This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.mft File: TDXafoQ-N8fbpPynGPQ4Zf18mNw.mft (raw, json) Hash identifier: VFns0y8u272hfB4wU6uDQfNzKyv/g3fssF2jmPbLGqk= Subject key identifier: 93:76:83:C8:10:9B:71:AB:CF:C7:F2:01:34:21:CF:48:01:5D:0F:E5 Authority key identifier: 4C:35:DA:7E:84:3E:37:C7:DB:A4:FC:A7:18:F4:38:65:FD:7C:98:DC Certificate issuer: /CN=4c35da7e843e37c7dba4fca718f43865fd7c98dc Certificate serial: 019C43C6BA7FF03F873125BAAE2626E0F590 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDXafoQ-N8fbpPynGPQ4Zf18mNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.mft Manifest number: 14DE Signing time: Mon 09 Feb 2026 19:00:23 +0000 Manifest this update: Mon 09 Feb 2026 19:00:23 +0000 Manifest next update: Tue 10 Feb 2026 19:00:23 +0000 Files and hashes: 1: TDXafoQ-N8fbpPynGPQ4Zf18mNw.crl (hash: H7jLkhPbNSF6+mzZVaVe5V9FKDv8tsNR5ydhlhi28oE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.mft rsync://rpki.ripe.net/repository/DEFAULT/TDXafoQ-N8fbpPynGPQ4Zf18mNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:ba:7f:f0:3f:87:31:25:ba:ae:26:26:e0:f5:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c35da7e843e37c7dba4fca718f43865fd7c98dc Validity Not Before: Feb 9 19:00:23 2026 GMT Not After : Feb 10 19:00:23 2026 GMT Subject: CN=937683c8109b71abcfc7f2013421cf48015d0fe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cd:b4:3e:bb:ae:d2:cd:e0:80:85:c0:15:c3: f3:31:97:55:9e:41:ef:99:e4:cf:2e:63:68:9a:ec: 7a:ce:ab:a4:33:40:33:10:d3:4c:b7:95:20:cc:6a: 69:0d:b5:8f:d2:e9:40:bc:2a:44:22:10:e3:26:88: a5:1f:c4:af:c2:ee:37:ea:65:69:12:f0:78:26:1a: 87:22:66:42:a4:13:1b:b7:de:87:8a:2f:73:78:1c: 0a:1b:c1:fa:df:67:5b:9a:04:ba:f1:28:b3:36:db: 6a:a4:3a:b4:97:19:46:8c:53:c6:53:06:08:e8:e3: 3f:23:36:23:c4:d2:18:20:01:66:80:4f:ce:e9:40: 8b:76:b8:3b:26:58:1a:fe:4d:39:b9:eb:fc:22:35: 28:ae:14:6f:10:6f:4c:7d:d5:c8:b7:5e:de:f9:94: 44:db:d6:09:c2:df:22:88:24:0b:10:71:c0:df:14: e9:1d:9a:bd:b2:e1:f9:2f:68:3c:83:16:2d:bf:80: 5a:af:6d:24:55:48:93:24:32:1a:13:63:fa:54:64: 9f:52:07:04:ca:1b:3d:0f:5c:e0:8e:e1:23:f5:b3: c3:b5:7f:8f:96:50:bf:0e:1e:1c:cd:99:24:6d:bb: 44:1c:d8:fc:99:c7:be:5c:9d:d6:5f:2f:03:ff:b2: e2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:76:83:C8:10:9B:71:AB:CF:C7:F2:01:34:21:CF:48:01:5D:0F:E5 X509v3 Authority Key Identifier: keyid:4C:35:DA:7E:84:3E:37:C7:DB:A4:FC:A7:18:F4:38:65:FD:7C:98:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDXafoQ-N8fbpPynGPQ4Zf18mNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/876166-f057-46e1-be08-a65e5e33dcc0/1/TDXafoQ-N8fbpPynGPQ4Zf18mNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:50:96:d8:10:34:05:76:f5:31:3f:36:18:ee:b2:fd:32:51: 12:42:d4:d3:fa:05:d8:73:c3:ac:ff:a0:aa:17:13:a9:c7:83: b3:d6:88:a2:72:c3:02:0b:a7:98:d0:78:de:53:72:76:b6:bb: f6:79:5a:61:77:ae:45:14:91:34:aa:58:a0:1a:2d:66:7c:dd: 59:35:74:f8:ce:0c:be:0a:2f:d8:63:db:64:5e:e8:77:8d:8b: 73:d0:bc:50:82:ad:9a:0a:63:dc:e7:a8:f7:f3:53:0c:45:88: 80:02:87:e6:67:a7:b7:1a:a2:89:d1:06:61:f7:fb:6e:9b:6c: 9d:af:42:a2:9a:29:b4:b9:22:bd:76:9d:78:1b:9d:36:18:4f: 01:98:f4:e0:21:46:42:01:7e:79:20:b1:fb:eb:22:6b:10:14: 47:2d:f5:a9:75:f5:b7:5b:bb:14:40:c3:3f:09:b0:00:be:52: 9a:f9:fd:d4:bf:78:f8:83:10:b7:e1:f6:e2:40:de:2c:de:d1: b6:fb:b8:a1:4d:4c:da:3a:13:7a:7f:10:9b:70:07:32:d5:c5: 85:b0:78:48:85:46:a4:77:25:65:5d:f7:8f:c6:a3:29:55:69: 10:ea:95:1d:8f:7b:e1:0c:1f:b2:be:4d:68:25:69:24:38:cb: f7:94:59:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxrp/8D+HMSW6riYm4PWQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjMzVkYTdlODQzZTM3YzdkYmE0ZmNhNzE4ZjQzODY1ZmQ3 Yzk4ZGMwHhcNMjYwMjA5MTkwMDIzWhcNMjYwMjEwMTkwMDIzWjAzMTEwLwYDVQQD Eyg5Mzc2ODNjODEwOWI3MWFiY2ZjN2YyMDEzNDIxY2Y0ODAxNWQwZmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1M20Pruu0s3ggIXAFcPzMZdVnkHv meTPLmNomux6zqukM0AzENNMt5UgzGppDbWP0ulAvCpEIhDjJoilH8Svwu436mVp EvB4JhqHImZCpBMbt96Hii9zeBwKG8H632dbmgS68SizNttqpDq0lxlGjFPGUwYI 6OM/IzYjxNIYIAFmgE/O6UCLdrg7Jlga/k05uev8IjUorhRvEG9MfdXIt17e+ZRE 29YJwt8iiCQLEHHA3xTpHZq9suH5L2g8gxYtv4Bar20kVUiTJDIaE2P6VGSfUgcE yhs9D1zgjuEj9bPDtX+PllC/Dh4czZkkbbtEHNj8mce+XJ3WXy8D/7LiwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJN2g8gQm3Grz8fyATQhz0gBXQ/lMB8GA1UdIwQY MBaAFEw12n6EPjfH26T8pxj0OGX9fJjcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVERYYWZvUS1OOGZicFB5bkdQUTRaZjE4bU53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy84NzYxNjYtZjA1Ny00NmUxLWJlMDgt YTY1ZTVlMzNkY2MwLzEvVERYYWZvUS1OOGZicFB5bkdQUTRaZjE4bU53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy84NzYxNjYtZjA1Ny00NmUxLWJlMDgtYTY1ZTVlMzNkY2Mw LzEvVERYYWZvUS1OOGZicFB5bkdQUTRaZjE4bU53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgFCW2BA0 BXb1MT82GO6y/TJREkLU0/oF2HPDrP+gqhcTqceDs9aIonLDAgunmNB43lNydra7 9nlaYXeuRRSRNKpYoBotZnzdWTV0+M4Mvgov2GPbZF7od42Lc9C8UIKtmgpj3Oeo 9/NTDEWIgAKH5mentxqiidEGYff7bptsna9CopoptLkivXadeBudNhhPAZj04CFG QgF+eSCx++siaxAURy31qXX1t1u7FEDDPwmwAL5Smvn91L94+IMQt+H24kDeLN7R tvu4oU1M2joTen8Qm3AHMtXFhbB4SIVGpHclZV33j8ajKVVpEOqVHY974Qwfsr5N aCVpJDjL95RZQw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:50 2026 by rpki-client