This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft File: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft (raw, json) Hash identifier: Ohj9XZyQlAzDZg/y0j5GEky1LQ4ZnFQkTxCBFT0MF3Y= Subject key identifier: 55:02:C1:A3:33:27:A6:4D:86:66:68:FD:5C:42:C3:15:54:46:28:19 Authority key identifier: 4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF Certificate issuer: /CN=4aefbcfa7f059ff10727ea619e59139da37418ef Certificate serial: 019C43225AD88BAB13FEB29AF6FEE064C1E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 16:00:50 +0000 Manifest this update: Mon 09 Feb 2026 16:00:50 +0000 Manifest next update: Tue 10 Feb 2026 16:00:50 +0000 Files and hashes: 1: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl (hash: rXLbOmdTnNKcx7a2+GzECBW55J4hMDmqAcbFCYDDO+c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:5a:d8:8b:ab:13:fe:b2:9a:f6:fe:e0:64:c1:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4aefbcfa7f059ff10727ea619e59139da37418ef Validity Not Before: Feb 9 16:00:50 2026 GMT Not After : Feb 10 16:00:50 2026 GMT Subject: CN=5502c1a33327a64d866668fd5c42c31554462819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6c:67:fa:2b:8c:56:8c:30:2c:f6:03:a1:a9: c2:66:73:13:82:a6:af:3b:08:8f:97:7c:dc:13:ca: 57:88:04:81:b0:bd:a8:12:84:df:5d:6d:97:ab:c7: 0e:47:15:41:2e:14:9d:9b:0a:22:c5:b0:54:e7:dc: 30:90:02:13:d2:db:f6:b9:1e:e0:a3:ce:9f:d0:8e: 5b:e6:5e:4e:a4:e3:7f:fa:3a:9d:d5:4a:57:0a:11: 2b:79:9d:e3:b1:0d:b2:f5:54:a8:ad:bf:b0:c9:5e: 1d:c1:2c:00:e3:8c:4f:25:9b:52:ce:bc:01:ef:28: 9a:55:1c:53:c7:7a:89:b4:0a:6a:bd:36:9a:d0:4e: 99:00:92:2a:2f:1f:66:14:52:74:3e:62:ae:ca:a4: 22:21:db:9d:cc:f9:e4:11:ed:12:6e:60:9d:6c:e5: ef:a3:df:f9:6c:66:6e:8b:1e:e6:ec:d6:3d:cb:ef: 4a:07:61:05:d4:8b:7c:14:e1:99:87:0f:e7:9f:fa: c3:e1:dc:c2:fb:6c:26:68:28:79:85:7d:2a:2c:66: ae:40:a6:60:4f:8a:7c:e2:0c:8c:ee:2e:11:ea:40: 6d:fb:84:de:f9:7c:f9:37:d2:81:44:d2:44:df:7e: 76:7f:34:38:fe:15:f7:a8:f5:ee:a6:16:70:ac:be: 0f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:02:C1:A3:33:27:A6:4D:86:66:68:FD:5C:42:C3:15:54:46:28:19 X509v3 Authority Key Identifier: keyid:4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:4b:c0:61:07:34:09:93:ac:5f:fe:2c:db:81:18:e7:d8:6a: 33:0d:50:5c:24:72:2f:0c:f5:3a:4e:ac:85:24:69:c9:66:46: 6b:ee:de:27:aa:b6:9f:d8:b6:08:d1:6e:18:5c:65:06:2c:fb: 69:7d:4d:b2:be:10:16:f7:87:d9:3b:8f:67:c4:86:a6:49:6d: 64:29:65:64:bc:0e:3b:d2:17:67:b7:2d:0f:5f:fc:5c:92:87: 37:07:91:57:ec:ff:0b:fa:6e:08:98:d5:84:1f:c8:c6:79:cc: 17:a3:fc:49:9b:27:8c:bd:59:d6:a0:db:82:52:c4:e0:d3:b9: 11:13:db:5d:64:cf:34:c5:39:6e:47:88:e7:f7:93:55:a2:02: 60:19:ef:93:87:57:cc:41:b7:b9:33:b4:64:7c:92:16:73:27: cf:4d:b3:60:01:be:5d:c6:74:08:c1:cf:a4:a4:1d:7b:7b:b6: 62:2a:3b:63:04:3f:d8:7d:cc:f2:e6:c9:35:a7:ae:ab:62:76: f1:7b:b3:84:0b:c2:4c:e8:5b:29:5d:a8:90:80:e3:bf:59:ee: f8:99:27:39:06:9e:4a:44:aa:e9:3f:49:c0:bd:0c:78:ec:d2: ba:54:19:fe:41:6a:21:d9:91:ed:91:8e:67:7f:cb:fc:43:25: 27:0d:61:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlrYi6sT/rKa9v7gZMHjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhZWZiY2ZhN2YwNTlmZjEwNzI3ZWE2MTllNTkxMzlkYTM3 NDE4ZWYwHhcNMjYwMjA5MTYwMDUwWhcNMjYwMjEwMTYwMDUwWjAzMTEwLwYDVQQD Eyg1NTAyYzFhMzMzMjdhNjRkODY2NjY4ZmQ1YzQyYzMxNTU0NDYyODE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGxn+iuMVowwLPYDoanCZnMTgqav OwiPl3zcE8pXiASBsL2oEoTfXW2Xq8cORxVBLhSdmwoixbBU59wwkAIT0tv2uR7g o86f0I5b5l5OpON/+jqd1UpXChEreZ3jsQ2y9VSorb+wyV4dwSwA44xPJZtSzrwB 7yiaVRxTx3qJtApqvTaa0E6ZAJIqLx9mFFJ0PmKuyqQiIdudzPnkEe0SbmCdbOXv o9/5bGZuix7m7NY9y+9KB2EF1It8FOGZhw/nn/rD4dzC+2wmaCh5hX0qLGauQKZg T4p84gyM7i4R6kBt+4Te+Xz5N9KBRNJE3352fzQ4/hX3qPXuphZwrL4PxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFUCwaMzJ6ZNhmZo/VxCwxVURigZMB8GA1UdIwQY MBaAFErvvPp/BZ/xByfqYZ5ZE52jdBjvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3UtOC1uOEZuX0VISi1waG5sa1RuYU4wR084LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy82M2NmZjMtYzllYi00MjExLWI5MmUt NDVmNTZiNDJjNmFjLzEvU3UtOC1uOEZuX0VISi1waG5sa1RuYU4wR084Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy82M2NmZjMtYzllYi00MjExLWI5MmUtNDVmNTZiNDJjNmFj LzEvU3UtOC1uOEZuX0VISi1waG5sa1RuYU4wR084LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlEvAYQc0 CZOsX/4s24EY59hqMw1QXCRyLwz1Ok6shSRpyWZGa+7eJ6q2n9i2CNFuGFxlBiz7 aX1Nsr4QFveH2TuPZ8SGpkltZCllZLwOO9IXZ7ctD1/8XJKHNweRV+z/C/puCJjV hB/IxnnMF6P8SZsnjL1Z1qDbglLE4NO5ERPbXWTPNMU5bkeI5/eTVaICYBnvk4dX zEG3uTO0ZHySFnMnz02zYAG+XcZ0CMHPpKQde3u2Yio7YwQ/2H3M8ubJNaeuq2J2 8XuzhAvCTOhbKV2okIDjv1nu+JknOQaeSkSq6T9JwL0MeOzSulQZ/kFqIdmR7ZGO Z3/L/EMlJw1hrQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:37 2026 by rpki-client