This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft File: t38R7tTnnIXMxWLfPR8oPjOdou0.mft (raw, json) Hash identifier: w6Js2GEhmTbMjmCg7njzkHf1WoJbpQqycxQDEhq6r/Q= Subject key identifier: 23:3F:04:34:54:4E:23:EC:26:4A:9D:CE:8C:D8:04:6E:C3:46:7F:4D Authority key identifier: B7:7F:11:EE:D4:E7:9C:85:CC:C5:62:DF:3D:1F:28:3E:33:9D:A2:ED Certificate issuer: /CN=b77f11eed4e79c85ccc562df3d1f283e339da2ed Certificate serial: 019C4321DD5740B99B7AC7CEB98FC88EC68D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t38R7tTnnIXMxWLfPR8oPjOdou0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft Manifest number: 0EB2 Signing time: Mon 09 Feb 2026 16:00:18 +0000 Manifest this update: Mon 09 Feb 2026 16:00:18 +0000 Manifest next update: Tue 10 Feb 2026 16:00:18 +0000 Files and hashes: 1: t38R7tTnnIXMxWLfPR8oPjOdou0.crl (hash: wDqyJPDm5R/9pKSyuV34MPrInzCvovGE9qx5mbB/kyk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.crl rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft rsync://rpki.ripe.net/repository/DEFAULT/t38R7tTnnIXMxWLfPR8oPjOdou0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:dd:57:40:b9:9b:7a:c7:ce:b9:8f:c8:8e:c6:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b77f11eed4e79c85ccc562df3d1f283e339da2ed Validity Not Before: Feb 9 16:00:18 2026 GMT Not After : Feb 10 16:00:18 2026 GMT Subject: CN=233f0434544e23ec264a9dce8cd8046ec3467f4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:90:d3:5e:51:85:55:35:fa:da:ad:6d:22:60: 4f:e2:32:67:7f:7a:16:b5:38:4c:4d:db:94:04:b6: fb:ca:9c:67:6e:09:ea:fc:07:56:53:b5:bd:45:e5: 47:f1:c8:89:13:55:1c:05:d0:f0:c1:e0:67:bc:f3: 9d:fe:3c:db:15:7a:4c:51:bd:f1:11:3f:c6:de:42: ca:50:18:9e:db:9a:99:47:ca:13:4b:f8:9e:03:a6: 7e:ef:92:a1:e4:8c:e6:0a:65:ba:29:96:56:e1:e7: 46:6f:98:3d:fc:46:15:16:05:64:63:76:d3:76:58: ac:52:07:81:41:29:3d:da:0d:43:e0:1c:a7:ab:86: c0:05:d8:39:e0:83:e7:f6:49:97:98:99:c3:26:72: 70:3b:65:b0:fd:c3:9a:29:9e:0a:e4:82:11:a2:df: bb:55:2b:2b:e3:b4:10:f8:5a:f3:9c:02:5e:23:51: 52:6a:1e:73:99:63:54:43:75:5d:61:04:e7:65:86: 2d:ff:eb:95:59:3b:dc:b6:fa:f4:33:05:be:80:42: f2:26:9a:ed:31:73:c0:09:0b:62:7b:5e:c9:be:a1: d0:da:32:f7:87:60:f8:9e:8a:50:cb:79:7f:ca:00: 99:59:25:c9:0d:90:86:f1:b5:79:2d:d6:d5:c0:eb: 19:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:3F:04:34:54:4E:23:EC:26:4A:9D:CE:8C:D8:04:6E:C3:46:7F:4D X509v3 Authority Key Identifier: keyid:B7:7F:11:EE:D4:E7:9C:85:CC:C5:62:DF:3D:1F:28:3E:33:9D:A2:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t38R7tTnnIXMxWLfPR8oPjOdou0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:4b:20:1c:da:ed:8d:7e:cb:94:38:d2:e1:a6:68:4e:84:2f: 57:8b:ee:82:07:cc:b0:03:13:a4:98:6e:b1:a7:08:64:7a:5a: a9:61:7d:89:ed:b0:31:50:91:90:e0:ea:77:93:7f:0e:6c:86: 3e:96:af:2a:30:c3:3f:dc:48:fe:64:08:dd:43:06:0a:03:04: 4c:fc:8d:32:5a:47:56:d8:b7:fe:2a:3f:e6:6e:fe:2a:3f:02: 27:15:5e:a3:8b:d5:cb:1a:5a:f9:de:d6:71:74:01:e9:af:7c: d5:b9:a5:98:72:50:52:3e:d6:25:29:e3:63:9a:53:e4:f8:0d: 3c:3d:55:01:e8:41:be:97:66:2c:26:a5:5e:c7:9c:44:69:bb: 2d:ca:f7:4b:eb:4b:86:d9:06:07:a8:81:47:00:bd:1e:6f:7d: 9f:8e:02:79:02:bf:53:05:0b:42:c3:c8:a8:42:0f:63:db:d5: 5b:f0:9a:24:ef:00:ce:bc:4b:5d:73:2a:06:83:75:14:ed:b6: 86:bb:73:aa:1c:11:74:4a:1d:d3:ac:80:7a:f3:69:a0:e4:87: 6b:31:34:f3:4a:0d:00:9c:95:3f:1b:7a:9a:65:ae:f4:de:d0: 1a:68:f5:01:86:0e:25:fb:f9:2f:f2:ff:8e:9f:53:77:cb:68: bf:08:6b:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDId1XQLmbesfOuY/IjsaNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3N2YxMWVlZDRlNzljODVjY2M1NjJkZjNkMWYyODNlMzM5 ZGEyZWQwHhcNMjYwMjA5MTYwMDE4WhcNMjYwMjEwMTYwMDE4WjAzMTEwLwYDVQQD EygyMzNmMDQzNDU0NGUyM2VjMjY0YTlkY2U4Y2Q4MDQ2ZWMzNDY3ZjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJDTXlGFVTX62q1tImBP4jJnf3oW tThMTduUBLb7ypxnbgnq/AdWU7W9ReVH8ciJE1UcBdDwweBnvPOd/jzbFXpMUb3x ET/G3kLKUBie25qZR8oTS/ieA6Z+75Kh5IzmCmW6KZZW4edGb5g9/EYVFgVkY3bT dlisUgeBQSk92g1D4Bynq4bABdg54IPn9kmXmJnDJnJwO2Ww/cOaKZ4K5IIRot+7 VSsr47QQ+FrznAJeI1FSah5zmWNUQ3VdYQTnZYYt/+uVWTvctvr0MwW+gELyJprt MXPACQtie17JvqHQ2jL3h2D4nopQy3l/ygCZWSXJDZCG8bV5LdbVwOsZpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCM/BDRUTiPsJkqdzozYBG7DRn9NMB8GA1UdIwQY MBaAFLd/Ee7U55yFzMVi3z0fKD4znaLtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDM4Ujd0VG5uSVhNeFdMZlBSOG9Qak9kb3UwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi85NzUwMzAtNDNiMi00MDBiLThkYzkt MGM3NzU1OWQ5ZGIwLzEvdDM4Ujd0VG5uSVhNeFdMZlBSOG9Qak9kb3UwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi85NzUwMzAtNDNiMi00MDBiLThkYzktMGM3NzU1OWQ5ZGIw LzEvdDM4Ujd0VG5uSVhNeFdMZlBSOG9Qak9kb3UwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh0sgHNrt jX7LlDjS4aZoToQvV4vuggfMsAMTpJhusacIZHpaqWF9ie2wMVCRkODqd5N/DmyG PpavKjDDP9xI/mQI3UMGCgMETPyNMlpHVti3/io/5m7+Kj8CJxVeo4vVyxpa+d7W cXQB6a981bmlmHJQUj7WJSnjY5pT5PgNPD1VAehBvpdmLCalXsecRGm7Lcr3S+tL htkGB6iBRwC9Hm99n44CeQK/UwULQsPIqEIPY9vVW/CaJO8AzrxLXXMqBoN1FO22 hrtzqhwRdEod06yAevNpoOSHazE080oNAJyVPxt6mmWu9N7QGmj1AYYOJfv5L/L/ jp9Td8tovwhrsA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:18 2026 by rpki-client