This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft File: stsr_PWdmcpwgzcI_TADLyP-9IU.mft (raw, json) Hash identifier: Ks9H1vPui67RTLtwJBkIvReWLAu/vIZa4FvtdUTHs54= Subject key identifier: 29:D5:5E:F8:62:25:F5:76:DB:23:D1:2E:0D:78:B2:47:DE:AB:46:24 Authority key identifier: B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85 Certificate issuer: /CN=b2db2bfcf59d99ca70833708fd30032f23fef485 Certificate serial: 019C42B46044773D1A0BE251287B1AD00C43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft Manifest number: 17DC Signing time: Mon 09 Feb 2026 14:00:43 +0000 Manifest this update: Mon 09 Feb 2026 14:00:43 +0000 Manifest next update: Tue 10 Feb 2026 14:00:43 +0000 Files and hashes: 1: kI6O0uFJPftBH4xW35fguwVIj3w.roa (hash: Y0KF9po9o55fM0XpVubG9yoHKNbR7AYN/MNkbuUq+D0=) 2: stsr_PWdmcpwgzcI_TADLyP-9IU.crl (hash: ga9WJ13+mwy7L44Z0FDrjEDAnn1310mTMN8/qVRlK1A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:60:44:77:3d:1a:0b:e2:51:28:7b:1a:d0:0c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2db2bfcf59d99ca70833708fd30032f23fef485 Validity Not Before: Feb 9 14:00:43 2026 GMT Not After : Feb 10 14:00:43 2026 GMT Subject: CN=29d55ef86225f576db23d12e0d78b247deab4624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:aa:75:92:d2:07:e4:e9:a4:f0:69:95:1d:40: 33:c3:d7:27:0c:92:92:16:f8:24:67:94:ba:01:f3: 3c:b7:88:3e:af:2b:8e:46:eb:33:c2:ac:cb:4a:99: 4b:67:13:91:45:de:4a:2c:c2:85:fc:a6:b8:7c:96: 3c:b7:74:ab:e8:a2:f0:17:3f:bb:c2:20:2b:01:e8: 5b:91:ce:54:ab:6a:c4:4e:7e:17:d3:b9:40:96:d2: e5:8d:d7:00:80:cc:e9:13:f7:5b:a2:9e:4a:df:25: 28:6e:7b:64:95:94:ca:a6:76:97:45:17:1e:2b:87: fc:ba:e5:4d:c4:68:8f:8a:f5:56:59:49:ee:d5:9d: df:7a:b5:21:44:5f:cf:27:1d:64:3b:ff:12:85:61: 73:e8:5d:8c:08:73:cf:4a:ae:96:9e:94:f0:a8:13: 09:6e:1a:c1:2e:ee:f9:b0:1e:06:11:9a:84:5f:e7: 70:f5:d0:5c:8d:5d:e4:9e:fd:69:8a:9c:53:9e:e3: bc:6b:3e:6e:ca:3c:f3:0d:33:5d:e8:d2:fe:e3:4c: 56:75:6c:76:52:79:c4:5c:48:7d:82:3a:c5:ee:33: d0:90:2c:d9:67:b3:cb:da:2c:bd:ac:43:15:bf:ec: 7b:fb:d5:be:36:43:e1:6f:e8:5f:44:44:7e:70:8d: 29:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D5:5E:F8:62:25:F5:76:DB:23:D1:2E:0D:78:B2:47:DE:AB:46:24 X509v3 Authority Key Identifier: keyid:B2:DB:2B:FC:F5:9D:99:CA:70:83:37:08:FD:30:03:2F:23:FE:F4:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stsr_PWdmcpwgzcI_TADLyP-9IU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/39db6c-f23b-4c9b-9f79-734994c52c1f/1/stsr_PWdmcpwgzcI_TADLyP-9IU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:65:bb:bd:66:29:9f:b8:4b:3f:0e:93:49:32:d7:bd:4b:9f: 21:69:5b:6e:db:40:16:a7:c7:5d:63:e3:49:a9:14:f0:b1:8e: f1:5c:ab:75:3b:32:38:8d:99:13:31:9b:47:54:38:f0:d1:bc: d8:6d:5d:8e:94:34:ee:57:13:57:01:06:99:ed:c7:b2:36:81: e1:ef:e1:1c:7b:ae:39:38:67:b0:fc:55:ae:bc:ae:58:d2:ff: df:e1:36:02:83:07:6c:06:a6:b3:a4:3b:dc:5a:53:30:6e:b1: 3a:12:a4:e3:34:12:a7:26:a2:ad:94:e0:c8:fc:fb:7f:08:51: 5d:1c:65:5c:4f:5b:20:54:80:fe:9e:4d:5f:86:3f:0c:8f:b5: 46:c7:29:47:b8:1e:e6:fd:da:d1:1f:2f:5e:9f:60:bd:10:51: 1c:47:5a:16:13:49:44:58:61:0d:1f:67:6a:b7:cb:1f:79:25: 76:61:89:05:bb:03:ca:bc:fe:0e:2e:ab:e1:d3:79:f7:7a:69: ba:09:ed:80:24:13:dc:09:c2:c6:95:7b:e9:76:cd:d0:1d:98: b7:24:24:a7:cf:26:84:e5:42:01:3d:70:4d:3d:f3:57:af:2a: cc:b3:82:a2:58:9c:9f:ae:be:33:14:bb:f8:5b:d2:c9:da:9d: 62:cf:9f:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtGBEdz0aC+JRKHsa0AxDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZGIyYmZjZjU5ZDk5Y2E3MDgzMzcwOGZkMzAwMzJmMjNm ZWY0ODUwHhcNMjYwMjA5MTQwMDQzWhcNMjYwMjEwMTQwMDQzWjAzMTEwLwYDVQQD EygyOWQ1NWVmODYyMjVmNTc2ZGIyM2QxMmUwZDc4YjI0N2RlYWI0NjI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi6p1ktIH5Omk8GmVHUAzw9cnDJKS FvgkZ5S6AfM8t4g+ryuORuszwqzLSplLZxORRd5KLMKF/Ka4fJY8t3Sr6KLwFz+7 wiArAehbkc5Uq2rETn4X07lAltLljdcAgMzpE/dbop5K3yUobntklZTKpnaXRRce K4f8uuVNxGiPivVWWUnu1Z3ferUhRF/PJx1kO/8ShWFz6F2MCHPPSq6WnpTwqBMJ bhrBLu75sB4GEZqEX+dw9dBcjV3knv1pipxTnuO8az5uyjzzDTNd6NL+40xWdWx2 UnnEXEh9gjrF7jPQkCzZZ7PL2iy9rEMVv+x7+9W+NkPhb+hfRER+cI0pdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCnVXvhiJfV22yPRLg14skfeq0YkMB8GA1UdIwQY MBaAFLLbK/z1nZnKcIM3CP0wAy8j/vSFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzkt NzM0OTk0YzUyYzFmLzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC8zOWRiNmMtZjIzYi00YzliLTlmNzktNzM0OTk0YzUyYzFm LzEvc3Rzcl9QV2RtY3B3Z3pjSV9UQURMeVAtOUlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnWW7vWYp n7hLPw6TSTLXvUufIWlbbttAFqfHXWPjSakU8LGO8VyrdTsyOI2ZEzGbR1Q48NG8 2G1djpQ07lcTVwEGme3HsjaB4e/hHHuuOThnsPxVrryuWNL/3+E2AoMHbAams6Q7 3FpTMG6xOhKk4zQSpyairZTgyPz7fwhRXRxlXE9bIFSA/p5NX4Y/DI+1RscpR7ge 5v3a0R8vXp9gvRBRHEdaFhNJRFhhDR9narfLH3kldmGJBbsDyrz+Di6r4dN593pp ugntgCQT3AnCxpV76XbN0B2YtyQkp88mhOVCAT1wTT3zV68qzLOColicn66+MxS7 +FvSydqdYs+fJw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:33 2026 by rpki-client