This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.mft File: M1lkDZyLY0Pghqr4vosw6MMdK40.mft (raw, json) Hash identifier: CXv3clQx/FhbNsuvOitbp1Iri48tKdH0QhfecZeP9GE= Subject key identifier: 1F:AC:54:8F:47:18:47:43:2F:64:17:D0:98:82:23:89:30:89:B9:00 Authority key identifier: 33:59:64:0D:9C:8B:63:43:E0:86:AA:F8:BE:8B:30:E8:C3:1D:2B:8D Certificate issuer: /CN=3359640d9c8b6343e086aaf8be8b30e8c31d2b8d Certificate serial: 019C413390451AD9C75760C364888D76BE13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1lkDZyLY0Pghqr4vosw6MMdK40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.mft Manifest number: 0596 Signing time: Mon 09 Feb 2026 07:00:23 +0000 Manifest this update: Mon 09 Feb 2026 07:00:23 +0000 Manifest next update: Tue 10 Feb 2026 07:00:23 +0000 Files and hashes: 1: M1lkDZyLY0Pghqr4vosw6MMdK40.crl (hash: W8hLJX58AFVxW0yIleiX6gVH7hbF8pwU+BRNQ1ktkxk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.mft rsync://rpki.ripe.net/repository/DEFAULT/M1lkDZyLY0Pghqr4vosw6MMdK40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:90:45:1a:d9:c7:57:60:c3:64:88:8d:76:be:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3359640d9c8b6343e086aaf8be8b30e8c31d2b8d Validity Not Before: Feb 9 07:00:23 2026 GMT Not After : Feb 10 07:00:23 2026 GMT Subject: CN=1fac548f471847432f6417d0988223893089b900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:24:60:02:34:05:aa:43:93:2e:d7:a0:87:3d: c6:49:95:77:3b:e3:2e:59:25:a5:f5:86:41:8d:73: 3b:89:0f:b2:be:8a:f8:a3:6a:12:9e:ef:85:db:df: da:cb:dc:88:74:28:ce:bb:7b:fa:b6:f9:49:d1:64: b4:96:f1:33:88:08:35:51:2a:48:27:a9:07:96:8d: 6a:bc:f9:95:07:c5:35:ac:a3:82:4f:fc:37:df:ae: 80:4b:31:b0:af:36:6e:5c:15:1e:62:d9:7b:8c:8f: b9:97:23:72:5a:ed:5f:3f:de:b5:7e:ef:d4:ca:54: 91:53:1b:ef:a0:a9:a9:b5:1b:e7:9e:9b:51:42:5b: 8f:6a:f6:cd:92:a5:4a:c0:50:63:23:6a:27:94:80: 8f:44:d7:ec:5f:fa:3b:89:4d:d0:15:11:2b:ac:79: 11:f8:c9:f2:ac:21:9a:2e:af:da:d8:53:72:94:b6: bb:f2:cd:b9:db:a7:e5:b0:8f:0b:c0:81:5e:40:14: 39:51:7f:22:9d:37:54:e0:32:8e:7c:84:d6:df:8d: 65:bd:81:b9:bc:b6:9a:0e:3d:1f:3d:f0:47:26:2f: 24:2d:8a:bf:3e:d0:04:d7:f5:81:7d:27:c2:ae:fe: 0c:e0:d5:29:58:01:87:1c:28:42:cb:82:a6:e2:f4: f8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:AC:54:8F:47:18:47:43:2F:64:17:D0:98:82:23:89:30:89:B9:00 X509v3 Authority Key Identifier: keyid:33:59:64:0D:9C:8B:63:43:E0:86:AA:F8:BE:8B:30:E8:C3:1D:2B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1lkDZyLY0Pghqr4vosw6MMdK40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/d330c9-3a00-4e85-8a74-bddc3143b313/1/M1lkDZyLY0Pghqr4vosw6MMdK40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:49:b4:bf:5a:99:7c:ef:ba:6e:8d:db:fe:d3:81:13:7c:7f: 93:25:05:35:80:9b:09:d9:e9:01:f2:e9:91:5e:a2:04:36:8e: ac:fd:40:42:e9:97:ac:1e:90:9d:5d:2b:cb:c5:0e:44:ab:42: 95:c8:d6:03:91:23:b2:7e:dd:fe:81:5b:02:1f:78:3d:41:86: 75:0a:d2:11:ac:f5:9c:7c:e3:84:56:4e:e5:52:8e:8c:c7:b7: 6f:a7:74:b0:ff:04:1e:79:a5:24:17:8a:06:b3:1e:f5:23:06: d9:8b:67:4b:26:af:6c:77:d0:a7:ff:0e:c4:4c:33:22:4a:e0: 08:ea:fd:69:ea:c9:ce:73:bb:35:15:31:7a:c5:65:7e:f9:7f: ef:24:c5:d5:3e:ae:38:e5:a8:40:b8:1a:c0:e0:d2:65:1a:10: 19:34:ef:f1:89:d5:03:ad:11:72:b1:41:92:57:a4:b4:db:5f: 47:6b:08:13:44:d1:dc:e7:56:5c:2e:b2:11:44:19:a7:1f:c5: cd:9d:4c:89:57:fa:22:38:84:ee:4f:ce:29:1a:d3:42:fa:3e: 9d:cc:22:7f:b9:b2:0c:1b:2f:d7:af:93:88:3b:21:3e:fe:12: 96:33:47:52:d4:cb:48:66:8b:bf:93:ae:86:38:97:db:47:96: 04:48:99:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM5BFGtnHV2DDZIiNdr4TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzNTk2NDBkOWM4YjYzNDNlMDg2YWFmOGJlOGIzMGU4YzMx ZDJiOGQwHhcNMjYwMjA5MDcwMDIzWhcNMjYwMjEwMDcwMDIzWjAzMTEwLwYDVQQD EygxZmFjNTQ4ZjQ3MTg0NzQzMmY2NDE3ZDA5ODgyMjM4OTMwODliOTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyRgAjQFqkOTLteghz3GSZV3O+Mu WSWl9YZBjXM7iQ+yvor4o2oSnu+F29/ay9yIdCjOu3v6tvlJ0WS0lvEziAg1USpI J6kHlo1qvPmVB8U1rKOCT/w3366ASzGwrzZuXBUeYtl7jI+5lyNyWu1fP961fu/U ylSRUxvvoKmptRvnnptRQluPavbNkqVKwFBjI2onlICPRNfsX/o7iU3QFRErrHkR +MnyrCGaLq/a2FNylLa78s2526flsI8LwIFeQBQ5UX8inTdU4DKOfITW341lvYG5 vLaaDj0fPfBHJi8kLYq/PtAE1/WBfSfCrv4M4NUpWAGHHChCy4Km4vT4UQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB+sVI9HGEdDL2QX0JiCI4kwibkAMB8GA1UdIwQY MBaAFDNZZA2ci2ND4Iaq+L6LMOjDHSuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTFsa0RaeUxZMFBnaHFyNHZvc3c2TU1kSzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9kMzMwYzktM2EwMC00ZTg1LThhNzQt YmRkYzMxNDNiMzEzLzEvTTFsa0RaeUxZMFBnaHFyNHZvc3c2TU1kSzQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy9kMzMwYzktM2EwMC00ZTg1LThhNzQtYmRkYzMxNDNiMzEz LzEvTTFsa0RaeUxZMFBnaHFyNHZvc3c2TU1kSzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJkm0v1qZ fO+6bo3b/tOBE3x/kyUFNYCbCdnpAfLpkV6iBDaOrP1AQumXrB6QnV0ry8UORKtC lcjWA5Ejsn7d/oFbAh94PUGGdQrSEaz1nHzjhFZO5VKOjMe3b6d0sP8EHnmlJBeK BrMe9SMG2YtnSyavbHfQp/8OxEwzIkrgCOr9aerJznO7NRUxesVlfvl/7yTF1T6u OOWoQLgawODSZRoQGTTv8YnVA60RcrFBklektNtfR2sIE0TR3OdWXC6yEUQZpx/F zZ1MiVf6IjiE7k/OKRrTQvo+ncwif7myDBsv16+TiDshPv4SljNHUtTLSGaLv5Ou hjiX20eWBEiZ3Q== -----END CERTIFICATE-----Generated at Mon Feb 9 16:58:54 2026 by rpki-client