This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft File: czaDy4VtbZ_1jih-ipBdKS3KazQ.mft (raw, json) Hash identifier: pBTGcErpRE+7XMJbk2almFzzWal1siDJ9cB6uxWoJ5s= Subject key identifier: 5E:27:47:42:87:E4:19:9B:0A:AC:D1:A5:5D:82:E5:7E:C2:7E:D9:5A Authority key identifier: 73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34 Certificate issuer: /CN=733683cb856d6d9ff58e287e8a905d292dca6b34 Certificate serial: 019C4322E07FA8054DBB2A23024756BD6919 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft Manifest number: 1456 Signing time: Mon 09 Feb 2026 16:01:25 +0000 Manifest this update: Mon 09 Feb 2026 16:01:25 +0000 Manifest next update: Tue 10 Feb 2026 16:01:25 +0000 Files and hashes: 1: FhBG6EZ_K984KUIz81WFHdsRYxw.roa (hash: KOb98v+CSmeD7NnmSTq6hlY5QkxEZeCFyxvl1RnJ2hw=) 2: czaDy4VtbZ_1jih-ipBdKS3KazQ.crl (hash: t9lEh09jOM/HT/1E6Tc0eaS+0PixHJ4LGx0XgCrt8io=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:e0:7f:a8:05:4d:bb:2a:23:02:47:56:bd:69:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=733683cb856d6d9ff58e287e8a905d292dca6b34 Validity Not Before: Feb 9 16:01:25 2026 GMT Not After : Feb 10 16:01:25 2026 GMT Subject: CN=5e27474287e4199b0aacd1a55d82e57ec27ed95a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7b:56:b4:d8:b0:78:35:48:b8:6d:52:08:00: a0:fc:a6:8e:b7:24:87:22:0e:c1:0b:48:c8:0a:d7: f7:b9:0b:8e:0c:a2:c4:2c:70:02:e7:f6:1a:b8:7c: 4a:11:4e:87:08:a0:d0:6f:f8:3c:52:f9:02:bb:a0: f6:72:6b:1b:64:65:e3:9e:31:8e:ce:9b:a8:96:ba: 4f:7e:2e:6f:34:f1:35:06:22:5b:49:a8:4a:1e:12: 90:02:e8:3b:5a:58:0d:9b:8a:83:be:ba:b3:e3:bc: eb:e7:4d:b1:24:b3:c7:c1:6a:45:2c:c8:1e:5e:a7: 02:eb:06:83:c7:82:04:5e:b4:cb:2a:9c:d9:d1:c7: 06:de:d1:65:63:52:31:31:9a:da:01:49:53:54:7d: bb:3c:28:43:2a:bd:e0:ed:e6:68:29:8b:32:c2:03: 4f:62:50:3e:83:45:e9:ce:2a:d0:39:68:ee:bf:b2: 9d:2a:1e:ef:56:3f:13:b3:e5:e3:7a:d3:d5:51:ab: 61:57:50:05:86:b8:6f:32:e2:d6:c8:0a:9a:db:ea: 6b:b0:af:c7:f5:1f:cd:1f:ce:c8:ca:32:f4:5e:ce: 7d:f7:b1:f4:9f:38:41:73:0c:c0:03:95:a8:39:d9: b1:32:94:1b:b3:fc:c0:e4:d0:03:50:09:81:fb:1d: 38:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:27:47:42:87:E4:19:9B:0A:AC:D1:A5:5D:82:E5:7E:C2:7E:D9:5A X509v3 Authority Key Identifier: keyid:73:36:83:CB:85:6D:6D:9F:F5:8E:28:7E:8A:90:5D:29:2D:CA:6B:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czaDy4VtbZ_1jih-ipBdKS3KazQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/844769-cb3e-45cd-9165-687ae6fba3ad/1/czaDy4VtbZ_1jih-ipBdKS3KazQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:82:69:d5:4a:4d:f1:36:f5:ce:0c:53:83:2b:99:e8:4a:72: 03:32:c3:2e:2d:e9:eb:a1:65:92:b2:e9:de:6f:83:bc:44:f2: 86:50:04:14:ec:30:58:d7:0f:17:33:82:13:9a:cb:b5:f2:3f: 6a:cc:5d:7c:4b:7f:bf:c2:66:ea:cd:7a:9b:57:e7:56:2d:4e: 6d:02:89:c0:5c:7a:c9:39:1b:c6:61:75:b1:14:09:30:97:71: 09:f7:6b:2f:0f:a2:10:bc:83:84:fd:88:91:7c:ea:5d:19:c3: 5a:48:48:29:70:34:6f:15:98:24:84:67:57:23:cb:64:4a:88: 8e:45:df:d1:04:2f:21:0c:56:f9:8f:d9:e2:7d:27:02:61:0b: 1e:1d:cc:ce:49:f3:8e:1d:75:93:2e:81:21:90:c5:87:a2:bf: 47:70:40:c2:45:ac:e0:d9:96:b7:02:cc:db:ce:54:b4:b5:4a: 56:20:b4:d9:20:e4:da:fc:dd:3b:b1:a6:45:cf:99:a4:f6:49: 3b:d1:9c:e4:2a:70:eb:7d:46:49:ee:da:7a:01:86:4b:78:63: 43:91:b8:ce:b1:06:5f:40:f2:56:79:4b:11:36:b1:96:64:2f: f8:ea:ee:2b:8d:e1:8e:c1:23:ba:84:66:41:7c:78:af:b0:f1: 65:2f:b1:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIuB/qAVNuyojAkdWvWkZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczMzY4M2NiODU2ZDZkOWZmNThlMjg3ZThhOTA1ZDI5MmRj YTZiMzQwHhcNMjYwMjA5MTYwMTI1WhcNMjYwMjEwMTYwMTI1WjAzMTEwLwYDVQQD Eyg1ZTI3NDc0Mjg3ZTQxOTliMGFhY2QxYTU1ZDgyZTU3ZWMyN2VkOTVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqntWtNiweDVIuG1SCACg/KaOtySH Ig7BC0jICtf3uQuODKLELHAC5/YauHxKEU6HCKDQb/g8UvkCu6D2cmsbZGXjnjGO zpuolrpPfi5vNPE1BiJbSahKHhKQAug7WlgNm4qDvrqz47zr502xJLPHwWpFLMge XqcC6waDx4IEXrTLKpzZ0ccG3tFlY1IxMZraAUlTVH27PChDKr3g7eZoKYsywgNP YlA+g0XpzirQOWjuv7KdKh7vVj8Ts+XjetPVUathV1AFhrhvMuLWyAqa2+prsK/H 9R/NH87IyjL0Xs5997H0nzhBcwzAA5WoOdmxMpQbs/zA5NADUAmB+x04PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF4nR0KH5BmbCqzRpV2C5X7CftlaMB8GA1UdIwQY MBaAFHM2g8uFbW2f9Y4ofoqQXSktyms0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3phRHk0VnRiWl8xamloLWlwQmRLUzNLYXpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS84NDQ3NjktY2IzZS00NWNkLTkxNjUt Njg3YWU2ZmJhM2FkLzEvY3phRHk0VnRiWl8xamloLWlwQmRLUzNLYXpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS84NDQ3NjktY2IzZS00NWNkLTkxNjUtNjg3YWU2ZmJhM2Fk LzEvY3phRHk0VnRiWl8xamloLWlwQmRLUzNLYXpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkIJp1UpN 8Tb1zgxTgyuZ6EpyAzLDLi3p66FlkrLp3m+DvETyhlAEFOwwWNcPFzOCE5rLtfI/ asxdfEt/v8Jm6s16m1fnVi1ObQKJwFx6yTkbxmF1sRQJMJdxCfdrLw+iELyDhP2I kXzqXRnDWkhIKXA0bxWYJIRnVyPLZEqIjkXf0QQvIQxW+Y/Z4n0nAmELHh3Mzknz jh11ky6BIZDFh6K/R3BAwkWs4NmWtwLM285UtLVKViC02SDk2vzdO7GmRc+ZpPZJ O9Gc5Cpw631GSe7aegGGS3hjQ5G4zrEGX0DyVnlLETaxlmQv+OruK43hjsEjuoRm QXx4r7DxZS+xSw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:06:33 2026 by rpki-client