This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft File: stlAHspsipMG0QCSu-DC4ZUA6X8.mft (raw, json) Hash identifier: J9s5X6nc87AC2qKr652LScLtfsxJeNnqWaqFpekzuqY= Subject key identifier: F4:D0:AA:62:CD:57:F5:2B:7C:EE:BB:61:C2:E5:24:A9:38:CF:C2:3D Authority key identifier: B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F Certificate issuer: /CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f Certificate serial: 019C43FE7EDDA736BD45F08A33C1D5F29F33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 20:01:17 +0000 Manifest this update: Mon 09 Feb 2026 20:01:17 +0000 Manifest next update: Tue 10 Feb 2026 20:01:17 +0000 Files and hashes: 1: Yes7E1nCE9WsDeErGONsuMIwDwg.roa (hash: Aujc0YkvltRGmUvtiXkpAVJcAgOt8vjAA0FwFtGvrVs=) 2: stlAHspsipMG0QCSu-DC4ZUA6X8.crl (hash: jtqxIN6ztj174966UVkYB0cZljy7aJN5GGpg7qX+DFg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:7e:dd:a7:36:bd:45:f0:8a:33:c1:d5:f2:9f:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2d9401eca6c8a9306d10092bbe0c2e19500e97f Validity Not Before: Feb 9 20:01:17 2026 GMT Not After : Feb 10 20:01:17 2026 GMT Subject: CN=f4d0aa62cd57f52b7ceebb61c2e524a938cfc23d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6a:0b:d2:24:55:61:34:a6:22:65:ca:76:68: a2:06:af:26:c9:4b:ff:f4:fd:c3:1d:75:7c:e9:2f: d3:c8:be:2f:ba:cd:f0:24:d3:f7:cd:56:32:c3:d6: 85:b6:f6:fc:5e:c9:34:75:a7:1e:45:7d:a0:9f:ca: 8c:dc:bf:2d:29:8e:f3:72:fc:dc:4c:78:de:dc:99: e0:3c:10:fa:e7:a0:59:88:6d:97:21:29:e2:09:27: 18:bc:f4:ee:49:22:29:ed:e6:3a:36:5a:23:b5:a3: c4:28:b0:eb:25:3d:08:7f:75:9d:ea:b6:37:f0:a1: 4b:12:28:74:f3:c9:1d:b9:a2:62:22:fb:c2:c4:68: 22:4d:2c:be:0f:e5:36:25:31:5e:3e:6d:a1:b5:e3: f3:38:7f:21:7d:4c:b6:0f:3c:ca:b2:52:c5:48:b7: b0:c5:e8:ad:fd:5a:f8:95:15:b6:1d:a8:59:2f:94: 60:42:24:b2:c3:aa:0c:2b:0e:c3:0b:f6:6f:74:92: 9e:61:04:21:7b:85:8c:1a:de:07:5d:9b:78:57:c9: 97:b1:ae:cf:54:3e:12:90:f8:10:28:e0:b5:55:9f: bf:ac:11:09:06:d7:a8:5f:3c:59:05:49:59:40:8b: cc:64:47:ee:9c:b2:32:20:82:77:45:28:6c:0b:b9: ea:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D0:AA:62:CD:57:F5:2B:7C:EE:BB:61:C2:E5:24:A9:38:CF:C2:3D X509v3 Authority Key Identifier: keyid:B2:D9:40:1E:CA:6C:8A:93:06:D1:00:92:BB:E0:C2:E1:95:00:E9:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stlAHspsipMG0QCSu-DC4ZUA6X8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9220da-0fd5-4a22-a11b-e1332e7f06fc/1/stlAHspsipMG0QCSu-DC4ZUA6X8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:57:5c:c2:f0:e6:d3:03:09:ec:94:9d:50:23:b0:fc:af:a0: a2:43:26:25:79:9f:fc:20:13:91:0e:5f:36:4c:5e:35:da:77: 8c:4d:4e:bb:20:13:88:e3:5e:04:3a:dc:26:1c:f7:55:17:12: 2e:16:98:17:fc:01:8a:15:00:98:25:a7:cb:88:05:01:a2:7f: 2e:c2:03:02:4a:27:87:49:5f:6b:21:04:79:14:5b:86:ed:50: 20:62:94:f8:4c:95:7f:f9:ce:67:20:3f:1f:8e:d2:53:b7:d3: 6a:4d:97:df:fa:68:30:2d:4a:d4:66:4c:e9:ed:d8:be:ca:56: f7:5c:d2:a9:50:72:09:92:22:9f:01:b3:0d:22:6e:43:f7:ca: 06:ff:54:90:ae:dc:79:5f:55:61:67:5c:80:bc:9f:74:ab:b7: 4b:b9:a4:e1:e5:46:18:58:80:3a:79:27:9a:c3:1b:37:f7:db: c9:18:3f:c3:51:ae:c7:e1:6b:5d:d1:5c:9a:63:ed:7c:09:03: 1f:d1:b6:41:28:cb:3f:ca:9c:1b:54:e7:68:b4:3d:8f:0e:9c: 1f:27:4e:2e:03:a3:dd:a8:90:39:26:68:73:6e:e9:7d:20:63: 84:f0:38:50:12:4c:2f:1d:13:35:2c:cb:58:f2:9a:75:c7:26: 25:bf:aa:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/n7dpza9RfCKM8HV8p8zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZDk0MDFlY2E2YzhhOTMwNmQxMDA5MmJiZTBjMmUxOTUw MGU5N2YwHhcNMjYwMjA5MjAwMTE3WhcNMjYwMjEwMjAwMTE3WjAzMTEwLwYDVQQD EyhmNGQwYWE2MmNkNTdmNTJiN2NlZWJiNjFjMmU1MjRhOTM4Y2ZjMjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWoL0iRVYTSmImXKdmiiBq8myUv/ 9P3DHXV86S/TyL4vus3wJNP3zVYyw9aFtvb8Xsk0daceRX2gn8qM3L8tKY7zcvzc THje3JngPBD656BZiG2XISniCScYvPTuSSIp7eY6NlojtaPEKLDrJT0If3Wd6rY3 8KFLEih088kduaJiIvvCxGgiTSy+D+U2JTFePm2htePzOH8hfUy2DzzKslLFSLew xeit/Vr4lRW2HahZL5RgQiSyw6oMKw7DC/ZvdJKeYQQhe4WMGt4HXZt4V8mXsa7P VD4SkPgQKOC1VZ+/rBEJBteoXzxZBUlZQIvMZEfunLIyIIJ3RShsC7nqLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPTQqmLNV/UrfO67YcLlJKk4z8I9MB8GA1UdIwQY MBaAFLLZQB7KbIqTBtEAkrvgwuGVAOl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWIt ZTEzMzJlN2YwNmZjLzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS85MjIwZGEtMGZkNS00YTIyLWExMWItZTEzMzJlN2YwNmZj LzEvc3RsQUhzcHNpcE1HMFFDU3UtREM0WlVBNlg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkFdcwvDm 0wMJ7JSdUCOw/K+gokMmJXmf/CATkQ5fNkxeNdp3jE1OuyATiONeBDrcJhz3VRcS LhaYF/wBihUAmCWny4gFAaJ/LsIDAkonh0lfayEEeRRbhu1QIGKU+EyVf/nOZyA/ H47SU7fTak2X3/poMC1K1GZM6e3YvspW91zSqVByCZIinwGzDSJuQ/fKBv9UkK7c eV9VYWdcgLyfdKu3S7mk4eVGGFiAOnknmsMbN/fbyRg/w1Gux+FrXdFcmmPtfAkD H9G2QSjLP8qcG1TnaLQ9jw6cHydOLgOj3aiQOSZoc27pfSBjhPA4UBJMLx0TNSzL WPKadccmJb+qvg== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:16 2026 by rpki-client