This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json) Hash identifier: SR9UchStDE4kNs+ar1yHGJ56VTLGq2sj0Nviwe2w8sE= Subject key identifier: D0:BB:2C:28:50:4B:00:C4:76:C0:69:76:8A:BF:C7:78:54:0F:86:32 Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06 Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06 Certificate serial: 019C438FF91E6FD46439A75F9D1FB2193345 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft Manifest number: 17A4 Signing time: Mon 09 Feb 2026 18:00:34 +0000 Manifest this update: Mon 09 Feb 2026 18:00:34 +0000 Manifest next update: Tue 10 Feb 2026 18:00:34 +0000 Files and hashes: 1: YeLaacDEqyOHodEKhBUtu92hvRw.roa (hash: Ji1cHzcmwBaizYoDGG5KY1yTxLM1jIXJ3gtR7NQt17s=) 2: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: tGQl0KePTjqwbdnfulvqQBhEnhlT6lb+QrUC2nvrmGQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:f9:1e:6f:d4:64:39:a7:5f:9d:1f:b2:19:33:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06 Validity Not Before: Feb 9 18:00:34 2026 GMT Not After : Feb 10 18:00:34 2026 GMT Subject: CN=d0bb2c28504b00c476c069768abfc778540f8632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cf:d2:3a:39:87:ab:62:42:6a:a3:fa:5e:99: f4:9c:ad:18:9b:44:ca:be:d0:50:0a:67:9d:c0:cf: 1e:a0:d1:59:84:23:a9:70:26:70:5e:c9:6d:b2:08: e7:dd:0c:e2:c5:f4:51:1a:e5:e7:cc:29:02:10:e4: 45:64:9d:2e:d7:7b:74:24:a2:d2:7a:bb:85:50:9b: 5b:c5:9b:3f:0a:22:73:5e:4f:94:16:ca:7e:40:ec: 14:94:4f:4b:8e:b6:45:32:53:aa:67:f5:1c:f5:68: 13:e9:25:94:19:32:3c:c4:3d:1a:36:9c:03:a5:6c: c7:8d:e3:94:09:2e:4e:ec:08:03:3e:44:d1:03:83: 75:3a:17:ff:ab:00:0c:ca:63:8d:e5:39:98:cd:42: 7c:48:82:18:f1:e6:92:dc:4d:e1:77:58:8c:4b:81: e4:d9:27:c1:5d:8f:ff:bb:b3:d8:90:ea:66:46:0c: 9a:33:65:39:33:6f:40:30:40:a5:d1:64:f6:cb:9b: 46:a4:c8:af:30:5e:52:61:f6:e3:6c:dc:dd:59:ea: a5:d4:10:d6:95:98:79:5c:e5:45:d6:f5:fb:ab:6a: 84:0e:85:c4:16:d5:16:a0:6c:3d:67:5f:19:76:44: a7:c7:5d:b7:ff:7a:79:08:75:b7:9f:c3:df:28:d1: d4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BB:2C:28:50:4B:00:C4:76:C0:69:76:8A:BF:C7:78:54:0F:86:32 X509v3 Authority Key Identifier: keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:94:5b:23:14:25:d6:b0:46:c6:66:15:ec:49:24:9c:01:16: 3c:21:89:b8:53:3c:c8:5a:d3:ad:10:c2:34:25:45:57:0a:fe: 49:94:a2:5b:28:e7:d4:7c:af:1b:f1:e7:4d:01:26:95:42:83: 45:ed:c7:ad:6b:5b:4b:9b:2d:0e:0e:15:5e:39:e5:cf:16:a4: b1:9e:90:d5:0e:36:c9:c4:de:32:63:7b:5d:b7:ae:2e:0f:19: 68:4c:40:6f:b5:15:ad:79:41:b7:c5:63:94:69:e3:9f:26:59: 61:f0:f7:26:1b:3d:b1:ab:87:2b:fb:f4:64:c5:a9:0b:df:41: 30:2c:8c:9f:a1:65:75:df:36:97:1e:5d:cc:d1:11:84:de:b0: b7:d0:48:33:e1:37:a5:02:89:52:27:f3:b0:22:f5:5d:8d:bf: b1:18:78:55:63:9c:3d:a7:75:05:74:19:82:4f:f0:8e:6d:7d: 2e:3f:bc:47:7b:bc:57:d9:12:4b:ef:cf:6d:cb:56:fa:4b:08: e6:0f:0b:6b:6d:71:3d:22:1d:7e:01:64:04:ae:b0:38:76:3c: 9e:45:00:c2:b9:f1:71:a3:08:97:76:ea:27:80:2a:73:5a:d4: d8:56:69:33:d5:79:11:5d:98:dd:e7:c6:2e:5a:da:ba:7b:04: f7:46:9e:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj/keb9RkOadfnR+yGTNFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZGJlYTA3NTNkZjA4M2U1NzgyYmI5ZjM4MGI1ZDc5OWNi NzhhMDYwHhcNMjYwMjA5MTgwMDM0WhcNMjYwMjEwMTgwMDM0WjAzMTEwLwYDVQQD EyhkMGJiMmMyODUwNGIwMGM0NzZjMDY5NzY4YWJmYzc3ODU0MGY4NjMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuc/SOjmHq2JCaqP6Xpn0nK0Ym0TK vtBQCmedwM8eoNFZhCOpcCZwXsltsgjn3QzixfRRGuXnzCkCEORFZJ0u13t0JKLS eruFUJtbxZs/CiJzXk+UFsp+QOwUlE9LjrZFMlOqZ/Uc9WgT6SWUGTI8xD0aNpwD pWzHjeOUCS5O7AgDPkTRA4N1Ohf/qwAMymON5TmYzUJ8SIIY8eaS3E3hd1iMS4Hk 2SfBXY//u7PYkOpmRgyaM2U5M29AMECl0WT2y5tGpMivMF5SYfbjbNzdWeql1BDW lZh5XOVF1vX7q2qEDoXEFtUWoGw9Z18ZdkSnx123/3p5CHW3n8PfKNHUFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNC7LChQSwDEdsBpdoq/x3hUD4YyMB8GA1UdIwQY MBaAFHDb6gdT3wg+V4K7nzgLXXmct4oGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY052cUIxUGZDRDVYZ3J1Zk9BdGRlWnkzaWdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9kZWVjMmUtMGNkNi00MTEzLWIyYjkt MmEwY2YxMzE3M2Q4LzEvY052cUIxUGZDRDVYZ3J1Zk9BdGRlWnkzaWdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9kZWVjMmUtMGNkNi00MTEzLWIyYjktMmEwY2YxMzE3M2Q4 LzEvY052cUIxUGZDRDVYZ3J1Zk9BdGRlWnkzaWdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdJRbIxQl 1rBGxmYV7EkknAEWPCGJuFM8yFrTrRDCNCVFVwr+SZSiWyjn1HyvG/HnTQEmlUKD Re3HrWtbS5stDg4VXjnlzxaksZ6Q1Q42ycTeMmN7XbeuLg8ZaExAb7UVrXlBt8Vj lGnjnyZZYfD3Jhs9sauHK/v0ZMWpC99BMCyMn6Fldd82lx5dzNERhN6wt9BIM+E3 pQKJUifzsCL1XY2/sRh4VWOcPad1BXQZgk/wjm19Lj+8R3u8V9kSS+/PbctW+ksI 5g8La21xPSIdfgFkBK6wOHY8nkUAwrnxcaMIl3bqJ4Aqc1rU2FZpM9V5EV2Y3efG LlraunsE90aebQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:36 2026 by rpki-client