This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json) Hash identifier: 0YI5w4203bo9A7gnUUlw/8dOTL6wV8zfKLeG1oGYNxk= Subject key identifier: 54:93:BE:3F:06:03:CE:B7:D2:B0:A2:38:32:61:EE:6E:27:C8:90:7B Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78 Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78 Certificate serial: 019C42B4030AEEF60E0C6B83820BBED32895 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft Manifest number: 0953 Signing time: Mon 09 Feb 2026 14:00:19 +0000 Manifest this update: Mon 09 Feb 2026 14:00:19 +0000 Manifest next update: Tue 10 Feb 2026 14:00:19 +0000 Files and hashes: 1: n3LXa0-xioBb1QsCYTVot6eV2ZE.roa (hash: n4raPKw8IwbnWXJNFwCqDhVOg3Y+1y9CxDz8k7+MVtI=) 2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: pO8Zk+DkEev2A6UMYlshqDbtZpeJ3AiY20OuEJaTvz8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:03:0a:ee:f6:0e:0c:6b:83:82:0b:be:d3:28:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78 Validity Not Before: Feb 9 14:00:19 2026 GMT Not After : Feb 10 14:00:19 2026 GMT Subject: CN=5493be3f0603ceb7d2b0a2383261ee6e27c8907b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d2:a9:b9:7e:39:e1:80:8b:9d:a7:a2:fd:48: b2:d1:07:6f:04:aa:c1:b1:76:a5:04:ee:8d:ee:28: 6a:c0:e0:05:28:e9:fb:ae:d3:8d:63:ac:58:97:c4: c9:b2:6e:97:50:4e:a0:3b:12:e9:6f:75:45:bb:2f: b7:91:ac:2f:86:7a:05:79:7c:89:2d:f9:84:11:cb: 8c:13:35:95:da:54:71:d8:66:cb:fa:ad:a2:86:7e: e4:56:62:42:44:f5:dd:90:be:84:99:4d:ee:00:03: ba:84:81:89:39:2a:5a:5e:c1:08:db:45:f6:00:5f: 6d:d4:4a:c9:1b:00:d8:af:93:74:2b:54:64:67:97: 7e:0c:67:c6:bb:63:cf:c4:ec:66:42:1c:a0:55:6e: 0d:8b:4e:4d:c4:7d:67:ef:6d:c3:f7:bd:34:bd:b9: c6:d5:39:58:0b:f0:88:2f:4b:d6:b3:6d:bc:07:e7: 89:d0:ea:da:9a:75:3a:11:12:ee:50:74:0b:64:2c: e3:dc:2b:35:6d:41:b4:3d:49:04:14:b6:ab:ae:97: 82:a6:e2:a4:30:50:b8:c8:9a:d8:73:4b:f1:50:b5: d1:3e:da:63:d5:d1:36:e1:45:d2:0f:ab:6a:5b:92: 44:90:63:35:34:10:c9:ef:28:ec:45:d2:3a:eb:b2: 91:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:93:BE:3F:06:03:CE:B7:D2:B0:A2:38:32:61:EE:6E:27:C8:90:7B X509v3 Authority Key Identifier: keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:1b:05:89:7d:ed:75:04:7d:ff:f1:93:f4:d3:63:ec:16:13: 0f:c1:5b:d3:16:1d:80:ff:69:e0:62:9a:c9:a6:07:c6:6c:42: e4:26:1a:71:21:72:e5:dc:8a:31:96:6f:e5:77:fa:f7:36:52: 3c:50:3f:56:08:d3:a4:69:bf:58:d3:b1:ca:f9:c7:b5:f0:d6: ce:16:5e:4f:11:95:89:8e:d1:bc:59:58:e0:52:d9:d6:8c:18: 07:2d:57:44:6e:5e:e3:33:81:ed:ba:52:0d:a0:b3:4d:8f:8e: c8:7d:b1:ea:e6:9c:98:e2:bb:ac:1a:a8:0c:3b:fd:bd:f6:ce: 5d:54:15:83:7e:2a:1a:50:3c:3e:e9:2f:7d:09:61:76:a5:c9: 8a:4c:d1:87:4b:09:f3:af:04:38:b5:40:f1:99:d4:aa:bd:81: 79:f4:3c:12:d7:2e:3e:ff:66:6a:46:c0:93:7a:08:c5:f7:e8: 26:2d:18:bb:f3:bf:f8:39:ad:68:56:d9:b1:dc:98:d8:ee:bb: 5d:5a:d6:e9:94:a0:2b:dc:0f:7e:90:6c:d6:f3:fa:9f:97:b6: 85:a6:a2:c6:5a:3f:41:57:10:b8:7a:d0:a3:46:eb:50:89:4e: c7:98:26:a7:59:37:7a:12:3f:f9:64:4b:9d:c9:b5:f4:2a:4d: 00:0e:38:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtAMK7vYODGuDggu+0yiVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NGRkZjZmMDMzMzFjZDc3M2M3ZTdhYmIxNTQyOWJhOGQy MGJkNzgwHhcNMjYwMjA5MTQwMDE5WhcNMjYwMjEwMTQwMDE5WjAzMTEwLwYDVQQD Eyg1NDkzYmUzZjA2MDNjZWI3ZDJiMGEyMzgzMjYxZWU2ZTI3Yzg5MDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNKpuX454YCLnaei/Uiy0QdvBKrB sXalBO6N7ihqwOAFKOn7rtONY6xYl8TJsm6XUE6gOxLpb3VFuy+3kawvhnoFeXyJ LfmEEcuMEzWV2lRx2GbL+q2ihn7kVmJCRPXdkL6EmU3uAAO6hIGJOSpaXsEI20X2 AF9t1ErJGwDYr5N0K1RkZ5d+DGfGu2PPxOxmQhygVW4Ni05NxH1n723D9700vbnG 1TlYC/CIL0vWs228B+eJ0OramnU6ERLuUHQLZCzj3Cs1bUG0PUkEFLarrpeCpuKk MFC4yJrYc0vxULXRPtpj1dE24UXSD6tqW5JEkGM1NBDJ7yjsRdI667KRHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFSTvj8GA8630rCiODJh7m4nyJB7MB8GA1UdIwQY MBaAFLVN328DMxzXc8fnq7FUKbqNIL14MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFUzZmJ3TXpITmR6eC1lcnNWUXB1bzBndlhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82NWJjZmYtYmEwMS00OThjLWI1NGQt ODQwMjZiYzg1MmYwLzEvdFUzZmJ3TXpITmR6eC1lcnNWUXB1bzBndlhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC82NWJjZmYtYmEwMS00OThjLWI1NGQtODQwMjZiYzg1MmYw LzEvdFUzZmJ3TXpITmR6eC1lcnNWUXB1bzBndlhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEBsFiX3t dQR9//GT9NNj7BYTD8Fb0xYdgP9p4GKayaYHxmxC5CYacSFy5dyKMZZv5Xf69zZS PFA/VgjTpGm/WNOxyvnHtfDWzhZeTxGViY7RvFlY4FLZ1owYBy1XRG5e4zOB7bpS DaCzTY+OyH2x6uacmOK7rBqoDDv9vfbOXVQVg34qGlA8PukvfQlhdqXJikzRh0sJ 868EOLVA8ZnUqr2BefQ8EtcuPv9makbAk3oIxffoJi0Yu/O/+DmtaFbZsdyY2O67 XVrW6ZSgK9wPfpBs1vP6n5e2haaixlo/QVcQuHrQo0brUIlOx5gmp1k3ehI/+WRL ncm19CpNAA44/A== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:15 2026 by rpki-client