This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.mft File: s3fTy2Ur05jE2752zbAILp3u1tQ.mft (raw, json) Hash identifier: /phkBgqY7+kRik1S62vtu/1QCaCuniQefBvSYw4uQuI= Subject key identifier: 4D:CB:EC:39:DF:C0:5F:82:58:EF:D2:15:70:A9:9A:C6:FE:88:9A:09 Authority key identifier: B3:77:D3:CB:65:2B:D3:98:C4:DB:BE:76:CD:B0:08:2E:9D:EE:D6:D4 Certificate issuer: /CN=b377d3cb652bd398c4dbbe76cdb0082e9deed6d4 Certificate serial: 019C4358EE0123E3EA7BA0617D238FD3A0F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s3fTy2Ur05jE2752zbAILp3u1tQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.mft Manifest number: 06A4 Signing time: Mon 09 Feb 2026 17:00:27 +0000 Manifest this update: Mon 09 Feb 2026 17:00:27 +0000 Manifest next update: Tue 10 Feb 2026 17:00:27 +0000 Files and hashes: 1: s3fTy2Ur05jE2752zbAILp3u1tQ.crl (hash: sfCHi6vb19bjFABnlcP0ekFnmGy7sd4HR9AAS8+tbNk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.crl rsync://rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.mft rsync://rpki.ripe.net/repository/DEFAULT/s3fTy2Ur05jE2752zbAILp3u1tQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:ee:01:23:e3:ea:7b:a0:61:7d:23:8f:d3:a0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b377d3cb652bd398c4dbbe76cdb0082e9deed6d4 Validity Not Before: Feb 9 17:00:27 2026 GMT Not After : Feb 10 17:00:27 2026 GMT Subject: CN=4dcbec39dfc05f8258efd21570a99ac6fe889a09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a7:07:44:b3:c4:28:47:ef:36:24:33:9d:ba: 7f:09:50:78:0e:5d:23:56:a0:66:91:2b:7c:f9:de: 98:d0:50:6a:2e:2a:62:26:58:0e:0e:94:f2:67:f7: 2a:60:35:11:9b:d8:a6:25:68:24:49:db:bc:44:bb: 6d:d8:3b:b3:93:21:bd:b8:cf:6f:07:72:8e:b1:7b: 6a:71:81:6f:54:b2:b7:1a:6a:4a:82:9d:3d:d7:3a: f7:5d:1f:98:99:7f:80:23:d3:81:62:6e:fb:0a:13: e8:eb:c0:51:66:f3:72:d5:4f:17:ec:61:a5:0b:cb: 2d:2d:ae:0d:a2:a7:cd:c0:c0:fd:0d:2e:7f:2e:32: e7:2d:55:b8:dd:5a:05:de:3b:a3:c5:55:f2:3b:76: f8:62:18:81:69:6c:99:0e:ef:13:2b:60:08:44:bc: 25:ce:45:e7:91:92:16:cb:ea:e7:c2:17:fa:54:15: 54:74:25:07:d1:fd:8f:bd:6a:84:45:0e:04:31:a4: 50:61:e9:3a:9e:0c:f2:fc:99:f8:72:4c:bd:71:0d: 82:fe:c7:45:21:79:79:d8:dd:bb:75:e5:4e:22:f5: 19:3f:bf:bd:d4:ae:f2:fa:2d:88:d5:0b:2e:aa:7b: e5:5c:3a:aa:1a:18:f4:83:65:a7:d6:12:44:24:0b: fb:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:CB:EC:39:DF:C0:5F:82:58:EF:D2:15:70:A9:9A:C6:FE:88:9A:09 X509v3 Authority Key Identifier: keyid:B3:77:D3:CB:65:2B:D3:98:C4:DB:BE:76:CD:B0:08:2E:9D:EE:D6:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s3fTy2Ur05jE2752zbAILp3u1tQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:df:75:ac:d4:12:58:d8:ab:39:c8:a3:d1:fe:6e:96:31:69: 8c:8e:63:fe:fd:2c:aa:34:2e:d7:b1:24:cc:b3:24:e6:c7:28: 56:14:3c:96:e7:d0:a3:97:41:c1:4e:d7:1d:33:c1:8c:76:09: 7e:64:2c:5f:9f:23:ea:79:9a:54:b9:6e:db:a7:69:83:8a:9c: 91:55:11:8e:9d:9b:2d:34:de:14:3e:f0:f6:15:21:f4:49:51: 7e:a0:41:86:93:e9:4e:61:f4:a5:2d:de:38:2d:44:03:a8:8b: 41:d3:cf:2f:4e:56:67:7a:04:26:4f:04:85:08:13:f4:5f:c3: 33:31:a0:b2:de:56:36:9c:c2:c9:1b:88:05:30:bf:f3:0f:2f: a8:08:04:db:4a:ea:f9:ce:a9:31:3e:f0:b5:09:11:78:6d:4e: 02:ae:d3:ba:31:97:24:64:4c:67:b7:44:15:42:b6:1e:49:40: 07:c8:14:66:7c:d9:56:90:e5:31:da:49:ad:6e:4b:67:6a:52: 66:de:d7:6b:10:c0:a9:01:06:9f:e2:0e:bb:c7:45:47:bd:3e: 54:df:b9:df:65:6b:b5:15:eb:6c:ef:28:d1:73:74:91:1f:4e: e9:59:7f:04:01:69:22:9f:cc:43:31:f7:22:2a:38:51:1d:87: a6:5d:a8:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWO4BI+Pqe6BhfSOP06DzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzNzdkM2NiNjUyYmQzOThjNGRiYmU3NmNkYjAwODJlOWRl ZWQ2ZDQwHhcNMjYwMjA5MTcwMDI3WhcNMjYwMjEwMTcwMDI3WjAzMTEwLwYDVQQD Eyg0ZGNiZWMzOWRmYzA1ZjgyNThlZmQyMTU3MGE5OWFjNmZlODg5YTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsacHRLPEKEfvNiQznbp/CVB4Dl0j VqBmkSt8+d6Y0FBqLipiJlgODpTyZ/cqYDURm9imJWgkSdu8RLtt2DuzkyG9uM9v B3KOsXtqcYFvVLK3GmpKgp091zr3XR+YmX+AI9OBYm77ChPo68BRZvNy1U8X7GGl C8stLa4NoqfNwMD9DS5/LjLnLVW43VoF3jujxVXyO3b4YhiBaWyZDu8TK2AIRLwl zkXnkZIWy+rnwhf6VBVUdCUH0f2PvWqERQ4EMaRQYek6ngzy/Jn4cky9cQ2C/sdF IXl52N27deVOIvUZP7+91K7y+i2I1QsuqnvlXDqqGhj0g2Wn1hJEJAv7FQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE3L7DnfwF+CWO/SFXCpmsb+iJoJMB8GA1UdIwQY MBaAFLN308tlK9OYxNu+ds2wCC6d7tbUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczNmVHkyVXIwNWpFMjc1MnpiQUlMcDN1MXRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC81NzAyMWQtNzM0NS00ZWFiLWE3MTAt ZDczYTQ1NzNjMWI0LzEvczNmVHkyVXIwNWpFMjc1MnpiQUlMcDN1MXRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC81NzAyMWQtNzM0NS00ZWFiLWE3MTAtZDczYTQ1NzNjMWI0 LzEvczNmVHkyVXIwNWpFMjc1MnpiQUlMcDN1MXRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAit91rNQS WNirOcij0f5uljFpjI5j/v0sqjQu17EkzLMk5scoVhQ8lufQo5dBwU7XHTPBjHYJ fmQsX58j6nmaVLlu26dpg4qckVURjp2bLTTeFD7w9hUh9ElRfqBBhpPpTmH0pS3e OC1EA6iLQdPPL05WZ3oEJk8EhQgT9F/DMzGgst5WNpzCyRuIBTC/8w8vqAgE20rq +c6pMT7wtQkReG1OAq7TujGXJGRMZ7dEFUK2HklAB8gUZnzZVpDlMdpJrW5LZ2pS Zt7XaxDAqQEGn+IOu8dFR70+VN+532VrtRXrbO8o0XN0kR9O6Vl/BAFpIp/MQzH3 Iio4UR2Hpl2oFQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:07:38 2026 by rpki-client