This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json) Hash identifier: BCEDUmQS3JgFb+BjZTqfjDgpgrYv5ibMxFSd15elNuw= Subject key identifier: 2F:1F:83:13:EB:EA:29:3B:BD:E1:5F:90:B1:75:9E:0B:8C:69:C6:86 Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36 Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136 Certificate serial: 019C435963A4EEFE6363161425AA83548FDD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft Manifest number: 0CA0 Signing time: Mon 09 Feb 2026 17:00:57 +0000 Manifest this update: Mon 09 Feb 2026 17:00:57 +0000 Manifest next update: Tue 10 Feb 2026 17:00:57 +0000 Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: V6wKW6t6tYTHtRVaQMZ+6SCg8XFFjCZPFYdsHI3PeMQ=) 2: bocz5SG9Zj4HkXUBKia2cUoBHTI.roa (hash: kxCpDn7CCZ/6SqGTk6+uT7aXJeJIuhuC431y0OFAOkk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:63:a4:ee:fe:63:63:16:14:25:aa:83:54:8f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136 Validity Not Before: Feb 9 17:00:57 2026 GMT Not After : Feb 10 17:00:57 2026 GMT Subject: CN=2f1f8313ebea293bbde15f90b1759e0b8c69c686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a1:8d:15:49:f9:d9:88:f5:11:de:ca:09:59: 05:68:13:d4:80:44:c9:b3:38:9e:18:0e:a5:e2:33: 01:8e:c0:f8:f2:28:ef:f6:fc:d9:a0:9f:4f:95:7c: f1:f7:49:d8:9c:36:25:5b:97:c4:dc:1a:8e:d7:7e: 63:91:09:7a:c4:db:c5:1e:53:d4:e2:fb:99:bd:c0: 85:e9:4a:9a:26:40:6a:db:70:56:8d:2b:b8:1a:29: 39:ff:34:27:e3:7c:e6:d0:5b:ea:2e:8b:12:11:6f: 33:e9:7b:ce:e6:df:c9:3a:1a:1d:60:d1:3b:c7:1c: b7:97:82:1a:e5:82:c4:49:f1:a0:b8:ef:d9:9d:28: 14:7b:8d:b6:f0:bb:46:af:da:14:58:20:d3:01:ff: a6:74:55:b3:df:4f:20:a4:7c:7f:ef:c9:28:62:22: df:9d:fc:6d:fe:76:92:b0:41:9a:ad:41:69:2a:57: 82:e8:90:2d:28:6b:2f:0f:18:bc:61:e6:ae:e8:74: 77:5e:70:5a:b3:90:6f:f2:a8:85:3b:d0:3c:f9:10: 04:ab:ad:78:f5:3e:94:7c:0c:3f:f7:74:05:2b:ce: 3f:5f:6d:4b:c0:fd:18:e2:0e:d5:a7:1e:26:7d:23: 06:e2:99:77:b6:3b:d1:c4:45:52:be:88:1e:a9:62: 5d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1F:83:13:EB:EA:29:3B:BD:E1:5F:90:B1:75:9E:0B:8C:69:C6:86 X509v3 Authority Key Identifier: keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:4e:89:20:d9:e3:45:93:be:07:77:0f:e7:2d:f2:4b:0f:61: 91:58:b6:74:12:69:83:08:95:e1:12:97:98:82:16:93:d2:7f: 59:65:76:55:2c:54:97:28:09:b7:e4:ab:81:5b:18:ea:09:5c: 60:d1:71:81:82:f0:c3:21:2c:6a:c4:f6:1e:70:ea:34:30:a2: 03:92:ac:c3:d7:d8:5d:3d:fe:e9:21:8a:2e:c8:89:b0:44:32: 40:3f:8f:72:81:6f:57:82:c5:57:ec:06:3e:ae:c9:29:87:7c: 4f:17:97:24:d1:ad:a8:41:49:1f:56:bf:82:70:eb:bd:91:c1: 88:fc:da:94:e8:9e:7b:07:0b:a5:26:7c:f2:11:6e:9b:29:af: 5f:86:2a:af:5b:34:49:ea:dc:0b:4c:9f:2e:45:88:de:68:4f: 55:38:78:20:fe:66:85:aa:62:03:97:25:d2:14:26:b4:67:18: 5a:0b:9c:07:9c:73:ca:7d:2d:77:76:20:80:82:5e:a7:1b:31: 9c:93:c3:22:19:08:2c:b8:2c:19:1e:9f:92:10:80:26:18:ba: 2a:5e:c2:d8:bd:4d:73:82:6e:12:69:33:59:e6:86:2c:ba:f6: ff:a9:eb:6e:a7:d6:e4:37:5a:b8:50:57:fe:26:a8:b6:ba:5f: 8e:a1:db:9c -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZxDWWOk7v5jYxYUJaqDVI/dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhZDdlMTRhMjYyNTYwMTkxYzY2NTc2OTk4ZTljNjliODlj M2MxMzYwHhcNMjYwMjA5MTcwMDU3WhcNMjYwMjEwMTcwMDU3WjAzMTEwLwYDVQQD EygyZjFmODMxM2ViZWEyOTNiYmRlMTVmOTBiMTc1OWUwYjhjNjljNjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKGNFUn52Yj1Ed7KCVkFaBPUgETJ szieGA6l4jMBjsD48ijv9vzZoJ9PlXzx90nYnDYlW5fE3BqO135jkQl6xNvFHlPU 4vuZvcCF6UqaJkBq23BWjSu4Gik5/zQn43zm0FvqLosSEW8z6XvO5t/JOhodYNE7 xxy3l4Ia5YLESfGguO/ZnSgUe4228LtGr9oUWCDTAf+mdFWz308gpHx/78koYiLf nfxt/naSsEGarUFpKleC6JAtKGsvDxi8Yeau6HR3XnBas5Bv8qiFO9A8+RAEq614 9T6UfAw/93QFK84/X21LwP0Y4g7Vpx4mfSMG4pl3tjvRxEVSvogeqWJdvwIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFC8fgxPr6ik7veFfkLF1nguMacaGMB8GA1UdIwQY MBaAFPrX4UomJWAZHGZXaZjpxpuJw8E2MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS10ZmhTaVlsWUJrY1psZHBtT25HbTRuRHdUWS5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWEvZTY2NTZiLTgwYzgtNDM1ZS1iYzFk LWQ2ZTcxNTUyM2YzOS8xLzEtdGZoU2lZbFlCa2NabGRwbU9uR200bkR3VFkubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxULzlhL2U2NjU2Yi04MGM4LTQzNWUtYmMxZC1kNmU3MTU1MjNm MzkvMS8xLXRmaFNpWWxZQmtjWmxkcG1PbkdtNG5Ed1RZLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO06J INnjRZO+B3cP5y3ySw9hkVi2dBJpgwiV4RKXmIIWk9J/WWV2VSxUlygJt+SrgVsY 6glcYNFxgYLwwyEsasT2HnDqNDCiA5Ksw9fYXT3+6SGKLsiJsEQyQD+PcoFvV4LF V+wGPq7JKYd8TxeXJNGtqEFJH1a/gnDrvZHBiPzalOieewcLpSZ88hFumymvX4Yq r1s0SercC0yfLkWI3mhPVTh4IP5mhapiA5cl0hQmtGcYWgucB5xzyn0td3YggIJe pxsxnJPDIhkILLgsGR6fkhCAJhi6Kl7C2L1Nc4JuEmkzWeaGLLr2/6nrbqfW5Dda uFBX/iaotrpfjqHbnA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:40 2026 by rpki-client