This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft File: TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft (raw, json) Hash identifier: EEuvAAmFN2oNNVQCdW3mXmJrOD8wpPLRL40PwTI5sH0= Subject key identifier: F4:0E:2C:08:CE:CA:32:64:90:FD:A3:B7:D9:CB:0C:24:B7:E8:3D:62 Authority key identifier: 4F:01:33:3F:86:CA:97:07:1A:0F:96:12:6B:A3:8E:22:52:E7:0A:34 Certificate issuer: /CN=4f01333f86ca97071a0f96126ba38e2252e70a34 Certificate serial: 019C42EB009BEEEFF148D45550C10AA07AD4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft Manifest number: 0AFE Signing time: Mon 09 Feb 2026 15:00:23 +0000 Manifest this update: Mon 09 Feb 2026 15:00:23 +0000 Manifest next update: Tue 10 Feb 2026 15:00:23 +0000 Files and hashes: 1: TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl (hash: 9dYBhbsrK2ivTLuHedeiStmIhF20r1U67DSuM7NOHdU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:00:9b:ee:ef:f1:48:d4:55:50:c1:0a:a0:7a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f01333f86ca97071a0f96126ba38e2252e70a34 Validity Not Before: Feb 9 15:00:23 2026 GMT Not After : Feb 10 15:00:23 2026 GMT Subject: CN=f40e2c08ceca326490fda3b7d9cb0c24b7e83d62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4e:73:e4:57:12:d4:53:0c:10:20:27:5a:0a: 4e:6f:f6:55:7a:df:54:75:60:b7:3d:97:e3:a6:91: 5c:4d:5e:3a:27:6b:40:b3:e5:85:70:7e:c6:32:96: 58:5d:f7:fe:c9:36:c7:98:9a:d9:88:b6:66:ed:cd: 37:83:41:1f:27:0a:98:92:cc:fe:7f:01:91:d7:eb: e0:51:46:ca:9c:3f:29:60:f4:b1:5e:1e:ae:2a:c6: 8c:97:6d:bf:2b:b9:e2:2b:76:96:3c:be:c0:80:3c: ab:ab:f6:c8:21:1b:f0:ac:91:92:22:85:14:c1:78: 83:67:2f:3b:d8:31:85:11:f2:bc:e0:fa:23:ab:f5: 85:5e:d7:d1:d8:85:89:e2:f6:f3:6a:af:d6:74:0a: f6:29:ca:ca:af:3a:f9:ab:a0:2b:24:95:d4:b0:58: 68:ac:6a:3e:3a:77:2f:67:5c:ed:1e:72:33:66:13: 1f:33:97:2a:07:85:ae:f8:09:2b:97:1e:d5:8f:4f: a9:0a:c0:64:04:ba:4e:99:18:7c:09:c2:5d:ff:4b: d6:39:b9:22:1a:99:a3:e9:6d:46:1a:20:a6:d4:db: d3:44:c4:7d:7a:95:8f:d8:96:27:33:32:b9:a3:2a: 78:20:e4:b0:a9:a7:62:8e:4f:f7:36:03:bf:16:1f: 79:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:0E:2C:08:CE:CA:32:64:90:FD:A3:B7:D9:CB:0C:24:B7:E8:3D:62 X509v3 Authority Key Identifier: keyid:4F:01:33:3F:86:CA:97:07:1A:0F:96:12:6B:A3:8E:22:52:E7:0A:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:f9:7b:3f:e7:32:8e:98:33:ea:2b:8a:4f:2a:d6:04:58:08: f4:e9:c1:42:89:6e:9d:d2:0d:82:08:3a:31:46:7d:4e:9a:42: 4f:52:ca:2e:43:47:c3:60:53:78:81:54:4b:ef:5c:0f:6c:81: b3:ab:a4:a8:8d:59:3d:80:2c:e9:da:73:ac:a9:85:1c:cc:12: 45:18:6a:bf:aa:73:54:c4:be:99:96:15:ef:74:61:af:26:9a: 78:64:2a:b7:a7:04:56:2b:7f:d4:22:bc:e7:a7:36:3e:30:43: 70:92:58:7d:8e:81:93:2b:99:3f:88:8a:e5:52:fa:9c:39:b8: 15:5f:e9:0d:65:3e:c8:80:1a:27:eb:36:53:9a:94:f4:e4:8b: a3:78:ae:08:b5:65:3d:f5:39:52:88:d6:a7:5b:13:08:e8:5e: af:73:3a:20:f9:b2:6b:21:c9:5d:23:18:58:0c:1b:9c:bb:7a: f4:26:16:17:71:99:77:6b:75:54:4b:81:28:3e:e7:44:a2:11: 0e:0d:5d:34:cb:84:a8:90:95:56:ad:22:99:0e:2c:28:70:9e: a5:90:9b:49:0c:71:7a:bc:af:09:3f:b6:e4:e1:38:76:8c:6e: 95:e4:b9:53:95:4f:24:40:ee:17:e1:19:0f:17:9b:94:88:eb: d7:1c:fe:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6wCb7u/xSNRVUMEKoHrUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMDEzMzNmODZjYTk3MDcxYTBmOTYxMjZiYTM4ZTIyNTJl NzBhMzQwHhcNMjYwMjA5MTUwMDIzWhcNMjYwMjEwMTUwMDIzWjAzMTEwLwYDVQQD EyhmNDBlMmMwOGNlY2EzMjY0OTBmZGEzYjdkOWNiMGMyNGI3ZTgzZDYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwU5z5FcS1FMMECAnWgpOb/ZVet9U dWC3PZfjppFcTV46J2tAs+WFcH7GMpZYXff+yTbHmJrZiLZm7c03g0EfJwqYksz+ fwGR1+vgUUbKnD8pYPSxXh6uKsaMl22/K7niK3aWPL7AgDyrq/bIIRvwrJGSIoUU wXiDZy872DGFEfK84Pojq/WFXtfR2IWJ4vbzaq/WdAr2KcrKrzr5q6ArJJXUsFho rGo+OncvZ1ztHnIzZhMfM5cqB4Wu+Akrlx7Vj0+pCsBkBLpOmRh8CcJd/0vWObki Gpmj6W1GGiCm1NvTRMR9epWP2JYnMzK5oyp4IOSwqadijk/3NgO/Fh951wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPQOLAjOyjJkkP2jt9nLDCS36D1iMB8GA1UdIwQY MBaAFE8BMz+GypcHGg+WEmujjiJS5wo0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHdFelA0Yktsd2NhRDVZU2E2T09JbExuQ2pRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS82NGVjZDktYTJmOC00Njg1LWE4NzIt YjQwNTY5MTZiMThiLzEvVHdFelA0Yktsd2NhRDVZU2E2T09JbExuQ2pRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS82NGVjZDktYTJmOC00Njg1LWE4NzItYjQwNTY5MTZiMThi LzEvVHdFelA0Yktsd2NhRDVZU2E2T09JbExuQ2pRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvfl7P+cy jpgz6iuKTyrWBFgI9OnBQolundINggg6MUZ9TppCT1LKLkNHw2BTeIFUS+9cD2yB s6ukqI1ZPYAs6dpzrKmFHMwSRRhqv6pzVMS+mZYV73RhryaaeGQqt6cEVit/1CK8 56c2PjBDcJJYfY6BkyuZP4iK5VL6nDm4FV/pDWU+yIAaJ+s2U5qU9OSLo3iuCLVl PfU5UojWp1sTCOher3M6IPmyayHJXSMYWAwbnLt69CYWF3GZd2t1VEuBKD7nRKIR Dg1dNMuEqJCVVq0imQ4sKHCepZCbSQxxeryvCT+25OE4doxuleS5U5VPJEDuF+EZ DxeblIjr1xz+Dw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:56:11 2026 by rpki-client