This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft File: thvJe5gnbrO6vZ56pn4nBa4R5lg.mft (raw, json) Hash identifier: OOJRrOgc9CIT/eeShEwNCRsI8asJe/yfqSWYx6cvsls= Subject key identifier: F5:7B:19:1B:6D:9C:BE:07:95:EF:C1:DE:5C:4D:1F:04:EC:1B:23:59 Authority key identifier: B6:1B:C9:7B:98:27:6E:B3:BA:BD:9E:7A:A6:7E:27:05:AE:11:E6:58 Certificate issuer: /CN=b61bc97b98276eb3babd9e7aa67e2705ae11e658 Certificate serial: 019C43226DDA660BEC759D5AD9891310887A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft Manifest number: 06A5 Signing time: Mon 09 Feb 2026 16:00:55 +0000 Manifest this update: Mon 09 Feb 2026 16:00:55 +0000 Manifest next update: Tue 10 Feb 2026 16:00:55 +0000 Files and hashes: 1: XJYerDR0PpzOzzlvepGEResfgcE.roa (hash: 5wfEN3Q7d2uKbWDp8Mpxi1eFLJLct6OeAjh4AL/cHTg=) 2: thvJe5gnbrO6vZ56pn4nBa4R5lg.crl (hash: A8fltdVSuO3JAW2ftNZ6UVG6OyGcVQ+La5QOGH/Dz4U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6d:da:66:0b:ec:75:9d:5a:d9:89:13:10:88:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b61bc97b98276eb3babd9e7aa67e2705ae11e658 Validity Not Before: Feb 9 16:00:55 2026 GMT Not After : Feb 10 16:00:55 2026 GMT Subject: CN=f57b191b6d9cbe0795efc1de5c4d1f04ec1b2359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7d:9f:d0:59:10:5d:14:2a:e9:a3:63:bb:06: 7a:b0:a5:49:71:85:80:39:64:6d:67:b2:d9:e5:bb: 41:69:a6:bc:ab:70:fe:60:9f:70:b2:01:01:46:10: ef:c7:d4:c3:05:de:e5:57:43:ec:00:81:bd:fd:66: 95:b6:78:c0:ee:66:6d:d5:08:0a:94:b7:a3:46:6c: dd:4e:a6:21:a8:fe:c0:66:b7:2f:66:d2:44:47:27: 7b:8e:0b:89:09:18:29:ac:63:34:d2:42:30:77:3d: f0:c9:cf:dc:7b:9e:ea:97:b1:3e:3e:c5:e4:3e:55: 58:01:15:7a:82:ba:54:0c:66:3d:29:63:6b:b8:5a: e7:95:28:aa:b7:cd:90:43:c2:01:4d:27:dd:7c:30: bc:5c:44:ad:b3:55:ec:96:b1:9a:1b:2f:58:ec:cd: 12:e9:55:0d:a0:7c:61:26:71:87:87:f4:42:4d:36: 40:26:10:eb:51:85:3c:6f:96:ce:0b:71:7d:83:e8: 06:27:1c:e2:ff:d5:45:7b:eb:4c:d1:a0:f0:48:1b: c2:4d:0e:94:0e:2b:dd:05:d6:ce:80:2d:c7:02:c2: 1c:46:d9:53:2c:5b:f5:2f:2b:19:02:0f:bd:8d:4f: 66:48:a9:0c:10:be:83:39:50:e6:8d:2b:d5:69:17: 7d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7B:19:1B:6D:9C:BE:07:95:EF:C1:DE:5C:4D:1F:04:EC:1B:23:59 X509v3 Authority Key Identifier: keyid:B6:1B:C9:7B:98:27:6E:B3:BA:BD:9E:7A:A6:7E:27:05:AE:11:E6:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thvJe5gnbrO6vZ56pn4nBa4R5lg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f26f62-ffa2-4170-be4f-983d4da13447/1/thvJe5gnbrO6vZ56pn4nBa4R5lg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:b8:56:35:8d:73:8f:34:3b:b1:bb:aa:8e:c0:e3:e8:d8:62: d0:8d:65:c5:53:f7:95:8c:3b:93:ac:bc:98:6d:96:f0:ad:39: fc:81:ce:ce:27:4d:42:51:c5:a4:ac:6f:0a:14:a0:ef:5c:ee: 36:27:26:af:87:11:61:a3:51:1d:a8:c0:cc:27:7b:2a:c4:b8: 2a:38:32:57:d4:74:8f:ec:4a:f9:df:61:ae:55:28:e8:60:30: 15:8f:ff:23:9f:b5:bc:0e:d3:90:b8:36:b0:d0:72:48:20:33: d2:1e:d5:03:73:7d:bb:d3:53:81:d9:af:e0:f6:61:b4:f9:0e: be:61:b4:2b:62:35:bb:51:59:b3:34:3e:af:57:c5:fc:3d:d0: 91:9a:c1:5a:bb:a7:7a:98:cb:5e:07:4c:1f:6e:f7:cc:12:94: 18:72:25:ea:9f:7e:0a:71:7a:65:40:d9:5b:f7:fb:44:21:1b: 35:59:46:ff:4f:af:8e:ed:c0:26:61:de:87:72:f6:31:09:ee: 79:13:b4:21:ff:51:61:1a:13:ff:47:0c:55:53:f7:46:bb:03: 87:3d:dd:b1:aa:f3:7d:a2:5c:17:97:79:bb:87:9f:f8:43:b3: 7f:21:e2:43:6b:48:41:71:db:35:d3:f4:40:b3:98:64:5c:be: 08:16:bf:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIm3aZgvsdZ1a2YkTEIh6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2MWJjOTdiOTgyNzZlYjNiYWJkOWU3YWE2N2UyNzA1YWUx MWU2NTgwHhcNMjYwMjA5MTYwMDU1WhcNMjYwMjEwMTYwMDU1WjAzMTEwLwYDVQQD EyhmNTdiMTkxYjZkOWNiZTA3OTVlZmMxZGU1YzRkMWYwNGVjMWIyMzU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwH2f0FkQXRQq6aNjuwZ6sKVJcYWA OWRtZ7LZ5btBaaa8q3D+YJ9wsgEBRhDvx9TDBd7lV0PsAIG9/WaVtnjA7mZt1QgK lLejRmzdTqYhqP7AZrcvZtJERyd7jguJCRgprGM00kIwdz3wyc/ce57ql7E+PsXk PlVYARV6grpUDGY9KWNruFrnlSiqt82QQ8IBTSfdfDC8XESts1XslrGaGy9Y7M0S 6VUNoHxhJnGHh/RCTTZAJhDrUYU8b5bOC3F9g+gGJxzi/9VFe+tM0aDwSBvCTQ6U DivdBdbOgC3HAsIcRtlTLFv1LysZAg+9jU9mSKkMEL6DOVDmjSvVaRd9aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPV7GRttnL4Hle/B3lxNHwTsGyNZMB8GA1UdIwQY MBaAFLYbyXuYJ26zur2eeqZ+JwWuEeZYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGh2SmU1Z25ick82dlo1NnBuNG5CYTRSNWxnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9mMjZmNjItZmZhMi00MTcwLWJlNGYt OTgzZDRkYTEzNDQ3LzEvdGh2SmU1Z25ick82dlo1NnBuNG5CYTRSNWxnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9mMjZmNjItZmZhMi00MTcwLWJlNGYtOTgzZDRkYTEzNDQ3 LzEvdGh2SmU1Z25ick82dlo1NnBuNG5CYTRSNWxnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaLhWNY1z jzQ7sbuqjsDj6Nhi0I1lxVP3lYw7k6y8mG2W8K05/IHOzidNQlHFpKxvChSg71zu Nicmr4cRYaNRHajAzCd7KsS4KjgyV9R0j+xK+d9hrlUo6GAwFY//I5+1vA7TkLg2 sNBySCAz0h7VA3N9u9NTgdmv4PZhtPkOvmG0K2I1u1FZszQ+r1fF/D3QkZrBWrun epjLXgdMH273zBKUGHIl6p9+CnF6ZUDZW/f7RCEbNVlG/0+vju3AJmHeh3L2MQnu eRO0If9RYRoT/0cMVVP3RrsDhz3dsarzfaJcF5d5u4ef+EOzfyHiQ2tIQXHbNdP0 QLOYZFy+CBa/Sw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:07 2026 by rpki-client