This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft File: StFxca6oV2xDHGN0GGkcnB9VdRY.mft (raw, json) Hash identifier: u/xzdResGQECJcvJCuh9h9X9HUGqS3Npalcuh8Fw4S0= Subject key identifier: 60:88:F5:82:1B:E7:21:57:34:A5:EC:52:DD:6D:61:92:4B:0A:48:DC Authority key identifier: 4A:D1:71:71:AE:A8:57:6C:43:1C:63:74:18:69:1C:9C:1F:55:75:16 Certificate issuer: /CN=4ad17171aea8576c431c637418691c9c1f557516 Certificate serial: 019C42B43D812FA27FE0E98B539E28A483DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft Manifest number: 14BD Signing time: Mon 09 Feb 2026 14:00:34 +0000 Manifest this update: Mon 09 Feb 2026 14:00:34 +0000 Manifest next update: Tue 10 Feb 2026 14:00:34 +0000 Files and hashes: 1: StFxca6oV2xDHGN0GGkcnB9VdRY.crl (hash: E5nF8u8KxoRuun0sCpwbQqnpreTt0lNiTRd8Y4wCEFI=) 2: YW79Yef_XcQH-yQeSEH6dsBEV58.roa (hash: OnfUE3JgvIAolLyP0DJV9UMqit9OdFdesv9RsZ2Z4TI=) 3: qHkKc6qThO5LVCCZnqTx59tVQVQ.roa (hash: hYX8MCTn1ruNTten5OGMYptvMIuzTBWfYXGAUvW3g24=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:3d:81:2f:a2:7f:e0:e9:8b:53:9e:28:a4:83:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ad17171aea8576c431c637418691c9c1f557516 Validity Not Before: Feb 9 14:00:34 2026 GMT Not After : Feb 10 14:00:34 2026 GMT Subject: CN=6088f5821be7215734a5ec52dd6d61924b0a48dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:00:77:ad:73:c6:06:51:08:4a:40:6d:d4:1f: c6:ef:b2:9c:50:c1:9d:76:96:38:55:21:40:5a:6e: 91:0f:46:b0:e7:0d:b9:e7:6a:13:fa:8c:61:be:64: 9d:fc:09:03:6e:6f:f0:34:46:dd:69:3d:d9:a9:0d: 2f:a0:ff:30:d3:39:4b:38:4e:ca:7a:43:ba:59:29: c8:1c:dd:1e:6a:94:93:6e:a3:44:06:c0:9c:f4:ba: a2:3f:76:b4:db:3d:34:59:b0:b3:e1:7a:af:39:4b: 35:65:e9:72:cb:a3:c0:d7:9a:d2:97:8b:56:98:df: 63:07:a3:38:f6:b7:bb:53:b2:61:07:7f:ee:ce:93: fa:74:07:df:bd:11:11:f6:ba:ad:b8:46:8a:1a:33: dd:a6:c5:04:02:05:19:8e:17:72:4f:17:05:fc:38: b2:71:8c:40:47:f3:63:68:b9:bc:14:fb:0b:35:83: e0:f2:6e:4d:fa:4f:15:40:15:bf:24:0d:a4:30:42: a2:3a:e9:a5:1a:b4:4f:c5:02:6b:05:32:d7:87:7e: 64:b5:a4:a1:5f:e0:b4:a3:20:75:9b:0a:aa:ac:6f: 43:0c:11:6f:8f:2f:09:40:da:93:57:ec:32:a3:6a: c3:a5:66:b8:4f:f8:ce:84:aa:37:13:ea:e9:70:d0: ab:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:88:F5:82:1B:E7:21:57:34:A5:EC:52:DD:6D:61:92:4B:0A:48:DC X509v3 Authority Key Identifier: keyid:4A:D1:71:71:AE:A8:57:6C:43:1C:63:74:18:69:1C:9C:1F:55:75:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/StFxca6oV2xDHGN0GGkcnB9VdRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5a3cd1-8109-4c66-8324-4828d65104e1/1/StFxca6oV2xDHGN0GGkcnB9VdRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:cf:49:42:ae:c4:2e:65:62:00:05:65:73:9b:40:c5:32:d2: bb:30:34:24:7a:a2:1a:5e:d9:7e:5e:5a:09:71:86:cf:cf:ad: 93:4b:9b:62:f5:a9:70:fb:e5:b1:cf:19:a4:75:d5:8d:4e:4f: fa:d9:7e:30:1b:e1:09:fb:a3:e5:87:ca:73:a8:ba:e5:ec:5e: cd:0b:03:80:6d:40:6e:08:b1:44:95:71:19:f4:fd:50:cb:13: 91:2b:01:bd:8a:5e:29:e9:47:d8:e5:0e:d3:a7:1a:27:4e:1a: c5:5e:ea:5f:8b:60:d8:d8:93:e2:84:a0:60:3c:51:67:3b:f4: d6:ad:61:4c:26:54:bc:3a:1e:ce:58:64:7e:10:a3:fb:d5:04: b2:b1:0e:bf:69:0f:e9:eb:27:c7:3a:82:5e:4a:90:38:c8:d2: 62:1a:b5:94:87:e5:bb:10:40:56:22:89:65:f1:dd:1f:aa:94: 65:ae:44:75:93:34:ff:3e:89:46:68:f6:0c:de:c2:04:95:6a: 5b:ea:13:68:3c:31:a0:bd:c9:ed:54:66:7d:22:2e:ae:56:50: dd:2f:01:91:d1:93:67:3f:f9:5e:66:54:02:b3:49:60:18:73: b9:9f:8e:b7:51:71:92:49:95:00:6f:99:aa:a0:ca:d3:6e:00: 45:2c:97:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtD2BL6J/4OmLU54opIPcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhZDE3MTcxYWVhODU3NmM0MzFjNjM3NDE4NjkxYzljMWY1 NTc1MTYwHhcNMjYwMjA5MTQwMDM0WhcNMjYwMjEwMTQwMDM0WjAzMTEwLwYDVQQD Eyg2MDg4ZjU4MjFiZTcyMTU3MzRhNWVjNTJkZDZkNjE5MjRiMGE0OGRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgB3rXPGBlEISkBt1B/G77KcUMGd dpY4VSFAWm6RD0aw5w2552oT+oxhvmSd/AkDbm/wNEbdaT3ZqQ0voP8w0zlLOE7K ekO6WSnIHN0eapSTbqNEBsCc9LqiP3a02z00WbCz4XqvOUs1Zelyy6PA15rSl4tW mN9jB6M49re7U7JhB3/uzpP6dAffvRER9rqtuEaKGjPdpsUEAgUZjhdyTxcF/Diy cYxAR/NjaLm8FPsLNYPg8m5N+k8VQBW/JA2kMEKiOumlGrRPxQJrBTLXh35ktaSh X+C0oyB1mwqqrG9DDBFvjy8JQNqTV+wyo2rDpWa4T/jOhKo3E+rpcNCrUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGCI9YIb5yFXNKXsUt1tYZJLCkjcMB8GA1UdIwQY MBaAFErRcXGuqFdsQxxjdBhpHJwfVXUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3RGeGNhNm9WMnhESEdOMEdHa2NuQjlWZFJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81YTNjZDEtODEwOS00YzY2LTgzMjQt NDgyOGQ2NTEwNGUxLzEvU3RGeGNhNm9WMnhESEdOMEdHa2NuQjlWZFJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy81YTNjZDEtODEwOS00YzY2LTgzMjQtNDgyOGQ2NTEwNGUx LzEvU3RGeGNhNm9WMnhESEdOMEdHa2NuQjlWZFJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXM9JQq7E LmViAAVlc5tAxTLSuzA0JHqiGl7Zfl5aCXGGz8+tk0ubYvWpcPvlsc8ZpHXVjU5P +tl+MBvhCfuj5YfKc6i65exezQsDgG1AbgixRJVxGfT9UMsTkSsBvYpeKelH2OUO 06caJ04axV7qX4tg2NiT4oSgYDxRZzv01q1hTCZUvDoezlhkfhCj+9UEsrEOv2kP 6esnxzqCXkqQOMjSYhq1lIfluxBAViKJZfHdH6qUZa5EdZM0/z6JRmj2DN7CBJVq W+oTaDwxoL3J7VRmfSIurlZQ3S8BkdGTZz/5XmZUArNJYBhzuZ+Ot1FxkkmVAG+Z qqDK024ARSyX3w== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:59 2026 by rpki-client