBjRm0zgwb81+AuR11QcSLD6rkVQieBUtJObKHYNIJ9+2G bqBYiUWB2ScVcaseg2sHBw5NJ8pBZzB+G5RtyfSaHvjnvxwvOAY/0xBkyGbopbJh a/8BYziC/DVbU/mV7fT6u8C9RfB4amdFkDlll4k4jE0h3+Up+uN8op4rBUWz+Xx9 PJ3083kI0QUTJOIGEZN9OQlLAJFIGxMq8Do42CzxWQ9R6YnaYJrp9WnQ6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPedbKFw64T3kPv3l0v1j5hntkc3MB8GA1UdIwQY MBaAFLzYM3qHSK5YYm6pPZsvWJjQGN3xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdk5nemVvZElybGhpYnFrOW15OVltTkFZM2ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni84ZDYwNjgtYWNjYS00Nzc3LTk0NDgt YjdjZjZhN2IyYTI5LzEvdk5nemVvZElybGhpYnFrOW15OVltTkFZM2ZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni84ZDYwNjgtYWNjYS00Nzc3LTk0NDgtYjdjZjZhN2IyYTI5 LzEvdk5nemVvZElybGhpYnFrOW15OVltTkFZM2ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADXHnn6yQ ljJc7/+wR0iVegG7BTpjGW+acqmHnNR/q6FeeAnGwmq7BG2oM5CsMeD5/bo6PHiM b94O/+JGsc9A2leijTd7StJHZ5tEF6nItYTsoqGEYALVBhnuz4RuKjbQTX4nNrAw zjawkXt3650bgBErDN4vTUvZWYOsAQ53J8XN5zQeApB6f+UOF1FO3X9emqzke22h 6IENS9iO+0BMeVjyXsJcoiogA8GoBfUKHWaxyHPQf9x/V0HaR4J0bWsl+M+MBvBS hqwp9Aegvs+GnAK2NFoxnX0HekBTkFnsJSFnz1G0esj+ctny7+SXTUqt7JM2x9ZT TSOdzQIlLuW1xg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:18 2026 by rpki-client