This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/559200-c501-4ac0-a5f5-e5a35a847273/1/rENzvP5MWzcCARWd-W2xNzaYur0.mft File: rENzvP5MWzcCARWd-W2xNzaYur0.mft (raw, json) Hash identifier: 5arF+8NsoWApxirD/S8miMuG1KT7d7s8qR+UBhXhceI= Subject key identifier: EF:E4:1F:EB:DF:D5:11:F6:92:97:E5:6B:80:2D:B6:E3:01:46:26:BB Authority key identifier: AC:43:73:BC:FE:4C:5B:37:02:01:15:9D:F9:6D:B1:37:36:98:BA:BD Certificate issuer: /CN=ac4373bcfe4c5b370201159df96db1373698babd Certificate serial: 019C4358E21731FEDAC2864A91D2304EDB31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rENzvP5MWzcCARWd-W2xNzaYur0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/559200-c501-4ac0-a5f5-e5a35a847273/1/rENzvP5MWzcCARWd-W2xNzaYur0.mft Manifest number: 0139 Signing time: Mon 09 Feb 2026 17:00:24 +0000 Manifest this update: Mon 09 Feb 2026 17:00:24 +0000 Manifest next update: Tue 10 Feb 2026 17:00:24 +0000 Files and hashes: 1: rENzvP5MWzcCARWd-W2xNzaYur0.crl (hash: YwSuGVuvPc+4qzgUJGpHP5Gs1ULhdP9kgbdf9QAQjoU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/559200-c501-4ac0-a5f5-e5a35a847273/1/rENzvP5MWzcCARWd-W2xNzaYur0.crl rsync://rpki.ripe.net/repository/DEFAULT/64/559200-c501-4ac0-a5f5-e5a35a847273/1/rENzvP5MWzcCARWd-W2xNzaYur0.mft rsync://rpki.ripe.net/repository/DEFAULT/rENzvP5MWzcCARWd-W2xNzaYur0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:e2:17:31:fe:da:c2:86:4a:91:d2:30:4e:db:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac4373bcfe4c5b370201159df96db1373698babd Validity Not Before: Feb 9 17:00:24 2026 GMT Not After : Feb 10 17:00:24 2026 GMT Subject: CN=efe41febdfd511f69297e56b802db6e3014626bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e6:53:a2:d8:41:c8:43:ed:de:66:fd:a0:c7: b3:34:03:1e:0d:9f:c4:00:32:18:dc:f4:8e:46:d6: 2c:f3:17:9a:a5:98:eb:e4:36:58:62:9a:eb:2b:50: f6:40:5d:db:4e:96:62:64:d0:1e:ad:07:7f:02:ff: 2d:7b:53:68:b3:84:e4:36:46:25:0e:e4:ae:a5:06: db:8f:6a:19:5e:1c:3f:f3:fc:db:91:35:ed:d4:04: 83:f2:38:b6:61:e0:35:86:bb:1b:1e:ec:32:e9:b5: 16:6f:e4:04:da:e6:d7:8e:06:90:64:6b:2b:38:c7: 43:ab:c9:7a:42:7f:89:56:c7:39:ae:43:1a:78:bc: 38:6f:4f:2c:05:e5:f9:57:e7:36:bd:d4:7c:a7:e4: 5d:4e:69:ca:1a:2b:6c:de:f4:10:01:49:f2:6b:7c: 7a:74:e7:f1:ef:07:a1:b6:a1:65:c0:27:3f:10:10: 45:0e:52:4e:64:7b:ae:8a:c4:70:91:4b:40:35:94: b2:64:60:ad:6c:b0:ff:1d:14:f9:ba:4a:d4:58:49: 3d:be:e9:52:12:5a:1b:c7:ef:89:74:e0:21:7a:63: 20:2d:c1:16:bd:0b:ed:32:a2:fb:0a:e1:1a:8f:82: 0f:ee:bf:32:af:30:12:8c:54:45:45:f8:9e:66:e9: 2d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E4:1F:EB:DF:D5:11:F6:92:97:E5:6B:80:2D:B6:E3:01:46:26:BB X509v3 Authority Key Identifier: keyid:AC:43:73:BC:FE:4C:5B:37:02:01:15:9D:F9:6D:B1:37:36:98:BA:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rENzvP5MWzcCARWd-W2xNzaYur0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/559200-c501-4ac0-a5f5-e5a35a847273/1/rENzvP5MWzcCARWd-W2xNzaYur0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/559200-c501-4ac0-a5f5-e5a35a847273/1/rENzvP5MWzcCARWd-W2xNzaYur0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:ce:14:f5:ce:b3:f6:a4:a9:47:8f:23:7f:13:ba:b9:5f:14: f8:cd:8b:52:b7:af:8a:f9:52:b0:bb:97:db:3b:10:39:f6:53: 53:f4:02:33:dd:be:c0:8b:a2:78:65:40:15:8f:ab:97:21:5a: 99:33:15:71:f4:a4:ca:91:9f:d4:e6:1d:fa:c2:8e:05:1a:08: 73:13:40:cc:26:2a:75:0a:bf:fb:81:e4:fe:2a:23:e0:b4:53: a7:85:28:2f:ae:7a:f3:8a:cd:5b:1c:25:ba:c9:98:79:67:ce: 47:60:cb:85:47:62:05:c3:3c:a4:35:84:0f:f9:63:de:f9:96: a6:63:17:af:63:fa:b9:21:af:51:0e:ab:12:e2:c1:4d:cf:80: d0:ac:a7:2d:61:81:29:33:27:b2:23:ab:b7:d5:0a:f0:f0:2f: b7:9e:1d:3d:93:1c:5a:96:af:1e:fc:ed:cb:4f:bd:83:1e:9b: 17:fd:3b:50:a9:a8:77:1c:f6:9e:be:2a:73:6a:4c:a4:d6:9e: f3:a2:c7:40:e1:01:0f:12:3b:d7:da:67:c7:c4:f0:84:a1:cc: 5b:53:3b:e1:36:82:ad:a5:a9:4b:b6:52:26:4c:48:9d:d0:21: 8c:28:bf:ba:a9:69:5b:9a:29:6c:7f:4e:89:e0:52:57:9f:b3: 62:d6:de:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWOIXMf7awoZKkdIwTtsxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjNDM3M2JjZmU0YzViMzcwMjAxMTU5ZGY5NmRiMTM3MzY5 OGJhYmQwHhcNMjYwMjA5MTcwMDI0WhcNMjYwMjEwMTcwMDI0WjAzMTEwLwYDVQQD EyhlZmU0MWZlYmRmZDUxMWY2OTI5N2U1NmI4MDJkYjZlMzAxNDYyNmJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOZTothByEPt3mb9oMezNAMeDZ/E ADIY3PSORtYs8xeapZjr5DZYYprrK1D2QF3bTpZiZNAerQd/Av8te1Nos4TkNkYl DuSupQbbj2oZXhw/8/zbkTXt1ASD8ji2YeA1hrsbHuwy6bUWb+QE2ubXjgaQZGsr OMdDq8l6Qn+JVsc5rkMaeLw4b08sBeX5V+c2vdR8p+RdTmnKGits3vQQAUnya3x6 dOfx7wehtqFlwCc/EBBFDlJOZHuuisRwkUtANZSyZGCtbLD/HRT5ukrUWEk9vulS Elobx++JdOAhemMgLcEWvQvtMqL7CuEaj4IP7r8yrzASjFRFRfieZuktsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO/kH+vf1RH2kpfla4AttuMBRia7MB8GA1UdIwQY MBaAFKxDc7z+TFs3AgEVnfltsTc2mLq9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckVOenZQNU1XemNDQVJXZC1XMnhOemFZdXIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC81NTkyMDAtYzUwMS00YWMwLWE1ZjUt ZTVhMzVhODQ3MjczLzEvckVOenZQNU1XemNDQVJXZC1XMnhOemFZdXIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC81NTkyMDAtYzUwMS00YWMwLWE1ZjUtZTVhMzVhODQ3Mjcz LzEvckVOenZQNU1XemNDQVJXZC1XMnhOemFZdXIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEM4U9c6z 9qSpR48jfxO6uV8U+M2LUrevivlSsLuX2zsQOfZTU/QCM92+wIuieGVAFY+rlyFa mTMVcfSkypGf1OYd+sKOBRoIcxNAzCYqdQq/+4Hk/ioj4LRTp4UoL65684rNWxwl usmYeWfOR2DLhUdiBcM8pDWED/lj3vmWpmMXr2P6uSGvUQ6rEuLBTc+A0KynLWGB KTMnsiOrt9UK8PAvt54dPZMcWpavHvzty0+9gx6bF/07UKmodxz2nr4qc2pMpNae 86LHQOEBDxI719pnx8TwhKHMW1M74TaCraWpS7ZSJkxIndAhjCi/uqlpW5opbH9O ieBSV5+zYtbewg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:13 2026 by rpki-client