This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft File: 6MSDt1wtsc-f9OlMeg_fDbAADwA.mft (raw, json) Hash identifier: r0GXZGgJuXpJ9+gdqYsfaH6BYbN0ZIE+BUXQwUVuIVc= Subject key identifier: 51:3A:36:E9:7B:C5:F3:4B:7C:46:27:2A:92:CD:65:5F:D6:BE:FA:3C Authority key identifier: E8:C4:83:B7:5C:2D:B1:CF:9F:F4:E9:4C:7A:0F:DF:0D:B0:00:0F:00 Certificate issuer: /CN=e8c483b75c2db1cf9ff4e94c7a0fdf0db0000f00 Certificate serial: 019C41D86A2990D8F139DDE4883DE05E35F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft Manifest number: 134B Signing time: Mon 09 Feb 2026 10:00:27 +0000 Manifest this update: Mon 09 Feb 2026 10:00:27 +0000 Manifest next update: Tue 10 Feb 2026 10:00:27 +0000 Files and hashes: 1: 6MSDt1wtsc-f9OlMeg_fDbAADwA.crl (hash: taBYC07bpPS/oNXEnZXPW/MMELeuY4peL5UAhEkGaQ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:6a:29:90:d8:f1:39:dd:e4:88:3d:e0:5e:35:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8c483b75c2db1cf9ff4e94c7a0fdf0db0000f00 Validity Not Before: Feb 9 10:00:27 2026 GMT Not After : Feb 10 10:00:27 2026 GMT Subject: CN=513a36e97bc5f34b7c46272a92cd655fd6befa3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ca:fc:49:b7:a3:ea:eb:05:5f:40:ef:c3:6e: 2f:9a:da:4d:ea:54:60:e3:79:f7:9a:3b:08:8c:3d: fd:5d:90:95:05:cb:e0:30:70:d4:99:c8:1c:40:89: 4d:bb:d4:3b:80:e9:4d:ec:5a:8f:bf:d6:53:c5:02: 49:3e:bb:a3:8f:07:d8:91:81:ba:a5:fb:9e:fe:91: ff:e0:83:86:8e:52:6e:a8:03:77:e0:e8:cd:78:5a: e2:e6:c3:f4:90:8e:0a:26:64:6d:da:21:3d:b4:8b: f9:53:6b:09:4b:e5:59:6a:54:d5:49:b6:fb:0b:58: 38:47:5a:39:94:19:77:e4:61:9b:11:8b:a7:ac:97: d4:9e:91:3d:b7:e2:b1:b5:0a:b0:88:f7:64:37:91: d7:28:5c:bc:c7:d8:e3:bc:26:e3:73:ee:aa:65:05: 62:8c:08:37:52:48:c9:25:7a:41:05:22:f8:5e:3c: 2e:27:77:56:a2:32:0d:8e:77:d6:17:32:a1:d0:4b: 25:92:ae:06:cb:14:dc:6b:af:97:5e:3b:0f:a3:57: 88:97:3a:00:a6:e4:57:b5:b8:31:81:d8:ff:6e:47: cb:fe:78:af:bd:e8:69:24:1c:a4:70:d8:a7:39:51: 59:6d:e1:16:72:58:b7:22:4a:e4:82:74:1d:22:61: 32:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:3A:36:E9:7B:C5:F3:4B:7C:46:27:2A:92:CD:65:5F:D6:BE:FA:3C X509v3 Authority Key Identifier: keyid:E8:C4:83:B7:5C:2D:B1:CF:9F:F4:E9:4C:7A:0F:DF:0D:B0:00:0F:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:24:37:1d:da:4b:32:e3:4d:b4:72:49:d0:0d:26:0a:67:13: d4:91:a4:1e:21:ce:59:a6:61:f3:3b:9b:f6:2c:3e:14:23:8d: d4:d2:e3:a5:39:bc:48:cc:23:a5:76:04:7b:6b:f2:0f:51:90: 5f:44:70:ca:f2:58:9f:a6:67:65:9c:e1:68:88:af:00:29:7b: 0e:bc:ea:92:ba:f8:cb:0f:47:af:b0:9d:c6:8b:ea:d1:66:3a: b3:75:c2:f7:60:36:18:c4:28:85:35:67:77:d0:1e:52:01:f4: 30:7d:57:50:c9:70:49:2a:61:69:69:e6:e1:84:a8:a2:c1:90: 3b:43:6e:8c:73:19:d2:60:a9:1c:b5:23:55:f6:9e:4f:01:c4: 3b:40:4a:57:70:cc:26:e3:d7:c5:27:32:da:a4:02:9f:0d:c9: 35:d4:72:66:94:45:63:fd:60:5c:b0:cf:db:ba:45:c0:36:c2: 6c:e7:c5:00:5d:5b:fc:67:da:96:e3:e2:b9:f9:85:3e:c1:44: 51:fe:7f:eb:93:3a:99:af:e1:97:af:96:37:19:9c:7b:1d:cd: 95:e7:63:88:74:98:a6:3f:2d:66:86:fd:71:12:f0:91:84:f6: 92:53:17:39:6c:25:53:2b:7b:a4:62:67:0a:0e:6a:27:67:0d: 68:4c:71:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2GopkNjxOd3kiD3gXjX5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4YzQ4M2I3NWMyZGIxY2Y5ZmY0ZTk0YzdhMGZkZjBkYjAw MDBmMDAwHhcNMjYwMjA5MTAwMDI3WhcNMjYwMjEwMTAwMDI3WjAzMTEwLwYDVQQD Eyg1MTNhMzZlOTdiYzVmMzRiN2M0NjI3MmE5MmNkNjU1ZmQ2YmVmYTNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMr8Sbej6usFX0Dvw24vmtpN6lRg 43n3mjsIjD39XZCVBcvgMHDUmcgcQIlNu9Q7gOlN7FqPv9ZTxQJJPrujjwfYkYG6 pfue/pH/4IOGjlJuqAN34OjNeFri5sP0kI4KJmRt2iE9tIv5U2sJS+VZalTVSbb7 C1g4R1o5lBl35GGbEYunrJfUnpE9t+KxtQqwiPdkN5HXKFy8x9jjvCbjc+6qZQVi jAg3UkjJJXpBBSL4XjwuJ3dWojINjnfWFzKh0Eslkq4GyxTca6+XXjsPo1eIlzoA puRXtbgxgdj/bkfL/nivvehpJBykcNinOVFZbeEWcli3IkrkgnQdImEyRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFE6Nul7xfNLfEYnKpLNZV/Wvvo8MB8GA1UdIwQY MBaAFOjEg7dcLbHPn/TpTHoP3w2wAA8AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNk1TRHQxd3RzYy1mOU9sTWVnX2ZEYkFBRHdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8zMWZkYTAtN2FhYS00NjFjLWEzNTIt ZWIzNWJmYTA2NWFkLzEvNk1TRHQxd3RzYy1mOU9sTWVnX2ZEYkFBRHdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8zMWZkYTAtN2FhYS00NjFjLWEzNTItZWIzNWJmYTA2NWFk LzEvNk1TRHQxd3RzYy1mOU9sTWVnX2ZEYkFBRHdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeSQ3HdpL MuNNtHJJ0A0mCmcT1JGkHiHOWaZh8zub9iw+FCON1NLjpTm8SMwjpXYEe2vyD1GQ X0RwyvJYn6ZnZZzhaIivACl7Drzqkrr4yw9Hr7Cdxovq0WY6s3XC92A2GMQohTVn d9AeUgH0MH1XUMlwSSphaWnm4YSoosGQO0NujHMZ0mCpHLUjVfaeTwHEO0BKV3DM JuPXxScy2qQCnw3JNdRyZpRFY/1gXLDP27pFwDbCbOfFAF1b/GfaluPiufmFPsFE Uf5/65M6ma/hl6+WNxmcex3NledjiHSYpj8tZob9cRLwkYT2klMXOWwlUyt7pGJn Cg5qJ2cNaExxig== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:47 2026 by rpki-client