This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft File: SxEEihpJFuExuM4Iji1v5OXF49s.mft (raw, json) Hash identifier: Ty1oufF2ZmuVXgADclyUdNW86k0Cj97dnKZS2On8cBo= Subject key identifier: A8:A8:EA:3E:BB:54:7A:BF:8A:7D:82:2F:37:70:7C:63:AD:D1:C8:1A Authority key identifier: 4B:11:04:8A:1A:49:16:E1:31:B8:CE:08:8E:2D:6F:E4:E5:C5:E3:DB Certificate issuer: /CN=4b11048a1a4916e131b8ce088e2d6fe4e5c5e3db Certificate serial: 019C42B473A8B3DB147A96E0A06352E1A7C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SxEEihpJFuExuM4Iji1v5OXF49s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft Manifest number: 044E Signing time: Mon 09 Feb 2026 14:00:48 +0000 Manifest this update: Mon 09 Feb 2026 14:00:48 +0000 Manifest next update: Tue 10 Feb 2026 14:00:48 +0000 Files and hashes: 1: SxEEihpJFuExuM4Iji1v5OXF49s.crl (hash: ZNZla9r6Ah4Qa43o/QZS6bn0kASNhWsTTtKlqwQQDY8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.crl rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft rsync://rpki.ripe.net/repository/DEFAULT/SxEEihpJFuExuM4Iji1v5OXF49s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:73:a8:b3:db:14:7a:96:e0:a0:63:52:e1:a7:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b11048a1a4916e131b8ce088e2d6fe4e5c5e3db Validity Not Before: Feb 9 14:00:48 2026 GMT Not After : Feb 10 14:00:48 2026 GMT Subject: CN=a8a8ea3ebb547abf8a7d822f37707c63add1c81a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fa:2c:0b:7e:e3:1d:81:96:f4:38:7f:85:4e: 9d:c5:90:00:e5:61:21:8c:13:ed:22:35:98:e9:5b: c6:86:4f:55:df:b6:5c:ae:96:e1:07:64:69:65:1f: e7:69:0a:a1:03:26:62:d5:d6:23:6b:97:c5:d8:8d: 2c:a3:a6:10:a2:60:e8:f3:13:f7:21:c7:11:b5:8c: 20:e8:17:a4:9c:e4:1f:b8:2c:e7:56:f9:df:8d:9e: 3f:b7:c2:d0:03:1f:d2:a1:09:a2:a8:ea:0d:04:76: a0:6f:0d:91:88:61:fb:f1:c0:6e:c3:75:c2:b9:66: 66:1b:3d:0f:20:4a:85:18:a9:d5:4e:f5:c6:6f:03: 64:52:2e:e7:54:95:9c:2b:a7:ed:67:d4:43:ad:88: bb:cf:59:49:b3:e8:f2:d0:b8:9a:41:34:b7:35:53: 6e:e4:3f:32:54:f5:e4:6b:e8:57:e8:6f:3a:a0:e0: 08:fc:e4:e4:61:50:95:26:32:cd:02:04:d2:d8:56: 2b:29:1c:79:41:c8:1f:2e:a1:d2:f5:65:6c:c2:80: 99:9d:92:18:77:78:1d:06:3a:80:eb:9f:16:86:0a: a7:ce:ae:9a:a2:4e:51:5e:21:6b:af:ea:57:50:a3: e7:d9:25:b3:dc:d3:33:28:72:d7:2c:ed:34:5d:57: f2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A8:EA:3E:BB:54:7A:BF:8A:7D:82:2F:37:70:7C:63:AD:D1:C8:1A X509v3 Authority Key Identifier: keyid:4B:11:04:8A:1A:49:16:E1:31:B8:CE:08:8E:2D:6F:E4:E5:C5:E3:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SxEEihpJFuExuM4Iji1v5OXF49s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:23:a4:a2:22:96:db:7c:76:c5:f4:08:f0:bf:b1:0d:92:75: b0:54:72:35:3e:70:3a:28:43:58:2e:c0:69:dd:fe:a8:d4:cb: c1:4f:36:f1:b5:ac:d8:74:c7:66:44:fa:50:88:60:d2:79:8f: a2:44:bc:f0:cc:46:2c:9f:41:8a:12:ba:85:dc:a1:bb:ed:8a: 84:82:39:55:92:8a:d7:21:cb:12:dc:20:d8:ff:df:3a:39:4e: 45:75:19:f6:da:de:ab:67:64:25:96:1d:79:e6:3e:0d:17:14: 0c:56:d0:ed:a9:92:88:cc:82:e0:e3:64:ee:e9:91:c1:4b:d0: 1b:b1:18:9c:d4:5c:53:fb:ef:8c:cf:e9:b3:1a:ab:18:6c:6f: af:13:8b:1f:69:ad:61:da:53:63:03:6b:ba:12:10:67:f8:55: 4b:54:0c:8b:a5:a6:e8:64:9e:5e:63:87:12:54:b4:56:40:50: 13:77:f8:3a:16:24:02:8b:87:d7:53:ae:6d:4a:08:0a:0b:70: 07:cc:39:51:ca:ac:1a:b0:4f:26:e9:3d:d3:6c:0b:15:30:46: ae:28:10:ff:c2:f3:42:2a:ca:3c:8e:54:f9:ce:83:1c:8d:63: 57:7d:19:57:4c:84:72:f4:2d:9d:34:af:27:94:46:da:87:56: 59:18:7d:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtHOos9sUepbgoGNS4afFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiMTEwNDhhMWE0OTE2ZTEzMWI4Y2UwODhlMmQ2ZmU0ZTVj NWUzZGIwHhcNMjYwMjA5MTQwMDQ4WhcNMjYwMjEwMTQwMDQ4WjAzMTEwLwYDVQQD EyhhOGE4ZWEzZWJiNTQ3YWJmOGE3ZDgyMmYzNzcwN2M2M2FkZDFjODFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPosC37jHYGW9Dh/hU6dxZAA5WEh jBPtIjWY6VvGhk9V37ZcrpbhB2RpZR/naQqhAyZi1dYja5fF2I0so6YQomDo8xP3 IccRtYwg6BeknOQfuCznVvnfjZ4/t8LQAx/SoQmiqOoNBHagbw2RiGH78cBuw3XC uWZmGz0PIEqFGKnVTvXGbwNkUi7nVJWcK6ftZ9RDrYi7z1lJs+jy0LiaQTS3NVNu 5D8yVPXka+hX6G86oOAI/OTkYVCVJjLNAgTS2FYrKRx5QcgfLqHS9WVswoCZnZIY d3gdBjqA658Whgqnzq6aok5RXiFrr+pXUKPn2SWz3NMzKHLXLO00XVfy0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKio6j67VHq/in2CLzdwfGOt0cgaMB8GA1UdIwQY MBaAFEsRBIoaSRbhMbjOCI4tb+TlxePbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3hFRWlocEpGdUV4dU00SWppMXY1T1hGNDlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9kM2EyMjgtZmM0Zi00MGIyLTg4YjIt ZTQ4NDYxMWE5NjIxLzEvU3hFRWlocEpGdUV4dU00SWppMXY1T1hGNDlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny9kM2EyMjgtZmM0Zi00MGIyLTg4YjItZTQ4NDYxMWE5NjIx LzEvU3hFRWlocEpGdUV4dU00SWppMXY1T1hGNDlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAiOkoiKW 23x2xfQI8L+xDZJ1sFRyNT5wOihDWC7Aad3+qNTLwU828bWs2HTHZkT6UIhg0nmP okS88MxGLJ9BihK6hdyhu+2KhII5VZKK1yHLEtwg2P/fOjlORXUZ9treq2dkJZYd eeY+DRcUDFbQ7amSiMyC4ONk7umRwUvQG7EYnNRcU/vvjM/psxqrGGxvrxOLH2mt YdpTYwNruhIQZ/hVS1QMi6Wm6GSeXmOHElS0VkBQE3f4OhYkAouH11OubUoICgtw B8w5UcqsGrBPJuk902wLFTBGrigQ/8LzQirKPI5U+c6DHI1jV30ZV0yEcvQtnTSv J5RG2odWWRh9nQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:12:33 2026 by rpki-client