This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json) Hash identifier: Sh/ki5A2nhmR3uVDWwgZTR2BYqvV2U6yq+lku8gEOU8= Subject key identifier: 53:BA:21:E2:8E:16:4E:8D:E1:D5:AB:D0:60:44:D8:31:33:2E:AB:88 Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b Certificate serial: 019C427D644AA37BD85AC75224E04DBA87FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft Manifest number: 0E92 Signing time: Mon 09 Feb 2026 13:00:39 +0000 Manifest this update: Mon 09 Feb 2026 13:00:39 +0000 Manifest next update: Tue 10 Feb 2026 13:00:39 +0000 Files and hashes: 1: 7o3HU3pC1XthlFE5rMAnOdMOkGY.roa (hash: x+AUbDFdu4k2QNBnXRev35S/cF6y/B0UGwPHMfJj01k=) 2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: e59J7t+hrHfA5gXz7nnVsFi5y3MIbbXtWaxWsx8ZsxE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:64:4a:a3:7b:d8:5a:c7:52:24:e0:4d:ba:87:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b Validity Not Before: Feb 9 13:00:39 2026 GMT Not After : Feb 10 13:00:39 2026 GMT Subject: CN=53ba21e28e164e8de1d5abd06044d831332eab88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:57:96:a4:38:37:eb:a3:8b:27:81:22:70:d4: db:d9:f2:d0:d9:c0:a0:a1:a2:43:ca:9b:0e:54:e1: 6d:9e:95:f5:b2:e4:65:bb:c2:09:66:5b:7e:96:a6: c2:5d:7e:6d:4b:1b:01:05:d2:52:de:df:78:0a:f2: 3b:83:97:b9:dc:33:ff:b1:30:f1:f2:9f:9e:36:20: dd:ca:f3:21:f2:5e:bb:d5:0b:6d:73:15:94:26:8d: 7d:23:e9:cf:7b:8f:fd:03:9e:92:17:4c:21:d9:3b: b2:b2:46:d9:eb:c9:62:a8:04:fd:b3:6b:1d:e2:a7: d1:a6:9c:6d:24:c2:3a:bd:8c:d9:76:d3:28:44:ac: d0:3c:aa:8a:63:00:0d:94:e0:3b:7f:1b:d1:eb:06: a0:d2:6b:58:06:f6:1c:e5:d1:aa:40:3d:6a:0a:54: 95:db:96:bb:de:51:13:b9:d5:b6:83:12:eb:96:78: 07:94:51:72:b0:a1:f7:99:1c:4c:03:fa:5c:db:af: 40:3a:5f:a2:22:8e:0c:62:21:5c:50:4c:63:98:01: f9:e8:7d:63:0d:4c:3c:38:30:e6:88:0f:2a:90:d7: 53:cb:92:9e:91:f6:40:17:d1:e0:73:90:18:a3:d3: a7:b8:b6:88:d6:62:4b:05:de:4d:8f:4c:e3:14:b7: a3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BA:21:E2:8E:16:4E:8D:E1:D5:AB:D0:60:44:D8:31:33:2E:AB:88 X509v3 Authority Key Identifier: keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:5a:0a:5d:9a:ea:c6:11:e2:9f:47:79:1b:db:fd:c2:db:f3: d9:46:8d:c2:cb:3e:7f:01:c2:da:65:c0:c9:8b:7a:60:ce:90: 4d:9d:b4:78:ef:19:c1:72:de:c9:8e:3e:8b:90:3d:89:20:e1: f4:5f:38:bc:c4:df:ed:50:8d:14:85:eb:78:d9:11:ca:da:ac: 24:a0:10:33:eb:c1:01:30:76:b7:96:92:f5:6c:d6:f7:6d:51: ea:dc:bf:6f:46:29:b5:ff:e3:52:e7:f4:14:bf:eb:0c:61:ee: 70:12:f3:c0:52:2a:b6:94:0b:28:41:59:62:b5:71:c8:e9:ed: d6:00:a5:a4:b1:4d:66:a1:a6:3c:5f:c1:17:6b:f9:00:f5:3b: 3b:16:39:e7:c7:a1:43:bb:01:d8:19:f5:59:67:5d:dc:a6:31: 28:88:13:be:e2:b9:25:69:9c:c2:ca:d1:48:76:14:bd:77:df: 54:63:c2:4c:16:6d:ee:0d:4c:f2:28:b7:2c:29:e8:aa:91:e9: a1:bf:85:bf:8b:e3:11:47:7a:7f:bc:b2:2a:24:e7:99:52:2f: 42:a3:e1:8e:2d:a8:58:d5:ca:c7:b8:16:eb:bc:e5:81:4c:ba: 6e:25:be:f6:ab:3b:f0:33:40:be:ac:81:6a:b9:40:71:0d:26: 84:ae:49:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfWRKo3vYWsdSJOBNuof8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0Mzk1ZjZjZWE5YTAxOGE0Y2M4NDgxOGU2YWEzNTIwZDMy MjIxOGIwHhcNMjYwMjA5MTMwMDM5WhcNMjYwMjEwMTMwMDM5WjAzMTEwLwYDVQQD Eyg1M2JhMjFlMjhlMTY0ZThkZTFkNWFiZDA2MDQ0ZDgzMTMzMmVhYjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVeWpDg366OLJ4EicNTb2fLQ2cCg oaJDypsOVOFtnpX1suRlu8IJZlt+lqbCXX5tSxsBBdJS3t94CvI7g5e53DP/sTDx 8p+eNiDdyvMh8l671QttcxWUJo19I+nPe4/9A56SF0wh2TuyskbZ68liqAT9s2sd 4qfRppxtJMI6vYzZdtMoRKzQPKqKYwANlOA7fxvR6wag0mtYBvYc5dGqQD1qClSV 25a73lETudW2gxLrlngHlFFysKH3mRxMA/pc269AOl+iIo4MYiFcUExjmAH56H1j DUw8ODDmiA8qkNdTy5KekfZAF9Hgc5AYo9OnuLaI1mJLBd5Nj0zjFLej8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFO6IeKOFk6N4dWr0GBE2DEzLquIMB8GA1UdIwQY MBaAFLQ5X2zqmgGKTMhIGOaqNSDTIiGLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdERsZmJPcWFBWXBNeUVnWTVxbzFJTk1pSVlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8xZTVjODgtYzNmYy00ZTc2LWJjNjUt MzkxZmVjMjY3ZGFlLzEvdERsZmJPcWFBWXBNeUVnWTVxbzFJTk1pSVlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8xZTVjODgtYzNmYy00ZTc2LWJjNjUtMzkxZmVjMjY3ZGFl LzEvdERsZmJPcWFBWXBNeUVnWTVxbzFJTk1pSVlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHVoKXZrq xhHin0d5G9v9wtvz2UaNwss+fwHC2mXAyYt6YM6QTZ20eO8ZwXLeyY4+i5A9iSDh 9F84vMTf7VCNFIXreNkRytqsJKAQM+vBATB2t5aS9WzW921R6ty/b0Yptf/jUuf0 FL/rDGHucBLzwFIqtpQLKEFZYrVxyOnt1gClpLFNZqGmPF/BF2v5APU7OxY558eh Q7sB2Bn1WWdd3KYxKIgTvuK5JWmcwsrRSHYUvXffVGPCTBZt7g1M8ii3LCnoqpHp ob+Fv4vjEUd6f7yyKiTnmVIvQqPhji2oWNXKx7gW67zlgUy6biW+9qs78DNAvqyB arlAcQ0mhK5J3w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:31 2026 by rpki-client