This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json) Hash identifier: irsWFcXNPRRf7e2mfD1nuYNlecUXv2S0IurYKr8MbnY= Subject key identifier: 2A:C2:76:EF:13:CD:9A:21:26:D0:90:1D:43:4C:0C:CF:CE:83:E7:2C Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff Certificate serial: 019C420F4F4BE17974D6E0538BE40D487E79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft Manifest number: 0EF2 Signing time: Mon 09 Feb 2026 11:00:25 +0000 Manifest this update: Mon 09 Feb 2026 11:00:25 +0000 Manifest next update: Tue 10 Feb 2026 11:00:25 +0000 Files and hashes: 1: DR-3C6YEtKMcL_5es4EXU7AZkNI.roa (hash: OUT6KMW2KBguWe74r4/N3KwEXWVjz7ZfPOq1uxqbzVY=) 2: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: xTXRippRMJMumPfHYb+G3oslka+xeZ+2kz+8pxMQu6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:4f:4b:e1:79:74:d6:e0:53:8b:e4:0d:48:7e:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff Validity Not Before: Feb 9 11:00:25 2026 GMT Not After : Feb 10 11:00:25 2026 GMT Subject: CN=2ac276ef13cd9a2126d0901d434c0ccfce83e72c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b5:c1:7b:78:2e:6f:b3:49:0b:9d:94:27:7e: ae:0e:4a:7a:14:59:0f:46:7c:16:30:9c:ac:e8:28: 3b:a6:4d:3a:42:99:db:08:01:17:57:f2:b0:66:59: e5:00:15:fd:ac:1e:bb:17:a5:f6:64:27:e6:10:fc: 56:f0:48:69:6f:08:ba:97:19:b6:81:3a:7b:84:98: 8b:87:27:f3:35:6d:0b:38:a6:49:c8:2f:2d:a7:7e: 49:6a:30:72:53:65:23:8a:db:ff:93:1f:9d:23:f5: ad:5c:b9:95:9c:d3:0a:5a:25:ab:08:2d:15:73:53: 78:e6:66:ac:d1:79:d4:75:40:f3:7f:94:15:6a:1d: 05:a2:46:dd:7a:7e:a0:30:b1:ce:14:47:b8:90:08: 76:fe:5d:fa:2c:ec:e5:57:66:7d:f7:04:af:d3:cc: f6:d2:1f:ed:aa:32:8c:82:01:5c:2d:a7:12:d6:fc: c6:fc:63:6a:b1:2b:d8:f7:ae:7d:7a:cd:fc:fd:ef: 83:41:5c:f7:7e:b0:fb:9d:ad:83:64:1d:1b:82:c8: fb:70:84:0c:5f:ff:5b:55:10:d5:1d:13:26:1b:91: f9:fc:16:ea:52:1f:cf:4b:52:45:b6:cb:21:37:df: 55:7d:32:53:fb:c1:d4:a0:cb:8f:f8:93:5d:0f:69: 0c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C2:76:EF:13:CD:9A:21:26:D0:90:1D:43:4C:0C:CF:CE:83:E7:2C X509v3 Authority Key Identifier: keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:0b:b9:01:ef:d9:03:67:b8:0e:1e:d1:de:99:73:43:ce:b4: 21:7f:85:e1:eb:4e:08:e8:9a:2a:9e:a0:4a:1a:14:e3:47:c9: 3a:76:0a:61:0c:a5:bf:24:38:ba:17:bc:a1:78:d1:d7:ae:d8: 32:9a:2d:06:e2:69:56:65:39:6b:d4:35:3c:91:89:83:7f:8d: 04:69:20:06:49:dc:1e:69:97:f1:cf:d2:a0:cd:c6:86:b8:84: 8d:38:22:03:6e:e9:f4:90:0d:b3:fc:e5:bd:bf:19:23:14:72: 22:b2:93:2e:b4:95:46:dd:ca:30:62:57:11:03:17:9e:8e:92: e0:68:44:9f:72:2c:41:e1:00:f3:c8:a1:eb:30:b0:c5:e6:68: b9:b0:98:6e:93:6d:2c:90:80:54:a9:0a:fa:95:36:5e:1b:55: c4:b8:ac:ae:fe:85:58:30:a5:1e:82:20:74:bb:85:a6:25:0a: 26:0c:0e:8a:5e:0b:96:ed:f1:03:34:df:56:1e:78:a6:19:56: d3:cb:50:e3:52:36:c4:4a:35:80:dc:1f:07:09:22:ae:e9:c8: fe:c1:6a:b8:75:bb:1e:66:d5:67:f6:22:f1:a0:f4:26:cc:b0: 40:38:38:05:4c:5f:12:4c:ae:de:04:93:53:3b:4f:d4:b6:e6: 44:01:74:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD09L4Xl01uBTi+QNSH55MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMzY4Nzc0MmJlY2YzZDA4MDgyZWQxMmU5ZjM0NzBiODJk YTdjZmYwHhcNMjYwMjA5MTEwMDI1WhcNMjYwMjEwMTEwMDI1WjAzMTEwLwYDVQQD EygyYWMyNzZlZjEzY2Q5YTIxMjZkMDkwMWQ0MzRjMGNjZmNlODNlNzJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbXBe3gub7NJC52UJ36uDkp6FFkP RnwWMJys6Cg7pk06QpnbCAEXV/KwZlnlABX9rB67F6X2ZCfmEPxW8Ehpbwi6lxm2 gTp7hJiLhyfzNW0LOKZJyC8tp35JajByU2Ujitv/kx+dI/WtXLmVnNMKWiWrCC0V c1N45mas0XnUdUDzf5QVah0Fokbden6gMLHOFEe4kAh2/l36LOzlV2Z99wSv08z2 0h/tqjKMggFcLacS1vzG/GNqsSvY9659es38/e+DQVz3frD7na2DZB0bgsj7cIQM X/9bVRDVHRMmG5H5/BbqUh/PS1JFtsshN99VfTJT+8HUoMuP+JNdD2kM1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCrCdu8TzZohJtCQHUNMDM/Og+csMB8GA1UdIwQY MBaAFE02h3Qr7PPQgILtEunzRwuC2nz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQt MTAzYjE3ZDNlYjQ1LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQtMTAzYjE3ZDNlYjQ1 LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIwu5Ae/Z A2e4Dh7R3plzQ860IX+F4etOCOiaKp6gShoU40fJOnYKYQylvyQ4uhe8oXjR167Y MpotBuJpVmU5a9Q1PJGJg3+NBGkgBkncHmmX8c/SoM3GhriEjTgiA27p9JANs/zl vb8ZIxRyIrKTLrSVRt3KMGJXEQMXno6S4GhEn3IsQeEA88ih6zCwxeZoubCYbpNt LJCAVKkK+pU2XhtVxLisrv6FWDClHoIgdLuFpiUKJgwOil4Llu3xAzTfVh54phlW 08tQ41I2xEo1gNwfBwkirunI/sFquHW7HmbVZ/Yi8aD0JsywQDg4BUxfEkyu3gST UztP1LbmRAF03A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:44 2026 by rpki-client