This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft File: tcOYwHMlxA59dtI5ahvoXEL9wsg.mft (raw, json) Hash identifier: 6b8zrekkAkfxPq4cSjssDRkv+gf2LJVxoIj9MKf4KQc= Subject key identifier: 58:6C:AB:B1:58:CD:A5:8D:15:8F:EF:D3:3F:42:99:2E:DB:9F:9B:6B Authority key identifier: B5:C3:98:C0:73:25:C4:0E:7D:76:D2:39:6A:1B:E8:5C:42:FD:C2:C8 Certificate issuer: /CN=b5c398c07325c40e7d76d2396a1be85c42fdc2c8 Certificate serial: 019C43FDDCAEDFE5B0E66368306687B4D5A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft Manifest number: 078F Signing time: Mon 09 Feb 2026 20:00:36 +0000 Manifest this update: Mon 09 Feb 2026 20:00:36 +0000 Manifest next update: Tue 10 Feb 2026 20:00:36 +0000 Files and hashes: 1: RCVCqspG4nYyJlueKPZjbpopS4k.roa (hash: yHItQNqKEboY2QYyZ9CN1gx2hTERLcmmpIzkhN7V0sQ=) 2: tcOYwHMlxA59dtI5ahvoXEL9wsg.crl (hash: s63X9sh7el7XvfMiyeGN9fRsUayijrhvmnKHDeRnqfI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.crl rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:dc:ae:df:e5:b0:e6:63:68:30:66:87:b4:d5:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5c398c07325c40e7d76d2396a1be85c42fdc2c8 Validity Not Before: Feb 9 20:00:36 2026 GMT Not After : Feb 10 20:00:36 2026 GMT Subject: CN=586cabb158cda58d158fefd33f42992edb9f9b6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1a:99:80:47:2d:69:86:7e:7a:a6:a8:c7:5c: a1:ec:7d:e3:46:47:eb:e6:31:50:9e:80:b7:1a:3e: 48:d6:7d:a8:d0:e5:a8:b8:a6:60:d9:34:31:07:7c: 16:c3:da:7d:79:b4:82:63:c7:5d:ff:78:c5:ed:ba: 34:3b:7f:5c:d8:e8:4c:a2:3a:fe:d6:12:85:c7:23: 05:13:19:59:66:62:40:78:b1:65:50:a9:c6:df:bb: 4c:15:9d:06:72:12:d7:a0:e5:a3:5e:ae:69:dc:30: 07:00:85:bf:f1:36:e5:2d:b5:38:f3:59:57:83:3b: 43:17:dd:ea:17:e8:63:0c:62:f4:3b:63:0b:bc:c8: f0:11:41:66:40:56:72:a8:86:64:e7:e1:a5:65:9a: 03:39:80:53:fb:78:6c:21:c1:24:48:be:52:95:ef: 76:27:63:f7:8d:33:64:7d:f4:d9:4b:41:b3:77:b7: 36:93:0d:a5:aa:c1:e6:28:8a:49:75:ae:f4:f1:da: 85:16:0e:d5:ac:21:62:8c:5b:f6:61:c8:69:ac:eb: e5:e4:c6:aa:50:c1:4b:91:d1:00:4f:dd:6e:ad:27: 87:5a:5c:31:3b:cd:cf:8a:11:f9:d3:a2:5a:af:e4: a8:a1:87:e3:d6:8b:94:75:04:13:09:d1:64:e1:ba: f1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:6C:AB:B1:58:CD:A5:8D:15:8F:EF:D3:3F:42:99:2E:DB:9F:9B:6B X509v3 Authority Key Identifier: keyid:B5:C3:98:C0:73:25:C4:0E:7D:76:D2:39:6A:1B:E8:5C:42:FD:C2:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tcOYwHMlxA59dtI5ahvoXEL9wsg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/283e8f-bda2-49dc-8afe-af137ccb2b69/1/tcOYwHMlxA59dtI5ahvoXEL9wsg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:79:44:cb:a0:a6:10:12:3e:ea:cc:8e:ab:8b:c6:e4:45:d2: a0:fd:22:f9:39:c1:b0:4a:9d:cd:9d:f3:69:6e:95:06:01:1c: b0:7c:0b:33:f5:40:ec:cd:5d:53:17:48:60:c9:7e:04:97:3a: ed:f4:1a:a4:eb:45:1d:3e:f7:b5:ee:da:9f:87:15:7d:e6:5d: 45:4d:b9:1b:11:5b:5a:e9:20:cc:34:ee:1c:6f:74:d3:d0:89: 2c:a9:2d:20:7b:8d:cf:53:fd:ff:5e:e0:5c:e5:6a:ab:3a:04: 11:f8:1b:1c:dc:e1:16:18:47:a3:0d:11:89:74:26:df:91:99: 4f:5f:f5:31:67:5e:d6:5d:1a:58:5f:33:69:6a:01:31:90:1e: 73:31:00:67:a8:9d:67:a1:7f:3f:15:95:87:70:8b:de:57:93: bb:f7:cc:9c:47:8b:d7:f8:9c:f9:b3:98:70:3e:9f:d7:f9:cd: 23:54:0d:77:c0:8a:46:02:11:a4:79:f4:f7:cc:52:f5:c3:8f: 48:21:f4:9c:88:29:4e:94:a9:bc:ae:a9:42:59:d2:00:c4:f0: 1c:16:1b:80:f0:1b:86:75:b4:69:52:41:6e:0f:96:3e:10:3d: f8:67:bd:35:31:44:98:bf:21:a8:a0:80:dc:c3:98:c4:8a:bf: 3c:b5:3e:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/dyu3+Ww5mNoMGaHtNWkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1YzM5OGMwNzMyNWM0MGU3ZDc2ZDIzOTZhMWJlODVjNDJm ZGMyYzgwHhcNMjYwMjA5MjAwMDM2WhcNMjYwMjEwMjAwMDM2WjAzMTEwLwYDVQQD Eyg1ODZjYWJiMTU4Y2RhNThkMTU4ZmVmZDMzZjQyOTkyZWRiOWY5YjZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohqZgEctaYZ+eqaox1yh7H3jRkfr 5jFQnoC3Gj5I1n2o0OWouKZg2TQxB3wWw9p9ebSCY8dd/3jF7bo0O39c2OhMojr+ 1hKFxyMFExlZZmJAeLFlUKnG37tMFZ0GchLXoOWjXq5p3DAHAIW/8TblLbU481lX gztDF93qF+hjDGL0O2MLvMjwEUFmQFZyqIZk5+GlZZoDOYBT+3hsIcEkSL5Sle92 J2P3jTNkffTZS0Gzd7c2kw2lqsHmKIpJda708dqFFg7VrCFijFv2YchprOvl5Maq UMFLkdEAT91urSeHWlwxO83PihH506Jar+SooYfj1ouUdQQTCdFk4brxfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFhsq7FYzaWNFY/v0z9CmS7bn5trMB8GA1UdIwQY MBaAFLXDmMBzJcQOfXbSOWob6FxC/cLIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGNPWXdITWx4QTU5ZHRJNWFodm9YRUw5d3NnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC8yODNlOGYtYmRhMi00OWRjLThhZmUt YWYxMzdjY2IyYjY5LzEvdGNPWXdITWx4QTU5ZHRJNWFodm9YRUw5d3NnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC8yODNlOGYtYmRhMi00OWRjLThhZmUtYWYxMzdjY2IyYjY5 LzEvdGNPWXdITWx4QTU5ZHRJNWFodm9YRUw5d3NnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlHlEy6Cm EBI+6syOq4vG5EXSoP0i+TnBsEqdzZ3zaW6VBgEcsHwLM/VA7M1dUxdIYMl+BJc6 7fQapOtFHT73te7an4cVfeZdRU25GxFbWukgzDTuHG9009CJLKktIHuNz1P9/17g XOVqqzoEEfgbHNzhFhhHow0RiXQm35GZT1/1MWde1l0aWF8zaWoBMZAeczEAZ6id Z6F/PxWVh3CL3leTu/fMnEeL1/ic+bOYcD6f1/nNI1QNd8CKRgIRpHn098xS9cOP SCH0nIgpTpSpvK6pQlnSAMTwHBYbgPAbhnW0aVJBbg+WPhA9+Ge9NTFEmL8hqKCA 3MOYxIq/PLU+4g== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:02 2026 by rpki-client