This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft File: tF9VYNefBKktehUPPtjaQwir6jM.mft (raw, json) Hash identifier: TLcfHMtg3V9ecsSR8oJiDjQH3ziikh64SQQR5qeJRpc= Subject key identifier: D2:21:3B:6A:10:A3:22:C5:4C:2A:53:BE:61:C2:77:F9:99:7B:AC:2A Authority key identifier: B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33 Certificate issuer: /CN=b45f5560d79f04a92d7a150f3ed8da4308abea33 Certificate serial: 019C427D42D0EC959E2BC8E6C392656A08DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft Manifest number: 1398 Signing time: Mon 09 Feb 2026 13:00:31 +0000 Manifest this update: Mon 09 Feb 2026 13:00:31 +0000 Manifest next update: Tue 10 Feb 2026 13:00:31 +0000 Files and hashes: 1: iDP1bGdTiUqEFNWH9pQ_fwFAZO8.roa (hash: juc+ynuClZ4OorzxxoiPvzF8miwUosVKgq4mBUka3tw=) 2: tF9VYNefBKktehUPPtjaQwir6jM.crl (hash: 1m1/cTw5DiG8GOWBjEzw1hXK95TpVdx4PBptFIay0PQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:42:d0:ec:95:9e:2b:c8:e6:c3:92:65:6a:08:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b45f5560d79f04a92d7a150f3ed8da4308abea33 Validity Not Before: Feb 9 13:00:31 2026 GMT Not After : Feb 10 13:00:31 2026 GMT Subject: CN=d2213b6a10a322c54c2a53be61c277f9997bac2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:68:5d:34:5c:89:f5:53:77:de:a5:38:d1:ce: 68:ac:d5:45:19:4e:c2:dd:a8:a4:c3:cd:37:8f:5f: a2:c2:b2:33:04:45:a9:f6:2f:92:7d:12:e0:8b:96: 9c:e0:fd:57:7b:d0:1f:66:0f:ed:f2:58:48:de:c0: 69:18:57:c7:e9:e0:70:0e:1a:ea:2c:4c:1f:58:cf: 99:bd:55:a3:0c:35:cb:69:48:bd:8f:8d:e8:bc:db: 81:6c:66:9b:4d:3c:63:ca:61:30:c7:d5:ab:24:51: 05:39:26:51:d2:00:42:1a:e4:70:71:5c:1d:88:df: 23:37:32:d3:93:4d:23:58:78:2c:6f:e7:3e:a7:84: 02:ff:f6:88:47:30:a7:84:1a:f1:43:57:ab:1e:2f: ab:cd:ea:c9:ee:8b:06:a8:22:28:9d:e3:ee:4e:15: b0:b8:8d:fd:82:10:70:60:62:5a:b4:f1:e0:9c:42: d4:75:e1:d6:a6:cf:3c:ab:f4:46:e3:5d:fd:b8:80: 1b:b3:07:88:3e:80:6d:5c:63:ef:1e:38:90:ee:cc: 5c:64:75:02:11:f5:43:00:61:cd:cf:26:12:29:f1: 3f:4c:81:5b:69:60:09:68:b5:d3:f2:c0:77:b4:9f: c8:ae:70:17:32:ef:96:50:5a:20:c2:40:5c:1a:85: 9c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:21:3B:6A:10:A3:22:C5:4C:2A:53:BE:61:C2:77:F9:99:7B:AC:2A X509v3 Authority Key Identifier: keyid:B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:9a:32:6f:8c:90:cf:c5:5d:7e:4c:8c:c5:ba:ad:f6:8c:3d: 19:91:b3:b2:e7:db:f7:a0:18:02:96:85:b8:44:af:8e:5e:22: ab:1c:3d:17:c2:4b:c4:cc:84:ac:05:04:aa:2d:13:71:62:76: e6:53:8d:98:eb:04:49:76:97:84:70:3e:10:a8:bc:ef:44:cb: 61:2d:c2:e3:7e:2d:5b:ec:e8:82:0e:e3:de:e8:2c:2f:3a:b9: 96:04:c4:06:2d:3e:37:08:23:fd:f3:c1:b6:e3:09:39:86:64: 9d:43:b3:4b:19:48:ac:9a:fc:fe:ae:de:7a:ef:91:2d:1d:07: 6e:2f:8e:ea:cd:87:35:17:45:4d:d4:1e:f7:d0:f5:30:d7:12: a6:f8:c4:10:a9:28:fb:25:e0:b4:79:30:de:bd:c1:a7:fa:6c: 0e:01:88:a6:c9:89:58:7d:ee:4e:95:a2:6c:8a:36:c5:8f:6a: 61:9d:08:65:ac:e7:de:72:de:57:5e:25:ca:13:ed:7d:ed:e9: 11:74:51:a8:6a:39:14:3c:6f:4a:2e:42:48:ab:da:c2:8b:fc: 40:db:42:c6:b6:19:8a:32:b9:25:02:c2:7c:81:c7:80:78:8b: 43:b2:2d:36:ea:e3:18:08:4b:a3:c0:ab:b0:68:56:35:0e:da: 24:78:e7:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfULQ7JWeK8jmw5JlagjeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0NWY1NTYwZDc5ZjA0YTkyZDdhMTUwZjNlZDhkYTQzMDhh YmVhMzMwHhcNMjYwMjA5MTMwMDMxWhcNMjYwMjEwMTMwMDMxWjAzMTEwLwYDVQQD EyhkMjIxM2I2YTEwYTMyMmM1NGMyYTUzYmU2MWMyNzdmOTk5N2JhYzJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumhdNFyJ9VN33qU40c5orNVFGU7C 3aikw803j1+iwrIzBEWp9i+SfRLgi5ac4P1Xe9AfZg/t8lhI3sBpGFfH6eBwDhrq LEwfWM+ZvVWjDDXLaUi9j43ovNuBbGabTTxjymEwx9WrJFEFOSZR0gBCGuRwcVwd iN8jNzLTk00jWHgsb+c+p4QC//aIRzCnhBrxQ1erHi+rzerJ7osGqCIonePuThWw uI39ghBwYGJatPHgnELUdeHWps88q/RG4139uIAbsweIPoBtXGPvHjiQ7sxcZHUC EfVDAGHNzyYSKfE/TIFbaWAJaLXT8sB3tJ/IrnAXMu+WUFogwkBcGoWcVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNIhO2oQoyLFTCpTvmHCd/mZe6wqMB8GA1UdIwQY MBaAFLRfVWDXnwSpLXoVDz7Y2kMIq+ozMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEY5VllOZWZCS2t0ZWhVUFB0amFRd2lyNmpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy83YjE2OWQtZmMwOS00OWJiLTk2Njkt YzMyMjI0NzRlZWYxLzEvdEY5VllOZWZCS2t0ZWhVUFB0amFRd2lyNmpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy83YjE2OWQtZmMwOS00OWJiLTk2NjktYzMyMjI0NzRlZWYx LzEvdEY5VllOZWZCS2t0ZWhVUFB0amFRd2lyNmpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOZoyb4yQ z8VdfkyMxbqt9ow9GZGzsufb96AYApaFuESvjl4iqxw9F8JLxMyErAUEqi0TcWJ2 5lONmOsESXaXhHA+EKi870TLYS3C434tW+zogg7j3ugsLzq5lgTEBi0+Nwgj/fPB tuMJOYZknUOzSxlIrJr8/q7eeu+RLR0Hbi+O6s2HNRdFTdQe99D1MNcSpvjEEKko +yXgtHkw3r3Bp/psDgGIpsmJWH3uTpWibIo2xY9qYZ0IZazn3nLeV14lyhPtfe3p EXRRqGo5FDxvSi5CSKvawov8QNtCxrYZijK5JQLCfIHHgHiLQ7ItNurjGAhLo8Cr sGhWNQ7aJHjnXg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:41 2026 by rpki-client