This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.mft File: St2XYC4ZGOerwfYtz9TaynNJmz4.mft (raw, json) Hash identifier: 2Fg1myoayjAUJF+yemczEE55q16+eBLrUez0a9z2n5M= Subject key identifier: 4D:97:7F:B6:37:C0:F9:64:79:32:E6:26:97:26:DB:12:2F:61:97:C9 Authority key identifier: 4A:DD:97:60:2E:19:18:E7:AB:C1:F6:2D:CF:D4:DA:CA:73:49:9B:3E Certificate issuer: /CN=4add97602e1918e7abc1f62dcfd4daca73499b3e Certificate serial: 019C4390614EB0E1E3F43D0DA12F1ED59D0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/St2XYC4ZGOerwfYtz9TaynNJmz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.mft Manifest number: 037C Signing time: Mon 09 Feb 2026 18:01:01 +0000 Manifest this update: Mon 09 Feb 2026 18:01:01 +0000 Manifest next update: Tue 10 Feb 2026 18:01:01 +0000 Files and hashes: 1: St2XYC4ZGOerwfYtz9TaynNJmz4.crl (hash: 9FbFALeJszplBHke0dHiO56zYIjod863DPBJFuOUujw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.crl rsync://rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.mft rsync://rpki.ripe.net/repository/DEFAULT/St2XYC4ZGOerwfYtz9TaynNJmz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:61:4e:b0:e1:e3:f4:3d:0d:a1:2f:1e:d5:9d:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4add97602e1918e7abc1f62dcfd4daca73499b3e Validity Not Before: Feb 9 18:01:01 2026 GMT Not After : Feb 10 18:01:01 2026 GMT Subject: CN=4d977fb637c0f9647932e6269726db122f6197c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3b:4a:c1:a2:12:b5:d4:b0:a5:2b:83:4d:84: 78:73:f0:50:36:07:56:2e:ac:8d:eb:4a:40:9f:fb: 0a:8f:24:f1:d3:f7:96:e1:f6:4d:3c:f6:16:5c:b1: bd:09:b1:c7:f0:04:9e:ec:cc:d4:7b:f1:40:5e:4b: 44:50:35:c0:32:5d:c8:a8:9a:a3:f6:59:d2:72:1f: 19:11:87:56:2c:f5:15:46:55:3e:1c:f7:e8:b2:6f: 52:4d:8e:4e:f6:08:0f:4e:22:3c:e5:a5:4d:ae:e2: 11:40:67:da:96:4a:3a:bc:60:93:62:12:21:10:ce: 17:13:37:60:a1:3d:23:b3:93:36:61:b8:e5:77:55: 20:2e:95:8c:21:89:3f:2c:9f:bf:e6:cf:cf:12:dc: dc:d0:b0:a4:13:16:a3:59:17:56:eb:da:72:74:93: 06:79:96:ee:fe:62:6b:84:a0:c9:9f:65:91:dc:55: ba:06:8c:28:74:d4:93:06:db:c7:99:8c:78:ed:11: c2:aa:f8:e8:32:f1:18:a1:05:b0:1d:f8:6c:65:a3: 86:78:18:3d:8a:60:35:1d:57:e7:84:f4:e5:b3:c6: ad:ed:ec:84:07:63:1f:1a:01:15:ce:9b:de:03:ea: d0:04:71:0e:0c:b5:a6:3a:4f:d9:0b:a6:33:3c:80: 17:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:97:7F:B6:37:C0:F9:64:79:32:E6:26:97:26:DB:12:2F:61:97:C9 X509v3 Authority Key Identifier: keyid:4A:DD:97:60:2E:19:18:E7:AB:C1:F6:2D:CF:D4:DA:CA:73:49:9B:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/St2XYC4ZGOerwfYtz9TaynNJmz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/57542a-e1ac-4014-86fe-12e5e8173201/1/St2XYC4ZGOerwfYtz9TaynNJmz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:5b:2a:f2:f1:c7:39:44:fa:7b:86:41:13:c3:03:ee:89:a3: 0b:23:77:45:ce:77:ff:b0:19:01:a4:55:05:4b:26:50:a5:e3: 59:5f:48:e8:76:be:26:d5:12:08:62:a5:5f:95:23:e0:a1:95: 04:f3:4f:86:8d:b0:e0:0c:12:4a:72:94:21:95:01:ff:27:cf: 1e:43:f8:c8:ec:23:d8:a8:01:d0:34:74:ba:3a:9a:c8:85:d9: 37:e6:49:fe:8b:28:88:1e:99:db:6a:c3:bf:92:a0:05:4d:85: 5b:0a:2c:27:4d:f5:93:1d:77:e7:7c:5b:3d:0c:f8:44:08:74: 95:81:bd:a9:d9:86:dc:1d:0d:2b:a6:17:bf:83:56:62:1a:67: f2:7e:46:91:b8:d6:7f:54:eb:36:1c:41:92:a3:db:f2:0f:5c: 4b:b2:04:d0:83:68:5c:bc:22:ad:5c:24:96:bc:64:0d:7e:bc: 0a:f3:cb:c4:94:9e:e6:70:dc:24:fa:f1:f8:92:c5:99:59:5b: b3:74:a5:3a:f2:6b:a3:b4:55:a7:8a:53:b9:12:3b:43:d0:42: 44:f5:62:27:e7:92:34:e4:65:90:6f:b7:d0:8c:22:ad:04:50: f8:62:f9:54:f9:eb:0a:3b:5b:49:06:76:86:72:34:c2:32:f3: 2f:3a:22:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkGFOsOHj9D0NoS8e1Z0PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhZGQ5NzYwMmUxOTE4ZTdhYmMxZjYyZGNmZDRkYWNhNzM0 OTliM2UwHhcNMjYwMjA5MTgwMTAxWhcNMjYwMjEwMTgwMTAxWjAzMTEwLwYDVQQD Eyg0ZDk3N2ZiNjM3YzBmOTY0NzkzMmU2MjY5NzI2ZGIxMjJmNjE5N2M5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDtKwaIStdSwpSuDTYR4c/BQNgdW LqyN60pAn/sKjyTx0/eW4fZNPPYWXLG9CbHH8ASe7MzUe/FAXktEUDXAMl3IqJqj 9lnSch8ZEYdWLPUVRlU+HPfosm9STY5O9ggPTiI85aVNruIRQGfalko6vGCTYhIh EM4XEzdgoT0js5M2Ybjld1UgLpWMIYk/LJ+/5s/PEtzc0LCkExajWRdW69pydJMG eZbu/mJrhKDJn2WR3FW6BowodNSTBtvHmYx47RHCqvjoMvEYoQWwHfhsZaOGeBg9 imA1HVfnhPTls8at7eyEB2MfGgEVzpveA+rQBHEODLWmOk/ZC6YzPIAXswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE2Xf7Y3wPlkeTLmJpcm2xIvYZfJMB8GA1UdIwQY MBaAFErdl2AuGRjnq8H2Lc/U2spzSZs+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3QyWFlDNFpHT2Vyd2ZZdHo5VGF5bk5KbXo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My81NzU0MmEtZTFhYy00MDE0LTg2ZmUt MTJlNWU4MTczMjAxLzEvU3QyWFlDNFpHT2Vyd2ZZdHo5VGF5bk5KbXo0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My81NzU0MmEtZTFhYy00MDE0LTg2ZmUtMTJlNWU4MTczMjAx LzEvU3QyWFlDNFpHT2Vyd2ZZdHo5VGF5bk5KbXo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM1sq8vHH OUT6e4ZBE8MD7omjCyN3Rc53/7AZAaRVBUsmUKXjWV9I6Ha+JtUSCGKlX5Uj4KGV BPNPho2w4AwSSnKUIZUB/yfPHkP4yOwj2KgB0DR0ujqayIXZN+ZJ/osoiB6Z22rD v5KgBU2FWwosJ031kx1353xbPQz4RAh0lYG9qdmG3B0NK6YXv4NWYhpn8n5GkbjW f1TrNhxBkqPb8g9cS7IE0INoXLwirVwklrxkDX68CvPLxJSe5nDcJPrx+JLFmVlb s3SlOvJro7RVp4pTuRI7Q9BCRPViJ+eSNORlkG+30IwirQRQ+GL5VPnrCjtbSQZ2 hnI0wjLzLzoiLw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:41 2026 by rpki-client