This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft File: 1873Xgl6YxiGszyB9kql67wMMqA.mft (raw, json) Hash identifier: rOIw4lg9Dn0gbnbaaUXSMcF6VPEF7QLtk4QmItvXoZY= Subject key identifier: 0D:20:3D:E1:6F:C0:C9:61:E8:F8:9E:4C:96:AB:37:EC:77:4E:98:92 Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0 Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0 Certificate serial: 019C43901977D1BF5EB9CE49B9A62FFF1CBA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft Manifest number: 0641 Signing time: Mon 09 Feb 2026 18:00:42 +0000 Manifest this update: Mon 09 Feb 2026 18:00:42 +0000 Manifest next update: Tue 10 Feb 2026 18:00:42 +0000 Files and hashes: 1: 1873Xgl6YxiGszyB9kql67wMMqA.crl (hash: Pp6pjyoW7XGAkwHSzUTh0Ba0cAzMBjINL0II3mqz2cE=) 2: Lljg_xH1KTEyF8YtQpFDhU2fq9M.roa (hash: G0j8nubF5nQiwgPwwabVEZQZZTMIJxsI563KIITxMI4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:19:77:d1:bf:5e:b9:ce:49:b9:a6:2f:ff:1c:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0 Validity Not Before: Feb 9 18:00:42 2026 GMT Not After : Feb 10 18:00:42 2026 GMT Subject: CN=0d203de16fc0c961e8f89e4c96ab37ec774e9892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bc:0e:9a:76:43:dd:c4:1d:8f:2c:36:11:f9: dd:dc:74:5c:54:5c:0b:f4:ed:02:09:25:d8:31:82: 52:c0:27:fc:ed:dc:d6:b9:13:b0:08:3f:df:61:b7: cd:25:18:fb:10:c2:e7:bb:03:f4:1a:15:f4:3e:66: 05:9c:f6:ee:76:36:e7:02:ac:2a:f6:ff:b0:d5:cb: 10:c7:b3:78:03:18:e7:96:4c:8a:8c:50:1c:04:86: 18:4b:d6:5a:ae:40:12:4b:b1:9f:15:83:08:58:d8: e0:77:f6:d4:a6:e7:74:3e:be:28:d0:97:f2:0f:ba: f5:a2:ac:4a:74:da:fd:3b:61:07:9c:8d:58:90:58: 1c:74:cc:2c:00:71:8c:fe:38:7a:7f:08:7f:8e:eb: 92:9d:6f:27:f4:d7:e0:61:c7:04:8a:ef:6b:84:54: 5a:bc:aa:4a:17:88:2f:0b:e5:db:08:6b:32:22:42: ad:82:00:ae:26:78:9b:e2:c4:fc:0f:c6:1f:2e:93: e5:33:05:9e:ae:3d:ea:b7:dc:44:71:8c:80:ca:69: 3d:79:65:5d:65:2f:58:0f:01:71:62:22:62:58:23: 1b:60:fa:2e:19:fa:25:78:49:f9:65:91:2e:5c:06: 03:97:20:cc:98:63:d5:a5:c7:8c:dd:70:98:ff:02: 4b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:20:3D:E1:6F:C0:C9:61:E8:F8:9E:4C:96:AB:37:EC:77:4E:98:92 X509v3 Authority Key Identifier: keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:48:e6:21:5d:be:a8:cd:9e:c9:8f:47:e5:12:f7:0f:89:b3: ef:87:55:60:df:d4:b0:cd:eb:2a:aa:6e:f7:24:78:c6:86:62: 50:5f:b8:c8:12:64:47:37:be:2d:b5:dc:f3:93:61:1d:f9:67: c1:e9:49:62:7e:76:9e:c3:01:5e:7c:37:35:e7:4f:bc:67:31: 8e:30:0d:41:e9:46:43:6f:31:76:dc:20:1e:f0:76:b3:ca:e6: c9:6a:13:94:bf:06:1e:fe:43:af:85:1d:5c:be:7f:ec:11:56: 31:78:d0:0f:8f:8d:44:2d:0d:0f:27:71:ed:1d:4b:4b:5d:7f: 0a:6a:43:8e:37:9f:c3:5f:75:0a:8a:84:fe:0d:79:73:92:09: e5:15:4d:30:80:e7:b4:57:80:bc:d8:f7:29:8c:2d:49:82:55: a5:8f:f1:d3:e8:4e:d9:5c:dc:a2:3b:0f:fb:e4:03:5d:11:d4: 41:49:a0:4c:89:00:07:ac:f2:12:1a:c2:2f:8d:3e:f8:49:a8: 69:b3:38:50:44:3a:21:a0:83:d7:88:36:48:2d:fe:65:9a:73: 59:e6:3d:25:50:77:35:9b:60:4b:e6:13:6b:fd:49:c2:84:9c: fb:13:b8:c7:ae:42:be:59:7b:07:12:24:38:6f:5b:fa:a6:b5: fc:26:e0:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkBl30b9euc5JuaYv/xy6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3Y2VmNzVlMDk3YTYzMTg4NmIzM2M4MWY2NGFhNWViYmMw YzMyYTAwHhcNMjYwMjA5MTgwMDQyWhcNMjYwMjEwMTgwMDQyWjAzMTEwLwYDVQQD EygwZDIwM2RlMTZmYzBjOTYxZThmODllNGM5NmFiMzdlYzc3NGU5ODkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbwOmnZD3cQdjyw2Efnd3HRcVFwL 9O0CCSXYMYJSwCf87dzWuROwCD/fYbfNJRj7EMLnuwP0GhX0PmYFnPbudjbnAqwq 9v+w1csQx7N4AxjnlkyKjFAcBIYYS9ZarkASS7GfFYMIWNjgd/bUpud0Pr4o0Jfy D7r1oqxKdNr9O2EHnI1YkFgcdMwsAHGM/jh6fwh/juuSnW8n9NfgYccEiu9rhFRa vKpKF4gvC+XbCGsyIkKtggCuJnib4sT8D8YfLpPlMwWerj3qt9xEcYyAymk9eWVd ZS9YDwFxYiJiWCMbYPouGfoleEn5ZZEuXAYDlyDMmGPVpceM3XCY/wJLQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA0gPeFvwMlh6PieTJarN+x3TpiSMB8GA1UdIwQY MBaAFNfO914JemMYhrM8gfZKpeu8DDKgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9mNGYwZDUtN2U0My00NmJlLWIwOTIt NWJhNTAxZTBiMzcwLzEvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS9mNGYwZDUtN2U0My00NmJlLWIwOTItNWJhNTAxZTBiMzcw LzEvMTg3M1hnbDZZeGlHc3p5QjlrcWw2N3dNTXFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOEjmIV2+ qM2eyY9H5RL3D4mz74dVYN/UsM3rKqpu9yR4xoZiUF+4yBJkRze+LbXc85NhHfln welJYn52nsMBXnw3NedPvGcxjjANQelGQ28xdtwgHvB2s8rmyWoTlL8GHv5Dr4Ud XL5/7BFWMXjQD4+NRC0NDydx7R1LS11/CmpDjjefw191CoqE/g15c5IJ5RVNMIDn tFeAvNj3KYwtSYJVpY/x0+hO2VzcojsP++QDXRHUQUmgTIkAB6zyEhrCL40++Emo abM4UEQ6IaCD14g2SC3+ZZpzWeY9JVB3NZtgS+YTa/1JwoSc+xO4x65Cvll7BxIk OG9b+qa1/CbgLA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:49 2026 by rpki-client