This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft File: T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft (raw, json) Hash identifier: CF3IP0oxhTZBsYJeCk06W0QYJrcCLv5wose8nRtUiMQ= Subject key identifier: 92:E1:A0:68:83:FD:52:44:F5:F9:A0:BE:DD:29:65:7B:30:AF:04:47 Authority key identifier: 4F:50:A0:DC:C7:1C:42:92:3E:40:70:11:BD:21:2A:FA:5C:62:E5:9D Certificate issuer: /CN=4f50a0dcc71c42923e407011bd212afa5c62e59d Certificate serial: 019C41A1477F1280C649B5C081E4C4296F1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft Manifest number: 0959 Signing time: Mon 09 Feb 2026 09:00:14 +0000 Manifest this update: Mon 09 Feb 2026 09:00:14 +0000 Manifest next update: Tue 10 Feb 2026 09:00:14 +0000 Files and hashes: 1: T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl (hash: UzN6RWSKYngjqDnFibRfz6cK2ad0nHo/kDDn3qlG6Ec=) 2: jqFl-7_gLpulPBCBNUBkTagrN3g.roa (hash: 7OT128HVnPG3xzUxRNuL4t2bFGILvHb7kyCtTCl4GV0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:47:7f:12:80:c6:49:b5:c0:81:e4:c4:29:6f:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f50a0dcc71c42923e407011bd212afa5c62e59d Validity Not Before: Feb 9 09:00:14 2026 GMT Not After : Feb 10 09:00:14 2026 GMT Subject: CN=92e1a06883fd5244f5f9a0bedd29657b30af0447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3a:94:2a:20:c8:47:dc:84:ba:33:9e:63:6b: c5:da:ae:a2:86:04:85:78:1a:33:b3:35:f6:13:74: 7b:6c:0b:b8:24:b7:2e:e7:8d:cd:7a:56:09:8c:85: 9f:32:99:b5:94:50:76:bb:0d:53:15:68:69:17:41: c6:18:99:c1:ea:31:f9:be:18:98:d1:db:81:7d:0f: 7b:cf:48:b3:a1:31:23:c0:78:07:1f:9d:92:7b:e7: 8c:4a:dd:b1:99:e2:67:b8:18:5e:13:d0:5e:2b:87: 8a:95:a9:56:e9:18:03:5d:2f:c9:db:1b:c6:01:74: ba:ab:6e:e4:e1:46:22:75:ce:5e:76:3e:c9:d7:ae: b0:05:86:3b:1f:0e:90:c3:c1:77:ba:b9:84:5d:b3: 21:53:be:65:3e:ec:9b:5c:f8:8e:6a:6b:21:ea:31: d4:10:46:69:00:11:d7:28:0d:86:68:dd:67:4f:0c: f0:f5:2f:98:c0:7c:88:a8:09:46:3a:77:a9:e1:e5: ef:90:fc:31:87:29:83:a6:bd:35:10:29:62:e4:39: b1:01:54:5b:b5:02:d8:b9:b0:34:cb:5f:2a:1f:53: 73:60:8d:8b:d7:df:b4:dd:a0:71:f1:dd:99:cc:cc: 6c:3c:76:38:c3:76:3c:c8:6f:73:6c:d1:fb:25:29: cc:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E1:A0:68:83:FD:52:44:F5:F9:A0:BE:DD:29:65:7B:30:AF:04:47 X509v3 Authority Key Identifier: keyid:4F:50:A0:DC:C7:1C:42:92:3E:40:70:11:BD:21:2A:FA:5C:62:E5:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:87:b9:5d:5d:84:8e:e7:4c:71:9b:53:77:fc:50:02:85:1d: 5a:10:6a:c8:b1:0f:40:0d:8f:2b:f7:d5:d6:a8:4a:ff:20:f5: 32:70:d9:27:53:3b:c1:4f:9e:48:b7:99:29:fb:00:bb:77:37: 91:ef:49:d6:7e:0d:9b:eb:63:ae:7f:72:18:f8:77:8d:bc:3c: 8f:63:53:78:60:5d:e9:fd:0d:3d:5c:ee:e0:a7:92:2c:01:fb: 5f:f8:45:bc:6f:59:95:7b:c1:70:73:6f:1c:01:02:1b:00:8e: 25:fd:d1:77:6f:64:92:95:a3:cd:84:dc:89:ee:fe:14:f7:c8: f2:f6:46:23:52:4c:67:00:99:65:94:7f:7a:db:75:eb:24:1b: eb:ef:8a:74:c8:bd:ec:22:9e:73:85:fc:98:a6:7c:49:ea:ca: 11:4d:02:4e:05:6a:5f:51:8f:0a:e1:e3:41:58:cb:69:17:8b: dd:16:c4:29:05:b0:63:c8:8a:76:91:3f:0d:63:0e:6e:04:1a: 71:c2:6e:99:0d:a4:b3:cb:97:46:f8:e1:7c:c0:42:bf:a3:80: 5c:e4:0f:fd:86:17:03:15:2c:16:36:e3:2a:5f:85:d1:95:a9: be:d4:d2:0c:d6:51:f4:4a:b0:0a:2e:33:50:11:ac:b4:8c:0b: dd:d9:58:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoUd/EoDGSbXAgeTEKW8dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmNTBhMGRjYzcxYzQyOTIzZTQwNzAxMWJkMjEyYWZhNWM2 MmU1OWQwHhcNMjYwMjA5MDkwMDE0WhcNMjYwMjEwMDkwMDE0WjAzMTEwLwYDVQQD Eyg5MmUxYTA2ODgzZmQ1MjQ0ZjVmOWEwYmVkZDI5NjU3YjMwYWYwNDQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDqUKiDIR9yEujOeY2vF2q6ihgSF eBozszX2E3R7bAu4JLcu543NelYJjIWfMpm1lFB2uw1TFWhpF0HGGJnB6jH5vhiY 0duBfQ97z0izoTEjwHgHH52Se+eMSt2xmeJnuBheE9BeK4eKlalW6RgDXS/J2xvG AXS6q27k4UYidc5edj7J166wBYY7Hw6Qw8F3urmEXbMhU75lPuybXPiOamsh6jHU EEZpABHXKA2GaN1nTwzw9S+YwHyIqAlGOnep4eXvkPwxhymDpr01ECli5DmxAVRb tQLYubA0y18qH1NzYI2L19+03aBx8d2ZzMxsPHY4w3Y8yG9zbNH7JSnMIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJLhoGiD/VJE9fmgvt0pZXswrwRHMB8GA1UdIwQY MBaAFE9QoNzHHEKSPkBwEb0hKvpcYuWdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDFDZzNNY2NRcEktUUhBUnZTRXEtbHhpNVowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8zMGEyYmYtYjUxZS00ZDcyLWI0MDkt Y2E4YjI3NThiZTE1LzEvVDFDZzNNY2NRcEktUUhBUnZTRXEtbHhpNVowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC8zMGEyYmYtYjUxZS00ZDcyLWI0MDktY2E4YjI3NThiZTE1 LzEvVDFDZzNNY2NRcEktUUhBUnZTRXEtbHhpNVowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOYe5XV2E judMcZtTd/xQAoUdWhBqyLEPQA2PK/fV1qhK/yD1MnDZJ1M7wU+eSLeZKfsAu3c3 ke9J1n4Nm+tjrn9yGPh3jbw8j2NTeGBd6f0NPVzu4KeSLAH7X/hFvG9ZlXvBcHNv HAECGwCOJf3Rd29kkpWjzYTcie7+FPfI8vZGI1JMZwCZZZR/ett16yQb6++KdMi9 7CKec4X8mKZ8SerKEU0CTgVqX1GPCuHjQVjLaReL3RbEKQWwY8iKdpE/DWMObgQa ccJumQ2ks8uXRvjhfMBCv6OAXOQP/YYXAxUsFjbjKl+F0ZWpvtTSDNZR9EqwCi4z UBGstIwL3dlYig== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:41 2026 by rpki-client