This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft File: cM9eaXxglK22vJcVazXgBf1M8uI.mft (raw, json) Hash identifier: FDr2SlbZPrX+azyyBpCojChSOyVezMsJ0ke23sZX96w= Subject key identifier: C3:6F:D7:1E:13:3F:56:C2:17:AD:5B:59:45:04:C4:9E:4A:C6:E6:A4 Authority key identifier: 70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2 Certificate issuer: /CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2 Certificate serial: 019C424685B0D91DF285CD7925386FDA6596 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 12:00:43 +0000 Manifest this update: Mon 09 Feb 2026 12:00:43 +0000 Manifest next update: Tue 10 Feb 2026 12:00:43 +0000 Files and hashes: 1: NBCpqIpZAF1KaD7VX5EAO0lgw58.roa (hash: FNwe4WLfDmM1bNzJd35FzEdIcc1xxE0RPwhccQQkLXQ=) 2: cM9eaXxglK22vJcVazXgBf1M8uI.crl (hash: LLb0Y/uaRsWgbjxwBJKduD1qE/jeteS5FjK6BhYdhtU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:85:b0:d9:1d:f2:85:cd:79:25:38:6f:da:65:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2 Validity Not Before: Feb 9 12:00:43 2026 GMT Not After : Feb 10 12:00:43 2026 GMT Subject: CN=c36fd71e133f56c217ad5b594504c49e4ac6e6a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c2:6f:88:7f:ce:9c:4d:89:96:c8:fc:a0:9e: 79:35:b8:32:64:a6:c3:3e:a4:1a:18:59:86:f3:dc: b8:fd:f3:47:4e:b1:d6:7b:3e:fb:d2:82:c0:2c:42: 5b:d6:90:5f:56:8c:35:0b:ce:54:96:9a:e4:b7:a3: 90:1f:2a:cf:56:9b:9b:06:c0:c9:e3:c2:69:6f:24: 82:23:a2:f5:04:89:b7:73:4a:ed:e4:9b:06:52:11: ec:f8:10:b7:65:4d:56:c8:91:f8:b0:af:ef:e8:8c: a9:d9:3f:3e:a6:65:53:84:31:e1:9d:fc:6d:77:34: 02:d0:f9:40:51:ef:63:17:5a:bc:9c:ed:ee:b9:95: 9e:f0:f4:7a:49:98:6b:90:b3:1f:fa:b7:93:5b:13: 9f:f5:8c:6b:c7:83:4c:5e:8d:f3:5b:10:ea:77:43: 06:1a:83:0a:40:31:88:88:f8:98:df:9c:eb:58:5c: 6e:40:28:c0:93:14:3e:6d:90:d5:15:4b:5f:4e:98: 6a:02:c6:45:60:94:5e:aa:52:5d:1c:0d:32:cc:6b: 88:a8:55:c9:50:e4:43:be:83:5f:03:64:cf:0b:90: 93:f5:1f:59:76:69:3a:bc:29:75:9d:ac:df:64:8b: fe:ec:84:9b:7f:50:66:60:e5:5f:01:cf:69:3b:23: 14:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:6F:D7:1E:13:3F:56:C2:17:AD:5B:59:45:04:C4:9E:4A:C6:E6:A4 X509v3 Authority Key Identifier: keyid:70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:c4:c4:94:32:48:69:8f:78:bd:22:0e:42:95:d6:c1:ae:6a: 49:af:84:d7:85:ae:60:da:87:3f:91:7b:09:41:a2:17:26:bf: ce:91:c8:4c:cc:4d:29:da:34:68:4c:89:77:8d:ef:2f:64:13: a7:43:1a:c2:70:35:92:e9:1d:07:48:54:25:3d:24:28:2e:07: 61:26:3c:54:17:9a:02:e8:03:5f:36:c8:52:ef:fe:de:fc:d6: 75:34:94:3a:6e:ab:80:8d:b5:6d:4c:bc:35:a6:5d:f3:9f:46: f9:8d:c1:ea:47:f2:69:42:5b:4c:9e:40:00:1f:8f:5d:f2:db: e1:27:46:1d:82:80:59:1f:46:4e:4b:35:84:b7:f3:00:6f:a9: 4a:44:98:f9:af:fc:cb:12:8d:ab:1e:89:2b:ab:95:12:ba:1d: 76:8e:ce:90:4c:89:ad:87:b0:1e:a7:b0:d9:e5:9a:7a:29:5f: 3c:54:01:dc:7c:bc:1b:0a:b9:64:31:08:79:36:0e:41:69:ee: 81:eb:a1:79:3c:e6:b4:db:ea:8d:a0:00:c2:5f:88:3a:d2:fa: f6:16:5f:6d:88:53:fe:b0:34:4a:b9:4b:cf:b9:05:58:30:c5: 0f:0f:78:4c:6a:da:af:6e:0f:a8:8d:a7:53:88:d2:eb:d2:93: 2f:6f:49:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRoWw2R3yhc15JThv2mWWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwY2Y1ZTY5N2M2MDk0YWRiNmJjOTcxNTZiMzVlMDA1ZmQ0 Y2YyZTIwHhcNMjYwMjA5MTIwMDQzWhcNMjYwMjEwMTIwMDQzWjAzMTEwLwYDVQQD EyhjMzZmZDcxZTEzM2Y1NmMyMTdhZDViNTk0NTA0YzQ5ZTRhYzZlNmE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8JviH/OnE2Jlsj8oJ55NbgyZKbD PqQaGFmG89y4/fNHTrHWez770oLALEJb1pBfVow1C85Ulprkt6OQHyrPVpubBsDJ 48JpbySCI6L1BIm3c0rt5JsGUhHs+BC3ZU1WyJH4sK/v6Iyp2T8+pmVThDHhnfxt dzQC0PlAUe9jF1q8nO3uuZWe8PR6SZhrkLMf+reTWxOf9Yxrx4NMXo3zWxDqd0MG GoMKQDGIiPiY35zrWFxuQCjAkxQ+bZDVFUtfTphqAsZFYJReqlJdHA0yzGuIqFXJ UORDvoNfA2TPC5CT9R9Zdmk6vCl1nazfZIv+7ISbf1BmYOVfAc9pOyMU6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMNv1x4TP1bCF61bWUUExJ5KxuakMB8GA1UdIwQY MBaAFHDPXml8YJSttryXFWs14AX9TPLiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY005ZWFYeGdsSzIydkpjVmF6WGdCZjFNOHVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy80ZDUyOTUtZjhmMi00ZTA1LWFkZDAt NTE5Nzk1YTIyNTAyLzEvY005ZWFYeGdsSzIydkpjVmF6WGdCZjFNOHVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy80ZDUyOTUtZjhmMi00ZTA1LWFkZDAtNTE5Nzk1YTIyNTAy LzEvY005ZWFYeGdsSzIydkpjVmF6WGdCZjFNOHVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIsTElDJI aY94vSIOQpXWwa5qSa+E14WuYNqHP5F7CUGiFya/zpHITMxNKdo0aEyJd43vL2QT p0MawnA1kukdB0hUJT0kKC4HYSY8VBeaAugDXzbIUu/+3vzWdTSUOm6rgI21bUy8 NaZd859G+Y3B6kfyaUJbTJ5AAB+PXfLb4SdGHYKAWR9GTks1hLfzAG+pSkSY+a/8 yxKNqx6JK6uVEroddo7OkEyJrYewHqew2eWaeilfPFQB3Hy8Gwq5ZDEIeTYOQWnu geuheTzmtNvqjaAAwl+IOtL69hZfbYhT/rA0SrlLz7kFWDDFDw94TGrar24PqI2n U4jS69KTL29JWA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:26 2026 by rpki-client