This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft File: 45R9MIiPTYgtNYTtyKcPt2YV5fo.mft (raw, json) Hash identifier: btS3MN3aQAh4/BzHwgfEg3dt/snGxBM672yXZFOMZYU= Subject key identifier: 36:F8:93:6D:30:33:F5:C3:1E:37:12:1B:BF:3F:FE:70:8F:EA:4E:85 Authority key identifier: E3:94:7D:30:88:8F:4D:88:2D:35:84:ED:C8:A7:0F:B7:66:15:E5:FA Certificate issuer: /CN=e3947d30888f4d882d3584edc8a70fb76615e5fa Certificate serial: 019C4321F9A2BAC4ADA57E93FA01DE4D5297 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft Manifest number: 55 Signing time: Mon 09 Feb 2026 16:00:25 +0000 Manifest this update: Mon 09 Feb 2026 16:00:25 +0000 Manifest next update: Tue 10 Feb 2026 16:00:25 +0000 Files and hashes: 1: 45R9MIiPTYgtNYTtyKcPt2YV5fo.crl (hash: LkZibVJAiHXpEd84gJnS4kclaK+llpzVuglU086Brck=) 2: GTC6u_8Z9gd4xadpdKdM5XAZSl8.roa (hash: 0yWQwDQexpIwRL0OkehWTxguFnP2RgOpylnrHqYuR9w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.crl rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:f9:a2:ba:c4:ad:a5:7e:93:fa:01:de:4d:52:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3947d30888f4d882d3584edc8a70fb76615e5fa Validity Not Before: Feb 9 16:00:25 2026 GMT Not After : Feb 10 16:00:25 2026 GMT Subject: CN=36f8936d3033f5c31e37121bbf3ffe708fea4e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:35:ca:29:7e:67:d3:88:ea:11:cd:14:ee:83: 15:a4:89:0f:87:d5:82:72:66:73:7f:a4:2f:8e:b1: 98:e2:1f:a9:14:52:60:6b:9b:fd:bf:1e:ea:79:fe: 6e:c0:73:9e:5c:65:a2:24:fb:09:07:fa:db:c4:f2: 24:9f:aa:ba:c5:9a:7c:45:d4:b8:18:13:e5:4c:7b: ab:72:de:46:20:e2:c2:6e:2c:8f:79:d5:c6:6a:58: 76:a7:ab:c8:c3:92:33:4b:66:f4:f2:4a:ff:90:78: 3b:3b:82:a4:7a:3a:be:e3:ce:22:3b:46:78:20:80: 64:b3:64:ab:e0:fb:30:ef:89:92:b2:a5:2f:25:f8: 1c:8b:6d:17:c3:b9:24:59:49:2a:cc:77:4d:f3:56: 1d:88:aa:f2:a5:3a:91:16:7c:ad:64:80:13:77:0f: 55:3e:5e:ab:29:9d:8f:25:9e:3e:8b:44:81:4f:d7: 32:99:16:db:e7:99:9b:66:d6:a5:e1:72:cc:9e:fb: c3:99:75:07:81:61:48:bf:c9:55:73:a6:f5:65:13: f5:8d:09:ab:a1:63:2a:d5:6e:d2:16:84:33:3a:07: bf:17:94:fa:b3:49:ae:ac:51:fa:c2:f8:9c:15:df: 9a:c1:02:bb:6a:61:f2:b4:3a:f0:3a:9c:78:09:f7: b5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F8:93:6D:30:33:F5:C3:1E:37:12:1B:BF:3F:FE:70:8F:EA:4E:85 X509v3 Authority Key Identifier: keyid:E3:94:7D:30:88:8F:4D:88:2D:35:84:ED:C8:A7:0F:B7:66:15:E5:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:f4:e3:98:17:f8:be:78:af:ba:b3:65:5e:59:12:13:4e:19: f6:80:be:ce:a1:db:d5:e1:ec:df:76:68:68:bd:ee:6b:7c:ea: 0e:37:32:41:6e:68:12:44:46:46:bf:dd:9b:f2:2c:a1:dc:b9: e1:69:14:44:56:01:99:86:4b:11:97:00:0d:fe:00:2b:40:37: 87:06:95:41:de:28:f9:db:e8:7f:a7:3c:ab:38:86:3b:f8:14: a0:3a:4a:cf:b7:54:dc:89:e3:bd:72:31:15:98:36:68:3c:78: fa:54:b2:c5:c7:26:17:de:a9:77:85:1f:45:af:94:a9:c0:29: 49:c5:3f:95:f1:c4:3d:53:11:2b:62:81:6f:2c:c8:f4:25:69: 23:a5:34:01:af:4a:a8:24:11:3b:8c:29:74:bd:dd:74:56:be: a4:f4:bd:b2:75:7e:e8:9e:9b:c0:88:7a:76:b5:b7:44:31:5b: 95:f4:08:97:61:71:e2:bc:1f:34:14:15:de:0d:a5:14:83:7c: aa:f0:a3:b6:31:26:2f:8b:b0:af:5e:78:6b:ff:9e:de:e5:58: df:94:a6:6d:51:cf:63:19:f7:7f:56:e3:ae:50:70:d1:5e:b2: 55:70:49:7a:5d:4a:32:7a:67:46:78:a9:9f:d8:0b:56:45:7b: b6:2d:09:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIfmiusStpX6T+gHeTVKXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzOTQ3ZDMwODg4ZjRkODgyZDM1ODRlZGM4YTcwZmI3NjYx NWU1ZmEwHhcNMjYwMjA5MTYwMDI1WhcNMjYwMjEwMTYwMDI1WjAzMTEwLwYDVQQD EygzNmY4OTM2ZDMwMzNmNWMzMWUzNzEyMWJiZjNmZmU3MDhmZWE0ZTg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTXKKX5n04jqEc0U7oMVpIkPh9WC cmZzf6QvjrGY4h+pFFJga5v9vx7qef5uwHOeXGWiJPsJB/rbxPIkn6q6xZp8RdS4 GBPlTHurct5GIOLCbiyPedXGalh2p6vIw5IzS2b08kr/kHg7O4Kkejq+484iO0Z4 IIBks2Sr4Psw74mSsqUvJfgci20Xw7kkWUkqzHdN81YdiKrypTqRFnytZIATdw9V Pl6rKZ2PJZ4+i0SBT9cymRbb55mbZtal4XLMnvvDmXUHgWFIv8lVc6b1ZRP1jQmr oWMq1W7SFoQzOge/F5T6s0murFH6wvicFd+awQK7amHytDrwOpx4Cfe1SQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDb4k20wM/XDHjcSG78//nCP6k6FMB8GA1UdIwQY MBaAFOOUfTCIj02ILTWE7cinD7dmFeX6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDVSOU1JaVBUWWd0TllUdHlLY1B0MllWNWZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9hYWZlN2EtZTE3OS00ZDZkLTlkNjIt OWRhMzZlOTE3M2EzLzEvNDVSOU1JaVBUWWd0TllUdHlLY1B0MllWNWZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9hYWZlN2EtZTE3OS00ZDZkLTlkNjItOWRhMzZlOTE3M2Ez LzEvNDVSOU1JaVBUWWd0TllUdHlLY1B0MllWNWZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiPTjmBf4 vnivurNlXlkSE04Z9oC+zqHb1eHs33ZoaL3ua3zqDjcyQW5oEkRGRr/dm/Isody5 4WkURFYBmYZLEZcADf4AK0A3hwaVQd4o+dvof6c8qziGO/gUoDpKz7dU3InjvXIx FZg2aDx4+lSyxccmF96pd4UfRa+UqcApScU/lfHEPVMRK2KBbyzI9CVpI6U0Aa9K qCQRO4wpdL3ddFa+pPS9snV+6J6bwIh6drW3RDFblfQIl2Fx4rwfNBQV3g2lFIN8 qvCjtjEmL4uwr154a/+e3uVY35SmbVHPYxn3f1bjrlBw0V6yVXBJel1KMnpnRnip n9gLVkV7ti0JMQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:22:40 2026 by rpki-client