This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft File: Tle6dst9bSrsBSA89BuOZxbufqA.mft (raw, json) Hash identifier: 40EZwdOewHTbH+KgRoyrabd/kfcItuKk08bZCUDvHa0= Subject key identifier: 0A:24:84:BD:F9:82:DC:1B:0E:CB:C5:CB:7A:FE:69:FF:F1:BE:3A:D8 Authority key identifier: 4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0 Certificate issuer: /CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0 Certificate serial: 019C43221BC7852DE6BFACD0580C39E9DFC7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft Manifest number: 1135 Signing time: Mon 09 Feb 2026 16:00:34 +0000 Manifest this update: Mon 09 Feb 2026 16:00:34 +0000 Manifest next update: Tue 10 Feb 2026 16:00:34 +0000 Files and hashes: 1: Tle6dst9bSrsBSA89BuOZxbufqA.crl (hash: lO7VxlZwe2Bt45lE4IoVKvOdwiDfi/+wOJ7Ui/4B8+I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:1b:c7:85:2d:e6:bf:ac:d0:58:0c:39:e9:df:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0 Validity Not Before: Feb 9 16:00:34 2026 GMT Not After : Feb 10 16:00:34 2026 GMT Subject: CN=0a2484bdf982dc1b0ecbc5cb7afe69fff1be3ad8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6d:3c:a2:b2:2c:42:be:ad:1b:5f:c3:74:8f: 0b:28:7b:fd:72:13:6f:b6:07:2b:95:13:59:3c:41: 21:15:8f:31:52:72:f2:f3:d1:be:e8:09:47:98:da: 4a:22:33:39:c0:dd:6e:03:a6:06:bb:7d:ef:ae:12: 14:76:1c:b1:1e:79:0f:5c:08:79:a5:a6:6f:32:2c: ca:18:4d:82:5d:83:ab:ec:86:07:56:29:08:cf:c5: 1c:cd:36:e1:49:ca:0a:87:50:00:78:a1:8a:ee:e6: eb:02:7a:e3:7a:47:b9:71:61:1a:59:56:44:04:63: bd:67:7f:06:d7:f5:d4:8b:57:92:f6:08:16:b2:ab: 4c:cc:30:d0:61:b8:c8:e5:5b:aa:fd:61:89:fe:38: 51:71:0c:93:49:0e:35:cf:1b:27:67:6c:1f:11:d5: 7c:25:62:20:c7:57:c0:f9:73:92:ce:27:46:d1:0d: d3:a7:b6:8d:cd:ce:37:66:e4:39:7e:50:5f:e3:32: b9:13:f6:c1:b0:ca:1e:dd:34:cb:c8:24:7c:a2:2f: cb:6a:20:3f:c0:4e:64:a6:cf:65:81:2d:cf:28:76: c0:9a:d6:02:98:06:6c:5e:ec:36:84:37:42:b5:01: 8b:3a:99:d5:fe:fd:8e:dd:68:d8:c9:42:74:c2:ef: c9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:24:84:BD:F9:82:DC:1B:0E:CB:C5:CB:7A:FE:69:FF:F1:BE:3A:D8 X509v3 Authority Key Identifier: keyid:4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:27:d5:ba:53:6e:0e:58:7e:7f:89:e1:66:d6:1e:b6:62:a1: cd:e8:0e:07:e7:4c:a3:8a:f7:fb:f4:34:2c:42:ea:a5:78:ee: 07:9f:05:3e:1d:35:8d:ea:19:a8:07:73:3d:97:64:36:b0:59: be:25:6d:82:d0:43:e8:8d:a5:6e:74:56:6f:df:53:90:34:7c: 14:7c:45:61:dc:5b:a4:05:fd:32:f8:e1:89:bf:1e:3d:79:50: cf:c0:0f:f7:64:34:39:f7:5c:e1:10:70:bd:74:e5:26:45:f5: cc:e2:76:07:29:0b:61:6c:08:31:3a:54:b0:12:6e:21:5a:ee: 4a:1b:32:33:5d:3c:ee:a9:34:56:3c:b6:90:23:f1:72:40:57: e5:24:8e:7d:12:b9:45:a9:0b:01:ed:91:b8:7b:d2:3e:af:7d: e6:95:e3:dc:95:47:4c:d7:09:da:5e:db:fb:23:b6:77:53:63: 71:a0:a6:ee:6f:62:52:d4:84:38:47:1a:dd:fe:37:31:59:65: 63:d4:8d:fa:fc:ea:34:62:25:dc:3f:a2:5f:79:1e:cf:0c:f1: 99:26:a2:77:7f:e0:a8:ce:47:6a:b4:a7:a6:c0:7b:79:dc:1c: 7e:5c:e4:31:5c:73:5d:5a:d9:25:2b:c9:e0:67:52:b5:6f:e3: b8:a4:20:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIhvHhS3mv6zQWAw56d/HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNTdiYTc2Y2I3ZDZkMmFlYzA1MjAzY2Y0MWI4ZTY3MTZl ZTdlYTAwHhcNMjYwMjA5MTYwMDM0WhcNMjYwMjEwMTYwMDM0WjAzMTEwLwYDVQQD EygwYTI0ODRiZGY5ODJkYzFiMGVjYmM1Y2I3YWZlNjlmZmYxYmUzYWQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqm08orIsQr6tG1/DdI8LKHv9chNv tgcrlRNZPEEhFY8xUnLy89G+6AlHmNpKIjM5wN1uA6YGu33vrhIUdhyxHnkPXAh5 paZvMizKGE2CXYOr7IYHVikIz8UczTbhScoKh1AAeKGK7ubrAnrjeke5cWEaWVZE BGO9Z38G1/XUi1eS9ggWsqtMzDDQYbjI5Vuq/WGJ/jhRcQyTSQ41zxsnZ2wfEdV8 JWIgx1fA+XOSzidG0Q3Tp7aNzc43ZuQ5flBf4zK5E/bBsMoe3TTLyCR8oi/LaiA/ wE5kps9lgS3PKHbAmtYCmAZsXuw2hDdCtQGLOpnV/v2O3WjYyUJ0wu/JWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAokhL35gtwbDsvFy3r+af/xvjrYMB8GA1UdIwQY MBaAFE5XunbLfW0q7AUgPPQbjmcW7n6gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny82OWU3ZmUtNDBjMC00NWMyLWIyYjEt YjcyZDdhZGJmYjk2LzEvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny82OWU3ZmUtNDBjMC00NWMyLWIyYjEtYjcyZDdhZGJmYjk2 LzEvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWCfVulNu Dlh+f4nhZtYetmKhzegOB+dMo4r3+/Q0LELqpXjuB58FPh01jeoZqAdzPZdkNrBZ viVtgtBD6I2lbnRWb99TkDR8FHxFYdxbpAX9Mvjhib8ePXlQz8AP92Q0Ofdc4RBw vXTlJkX1zOJ2BykLYWwIMTpUsBJuIVruShsyM1087qk0Vjy2kCPxckBX5SSOfRK5 RakLAe2RuHvSPq995pXj3JVHTNcJ2l7b+yO2d1NjcaCm7m9iUtSEOEca3f43MVll Y9SN+vzqNGIl3D+iX3kezwzxmSaid3/gqM5HarSnpsB7edwcflzkMVxzXVrZJSvJ 4GdStW/juKQgxA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:44 2026 by rpki-client