This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.mft File: tTmDGDXIfHUB9sN8tI5gp5WjlLs.mft (raw, json) Hash identifier: Wey/Kk7Wnf8h8FEoBq5MaVp/mxEEnsSYMHiQqqe3hlo= Subject key identifier: F4:0A:EE:55:5F:5A:A4:D5:8B:0D:DA:C7:74:81:10:C2:81:A7:31:A4 Authority key identifier: B5:39:83:18:35:C8:7C:75:01:F6:C3:7C:B4:8E:60:A7:95:A3:94:BB Certificate issuer: /CN=b539831835c87c7501f6c37cb48e60a795a394bb Certificate serial: 019C43224D1CDB8B2FC499836D8DE7AACB4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTmDGDXIfHUB9sN8tI5gp5WjlLs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 16:00:47 +0000 Manifest this update: Mon 09 Feb 2026 16:00:47 +0000 Manifest next update: Tue 10 Feb 2026 16:00:47 +0000 Files and hashes: 1: tTmDGDXIfHUB9sN8tI5gp5WjlLs.crl (hash: MiqnzwUwqc2ntubycnfs5+zg6T9cbvEnnRRWcKIB8Dk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.mft rsync://rpki.ripe.net/repository/DEFAULT/tTmDGDXIfHUB9sN8tI5gp5WjlLs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:4d:1c:db:8b:2f:c4:99:83:6d:8d:e7:aa:cb:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b539831835c87c7501f6c37cb48e60a795a394bb Validity Not Before: Feb 9 16:00:47 2026 GMT Not After : Feb 10 16:00:47 2026 GMT Subject: CN=f40aee555f5aa4d58b0ddac7748110c281a731a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:22:e0:53:c1:f9:bd:0c:92:86:dd:89:07:d9: f3:fd:cd:50:59:47:1e:27:a2:98:b0:45:20:a0:0c: 95:f2:8c:aa:d1:c2:ab:a4:2b:64:6e:39:7e:de:6a: 19:ab:10:79:72:f9:b6:44:b7:a5:8c:b6:6d:4d:68: 1e:0d:0f:b1:9a:9f:21:fb:fd:f6:af:5d:fa:6f:bb: 54:e4:12:85:62:40:b4:eb:01:70:0d:03:b0:6d:f7: b0:da:c7:ee:bc:7a:9e:cf:b6:70:73:23:87:66:22: 75:36:0d:2f:18:6b:be:bc:ca:a1:8a:21:88:07:ca: 04:25:48:c0:c9:a1:2c:a6:b4:a3:71:01:6d:de:af: ba:cd:ff:de:d5:c6:95:92:8d:9e:82:ac:ba:bb:5f: e0:43:81:0a:70:d9:18:e4:f3:20:d3:a8:30:62:ba: 2c:21:fd:27:a3:d9:ee:fa:7d:99:13:a4:19:eb:b0: 27:cb:e5:76:ec:74:29:23:c9:01:91:18:16:2e:1b: 17:4b:6f:69:78:a1:1a:ea:a5:52:4c:8e:dd:7a:a7: ed:4b:f7:64:51:9d:b8:05:eb:ce:01:2b:c6:a7:b6: 5d:8b:f1:2b:46:2c:c8:16:0d:57:19:e0:d3:2f:05: 46:43:04:c9:88:e3:32:23:53:e9:c6:e3:2a:b3:5d: 7b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:0A:EE:55:5F:5A:A4:D5:8B:0D:DA:C7:74:81:10:C2:81:A7:31:A4 X509v3 Authority Key Identifier: keyid:B5:39:83:18:35:C8:7C:75:01:F6:C3:7C:B4:8E:60:A7:95:A3:94:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTmDGDXIfHUB9sN8tI5gp5WjlLs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e703c8-465f-47a5-952c-495e188701b6/1/tTmDGDXIfHUB9sN8tI5gp5WjlLs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:9a:6a:0a:ee:2b:14:fd:59:f0:0e:2c:94:75:45:cd:e7:6f: aa:82:80:07:1b:d2:0f:c1:66:c7:94:11:b0:84:11:e9:36:ef: 52:92:24:2e:13:18:dd:c2:bc:c6:83:57:40:c8:83:42:7f:bb: 09:d4:b1:69:30:4b:3a:b1:9f:38:34:0f:a5:1c:96:91:e3:a5: 90:2f:f7:3a:50:2d:b5:c4:f7:66:99:80:d0:2e:90:e9:30:dc: 42:30:02:da:cb:16:ea:c6:8c:45:91:c0:b6:3a:dd:ef:de:ea: 6d:7b:14:f0:dd:23:fe:a6:74:3e:6c:82:c9:11:ce:fc:d0:f9: 09:28:85:90:2d:73:ad:4f:3b:da:d2:b9:c3:1d:fd:c4:f3:db: d8:3d:0c:38:35:a2:58:a9:f7:dc:30:e6:b3:fe:52:47:19:c8: c2:66:00:26:7f:3c:3b:39:81:03:8d:81:6e:8e:82:f0:c4:3d: ce:72:a6:8c:52:6e:64:5d:94:71:a1:eb:4a:be:1a:ec:3f:d1: 80:1a:f8:8e:25:be:8b:8e:23:ef:3a:80:47:20:fd:f1:48:3b: 59:cf:a3:fa:ed:61:81:46:10:d5:58:44:73:c6:92:ee:ae:8d: e7:7b:44:ca:03:bd:84:8a:49:e8:ec:cf:79:ca:53:00:f4:2c: f7:6c:fc:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIk0c24svxJmDbY3nqstKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1Mzk4MzE4MzVjODdjNzUwMWY2YzM3Y2I0OGU2MGE3OTVh Mzk0YmIwHhcNMjYwMjA5MTYwMDQ3WhcNMjYwMjEwMTYwMDQ3WjAzMTEwLwYDVQQD EyhmNDBhZWU1NTVmNWFhNGQ1OGIwZGRhYzc3NDgxMTBjMjgxYTczMWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryLgU8H5vQySht2JB9nz/c1QWUce J6KYsEUgoAyV8oyq0cKrpCtkbjl+3moZqxB5cvm2RLeljLZtTWgeDQ+xmp8h+/32 r136b7tU5BKFYkC06wFwDQOwbfew2sfuvHqez7ZwcyOHZiJ1Ng0vGGu+vMqhiiGI B8oEJUjAyaEsprSjcQFt3q+6zf/e1caVko2egqy6u1/gQ4EKcNkY5PMg06gwYros If0no9nu+n2ZE6QZ67Any+V27HQpI8kBkRgWLhsXS29peKEa6qVSTI7deqftS/dk UZ24BevOASvGp7Zdi/ErRizIFg1XGeDTLwVGQwTJiOMyI1PpxuMqs117aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPQK7lVfWqTViw3ax3SBEMKBpzGkMB8GA1UdIwQY MBaAFLU5gxg1yHx1AfbDfLSOYKeVo5S7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFRtREdEWElmSFVCOXNOOHRJNWdwNVdqbExzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lNzAzYzgtNDY1Zi00N2E1LTk1MmMt NDk1ZTE4ODcwMWI2LzEvdFRtREdEWElmSFVCOXNOOHRJNWdwNVdqbExzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9lNzAzYzgtNDY1Zi00N2E1LTk1MmMtNDk1ZTE4ODcwMWI2 LzEvdFRtREdEWElmSFVCOXNOOHRJNWdwNVdqbExzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATJpqCu4r FP1Z8A4slHVFzedvqoKABxvSD8Fmx5QRsIQR6TbvUpIkLhMY3cK8xoNXQMiDQn+7 CdSxaTBLOrGfODQPpRyWkeOlkC/3OlAttcT3ZpmA0C6Q6TDcQjAC2ssW6saMRZHA tjrd797qbXsU8N0j/qZ0PmyCyRHO/ND5CSiFkC1zrU872tK5wx39xPPb2D0MODWi WKn33DDms/5SRxnIwmYAJn88OzmBA42Bbo6C8MQ9znKmjFJuZF2UcaHrSr4a7D/R gBr4jiW+i44j7zqARyD98Ug7Wc+j+u1hgUYQ1VhEc8aS7q6N53tEygO9hIpJ6OzP ecpTAPQs92z8VQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:26 2026 by rpki-client