This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft File: Cfuz7S8CnEusxuosTH9MHNboDnk.mft (raw, json) Hash identifier: JMuPnLJTaZBRjD6EvQ4ja/H6dzENeHfvbY3bTVBW1HU= Subject key identifier: AD:14:7C:F4:9A:BA:57:AA:7A:30:F1:88:6B:12:E8:3D:5B:08:DE:CE Authority key identifier: 09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79 Certificate issuer: /CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79 Certificate serial: 019C446B7F68ED002A41689C00AE4798EC9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft Manifest number: 0E79 Signing time: Mon 09 Feb 2026 22:00:21 +0000 Manifest this update: Mon 09 Feb 2026 22:00:21 +0000 Manifest next update: Tue 10 Feb 2026 22:00:21 +0000 Files and hashes: 1: Cfuz7S8CnEusxuosTH9MHNboDnk.crl (hash: OpS4MZXyWUa1AJlWHPNpXxV+fpSeSlMD8hRQJZFuXas=) 2: tPzvJ8fhXyxuStH7y_RiWlVyHhs.roa (hash: TJabNOMfT1VmMNuU7X4vXm/HGDPktwOUxF0xJ5kPJG0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:7f:68:ed:00:2a:41:68:9c:00:ae:47:98:ec:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09fbb3ed2f029c4bacc6ea2c4c7f4c1cd6e80e79 Validity Not Before: Feb 9 22:00:21 2026 GMT Not After : Feb 10 22:00:21 2026 GMT Subject: CN=ad147cf49aba57aa7a30f1886b12e83d5b08dece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b0:f9:b8:4f:0d:29:f1:13:03:9c:95:08:6b: 18:6c:e5:74:8c:2e:39:c0:94:c6:5b:6c:95:33:30: 6a:16:6c:26:be:75:ed:bb:d3:3a:e6:45:ed:d2:a0: 59:9f:82:18:00:44:a7:f8:76:37:c7:94:47:31:6c: e6:34:5b:76:3b:ad:e0:ef:07:bd:91:d0:1a:8d:28: 85:2f:a8:c9:bd:7c:de:70:b2:e3:70:64:db:82:83: e4:24:ae:e6:3e:58:c5:a8:43:74:3e:84:d6:2d:13: 26:23:48:37:9c:4f:ad:3d:1b:bc:db:75:aa:16:b8: f3:57:cf:45:9c:d6:6b:e8:50:5d:b3:3f:4f:93:78: 48:05:8b:f5:2e:62:9d:7d:2d:d0:10:19:c4:c8:5d: 6b:ff:1a:05:ff:0f:bf:44:4e:08:96:4d:b4:11:0b: 92:cf:b5:09:a5:90:01:aa:0e:46:da:6b:2f:75:38: 30:45:45:b1:7c:af:1a:e1:b1:72:5f:23:3b:08:11: bc:89:51:a5:d9:64:1a:10:2b:72:de:2b:94:13:eb: 27:2a:67:54:39:04:a8:2a:0f:5f:3f:dc:bb:2f:60: 95:f0:1b:c3:f2:a7:67:d4:e4:13:59:62:79:1c:b6: 1c:e0:1b:0c:27:f0:8d:70:33:27:67:7b:d8:50:2c: b3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:14:7C:F4:9A:BA:57:AA:7A:30:F1:88:6B:12:E8:3D:5B:08:DE:CE X509v3 Authority Key Identifier: keyid:09:FB:B3:ED:2F:02:9C:4B:AC:C6:EA:2C:4C:7F:4C:1C:D6:E8:0E:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfuz7S8CnEusxuosTH9MHNboDnk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9d5bcf-2db9-4afa-b000-822953f8cf77/1/Cfuz7S8CnEusxuosTH9MHNboDnk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:66:e4:74:5f:66:e5:11:48:75:cc:7b:df:fc:28:96:de:00: de:ca:4f:bf:d3:fc:93:43:6d:4f:30:9d:0f:7d:17:61:37:d3: a9:e8:61:6e:94:7a:0c:85:95:8f:8a:c5:63:09:dd:14:1e:f4: 36:ee:7f:3d:0c:ec:9c:4b:95:0e:fa:2c:16:59:c2:81:64:a4: 3f:7e:02:f0:f4:bf:50:5c:73:17:f8:5e:83:0e:2d:ea:60:5c: d5:99:b2:0c:3e:f4:99:81:b9:83:da:ca:6a:e1:25:a8:d7:a3: 62:68:a3:d0:d7:fb:a5:7a:14:8e:d2:0f:74:22:c0:f3:7e:d7: 8a:59:dc:35:0d:15:5c:71:f9:d6:c7:56:ea:08:af:ce:3e:b0: 2a:b3:e0:23:54:02:af:81:bf:ff:00:48:2f:71:b9:cb:75:62: 67:e4:91:1d:2c:19:82:19:f0:a5:a2:17:4c:89:f7:d7:40:16: 0c:ad:5c:9f:ab:e0:d6:fd:7d:13:79:fc:c7:79:11:c0:35:71: 6c:e5:13:ba:14:27:42:66:80:87:5f:d3:5a:70:c5:39:19:2f: 95:a8:46:77:c4:49:d8:8d:c8:67:03:8c:4f:e2:92:8d:15:1d: 87:3b:3f:26:3d:72:eb:42:af:e7:91:ec:42:5d:ff:7e:ed:45: c4:46:8c:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa39o7QAqQWicAK5HmOyaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ZmJiM2VkMmYwMjljNGJhY2M2ZWEyYzRjN2Y0YzFjZDZl ODBlNzkwHhcNMjYwMjA5MjIwMDIxWhcNMjYwMjEwMjIwMDIxWjAzMTEwLwYDVQQD EyhhZDE0N2NmNDlhYmE1N2FhN2EzMGYxODg2YjEyZTgzZDViMDhkZWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubD5uE8NKfETA5yVCGsYbOV0jC45 wJTGW2yVMzBqFmwmvnXtu9M65kXt0qBZn4IYAESn+HY3x5RHMWzmNFt2O63g7we9 kdAajSiFL6jJvXzecLLjcGTbgoPkJK7mPljFqEN0PoTWLRMmI0g3nE+tPRu823Wq FrjzV89FnNZr6FBdsz9Pk3hIBYv1LmKdfS3QEBnEyF1r/xoF/w+/RE4Ilk20EQuS z7UJpZABqg5G2msvdTgwRUWxfK8a4bFyXyM7CBG8iVGl2WQaECty3iuUE+snKmdU OQSoKg9fP9y7L2CV8BvD8qdn1OQTWWJ5HLYc4BsMJ/CNcDMnZ3vYUCyzzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK0UfPSauleqejDxiGsS6D1bCN7OMB8GA1UdIwQY MBaAFAn7s+0vApxLrMbqLEx/TBzW6A55MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAt ODIyOTUzZjhjZjc3LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS85ZDViY2YtMmRiOS00YWZhLWIwMDAtODIyOTUzZjhjZjc3 LzEvQ2Z1ejdTOENuRXVzeHVvc1RIOU1ITmJvRG5rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcWbkdF9m 5RFIdcx73/wolt4A3spPv9P8k0NtTzCdD30XYTfTqehhbpR6DIWVj4rFYwndFB70 Nu5/PQzsnEuVDvosFlnCgWSkP34C8PS/UFxzF/hegw4t6mBc1ZmyDD70mYG5g9rK auElqNejYmij0Nf7pXoUjtIPdCLA837XilncNQ0VXHH51sdW6givzj6wKrPgI1QC r4G//wBIL3G5y3ViZ+SRHSwZghnwpaIXTIn310AWDK1cn6vg1v19E3n8x3kRwDVx bOUTuhQnQmaAh1/TWnDFORkvlahGd8RJ2I3IZwOMT+KSjRUdhzs/Jj1y60Kv55Hs Ql3/fu1FxEaM/Q== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:03 2026 by rpki-client