This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft File: Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft (raw, json) Hash identifier: /ke93daSCzrEnabz6Q1DFWnmxPpcUlTGD/kgrzGlJzg= Subject key identifier: 3A:0C:59:55:6D:4F:2A:2F:E6:12:85:F7:58:68:86:63:3A:2B:41:01 Authority key identifier: 09:EF:0B:8E:5B:BA:B2:9A:13:30:FA:0E:74:93:F2:A1:79:84:7B:B2 Certificate issuer: /CN=09ef0b8e5bbab29a1330fa0e7493f2a179847bb2 Certificate serial: 019C43FE36AB49BA8BFC76E98402E5CB042A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft Manifest number: 0504 Signing time: Mon 09 Feb 2026 20:00:59 +0000 Manifest this update: Mon 09 Feb 2026 20:00:59 +0000 Manifest next update: Tue 10 Feb 2026 20:00:59 +0000 Files and hashes: 1: Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl (hash: JWcVOO0UdQ6nAUARlCqFczUep5j2fmJ8JuNLhWVuvJ8=) 2: Db42gVIOc-r6U0XdkPGEkaUQ_F8.roa (hash: +dorelrzD6UM9OjrHdBTn8xKkODdpeZOExmq1+y6uHI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:36:ab:49:ba:8b:fc:76:e9:84:02:e5:cb:04:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09ef0b8e5bbab29a1330fa0e7493f2a179847bb2 Validity Not Before: Feb 9 20:00:59 2026 GMT Not After : Feb 10 20:00:59 2026 GMT Subject: CN=3a0c59556d4f2a2fe61285f7586886633a2b4101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:38:ff:40:8c:e9:f9:40:15:e0:e6:e5:c6:50: 1d:f1:26:0f:4a:90:e5:96:eb:c3:97:ea:49:27:e4: dd:ff:bf:0b:48:98:be:5b:66:a3:1d:27:67:80:ef: ee:bd:7b:5e:d5:93:4f:d0:1d:d3:30:7f:c4:e1:99: 03:fe:9a:73:11:8d:b7:7a:00:24:b3:d9:b9:f1:01: db:31:a1:d7:59:58:dd:56:84:0e:85:1f:a9:d2:c0: 52:f7:14:66:b0:c9:45:ae:3c:92:e2:a3:77:9c:fe: 14:4a:16:22:10:1c:b3:ff:94:c0:8d:a7:a0:de:6f: a2:f6:c9:4a:fb:49:a8:bf:15:8d:bf:c1:40:01:de: 33:6a:45:82:05:e0:f0:73:a6:b0:34:a0:ff:09:3f: 4c:dc:2f:1c:af:76:ce:f9:63:69:68:3a:06:35:0f: cc:f0:06:48:89:9e:eb:71:9b:e5:76:8d:2d:98:af: a9:e6:0d:6e:a0:92:56:5c:62:60:50:c5:ba:b6:5d: 0a:43:ae:65:59:90:43:98:d9:bf:30:70:5d:67:9c: 8f:a2:7c:75:ea:8c:7a:29:27:52:2e:f8:86:71:a2: 79:d7:aa:e6:a6:5d:20:9b:ff:75:a5:6c:dd:c2:70: 59:87:05:8f:76:96:72:65:e1:09:6e:4c:f6:d1:db: 0a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0C:59:55:6D:4F:2A:2F:E6:12:85:F7:58:68:86:63:3A:2B:41:01 X509v3 Authority Key Identifier: keyid:09:EF:0B:8E:5B:BA:B2:9A:13:30:FA:0E:74:93:F2:A1:79:84:7B:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:85:12:f8:03:4c:52:ab:f5:dd:69:b5:52:52:d6:c8:0d:05: 39:1a:fc:e0:e9:a9:88:31:bb:f0:21:c3:6c:37:02:fe:b1:3c: 09:bc:c5:29:e8:27:f2:cc:ab:78:19:ac:54:ec:11:c9:00:5e: d7:bc:2c:6f:26:a9:19:ec:72:0a:4b:0d:cf:16:66:80:c7:c2: 60:d1:c3:ac:53:99:ff:8b:ac:7b:1d:b6:50:7e:a1:37:01:dc: c9:0a:45:fb:a5:a3:49:e6:9c:53:ab:a6:11:9a:9c:2d:20:d5: b8:73:97:05:59:47:73:cf:89:cf:b3:9c:0c:b0:d8:75:8a:13: 52:6c:71:4c:99:6a:d3:a7:d6:8f:54:e8:1c:2f:56:cc:3d:81: 51:1a:ac:13:54:8f:70:84:93:40:e5:b8:6b:10:85:14:3f:86: 81:1b:bc:55:ca:4a:9b:ce:0c:96:b9:59:e1:7c:85:1a:6c:3b: 8d:cb:2b:29:a8:f3:f2:6a:19:f6:dc:42:7e:ac:b2:f0:48:a6: c2:ba:56:71:3e:df:11:2b:ef:cf:cb:6d:a5:8e:7e:55:36:32: 58:51:0a:a0:50:39:45:04:e1:b1:59:70:23:cd:b4:4c:2e:22: fc:c0:56:55:5f:5e:af:8d:e4:ee:05:3e:47:6c:67:e0:97:ee: 2d:76:ae:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/jarSbqL/HbphALlywQqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ZWYwYjhlNWJiYWIyOWExMzMwZmEwZTc0OTNmMmExNzk4 NDdiYjIwHhcNMjYwMjA5MjAwMDU5WhcNMjYwMjEwMjAwMDU5WjAzMTEwLwYDVQQD EygzYTBjNTk1NTZkNGYyYTJmZTYxMjg1Zjc1ODY4ODY2MzNhMmI0MTAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Tj/QIzp+UAV4OblxlAd8SYPSpDl luvDl+pJJ+Td/78LSJi+W2ajHSdngO/uvXte1ZNP0B3TMH/E4ZkD/ppzEY23egAk s9m58QHbMaHXWVjdVoQOhR+p0sBS9xRmsMlFrjyS4qN3nP4UShYiEByz/5TAjaeg 3m+i9slK+0movxWNv8FAAd4zakWCBeDwc6awNKD/CT9M3C8cr3bO+WNpaDoGNQ/M 8AZIiZ7rcZvldo0tmK+p5g1uoJJWXGJgUMW6tl0KQ65lWZBDmNm/MHBdZ5yPonx1 6ox6KSdSLviGcaJ516rmpl0gm/91pWzdwnBZhwWPdpZyZeEJbkz20dsKIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDoMWVVtTyov5hKF91hohmM6K0EBMB8GA1UdIwQY MBaAFAnvC45burKaEzD6DnST8qF5hHuyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2U4TGpsdTZzcG9UTVBvT2RKUHlvWG1FZTdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC80MDU0M2UtMTk1YS00MzMyLWE4ZWQt MzczNzRlMzk2YzdkLzEvQ2U4TGpsdTZzcG9UTVBvT2RKUHlvWG1FZTdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC80MDU0M2UtMTk1YS00MzMyLWE4ZWQtMzczNzRlMzk2Yzdk LzEvQ2U4TGpsdTZzcG9UTVBvT2RKUHlvWG1FZTdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeIUS+ANM Uqv13Wm1UlLWyA0FORr84OmpiDG78CHDbDcC/rE8CbzFKegn8syreBmsVOwRyQBe 17wsbyapGexyCksNzxZmgMfCYNHDrFOZ/4usex22UH6hNwHcyQpF+6WjSeacU6um EZqcLSDVuHOXBVlHc8+Jz7OcDLDYdYoTUmxxTJlq06fWj1ToHC9WzD2BURqsE1SP cISTQOW4axCFFD+GgRu8VcpKm84MlrlZ4XyFGmw7jcsrKajz8moZ9txCfqyy8Eim wrpWcT7fESvvz8ttpY5+VTYyWFEKoFA5RQThsVlwI820TC4i/MBWVV9er43k7gU+ R2xn4JfuLXauxA== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:13 2026 by rpki-client