This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a58197-eb09-4415-a61d-abd61aa82426/1/TkifZhWfd7tY0rvH5Pwd_Z3csDQ.mft File: TkifZhWfd7tY0rvH5Pwd_Z3csDQ.mft (raw, json) Hash identifier: W6tCCbX2MrG7UE9B1DG5qDat0bIR3lhYv0vsyiZ4W6g= Subject key identifier: D8:65:85:4A:3F:5F:7F:C9:71:BE:18:3D:E8:04:BE:99:19:AB:2D:9E Authority key identifier: 4E:48:9F:66:15:9F:77:BB:58:D2:BB:C7:E4:FC:1D:FD:9D:DC:B0:34 Certificate issuer: /CN=4e489f66159f77bb58d2bbc7e4fc1dfd9ddcb034 Certificate serial: 019C43908C1F18D0CA840826875C06C0AA20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkifZhWfd7tY0rvH5Pwd_Z3csDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a58197-eb09-4415-a61d-abd61aa82426/1/TkifZhWfd7tY0rvH5Pwd_Z3csDQ.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 18:01:12 +0000 Manifest this update: Mon 09 Feb 2026 18:01:12 +0000 Manifest next update: Tue 10 Feb 2026 18:01:12 +0000 Files and hashes: 1: TkifZhWfd7tY0rvH5Pwd_Z3csDQ.crl (hash: HYgIsjCWkJ2ta/o+Ur4Dy8mGm/3Z/2WjVFU1AH7z/3w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/a58197-eb09-4415-a61d-abd61aa82426/1/TkifZhWfd7tY0rvH5Pwd_Z3csDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/a58197-eb09-4415-a61d-abd61aa82426/1/TkifZhWfd7tY0rvH5Pwd_Z3csDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/TkifZhWfd7tY0rvH5Pwd_Z3csDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:8c:1f:18:d0:ca:84:08:26:87:5c:06:c0:aa:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e489f66159f77bb58d2bbc7e4fc1dfd9ddcb034 Validity Not Before: Feb 9 18:01:12 2026 GMT Not After : Feb 10 18:01:12 2026 GMT Subject: CN=d865854a3f5f7fc971be183de804be9919ab2d9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:94:32:4a:b8:97:23:4c:5f:cf:b9:84:0b: 8a:24:04:a3:11:5e:ec:07:f8:a2:0e:74:98:2e:2b: 75:ff:ba:0f:99:11:a5:e9:bf:67:4e:1e:21:68:9d: 14:08:71:be:26:f5:f9:d9:f8:86:1b:85:2b:ad:bf: 81:66:07:9b:c5:15:61:fe:36:a6:f3:d6:b2:75:17: 20:4a:d6:3f:12:33:1b:d1:0d:6b:52:7e:ad:e1:be: 18:e5:2a:3d:2c:55:50:b5:f4:58:29:3f:6e:70:c0: 63:52:73:4c:d4:8f:15:b8:92:55:f4:7c:38:da:55: 7e:d0:8a:ca:a6:8a:be:f0:7d:c2:25:4a:ba:93:fa: 6b:73:48:29:48:e0:78:66:55:54:41:8b:bf:4b:c3: 2e:a6:1e:bf:2d:b9:b2:57:20:27:a6:f7:7f:a5:33: cc:05:6e:a3:bb:af:53:91:63:d5:e6:43:d4:b2:4b: 74:9a:54:94:54:dc:cf:34:f2:d0:4b:35:a3:cc:69: 85:86:16:81:70:e8:18:13:28:17:a7:33:88:c6:3a: ae:a1:32:10:60:7b:c3:8f:95:b2:4f:ef:da:bb:cd: 08:6d:13:c2:5f:2e:3e:95:ac:27:08:1b:7a:88:dd: d9:e2:3f:f4:cc:20:33:88:e2:cf:fc:7c:fb:ae:d0: dc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:65:85:4A:3F:5F:7F:C9:71:BE:18:3D:E8:04:BE:99:19:AB:2D:9E X509v3 Authority Key Identifier: keyid:4E:48:9F:66:15:9F:77:BB:58:D2:BB:C7:E4:FC:1D:FD:9D:DC:B0:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkifZhWfd7tY0rvH5Pwd_Z3csDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a58197-eb09-4415-a61d-abd61aa82426/1/TkifZhWfd7tY0rvH5Pwd_Z3csDQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a58197-eb09-4415-a61d-abd61aa82426/1/TkifZhWfd7tY0rvH5Pwd_Z3csDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:d5:a1:ed:6d:77:02:5b:0d:56:fe:4c:b5:92:d0:49:13:60: 20:1a:12:0f:f7:a5:99:ad:ff:a3:30:89:be:81:3a:e9:23:05: a9:5c:3f:37:dd:c3:8c:8d:bb:a3:a9:6a:39:cc:83:b3:47:3f: 14:59:12:93:cd:ba:69:a9:78:bb:93:1a:dc:e2:48:ff:fb:c7: 36:26:54:d6:19:72:fa:fd:ff:32:10:60:42:b5:b9:bd:9a:c3: a6:eb:9a:30:53:07:95:30:3b:84:a5:c5:d7:ae:b7:0b:3f:b4: 11:ef:35:9c:eb:14:5e:e2:c6:88:81:23:a6:c3:d2:e2:aa:4a: c7:a9:c5:0c:47:95:e4:f8:12:d5:a5:de:14:31:b5:e1:7b:1e: 23:af:97:98:44:32:06:ba:67:fb:6c:fe:52:f7:64:f8:39:36: 39:06:e9:4d:f1:17:d3:37:d9:eb:1a:03:19:2a:60:ef:4e:96: 10:11:f8:9e:39:9a:59:b3:2a:29:43:eb:8a:7d:a7:08:de:ac: db:de:58:80:c3:ba:5d:0b:14:48:94:5f:26:1b:b7:f4:cd:c1: 40:47:55:63:ad:4b:de:e7:5b:97:d2:5b:f9:9b:e8:cb:e7:33: 3f:74:da:6a:4f:1b:c0:23:fe:66:d4:84:ba:0d:a9:df:0a:e4: dd:24:dc:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkIwfGNDKhAgmh1wGwKogMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNDg5ZjY2MTU5Zjc3YmI1OGQyYmJjN2U0ZmMxZGZkOWRk Y2IwMzQwHhcNMjYwMjA5MTgwMTEyWhcNMjYwMjEwMTgwMTEyWjAzMTEwLwYDVQQD EyhkODY1ODU0YTNmNWY3ZmM5NzFiZTE4M2RlODA0YmU5OTE5YWIyZDllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0CUMkq4lyNMX8+5hAuKJASjEV7s B/iiDnSYLit1/7oPmRGl6b9nTh4haJ0UCHG+JvX52fiGG4Urrb+BZgebxRVh/jam 89aydRcgStY/EjMb0Q1rUn6t4b4Y5So9LFVQtfRYKT9ucMBjUnNM1I8VuJJV9Hw4 2lV+0IrKpoq+8H3CJUq6k/prc0gpSOB4ZlVUQYu/S8Muph6/LbmyVyAnpvd/pTPM BW6ju69TkWPV5kPUskt0mlSUVNzPNPLQSzWjzGmFhhaBcOgYEygXpzOIxjquoTIQ YHvDj5WyT+/au80IbRPCXy4+lawnCBt6iN3Z4j/0zCAziOLP/Hz7rtDcfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNhlhUo/X3/Jcb4YPegEvpkZqy2eMB8GA1UdIwQY MBaAFE5In2YVn3e7WNK7x+T8Hf2d3LA0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGtpZlpoV2ZkN3RZMHJ2SDVQd2RfWjNjc0RRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9hNTgxOTctZWIwOS00NDE1LWE2MWQt YWJkNjFhYTgyNDI2LzEvVGtpZlpoV2ZkN3RZMHJ2SDVQd2RfWjNjc0RRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9hNTgxOTctZWIwOS00NDE1LWE2MWQtYWJkNjFhYTgyNDI2 LzEvVGtpZlpoV2ZkN3RZMHJ2SDVQd2RfWjNjc0RRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdNWh7W13 AlsNVv5MtZLQSRNgIBoSD/elma3/ozCJvoE66SMFqVw/N93DjI27o6lqOcyDs0c/ FFkSk826aal4u5Ma3OJI//vHNiZU1hly+v3/MhBgQrW5vZrDpuuaMFMHlTA7hKXF 1663Cz+0Ee81nOsUXuLGiIEjpsPS4qpKx6nFDEeV5PgS1aXeFDG14XseI6+XmEQy Brpn+2z+Uvdk+Dk2OQbpTfEX0zfZ6xoDGSpg706WEBH4njmaWbMqKUPrin2nCN6s 295YgMO6XQsUSJRfJhu39M3BQEdVY61L3udbl9Jb+Zvoy+czP3Taak8bwCP+ZtSE ug2p3wrk3STcFQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:10:26 2026 by rpki-client