This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft File: tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft (raw, json) Hash identifier: um2hu+Mzeuq9ARgfgoUpj/cOjKBCSYZE5nOrR5CaZhM= Subject key identifier: 59:18:DB:A6:5E:66:CC:E6:54:1B:B0:D9:CE:7C:14:0A:22:17:DD:D2 Authority key identifier: B6:41:B2:88:B4:D4:13:E9:55:FE:A4:46:0B:32:BF:2C:C1:82:AF:03 Certificate issuer: /CN=b641b288b4d413e955fea4460b32bf2cc182af03 Certificate serial: 019C446BACC157E2A37D44EF0EC7E3EC4126 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 22:00:33 +0000 Manifest this update: Mon 09 Feb 2026 22:00:33 +0000 Manifest next update: Tue 10 Feb 2026 22:00:33 +0000 Files and hashes: 1: tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl (hash: nXezMa7Bty1u1U0R7/VhUG5c32jCGmTxkkC2F+dviUs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:ac:c1:57:e2:a3:7d:44:ef:0e:c7:e3:ec:41:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b641b288b4d413e955fea4460b32bf2cc182af03 Validity Not Before: Feb 9 22:00:33 2026 GMT Not After : Feb 10 22:00:33 2026 GMT Subject: CN=5918dba65e66cce6541bb0d9ce7c140a2217ddd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:65:00:b1:dc:00:87:6d:24:bb:96:60:37: 3d:e3:13:c9:a3:00:c4:46:d4:fc:13:11:0e:e1:74: f0:10:b0:1e:a3:79:fe:c4:a8:1c:e0:42:65:50:62: eb:7e:d5:cb:79:cc:95:ab:fa:a8:c9:f9:81:ea:12: e4:37:8e:d3:d1:ae:d0:26:51:0b:c1:0a:9a:d5:ac: 2d:32:aa:e6:31:5a:4f:76:af:4e:1e:0a:07:ef:80: 15:31:4d:6b:24:d0:1e:a1:14:55:7a:34:b1:44:f0: 0f:50:bb:df:7c:f1:54:82:6c:82:bb:ab:eb:ec:c2: a4:61:35:e7:cd:3c:5c:ea:b9:b6:02:83:61:1d:57: b7:49:3c:ab:da:cb:3e:64:32:5c:3d:99:4f:ae:09: ba:da:72:13:ea:23:19:b3:08:13:5a:07:09:af:76: b5:fc:51:a4:d1:45:17:0b:9c:90:52:2f:1b:0a:89: 64:2b:49:7a:0c:7e:47:90:b8:8c:f1:0c:20:a3:42: eb:70:e5:ce:f5:6b:50:67:c3:06:29:17:86:14:b1: 3b:9a:7a:16:91:b0:a2:14:9f:9e:cd:a0:0e:ca:67: d8:0b:97:c7:e9:cc:ec:fa:97:fe:2b:75:64:c3:0e: 8c:9d:47:48:8d:5e:f6:23:6c:5d:62:3b:17:07:6b: b5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:18:DB:A6:5E:66:CC:E6:54:1B:B0:D9:CE:7C:14:0A:22:17:DD:D2 X509v3 Authority Key Identifier: keyid:B6:41:B2:88:B4:D4:13:E9:55:FE:A4:46:0B:32:BF:2C:C1:82:AF:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:e2:90:30:47:a3:d2:23:9c:0d:5c:d7:f6:b4:04:76:0d:42: e2:a1:1c:0a:4c:23:2e:75:24:db:9f:1f:c9:7e:3d:23:c1:9a: a7:42:7f:5e:5e:70:a8:ee:8f:85:1d:85:ae:d5:1b:cf:30:aa: 11:02:7b:e4:80:91:52:dc:80:9c:bb:49:2b:e6:0b:3f:89:fa: 55:a3:c3:6d:f9:ba:21:b9:ba:c0:a7:22:ca:3d:44:99:e2:94: 61:4f:aa:d4:5c:d4:b6:2f:ec:2c:10:ff:8a:fa:55:49:ae:13: 93:55:df:b5:77:95:50:e0:56:cf:e5:ba:79:e2:3b:5f:72:c2: 0b:60:bd:1b:20:47:30:84:ac:f7:6c:cb:0b:e2:33:d5:3e:90: cd:be:75:00:e3:ef:d9:56:40:3a:28:70:7c:f5:4c:7c:3f:95: 34:de:f0:65:cf:97:87:c2:b0:0b:96:96:d9:d1:17:7b:e2:34: 93:d5:ac:5a:37:68:1c:02:b5:4c:b5:2d:5d:90:a6:61:74:9c: e9:fa:16:5a:25:62:ec:01:7f:5b:8f:f0:ed:ed:47:63:6c:1c: bc:49:43:b7:a4:03:b6:3f:d8:22:2a:27:88:d9:10:3c:51:91: ec:0e:33:18:58:3d:fd:71:62:54:d8:c9:1c:04:a2:34:d1:df: 0e:10:e1:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa6zBV+KjfUTvDsfj7EEmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2NDFiMjg4YjRkNDEzZTk1NWZlYTQ0NjBiMzJiZjJjYzE4 MmFmMDMwHhcNMjYwMjA5MjIwMDMzWhcNMjYwMjEwMjIwMDMzWjAzMTEwLwYDVQQD Eyg1OTE4ZGJhNjVlNjZjY2U2NTQxYmIwZDljZTdjMTQwYTIyMTdkZGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv39lALHcAIdtJLuWYDc94xPJowDE RtT8ExEO4XTwELAeo3n+xKgc4EJlUGLrftXLecyVq/qoyfmB6hLkN47T0a7QJlEL wQqa1awtMqrmMVpPdq9OHgoH74AVMU1rJNAeoRRVejSxRPAPULvffPFUgmyCu6vr 7MKkYTXnzTxc6rm2AoNhHVe3STyr2ss+ZDJcPZlPrgm62nIT6iMZswgTWgcJr3a1 /FGk0UUXC5yQUi8bColkK0l6DH5HkLiM8Qwgo0LrcOXO9WtQZ8MGKReGFLE7mnoW kbCiFJ+ezaAOymfYC5fH6czs+pf+K3Vkww6MnUdIjV72I2xdYjsXB2u1cwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFkY26ZeZszmVBuw2c58FAoiF93SMB8GA1UdIwQY MBaAFLZBsoi01BPpVf6kRgsyvyzBgq8DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGtHeWlMVFVFLWxWX3FSR0N6S19MTUdDcndNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My81NDRmMzItN2MzOC00YTdlLTlkN2Et ODYwZWYzM2M1MDRmLzEvdGtHeWlMVFVFLWxWX3FSR0N6S19MTUdDcndNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My81NDRmMzItN2MzOC00YTdlLTlkN2EtODYwZWYzM2M1MDRm LzEvdGtHeWlMVFVFLWxWX3FSR0N6S19MTUdDcndNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn+KQMEej 0iOcDVzX9rQEdg1C4qEcCkwjLnUk258fyX49I8Gap0J/Xl5wqO6PhR2FrtUbzzCq EQJ75ICRUtyAnLtJK+YLP4n6VaPDbfm6Ibm6wKciyj1EmeKUYU+q1FzUti/sLBD/ ivpVSa4Tk1XftXeVUOBWz+W6eeI7X3LCC2C9GyBHMISs92zLC+Iz1T6Qzb51AOPv 2VZAOihwfPVMfD+VNN7wZc+Xh8KwC5aW2dEXe+I0k9WsWjdoHAK1TLUtXZCmYXSc 6foWWiVi7AF/W4/w7e1HY2wcvElDt6QDtj/YIioniNkQPFGR7A4zGFg9/XFiVNjJ HASiNNHfDhDhLQ== -----END CERTIFICATE-----Generated at Tue Feb 10 02:59:56 2026 by rpki-client