This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft File: vVhFViKSj0TenBVdcGjh0RtEVPE.mft (raw, json) Hash identifier: n1YO50VzQiFaQ1P7kQeihBGDeS3q7zTsUDhUbxyBYD8= Subject key identifier: 4F:47:09:CD:3F:40:76:EB:81:06:8C:3E:62:15:CB:4F:57:51:EA:69 Authority key identifier: BD:58:45:56:22:92:8F:44:DE:9C:15:5D:70:68:E1:D1:1B:44:54:F1 Certificate issuer: /CN=bd58455622928f44de9c155d7068e1d11b4454f1 Certificate serial: 019C4322927F7BE7A00F72CB6A73F61A9CF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vVhFViKSj0TenBVdcGjh0RtEVPE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:01:05 +0000 Manifest this update: Mon 09 Feb 2026 16:01:05 +0000 Manifest next update: Tue 10 Feb 2026 16:01:05 +0000 Files and hashes: 1: vVhFViKSj0TenBVdcGjh0RtEVPE.crl (hash: Qs92r/7NZp91fz4DKScut0bZrddAhl1FErJSWUI5qnQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft rsync://rpki.ripe.net/repository/DEFAULT/vVhFViKSj0TenBVdcGjh0RtEVPE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:92:7f:7b:e7:a0:0f:72:cb:6a:73:f6:1a:9c:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd58455622928f44de9c155d7068e1d11b4454f1 Validity Not Before: Feb 9 16:01:05 2026 GMT Not After : Feb 10 16:01:05 2026 GMT Subject: CN=4f4709cd3f4076eb81068c3e6215cb4f5751ea69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ef:5d:1e:b4:33:f2:12:b9:76:5b:63:d6:76: 57:7a:06:fe:e1:69:5c:9b:59:15:2c:18:80:f2:07: ee:ed:5a:5d:3f:02:f4:77:5b:1b:6b:14:5c:28:b2: 34:be:1d:bd:38:a0:15:db:60:0d:a3:b4:09:ff:60: 13:3c:0e:17:6b:dc:3f:02:27:ab:c4:86:7e:59:16: 30:ea:cc:4f:8d:0a:d5:09:42:6e:3c:f5:e9:0c:81: 7e:f3:53:e7:d4:f0:b3:d0:8a:cd:9f:e3:15:64:f1: 45:13:7c:e1:16:58:fe:b1:e4:25:46:1f:73:03:a5: 41:ae:a1:32:2c:fb:79:d0:1b:d7:45:48:25:ae:41: 7b:27:32:a6:b2:47:de:fd:cc:f1:98:83:71:3b:45: 01:29:12:b1:d4:26:ae:5b:83:44:32:44:bb:e2:bd: f4:52:77:29:91:ed:fe:b5:95:e7:f2:20:22:f8:3f: 36:4b:92:3d:d2:1d:f8:fa:ef:20:a3:55:ac:50:a0: e7:a0:51:bc:63:8f:50:d3:33:09:74:31:a5:0a:56: 7a:5f:c0:76:88:6c:ad:4c:80:82:c3:87:47:46:b7: c4:81:cd:33:d7:83:57:95:4c:9a:af:24:17:a8:1b: 80:0f:56:fa:c1:62:d0:ee:e0:5e:db:d3:9d:98:b9: 85:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:47:09:CD:3F:40:76:EB:81:06:8C:3E:62:15:CB:4F:57:51:EA:69 X509v3 Authority Key Identifier: keyid:BD:58:45:56:22:92:8F:44:DE:9C:15:5D:70:68:E1:D1:1B:44:54:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vVhFViKSj0TenBVdcGjh0RtEVPE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:d5:b3:00:41:1f:ef:3f:a1:66:11:d5:c8:1d:47:83:dc:47: 1e:de:9c:e9:f9:80:0a:4e:3f:6a:98:da:f4:c7:a4:6b:37:d6: 28:f6:e6:de:e5:1f:48:6a:c8:2b:b3:51:9e:2c:8a:c7:c5:8f: 6f:b3:8b:10:fc:e2:ef:db:93:3c:5a:08:4a:ed:fc:f3:90:a3: 47:b3:e3:b5:5f:e7:8a:36:69:70:9f:e4:14:8a:72:5d:bc:c7: 5e:2e:f7:bc:6c:5d:3d:28:5b:7d:55:77:22:85:fa:f0:25:db: 06:60:42:8f:0d:66:7d:c4:65:1f:2e:31:42:82:19:96:59:18: 56:7c:84:6c:bd:16:e8:f5:19:1f:01:ff:c7:1a:e7:0b:52:c5: 23:46:6a:15:49:64:ac:0c:bd:4a:36:39:ed:49:a0:49:56:1f: 3a:d9:02:19:c5:2c:35:49:b1:85:67:0d:6d:70:fb:48:3d:8b: 73:a4:1b:c8:e6:9e:b6:9f:7c:07:dd:13:48:0f:42:df:ba:33: de:c2:17:b4:cb:71:60:6e:22:14:9b:fa:9b:46:9a:8d:b9:9c: c0:96:3b:16:da:fd:cb:6b:c8:2b:f0:b1:16:e0:dd:dc:a0:72: 2e:95:2b:2f:3f:55:07:df:fe:e7:90:f8:8a:d8:28:19:65:b6: da:11:ed:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpJ/e+egD3LLanP2Gpz0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkNTg0NTU2MjI5MjhmNDRkZTljMTU1ZDcwNjhlMWQxMWI0 NDU0ZjEwHhcNMjYwMjA5MTYwMTA1WhcNMjYwMjEwMTYwMTA1WjAzMTEwLwYDVQQD Eyg0ZjQ3MDljZDNmNDA3NmViODEwNjhjM2U2MjE1Y2I0ZjU3NTFlYTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+9dHrQz8hK5dltj1nZXegb+4Wlc m1kVLBiA8gfu7VpdPwL0d1sbaxRcKLI0vh29OKAV22ANo7QJ/2ATPA4Xa9w/Aier xIZ+WRYw6sxPjQrVCUJuPPXpDIF+81Pn1PCz0IrNn+MVZPFFE3zhFlj+seQlRh9z A6VBrqEyLPt50BvXRUglrkF7JzKmskfe/czxmINxO0UBKRKx1CauW4NEMkS74r30 Uncpke3+tZXn8iAi+D82S5I90h34+u8go1WsUKDnoFG8Y49Q0zMJdDGlClZ6X8B2 iGytTICCw4dHRrfEgc0z14NXlUyaryQXqBuAD1b6wWLQ7uBe29OdmLmFUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE9HCc0/QHbrgQaMPmIVy09XUeppMB8GA1UdIwQY MBaAFL1YRVYiko9E3pwVXXBo4dEbRFTxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlZoRlZpS1NqMFRlbkJWZGNHamgwUnRFVlBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS8xZGM5N2MtZWU2Ny00YzJiLTgwYmEt MjkwODlkYTQwYzk5LzEvdlZoRlZpS1NqMFRlbkJWZGNHamgwUnRFVlBFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS8xZGM5N2MtZWU2Ny00YzJiLTgwYmEtMjkwODlkYTQwYzk5 LzEvdlZoRlZpS1NqMFRlbkJWZGNHamgwUnRFVlBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlNWzAEEf 7z+hZhHVyB1Hg9xHHt6c6fmACk4/apja9MekazfWKPbm3uUfSGrIK7NRniyKx8WP b7OLEPzi79uTPFoISu3885CjR7PjtV/nijZpcJ/kFIpyXbzHXi73vGxdPShbfVV3 IoX68CXbBmBCjw1mfcRlHy4xQoIZllkYVnyEbL0W6PUZHwH/xxrnC1LFI0ZqFUlk rAy9SjY57UmgSVYfOtkCGcUsNUmxhWcNbXD7SD2Lc6QbyOaetp98B90TSA9C37oz 3sIXtMtxYG4iFJv6m0aajbmcwJY7Ftr9y2vIK/CxFuDd3KByLpUrLz9VB9/+55D4 itgoGWW22hHtoQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:41 2026 by rpki-client