This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft File: 4VW0MN7doRMQ9shzieMgj8ZSnps.mft (raw, json) Hash identifier: PhXnOV9AFXCsHG1kRAKMznBPAKqRiivv/zixxhsdRLw= Subject key identifier: 71:C8:0E:00:51:26:17:F3:67:E9:E9:FA:B5:4E:02:A3:62:D9:53:FB Authority key identifier: E1:55:B4:30:DE:DD:A1:13:10:F6:C8:73:89:E3:20:8F:C6:52:9E:9B Certificate issuer: /CN=e155b430dedda11310f6c87389e3208fc6529e9b Certificate serial: 019C41A1DB7A48C8FC1C16616B059C79CB5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VW0MN7doRMQ9shzieMgj8ZSnps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft Manifest number: 1138 Signing time: Mon 09 Feb 2026 09:00:52 +0000 Manifest this update: Mon 09 Feb 2026 09:00:52 +0000 Manifest next update: Tue 10 Feb 2026 09:00:52 +0000 Files and hashes: 1: 4VW0MN7doRMQ9shzieMgj8ZSnps.crl (hash: GzSvzyU1m7bwO+C5gRjyuyPAhih7PQq/uxHIctHkb8U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.crl rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft rsync://rpki.ripe.net/repository/DEFAULT/4VW0MN7doRMQ9shzieMgj8ZSnps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:db:7a:48:c8:fc:1c:16:61:6b:05:9c:79:cb:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e155b430dedda11310f6c87389e3208fc6529e9b Validity Not Before: Feb 9 09:00:52 2026 GMT Not After : Feb 10 09:00:52 2026 GMT Subject: CN=71c80e00512617f367e9e9fab54e02a362d953fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:21:7f:8e:3b:bf:c9:12:5f:1d:d0:ac:14:b5: 6e:db:0d:30:f6:51:f5:29:3b:3e:ea:98:c6:9e:63: 35:6a:a7:da:71:ca:f0:aa:7d:75:52:32:c8:f2:e2: aa:8c:60:2f:de:99:28:25:ce:84:e1:b7:37:34:9f: b0:aa:b0:e2:9e:45:77:a2:0b:97:f1:d8:92:b9:e3: 57:21:27:5c:d3:9a:6c:e6:f7:a3:6b:cf:99:41:0a: 72:6c:8a:a8:ed:d0:6e:2a:d1:24:e4:84:f0:c0:d7: 45:17:22:70:80:e9:e1:96:de:c8:20:f8:26:42:61: 8a:6d:cb:83:b0:72:0b:c1:fe:9d:44:69:ea:f2:8f: 24:cc:b5:0b:1b:09:50:63:6f:39:33:96:51:88:a5: 9c:7c:24:30:34:b2:b7:d6:9d:73:0a:a1:bf:0c:91: 6e:e2:9a:c8:56:99:f9:80:e4:56:ea:63:c0:d3:2f: aa:3c:7e:55:00:c4:7a:a8:6d:4e:6f:9c:37:18:f1: 07:82:26:9e:d1:cb:60:4a:f8:c2:33:f2:b5:a4:cf: d3:71:73:e9:f7:9b:27:44:6f:6b:8c:b5:cc:32:fb: 0d:7d:3d:15:e2:03:16:31:8c:58:67:5f:33:ca:d5: 92:d2:5a:a5:38:ab:ef:7a:e8:b2:00:69:bc:0c:bc: 33:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C8:0E:00:51:26:17:F3:67:E9:E9:FA:B5:4E:02:A3:62:D9:53:FB X509v3 Authority Key Identifier: keyid:E1:55:B4:30:DE:DD:A1:13:10:F6:C8:73:89:E3:20:8F:C6:52:9E:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VW0MN7doRMQ9shzieMgj8ZSnps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:f0:ad:46:67:b1:8d:15:40:7b:f5:9a:5b:95:b2:61:80:a0: ac:62:f8:4c:13:c1:ff:8d:a8:77:6c:ba:b2:04:21:03:fa:0a: 5f:32:36:50:c2:a5:ae:06:b8:23:75:f3:f2:52:b5:f7:f2:20: cd:0c:78:52:16:02:29:44:70:18:f6:49:4e:7f:d7:24:54:c5: 74:88:d4:af:fc:ac:d9:aa:ee:17:d7:e5:5b:58:13:9d:3c:f0: a4:b3:5a:e2:df:d7:82:a1:17:6b:1d:97:1e:ca:44:a6:e8:38: b8:f8:5f:06:37:b7:ec:93:c2:85:dd:cd:5e:f3:ab:0f:9c:69: 02:c8:30:0b:91:81:90:b8:4b:6d:77:a2:ed:16:df:bb:a0:73: 72:ca:e7:00:79:9d:6c:41:81:e4:b5:df:56:d8:2d:52:77:ea: 9c:d7:d7:5a:cc:54:eb:c8:01:90:38:d6:01:d0:a9:a0:b5:91: 37:33:d4:76:4f:89:45:bd:3e:b8:5d:fd:1e:f6:d0:31:99:cb: f6:a5:a0:be:24:99:a3:f8:f6:15:e7:6c:a4:c9:ea:6f:05:2b: b0:be:75:49:68:81:52:0b:a2:e2:27:4a:cb:4c:07:90:1d:9b: 47:dc:d4:0e:92:5e:54:99:26:93:95:9a:df:13:5d:d7:15:2c: 02:b1:1a:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBodt6SMj8HBZhawWcectcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxNTViNDMwZGVkZGExMTMxMGY2Yzg3Mzg5ZTMyMDhmYzY1 MjllOWIwHhcNMjYwMjA5MDkwMDUyWhcNMjYwMjEwMDkwMDUyWjAzMTEwLwYDVQQD Eyg3MWM4MGUwMDUxMjYxN2YzNjdlOWU5ZmFiNTRlMDJhMzYyZDk1M2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCF/jju/yRJfHdCsFLVu2w0w9lH1 KTs+6pjGnmM1aqfaccrwqn11UjLI8uKqjGAv3pkoJc6E4bc3NJ+wqrDinkV3oguX 8diSueNXISdc05ps5veja8+ZQQpybIqo7dBuKtEk5ITwwNdFFyJwgOnhlt7IIPgm QmGKbcuDsHILwf6dRGnq8o8kzLULGwlQY285M5ZRiKWcfCQwNLK31p1zCqG/DJFu 4prIVpn5gORW6mPA0y+qPH5VAMR6qG1Ob5w3GPEHgiae0ctgSvjCM/K1pM/TcXPp 95snRG9rjLXMMvsNfT0V4gMWMYxYZ18zytWS0lqlOKvveuiyAGm8DLwzBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHHIDgBRJhfzZ+np+rVOAqNi2VP7MB8GA1UdIwQY MBaAFOFVtDDe3aETEPbIc4njII/GUp6bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFZXME1ON2RvUk1ROXNoemllTWdqOFpTbnBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9iZjlkNTUtYjBkNS00YjA3LTkyYjAt MGQ3NDA2MGExNmRkLzEvNFZXME1ON2RvUk1ROXNoemllTWdqOFpTbnBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9iZjlkNTUtYjBkNS00YjA3LTkyYjAtMGQ3NDA2MGExNmRk LzEvNFZXME1ON2RvUk1ROXNoemllTWdqOFpTbnBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAevCtRmex jRVAe/WaW5WyYYCgrGL4TBPB/42od2y6sgQhA/oKXzI2UMKlrga4I3Xz8lK19/Ig zQx4UhYCKURwGPZJTn/XJFTFdIjUr/ys2aruF9flW1gTnTzwpLNa4t/XgqEXax2X HspEpug4uPhfBje37JPChd3NXvOrD5xpAsgwC5GBkLhLbXei7Rbfu6BzcsrnAHmd bEGB5LXfVtgtUnfqnNfXWsxU68gBkDjWAdCpoLWRNzPUdk+JRb0+uF39HvbQMZnL 9qWgviSZo/j2FedspMnqbwUrsL51SWiBUgui4idKy0wHkB2bR9zUDpJeVJkmk5Wa 3xNd1xUsArEa/A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:18 2026 by rpki-client