This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft File: SFk-QNpaUvMi21oEwg-0htThVQI.mft (raw, json) Hash identifier: /nWrCqVtX/exLtubZz2z87/m5FpeXwx4pvDriAigqGQ= Subject key identifier: 2B:0F:A5:17:AA:54:AE:A3:8A:A5:F0:F8:70:93:7E:26:F8:88:A2:9B Authority key identifier: 48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02 Certificate issuer: /CN=48593e40da5a52f322db5a04c20fb486d4e15502 Certificate serial: 019C420F575999E64F4E01481B91F3F6A96F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft Manifest number: 14CB Signing time: Mon 09 Feb 2026 11:00:27 +0000 Manifest this update: Mon 09 Feb 2026 11:00:27 +0000 Manifest next update: Tue 10 Feb 2026 11:00:27 +0000 Files and hashes: 1: SFk-QNpaUvMi21oEwg-0htThVQI.crl (hash: qxD6QvVq19W6m2Dlqbz4MP6qgAV0F9Wya2zQRGiferc=) 2: VFzP0FGh0SQzSyAC9MEO9bnaqZU.roa (hash: DwjrXgZVVBQjvwjFMKe9t4mZj6kib5GRnctDIksFE5w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:57:59:99:e6:4f:4e:01:48:1b:91:f3:f6:a9:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48593e40da5a52f322db5a04c20fb486d4e15502 Validity Not Before: Feb 9 11:00:27 2026 GMT Not After : Feb 10 11:00:27 2026 GMT Subject: CN=2b0fa517aa54aea38aa5f0f870937e26f888a29b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f3:16:39:77:93:49:cf:5e:60:6a:13:09:b1: d7:47:e0:e5:37:a2:dd:35:d6:d2:14:bf:51:8e:fd: 0b:58:d4:0d:dd:f9:18:4e:38:a2:38:cd:6f:da:c3: a1:d9:b4:33:72:a3:d4:94:f3:52:76:56:4b:27:03: 4d:e5:9f:97:1b:b5:ea:b4:35:0d:25:52:fa:63:aa: 34:99:d3:a9:2e:54:d5:b4:2f:ba:f1:0f:ae:bd:13: 0e:81:f5:ea:6b:af:57:48:05:eb:8a:15:29:1f:62: 86:08:df:a2:6a:d1:14:09:71:ce:d5:89:d0:66:40: 7c:9f:99:19:f5:17:a8:ce:37:be:32:e1:c1:fe:48: 49:94:1e:66:f4:87:5a:7a:b2:1b:ff:0c:ad:f0:aa: 5a:b5:89:59:71:af:2f:c3:be:e6:de:5a:b8:79:ab: 49:d8:be:54:ad:18:02:bf:6a:e7:48:36:c7:9e:9e: ac:fc:04:5f:1f:dd:1e:86:62:2c:7e:b1:74:66:5e: f5:4f:ae:c0:92:b8:a7:80:45:05:ee:68:99:3c:37: e6:23:2f:5f:d2:b9:15:6e:8d:72:d7:a8:b0:b0:0e: df:33:05:43:a0:ee:49:a1:46:ca:5e:f3:8a:4d:61: ce:2f:5d:75:9c:ee:29:55:3b:43:2f:c2:f0:91:c0: 6e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:0F:A5:17:AA:54:AE:A3:8A:A5:F0:F8:70:93:7E:26:F8:88:A2:9B X509v3 Authority Key Identifier: keyid:48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:39:76:48:a5:a6:0d:b2:1f:39:db:a8:33:45:74:0b:5a:f3: 34:65:b1:c5:1f:8f:87:39:4f:54:27:a0:64:27:a0:61:92:0e: 74:65:a2:87:6e:29:95:15:17:36:af:6c:c1:7f:2a:db:e7:be: 61:40:c5:de:c2:f5:2b:31:0a:21:58:e5:42:04:48:e8:e1:7a: a1:ac:ef:47:94:63:f3:bb:5d:a9:61:d7:ea:b5:ac:95:2a:0e: b1:f7:9b:c1:e2:5d:4f:e5:fb:e5:92:89:76:f1:de:11:ac:e2: c7:8f:e7:c4:44:4f:d1:2e:c3:66:52:30:ff:75:50:eb:66:5c: cc:b9:59:96:d8:fd:7c:a5:0f:83:a5:ce:a2:e1:0e:39:c4:64: 09:43:c9:d7:1f:34:e5:d9:aa:38:4d:c4:8a:f4:c5:b3:da:4f: ad:94:e7:d7:91:83:53:3b:06:86:08:27:25:4a:c4:df:8c:ae: 1b:31:2c:f8:58:f4:cf:b8:dc:73:13:66:87:07:5e:c5:6a:1a: 8e:90:b6:b5:54:46:02:ad:4b:e6:db:78:10:44:a4:b8:de:7d: ae:e6:34:8c:e1:06:ef:45:a0:a2:7e:4b:c6:1d:37:39:fd:fe: d8:a2:82:4c:d6:57:9b:4c:bc:ff:a2:76:7b:d6:8a:94:9c:b8: 54:aa:6a:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD1dZmeZPTgFIG5Hz9qlvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4NTkzZTQwZGE1YTUyZjMyMmRiNWEwNGMyMGZiNDg2ZDRl MTU1MDIwHhcNMjYwMjA5MTEwMDI3WhcNMjYwMjEwMTEwMDI3WjAzMTEwLwYDVQQD EygyYjBmYTUxN2FhNTRhZWEzOGFhNWYwZjg3MDkzN2UyNmY4ODhhMjliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvMWOXeTSc9eYGoTCbHXR+DlN6Ld NdbSFL9Rjv0LWNQN3fkYTjiiOM1v2sOh2bQzcqPUlPNSdlZLJwNN5Z+XG7XqtDUN JVL6Y6o0mdOpLlTVtC+68Q+uvRMOgfXqa69XSAXrihUpH2KGCN+iatEUCXHO1YnQ ZkB8n5kZ9Reozje+MuHB/khJlB5m9IdaerIb/wyt8KpatYlZca8vw77m3lq4eatJ 2L5UrRgCv2rnSDbHnp6s/ARfH90ehmIsfrF0Zl71T67AkringEUF7miZPDfmIy9f 0rkVbo1y16iwsA7fMwVDoO5JoUbKXvOKTWHOL111nO4pVTtDL8LwkcBudQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCsPpReqVK6jiqXw+HCTfib4iKKbMB8GA1UdIwQY MBaAFEhZPkDaWlLzIttaBMIPtIbU4VUCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0ZrLVFOcGFVdk1pMjFvRXdnLTBodFRoVlFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85NzAwYzgtZjlhYi00MmE3LWIxZmEt ZTY4YTA4ZDllNTRmLzEvU0ZrLVFOcGFVdk1pMjFvRXdnLTBodFRoVlFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi85NzAwYzgtZjlhYi00MmE3LWIxZmEtZTY4YTA4ZDllNTRm LzEvU0ZrLVFOcGFVdk1pMjFvRXdnLTBodFRoVlFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATDl2SKWm DbIfOduoM0V0C1rzNGWxxR+PhzlPVCegZCegYZIOdGWih24plRUXNq9swX8q2+e+ YUDF3sL1KzEKIVjlQgRI6OF6oazvR5Rj87tdqWHX6rWslSoOsfebweJdT+X75ZKJ dvHeEazix4/nxERP0S7DZlIw/3VQ62ZczLlZltj9fKUPg6XOouEOOcRkCUPJ1x80 5dmqOE3EivTFs9pPrZTn15GDUzsGhggnJUrE34yuGzEs+Fj0z7jccxNmhwdexWoa jpC2tVRGAq1L5tt4EESkuN59ruY0jOEG70Wgon5Lxh03Of3+2KKCTNZXm0y8/6J2 e9aKlJy4VKpqvg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:39 2026 by rpki-client