This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.mft File: GD41veDiUEYFoX1O0FVDfo00ql8.mft (raw, json) Hash identifier: mqpfAuppB8d3B2L5Yz+6n4Qmcogh+oa2YOq0oDrz7pA= Subject key identifier: 06:98:FF:5B:A0:15:F1:11:F5:4D:54:2F:B6:DA:D3:98:3B:67:47:B8 Authority key identifier: 18:3E:35:BD:E0:E2:50:46:05:A1:7D:4E:D0:55:43:7E:8D:34:AA:5F Certificate issuer: /CN=183e35bde0e2504605a17d4ed055437e8d34aa5f Certificate serial: 019C41D8568C919B73E5AAA70B51176CC960 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GD41veDiUEYFoX1O0FVDfo00ql8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 10:00:22 +0000 Manifest this update: Mon 09 Feb 2026 10:00:22 +0000 Manifest next update: Tue 10 Feb 2026 10:00:22 +0000 Files and hashes: 1: GD41veDiUEYFoX1O0FVDfo00ql8.crl (hash: ZlQ6BoSU1E15KxUouKFR+GPLQqMcSoaO3Vjf8riRzlQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.crl rsync://rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.mft rsync://rpki.ripe.net/repository/DEFAULT/GD41veDiUEYFoX1O0FVDfo00ql8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:56:8c:91:9b:73:e5:aa:a7:0b:51:17:6c:c9:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=183e35bde0e2504605a17d4ed055437e8d34aa5f Validity Not Before: Feb 9 10:00:22 2026 GMT Not After : Feb 10 10:00:22 2026 GMT Subject: CN=0698ff5ba015f111f54d542fb6dad3983b6747b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1a:f9:f1:3a:ae:47:a5:b4:44:88:cf:d4:1f: 6b:7e:34:9f:39:54:48:14:8c:7f:0e:22:e6:8f:d6: fb:48:a0:fb:5d:5b:7e:b4:86:32:ce:3f:55:38:ca: a9:80:d4:12:58:bc:1c:c6:26:0a:a8:a8:9e:ca:f2: 0d:90:cc:0c:8e:f9:76:d5:fe:e4:c8:4a:2d:00:b5: 57:b9:b0:73:5a:d5:0a:89:5a:e8:40:d6:b2:f4:ef: f1:ae:3b:3c:b6:2d:f3:e4:39:a1:6b:9c:7d:e3:49: 52:d9:64:f4:71:84:05:6e:b9:2c:5f:3e:1b:81:0a: 17:fc:9b:6f:e1:a2:54:02:3c:e4:34:bc:4d:38:98: 66:c1:a1:d3:e8:35:07:87:66:37:85:f9:b7:fe:ec: fd:97:a8:8f:e2:39:af:07:41:95:1d:64:a3:83:55: 79:2b:ea:ec:13:02:f9:7a:7f:85:7f:1a:61:b8:de: ca:9c:19:3c:4b:c4:b4:8d:f0:20:68:33:ca:96:13: 93:a0:f2:50:85:e3:a4:ff:34:9f:a8:f3:45:b2:53: ca:0e:f8:42:06:32:93:33:79:04:93:e8:d2:d3:cc: e5:8a:c3:27:bd:31:df:d0:2b:39:9f:7e:e7:bf:b1: f1:2a:dd:d6:65:49:82:49:16:82:ef:37:86:28:08: 11:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:98:FF:5B:A0:15:F1:11:F5:4D:54:2F:B6:DA:D3:98:3B:67:47:B8 X509v3 Authority Key Identifier: keyid:18:3E:35:BD:E0:E2:50:46:05:A1:7D:4E:D0:55:43:7E:8D:34:AA:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GD41veDiUEYFoX1O0FVDfo00ql8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/4cb524-baaf-41af-b85f-cc8c2db6cf25/1/GD41veDiUEYFoX1O0FVDfo00ql8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c0:2a:7a:47:bb:37:b5:7a:7a:da:ed:50:01:3a:9f:bc:3a: e8:19:9a:90:a6:7b:0b:d3:b4:58:9f:f5:c1:5a:20:62:f9:5e: d1:5b:09:ba:37:3c:f3:86:de:bd:fa:58:17:a3:3e:cc:76:07: e4:a5:d8:22:b0:39:14:eb:d8:22:ae:bf:d7:38:7c:18:6c:25: 00:ec:95:83:10:f7:cc:00:e8:9d:11:41:35:db:ad:5a:17:cf: 52:f2:6b:17:82:e7:4c:b4:25:26:c2:d7:0b:53:a9:98:15:1d: 01:4a:56:cc:d2:c9:3b:b2:69:ef:e2:1c:fe:9e:67:1f:ab:1c: cc:32:43:82:e2:97:c1:a4:a3:99:80:16:5f:5b:41:39:08:73: 97:16:04:d7:2b:21:bc:25:40:1b:6f:a8:09:a3:68:9e:89:ea: 34:48:5d:ba:d0:c5:c0:32:43:63:76:a8:77:c6:8e:7d:99:f7: 9a:17:a2:a9:e0:0a:16:8d:df:48:a9:51:f2:b3:0f:40:63:f6: 8b:a1:e5:a2:7d:6d:43:09:fa:88:b8:c2:13:f8:c1:14:74:d3: 0a:aa:a5:f8:9a:c7:56:1e:06:c5:60:be:a6:94:06:75:37:f6: 25:81:21:53:2a:88:91:a8:a7:41:bc:74:89:be:16:9f:50:bf: 29:75:5a:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2FaMkZtz5aqnC1EXbMlgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4M2UzNWJkZTBlMjUwNDYwNWExN2Q0ZWQwNTU0MzdlOGQz NGFhNWYwHhcNMjYwMjA5MTAwMDIyWhcNMjYwMjEwMTAwMDIyWjAzMTEwLwYDVQQD EygwNjk4ZmY1YmEwMTVmMTExZjU0ZDU0MmZiNmRhZDM5ODNiNjc0N2I4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0hr58TquR6W0RIjP1B9rfjSfOVRI FIx/DiLmj9b7SKD7XVt+tIYyzj9VOMqpgNQSWLwcxiYKqKieyvINkMwMjvl21f7k yEotALVXubBzWtUKiVroQNay9O/xrjs8ti3z5Dmha5x940lS2WT0cYQFbrksXz4b gQoX/Jtv4aJUAjzkNLxNOJhmwaHT6DUHh2Y3hfm3/uz9l6iP4jmvB0GVHWSjg1V5 K+rsEwL5en+FfxphuN7KnBk8S8S0jfAgaDPKlhOToPJQheOk/zSfqPNFslPKDvhC BjKTM3kEk+jS08zlisMnvTHf0Cs5n37nv7HxKt3WZUmCSRaC7zeGKAgRYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAaY/1ugFfER9U1UL7ba05g7Z0e4MB8GA1UdIwQY MBaAFBg+Nb3g4lBGBaF9TtBVQ36NNKpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0Q0MXZlRGlVRVlGb1gxTzBGVkRmbzAwcWw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny80Y2I1MjQtYmFhZi00MWFmLWI4NWYt Y2M4YzJkYjZjZjI1LzEvR0Q0MXZlRGlVRVlGb1gxTzBGVkRmbzAwcWw4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny80Y2I1MjQtYmFhZi00MWFmLWI4NWYtY2M4YzJkYjZjZjI1 LzEvR0Q0MXZlRGlVRVlGb1gxTzBGVkRmbzAwcWw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACsAqeke7 N7V6etrtUAE6n7w66BmakKZ7C9O0WJ/1wVogYvle0VsJujc884bevfpYF6M+zHYH 5KXYIrA5FOvYIq6/1zh8GGwlAOyVgxD3zADonRFBNdutWhfPUvJrF4LnTLQlJsLX C1OpmBUdAUpWzNLJO7Jp7+Ic/p5nH6sczDJDguKXwaSjmYAWX1tBOQhzlxYE1ysh vCVAG2+oCaNononqNEhdutDFwDJDY3aod8aOfZn3mheiqeAKFo3fSKlR8rMPQGP2 i6Hlon1tQwn6iLjCE/jBFHTTCqql+JrHVh4GxWC+ppQGdTf2JYEhUyqIkainQbx0 ib4Wn1C/KXVa0g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:57 2026 by rpki-client