This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft File: 4xubYpkE1DhFESeFW1L4guvhYqo.mft (raw, json) Hash identifier: tdcl2D+/kzvW0pGevqBVHWVhmXJ/ulAEOh2udKhtoT0= Subject key identifier: E8:39:38:F0:D6:18:83:83:84:79:A4:C2:F1:17:76:80:18:41:85:0D Authority key identifier: E3:1B:9B:62:99:04:D4:38:45:11:27:85:5B:52:F8:82:EB:E1:62:AA Certificate issuer: /CN=e31b9b629904d438451127855b52f882ebe162aa Certificate serial: 019C427D8965FA18FB602CBBAB2F5A2BC9EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xubYpkE1DhFESeFW1L4guvhYqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft Manifest number: 1141 Signing time: Mon 09 Feb 2026 13:00:49 +0000 Manifest this update: Mon 09 Feb 2026 13:00:49 +0000 Manifest next update: Tue 10 Feb 2026 13:00:49 +0000 Files and hashes: 1: 4xubYpkE1DhFESeFW1L4guvhYqo.crl (hash: 31RBHTiOPhhLG9QaF8gr7cbIrfmPE4RoQeeGqwEUxiI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.crl rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft rsync://rpki.ripe.net/repository/DEFAULT/4xubYpkE1DhFESeFW1L4guvhYqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:89:65:fa:18:fb:60:2c:bb:ab:2f:5a:2b:c9:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e31b9b629904d438451127855b52f882ebe162aa Validity Not Before: Feb 9 13:00:49 2026 GMT Not After : Feb 10 13:00:49 2026 GMT Subject: CN=e83938f0d61883838479a4c2f11776801841850d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d4:44:45:fa:8a:1a:36:97:95:c4:e5:2b:ad: 54:70:00:01:84:4b:2b:f6:24:04:56:40:95:5f:80: 3f:e6:4b:70:12:3c:fb:83:1f:27:b3:21:0e:c5:96: 0d:c9:b3:57:fb:d5:30:8d:9d:be:43:e3:a3:74:80: 81:c4:16:09:e9:6d:88:fe:a2:44:f7:82:79:32:07: d7:f7:07:8e:c0:2e:15:2f:12:f0:3d:84:95:b5:6d: c8:d1:9b:60:f8:f6:eb:e3:ef:27:10:73:fe:21:50: bc:c0:b5:db:25:99:64:fa:65:0b:13:8f:4f:22:23: f9:d2:b3:74:ff:7f:23:99:3f:b9:09:65:2b:32:56: 11:a9:46:2a:53:b2:44:35:bb:21:a8:2a:bb:ba:b8: ba:70:9d:e4:3f:d1:04:4c:e3:b1:42:24:9f:41:98: e7:54:f3:c3:5a:7e:2e:cb:83:d7:1c:1a:ab:27:65: 19:97:90:12:6f:cf:f9:d6:ff:ed:35:37:cc:bd:e0: c1:b3:f0:bf:f2:63:67:fa:0b:16:18:85:02:3d:1b: 9c:51:51:37:b2:bd:a0:53:ab:3e:f7:3a:df:e5:6c: 79:c0:6e:69:ea:57:aa:73:16:1d:f3:92:96:77:07: 70:af:68:4e:86:9c:c9:88:37:0e:e2:f7:c7:d5:2c: 0f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:39:38:F0:D6:18:83:83:84:79:A4:C2:F1:17:76:80:18:41:85:0D X509v3 Authority Key Identifier: keyid:E3:1B:9B:62:99:04:D4:38:45:11:27:85:5B:52:F8:82:EB:E1:62:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xubYpkE1DhFESeFW1L4guvhYqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dfecaa-050d-409b-887e-ded7ad5a8870/1/4xubYpkE1DhFESeFW1L4guvhYqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:3e:12:b8:e2:ce:c8:a7:ef:bf:db:aa:6c:63:0e:34:f6:ac: b3:6e:44:2e:cd:09:5a:24:31:d7:44:2b:cb:61:5f:e7:c7:89: 14:70:db:e3:08:c4:b6:10:07:f9:07:6f:68:59:8a:bd:67:1c: bd:48:d4:96:dd:a3:ee:56:49:67:95:58:22:23:b0:7c:87:c1: 98:75:61:7a:8f:fb:49:f9:3a:78:03:58:a3:e1:d9:f2:42:5c: e4:ee:52:78:4a:0b:d3:e1:dd:fa:4d:33:db:52:37:56:d2:39: 00:ed:a9:53:82:ca:d6:c8:7e:e7:3d:fb:5a:d6:18:fb:8c:7e: 99:56:80:10:cd:27:dd:dc:f4:ae:73:90:3f:84:ce:33:48:58: 19:2c:6e:f2:fa:a3:c7:ab:88:8e:77:d4:e5:22:2a:47:61:a3: ff:63:40:00:da:c7:b0:28:97:5e:b8:08:82:fd:e2:8b:19:50: e2:ac:86:e3:3d:b8:fb:98:a2:f4:ff:ec:99:0c:c0:88:3a:00: eb:30:ef:5f:1a:d0:ab:c8:68:3a:ca:b9:cb:2a:e7:c8:b7:bf: 37:fd:2d:46:78:01:09:13:56:1c:0b:e3:dc:4c:f5:04:06:2f: fc:83:34:4d:c3:3a:5b:68:e8:dc:b0:05:6f:4e:6f:ac:48:b9: a8:62:79:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfYll+hj7YCy7qy9aK8nuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzMWI5YjYyOTkwNGQ0Mzg0NTExMjc4NTViNTJmODgyZWJl MTYyYWEwHhcNMjYwMjA5MTMwMDQ5WhcNMjYwMjEwMTMwMDQ5WjAzMTEwLwYDVQQD EyhlODM5MzhmMGQ2MTg4MzgzODQ3OWE0YzJmMTE3NzY4MDE4NDE4NTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9RERfqKGjaXlcTlK61UcAABhEsr 9iQEVkCVX4A/5ktwEjz7gx8nsyEOxZYNybNX+9UwjZ2+Q+OjdICBxBYJ6W2I/qJE 94J5MgfX9weOwC4VLxLwPYSVtW3I0Ztg+Pbr4+8nEHP+IVC8wLXbJZlk+mULE49P IiP50rN0/38jmT+5CWUrMlYRqUYqU7JENbshqCq7uri6cJ3kP9EETOOxQiSfQZjn VPPDWn4uy4PXHBqrJ2UZl5ASb8/51v/tNTfMveDBs/C/8mNn+gsWGIUCPRucUVE3 sr2gU6s+9zrf5Wx5wG5p6leqcxYd85KWdwdwr2hOhpzJiDcO4vfH1SwP2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOg5OPDWGIODhHmkwvEXdoAYQYUNMB8GA1UdIwQY MBaAFOMbm2KZBNQ4RREnhVtS+ILr4WKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHh1Yllwa0UxRGhGRVNlRlcxTDRndXZoWXFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kZmVjYWEtMDUwZC00MDliLTg4N2Ut ZGVkN2FkNWE4ODcwLzEvNHh1Yllwa0UxRGhGRVNlRlcxTDRndXZoWXFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9kZmVjYWEtMDUwZC00MDliLTg4N2UtZGVkN2FkNWE4ODcw LzEvNHh1Yllwa0UxRGhGRVNlRlcxTDRndXZoWXFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGT4SuOLO yKfvv9uqbGMONPass25ELs0JWiQx10Qry2Ff58eJFHDb4wjEthAH+QdvaFmKvWcc vUjUlt2j7lZJZ5VYIiOwfIfBmHVheo/7Sfk6eANYo+HZ8kJc5O5SeEoL0+Hd+k0z 21I3VtI5AO2pU4LK1sh+5z37WtYY+4x+mVaAEM0n3dz0rnOQP4TOM0hYGSxu8vqj x6uIjnfU5SIqR2Gj/2NAANrHsCiXXrgIgv3iixlQ4qyG4z24+5ii9P/smQzAiDoA 6zDvXxrQq8hoOsq5yyrnyLe/N/0tRngBCRNWHAvj3Ez1BAYv/IM0TcM6W2jo3LAF b05vrEi5qGJ5GQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:49 2026 by rpki-client