This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft File: _VnTVh_4rdtfGww2o90laLdMpRU.mft (raw, json) Hash identifier: QqNWtXO5yq6atoqVJwSaWyyuxd1a4ZL7v9oaBP5FSg8= Subject key identifier: 09:4D:4F:89:B0:19:72:07:F8:DE:92:B6:60:E8:A5:9D:94:68:B4:40 Authority key identifier: FD:59:D3:56:1F:F8:AD:DB:5F:1B:0C:36:A3:DD:25:68:B7:4C:A5:15 Certificate issuer: /CN=fd59d3561ff8addb5f1b0c36a3dd2568b74ca515 Certificate serial: 019C41D896BD0A64B2B3FF6D2DD5BAA89AF6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft Manifest number: 0CF2 Signing time: Mon 09 Feb 2026 10:00:39 +0000 Manifest this update: Mon 09 Feb 2026 10:00:39 +0000 Manifest next update: Tue 10 Feb 2026 10:00:39 +0000 Files and hashes: 1: _VnTVh_4rdtfGww2o90laLdMpRU.crl (hash: hqhGRYVog89fNyXIS5vTwV0KugfMFiK+74lQaz2089c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:96:bd:0a:64:b2:b3:ff:6d:2d:d5:ba:a8:9a:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd59d3561ff8addb5f1b0c36a3dd2568b74ca515 Validity Not Before: Feb 9 10:00:39 2026 GMT Not After : Feb 10 10:00:39 2026 GMT Subject: CN=094d4f89b0197207f8de92b660e8a59d9468b440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:38:32:47:9e:43:78:64:ca:f2:a0:74:92:9f: 9c:dc:aa:5d:6a:fa:5f:5d:0b:e5:9a:af:3b:83:86: 27:4f:ba:97:89:b9:f3:12:dc:32:27:b9:37:17:5e: fe:8d:1f:18:ac:be:35:c4:86:3c:91:76:66:3b:c2: 40:2f:9d:d9:0d:0e:53:a3:1a:71:f2:af:72:5a:b4: 79:e8:99:bc:b0:f5:4b:d6:2b:38:16:5e:9f:54:e8: d5:5d:86:3b:75:84:e2:4c:00:8c:9a:94:6d:dd:13: 97:25:3d:2e:0d:32:da:95:d1:21:bb:1d:df:02:65: 3d:e7:7f:2f:e8:93:24:8a:26:d4:c9:9d:85:b0:86: b9:68:03:51:ba:21:af:dd:70:40:66:dd:cc:3e:ab: f1:8e:6b:57:19:f8:bb:45:8b:85:94:bc:7c:f6:b2: e3:ff:f3:94:a7:a3:9c:51:fa:f4:9c:64:b1:3a:b3: b6:cc:44:77:fe:75:d0:7e:69:56:56:45:38:57:07: f9:b6:19:02:7e:c3:4d:08:28:08:ea:83:0b:22:3f: ad:c1:ea:f0:ac:1f:42:aa:17:d0:44:17:c7:90:97: 7f:aa:71:8e:26:cb:59:46:d1:d8:e5:ad:73:96:5d: 64:4e:fe:6f:fd:f8:1e:14:a9:03:99:60:f8:a5:5e: 0c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:4D:4F:89:B0:19:72:07:F8:DE:92:B6:60:E8:A5:9D:94:68:B4:40 X509v3 Authority Key Identifier: keyid:FD:59:D3:56:1F:F8:AD:DB:5F:1B:0C:36:A3:DD:25:68:B7:4C:A5:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_VnTVh_4rdtfGww2o90laLdMpRU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/af2b36-6e8b-4601-b074-d612a21ebeae/1/_VnTVh_4rdtfGww2o90laLdMpRU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:2d:5c:d2:64:80:d4:69:b2:76:35:53:bc:39:f1:92:70:8e: da:16:19:33:40:05:e1:bb:1d:00:22:57:ed:c5:dc:31:10:06: d7:0b:ee:4e:e5:2d:bc:be:2d:1c:86:6c:84:fe:1a:7e:f4:80: b9:2f:ae:6e:95:5a:42:0b:97:aa:72:23:3b:f5:53:5f:e6:1c: 33:58:02:09:75:aa:42:42:19:dd:3a:10:2f:c4:de:c0:b7:b8: 6c:4b:f3:7a:3f:30:29:e4:80:bf:0f:ba:bc:47:39:a8:a7:11: eb:92:2e:ce:f5:6a:63:de:45:fa:48:2a:e8:b3:62:8c:07:cd: d9:51:60:0c:89:3e:fd:25:d5:70:7c:70:79:8b:c2:e3:48:9b: 54:68:a0:91:57:57:00:23:fc:23:84:3f:07:22:65:75:ec:3d: c0:f7:f5:5a:b2:48:9b:8f:5c:13:bf:46:ef:fc:da:e8:9d:d4: 8d:d4:e8:b6:b4:9a:94:0b:ef:e7:1a:4b:a9:47:29:35:d1:c5: e5:8e:e5:89:f6:af:03:60:c7:30:a6:3f:8b:84:0c:ae:fa:f4: ad:09:3b:2c:b4:a5:16:cb:8e:ea:e7:c0:b3:7b:55:71:40:7f: b2:73:61:1c:fb:25:0a:16:ad:8f:ad:83:2b:76:e4:3e:91:40: 59:89:f5:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2Ja9CmSys/9tLdW6qJr2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkNTlkMzU2MWZmOGFkZGI1ZjFiMGMzNmEzZGQyNTY4Yjc0 Y2E1MTUwHhcNMjYwMjA5MTAwMDM5WhcNMjYwMjEwMTAwMDM5WjAzMTEwLwYDVQQD EygwOTRkNGY4OWIwMTk3MjA3ZjhkZTkyYjY2MGU4YTU5ZDk0NjhiNDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0DgyR55DeGTK8qB0kp+c3Kpdavpf XQvlmq87g4YnT7qXibnzEtwyJ7k3F17+jR8YrL41xIY8kXZmO8JAL53ZDQ5Toxpx 8q9yWrR56Jm8sPVL1is4Fl6fVOjVXYY7dYTiTACMmpRt3ROXJT0uDTLaldEhux3f AmU9538v6JMkiibUyZ2FsIa5aANRuiGv3XBAZt3MPqvxjmtXGfi7RYuFlLx89rLj //OUp6OcUfr0nGSxOrO2zER3/nXQfmlWVkU4Vwf5thkCfsNNCCgI6oMLIj+twerw rB9CqhfQRBfHkJd/qnGOJstZRtHY5a1zll1kTv5v/fgeFKkDmWD4pV4M8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAlNT4mwGXIH+N6StmDopZ2UaLRAMB8GA1UdIwQY MBaAFP1Z01Yf+K3bXxsMNqPdJWi3TKUVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1ZuVFZoXzRyZHRmR3d3Mm85MGxhTGRNcFJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9hZjJiMzYtNmU4Yi00NjAxLWIwNzQt ZDYxMmEyMWViZWFlLzEvX1ZuVFZoXzRyZHRmR3d3Mm85MGxhTGRNcFJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9hZjJiMzYtNmU4Yi00NjAxLWIwNzQtZDYxMmEyMWViZWFl LzEvX1ZuVFZoXzRyZHRmR3d3Mm85MGxhTGRNcFJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKi1c0mSA 1GmydjVTvDnxknCO2hYZM0AF4bsdACJX7cXcMRAG1wvuTuUtvL4tHIZshP4afvSA uS+ubpVaQguXqnIjO/VTX+YcM1gCCXWqQkIZ3ToQL8TewLe4bEvzej8wKeSAvw+6 vEc5qKcR65IuzvVqY95F+kgq6LNijAfN2VFgDIk+/SXVcHxweYvC40ibVGigkVdX ACP8I4Q/ByJldew9wPf1WrJIm49cE79G7/za6J3UjdTotrSalAvv5xpLqUcpNdHF 5Y7lifavA2DHMKY/i4QMrvr0rQk7LLSlFsuO6ufAs3tVcUB/snNhHPslChatj62D K3bkPpFAWYn1TQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:26 2026 by rpki-client