This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json) Hash identifier: G2EcxoRie18JDR7xP9d5/7B8K9sDAfRn8Kr2Vt+DLEo= Subject key identifier: 2D:F9:92:B8:04:1E:7D:69:90:5C:D5:33:1A:A4:A9:61:4A:D1:0A:06 Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40 Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40 Certificate serial: 019C43909C31BE45BCAFB00551E77435B1C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft Manifest number: 0541 Signing time: Mon 09 Feb 2026 18:01:16 +0000 Manifest this update: Mon 09 Feb 2026 18:01:16 +0000 Manifest next update: Tue 10 Feb 2026 18:01:16 +0000 Files and hashes: 1: 0lwIzPsGn14owxvXy7_61u8zBPk.roa (hash: RHYNuusrfwoS7Vg7kp1EMywIH/hGj3OELuZX6uFgB7Q=) 2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: nrhAk8DcL1iAGnAOqTs8qIVp+l5hOe2B0aI0Mk/riI8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:9c:31:be:45:bc:af:b0:05:51:e7:74:35:b1:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40 Validity Not Before: Feb 9 18:01:16 2026 GMT Not After : Feb 10 18:01:16 2026 GMT Subject: CN=2df992b8041e7d69905cd5331aa4a9614ad10a06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e7:a0:93:e9:45:24:5e:ca:d5:37:d7:6e:b5: b2:34:52:a1:ed:6c:4f:00:c6:0e:21:d8:60:35:7e: 6e:6f:6f:72:f0:a3:94:01:c6:30:07:78:65:a5:5b: c3:62:12:e7:0d:61:ff:8c:78:d8:68:10:f6:65:2d: ac:61:92:05:64:b4:30:6f:56:ac:8f:f3:b6:dc:c2: a7:17:1c:19:2b:61:81:50:4d:dd:d1:23:9e:1b:eb: 40:8b:25:7c:f1:c4:c1:be:2f:07:4f:8a:48:ec:67: 23:f9:61:d0:4d:33:66:b7:dc:c4:32:aa:8d:08:da: 4f:92:f7:9a:85:5f:b3:2c:57:86:5c:00:e8:05:27: 78:4f:ba:1d:bf:3d:cd:0c:cd:9a:9f:c5:aa:71:5f: ec:d2:c5:f9:f5:44:a0:61:9f:9c:e3:1b:4e:35:c5: a1:51:78:25:c9:7f:34:fb:e4:9b:6d:66:da:75:1c: 75:d1:93:28:8e:0e:72:88:6f:2b:f0:f1:54:a1:0a: 72:2d:11:2f:d2:74:06:43:39:37:36:fb:04:b0:93: e7:69:bb:02:ba:7b:dc:05:de:fe:d4:34:8f:da:91: 37:22:a8:0b:80:25:04:26:08:f7:8f:55:fa:08:59: dd:b6:d5:a8:47:8f:f7:94:93:bc:95:4b:7b:a0:37: 13:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F9:92:B8:04:1E:7D:69:90:5C:D5:33:1A:A4:A9:61:4A:D1:0A:06 X509v3 Authority Key Identifier: keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:73:c4:47:99:01:8a:98:e1:21:b3:ee:33:94:c2:18:9f:c4: e1:ff:55:d0:8b:d5:17:c3:70:d3:56:fc:6f:5b:00:52:5b:c2: 0d:89:89:ac:74:1b:17:d2:98:92:28:73:2a:51:9c:17:8d:3f: 6c:49:84:ba:9f:1f:9c:83:3b:b7:1f:95:52:83:f2:e7:cf:3e: b0:7b:17:c2:7b:77:6d:57:8d:d8:b2:4e:3d:e6:46:bb:85:41: ef:ad:72:cb:95:79:23:e4:8d:49:b8:fe:3e:e7:e9:28:64:83: f2:d7:77:8c:f3:d9:96:a5:3c:ef:3e:2d:c4:f4:90:41:f5:c7: 58:0e:55:e1:00:30:59:23:fd:84:ae:30:98:c1:93:df:90:f2: 91:a9:f8:f1:33:68:62:dd:e7:56:ed:fe:1d:b9:2e:4b:a0:1e: 03:bf:66:30:83:f2:26:6c:be:7d:e5:d2:57:1e:62:85:64:db: a3:c5:ab:bc:d0:c5:35:97:0f:f1:4c:bd:a5:0b:d7:7d:89:94: 55:27:7e:ef:81:9f:73:63:f8:88:6c:f8:09:6d:d7:b8:3a:db: 36:bd:a8:11:1d:0c:9c:bc:28:87:a3:6a:54:32:31:6f:da:3c: 47:3e:c0:83:32:d1:1d:c7:b7:b3:ec:45:d0:d1:50:0d:cc:2b: 7c:5b:75:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkJwxvkW8r7AFUed0NbHEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MzZjMGYwZWM4YmJlZGYwZjYwODQ0ZGZlNGZlOTM5MzY5 YTRiNDAwHhcNMjYwMjA5MTgwMTE2WhcNMjYwMjEwMTgwMTE2WjAzMTEwLwYDVQQD EygyZGY5OTJiODA0MWU3ZDY5OTA1Y2Q1MzMxYWE0YTk2MTRhZDEwYTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOegk+lFJF7K1TfXbrWyNFKh7WxP AMYOIdhgNX5ub29y8KOUAcYwB3hlpVvDYhLnDWH/jHjYaBD2ZS2sYZIFZLQwb1as j/O23MKnFxwZK2GBUE3d0SOeG+tAiyV88cTBvi8HT4pI7Gcj+WHQTTNmt9zEMqqN CNpPkveahV+zLFeGXADoBSd4T7odvz3NDM2an8WqcV/s0sX59USgYZ+c4xtONcWh UXglyX80++SbbWbadRx10ZMojg5yiG8r8PFUoQpyLREv0nQGQzk3NvsEsJPnabsC unvcBd7+1DSP2pE3IqgLgCUEJgj3j1X6CFndttWoR4/3lJO8lUt7oDcTYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC35krgEHn1pkFzVMxqkqWFK0QoGMB8GA1UdIwQY MBaAFLQ2wPDsi77fD2CETf5P6Tk2mktAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgt ZGQ4YjVhZmNlZTNiLzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgtZGQ4YjVhZmNlZTNi LzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUXPER5kB ipjhIbPuM5TCGJ/E4f9V0IvVF8Nw01b8b1sAUlvCDYmJrHQbF9KYkihzKlGcF40/ bEmEup8fnIM7tx+VUoPy588+sHsXwnt3bVeN2LJOPeZGu4VB761yy5V5I+SNSbj+ PufpKGSD8td3jPPZlqU87z4txPSQQfXHWA5V4QAwWSP9hK4wmMGT35Dykan48TNo Yt3nVu3+HbkuS6AeA79mMIPyJmy+feXSVx5ihWTbo8WrvNDFNZcP8Uy9pQvXfYmU VSd+74Gfc2P4iGz4CW3XuDrbNr2oER0MnLwoh6NqVDIxb9o8Rz7AgzLRHce3s+xF 0NFQDcwrfFt17w== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:32 2026 by rpki-client