This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft File: sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft (raw, json) Hash identifier: uTBueKmmJ3h+6wthgWz6yWAArzJlwFiQWJbSior7Ihg= Subject key identifier: E5:AE:EF:8F:7A:09:0B:F1:F0:B4:20:22:D3:4F:DD:BF:91:48:1F:6D Authority key identifier: B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94 Certificate issuer: /CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894 Certificate serial: 019C41D85DE9D680F99FE7FF00D1A7E57357 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft Manifest number: 0CF4 Signing time: Mon 09 Feb 2026 10:00:24 +0000 Manifest this update: Mon 09 Feb 2026 10:00:24 +0000 Manifest next update: Tue 10 Feb 2026 10:00:24 +0000 Files and hashes: 1: sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl (hash: 41sVxeBVnzU2MpeBD2tTuA+EY7jQo3HdlOR02OUwSns=) 2: zO8hQmSxtEXmRdrwqFPkVEGSdWg.roa (hash: MmT0Cb8d42MmUiiW2gdoJjBjTgQPDMLhJCGUAeZAyRY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:5d:e9:d6:80:f9:9f:e7:ff:00:d1:a7:e5:73:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b13971bfea78d6aa5b49ed5ac35c77b6a30a0894 Validity Not Before: Feb 9 10:00:24 2026 GMT Not After : Feb 10 10:00:24 2026 GMT Subject: CN=e5aeef8f7a090bf1f0b42022d34fddbf91481f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:85:ef:47:6f:d0:37:02:06:81:48:57:75:c7: 04:dc:83:79:6e:dd:05:8a:85:fa:0c:a8:0a:54:37: 4f:e5:ab:c4:19:35:1c:d0:17:10:de:63:90:13:63: f2:51:dc:49:89:fc:c8:82:6b:1f:31:3e:d4:cf:e7: 2d:5f:33:92:ab:78:d5:f5:94:56:cf:6e:36:ac:2a: 2d:e4:bd:f0:1f:35:08:fb:4e:8c:ea:06:41:15:ec: eb:52:d0:67:56:08:4b:84:2b:92:1c:2e:73:a4:74: e6:23:e2:d9:d3:e3:a1:8e:35:1b:a1:34:ee:a1:59: 3a:9a:11:e5:7a:3c:81:26:ef:d7:08:fa:c2:94:06: 6b:e3:94:b3:85:ed:3a:f5:67:12:c3:cc:96:92:45: 15:c3:12:06:0d:68:f2:9a:ce:58:52:64:cd:7d:1d: 86:7d:de:3c:fa:17:c1:86:42:9b:70:d5:bb:bb:3e: 54:79:a8:4e:5b:36:0e:4c:c6:05:99:08:8e:e0:d2: a1:d7:a5:5a:da:04:48:82:2d:f4:3c:88:54:bd:b1: fd:93:de:5e:ab:af:13:d5:58:c1:10:11:41:f1:17: ca:c8:2b:91:1e:75:b9:2f:70:aa:0c:18:6c:00:84: 19:3b:54:10:ed:79:17:87:5b:50:fe:af:8d:17:70: c2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:AE:EF:8F:7A:09:0B:F1:F0:B4:20:22:D3:4F:DD:BF:91:48:1F:6D X509v3 Authority Key Identifier: keyid:B1:39:71:BF:EA:78:D6:AA:5B:49:ED:5A:C3:5C:77:B6:A3:0A:08:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTlxv-p41qpbSe1aw1x3tqMKCJQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3f0083-59d7-433a-905a-47b1bdf8d530/1/sTlxv-p41qpbSe1aw1x3tqMKCJQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ef:8c:d5:30:7d:ee:24:05:0b:44:91:ba:17:5d:62:52:c1:50: 59:d0:6d:9a:57:e8:78:c1:10:ef:2e:7e:a6:f5:db:e0:d8:e7: 41:b6:f0:68:d1:8c:87:c3:8d:04:15:90:81:d2:b4:45:d5:4c: a2:94:ea:d0:d5:6e:54:db:26:a0:89:c1:1d:7c:da:77:05:a8: 54:b4:e6:91:a4:3a:62:5f:65:3a:b0:1a:5f:30:fe:9d:b9:77: 63:80:1a:ab:74:fa:17:3f:4d:95:dd:08:85:04:d6:93:4c:83: 08:ee:f6:f6:3b:b4:c0:f8:50:80:ae:e7:fc:8d:83:e3:9e:90: 17:26:06:6c:94:14:61:9a:5e:ca:9b:0d:e5:b3:75:f8:f1:c6: c0:c1:c8:d2:50:09:00:14:ff:c3:11:1a:93:9a:20:0e:e9:30: 4d:0f:bc:01:b4:5e:0a:35:f6:6d:6e:11:dd:48:19:0c:b9:10: bf:e8:ee:1b:a9:17:15:2c:8b:ea:5b:ec:d1:bb:44:d5:bc:0c: c3:24:eb:85:02:c6:70:85:f9:f0:d9:57:ae:9e:4b:cd:56:d6: 5a:ee:88:b4:45:09:8b:34:2b:b8:c6:26:ff:0a:59:38:f8:c9: b7:eb:cb:cb:bd:24:8c:a5:a8:ee:ef:3c:98:5c:90:15:c5:86: f1:5c:4a:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2F3p1oD5n+f/ANGn5XNXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxMzk3MWJmZWE3OGQ2YWE1YjQ5ZWQ1YWMzNWM3N2I2YTMw YTA4OTQwHhcNMjYwMjA5MTAwMDI0WhcNMjYwMjEwMTAwMDI0WjAzMTEwLwYDVQQD EyhlNWFlZWY4ZjdhMDkwYmYxZjBiNDIwMjJkMzRmZGRiZjkxNDgxZjZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4XvR2/QNwIGgUhXdccE3IN5bt0F ioX6DKgKVDdP5avEGTUc0BcQ3mOQE2PyUdxJifzIgmsfMT7Uz+ctXzOSq3jV9ZRW z242rCot5L3wHzUI+06M6gZBFezrUtBnVghLhCuSHC5zpHTmI+LZ0+OhjjUboTTu oVk6mhHlejyBJu/XCPrClAZr45Szhe069WcSw8yWkkUVwxIGDWjyms5YUmTNfR2G fd48+hfBhkKbcNW7uz5UeahOWzYOTMYFmQiO4NKh16Va2gRIgi30PIhUvbH9k95e q68T1VjBEBFB8RfKyCuRHnW5L3CqDBhsAIQZO1QQ7XkXh1tQ/q+NF3DC6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOWu7496CQvx8LQgItNP3b+RSB9tMB8GA1UdIwQY MBaAFLE5cb/qeNaqW0ntWsNcd7ajCgiUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1RseHYtcDQxcXBiU2UxYXcxeDN0cU1LQ0pRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8zZjAwODMtNTlkNy00MzNhLTkwNWEt NDdiMWJkZjhkNTMwLzEvc1RseHYtcDQxcXBiU2UxYXcxeDN0cU1LQ0pRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8zZjAwODMtNTlkNy00MzNhLTkwNWEtNDdiMWJkZjhkNTMw LzEvc1RseHYtcDQxcXBiU2UxYXcxeDN0cU1LQ0pRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA74zVMH3u JAULRJG6F11iUsFQWdBtmlfoeMEQ7y5+pvXb4NjnQbbwaNGMh8ONBBWQgdK0RdVM opTq0NVuVNsmoInBHXzadwWoVLTmkaQ6Yl9lOrAaXzD+nbl3Y4Aaq3T6Fz9Nld0I hQTWk0yDCO729ju0wPhQgK7n/I2D456QFyYGbJQUYZpeypsN5bN1+PHGwMHI0lAJ ABT/wxEak5ogDukwTQ+8AbReCjX2bW4R3UgZDLkQv+juG6kXFSyL6lvs0btE1bwM wyTrhQLGcIX58NlXrp5LzVbWWu6ItEUJizQruMYm/wpZOPjJt+vLy70kjKWo7u88 mFyQFcWG8VxKhA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:00 2026 by rpki-client