This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft File: 4N8zRFExdiUqLLaQvPcF1kmBEfU.mft (raw, json) Hash identifier: uqX0CRnjM4jg2JcqLLrPsAljb7KLXAEvilogrbyQNi0= Subject key identifier: 04:C6:0F:24:63:CC:83:24:B8:E0:DF:94:0E:E7:70:3B:44:F4:BC:81 Authority key identifier: E0:DF:33:44:51:31:76:25:2A:2C:B6:90:BC:F7:05:D6:49:81:11:F5 Certificate issuer: /CN=e0df3344513176252a2cb690bcf705d6498111f5 Certificate serial: 019C427D2D04D591108BDAB420F6872D0D5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N8zRFExdiUqLLaQvPcF1kmBEfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft Manifest number: 0B2A Signing time: Mon 09 Feb 2026 13:00:25 +0000 Manifest this update: Mon 09 Feb 2026 13:00:25 +0000 Manifest next update: Tue 10 Feb 2026 13:00:25 +0000 Files and hashes: 1: 4N8zRFExdiUqLLaQvPcF1kmBEfU.crl (hash: TssEqbyfxsJG8kdzkGJeJpSbf+2CerzwR49//sktI8Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft rsync://rpki.ripe.net/repository/DEFAULT/4N8zRFExdiUqLLaQvPcF1kmBEfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:2d:04:d5:91:10:8b:da:b4:20:f6:87:2d:0d:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0df3344513176252a2cb690bcf705d6498111f5 Validity Not Before: Feb 9 13:00:25 2026 GMT Not After : Feb 10 13:00:25 2026 GMT Subject: CN=04c60f2463cc8324b8e0df940ee7703b44f4bc81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:24:5c:60:c3:56:e1:ef:b7:9f:15:d9:93:89: db:c7:09:87:b3:78:7f:23:2e:eb:d2:18:93:e7:b6: 6a:59:3b:1f:19:1d:66:a3:3a:a8:4a:b3:58:27:e1: 1f:b7:24:a1:44:ee:72:cf:a0:07:ad:f8:00:dc:d0: b5:a4:85:d2:a0:2a:e4:64:63:38:30:a4:4f:a2:20: 50:71:08:fd:02:2d:da:e8:45:d5:1e:e1:c4:eb:f6: 46:3e:33:a1:35:37:96:12:f3:b0:d6:7e:ff:5f:ae: 90:d4:2b:15:1c:c9:0f:4f:ef:4a:12:cf:32:35:b8: 17:6b:23:63:81:42:9a:11:a7:97:05:a8:24:d7:39: 7d:06:d1:30:02:a5:55:e1:14:f1:7d:11:c3:12:0a: 99:0f:91:4b:1b:0b:b7:8a:d5:c8:a8:ad:ea:b1:df: a1:26:73:0f:14:10:ac:3d:93:c9:dc:e6:ff:39:b7: d1:fc:2f:ad:72:76:45:56:23:4c:47:7c:d9:d8:7e: 0b:a3:d8:34:7b:64:83:e2:0b:cd:5c:76:bf:a0:b6: 81:d2:37:94:5e:15:d4:4d:01:29:ef:e6:b3:55:b1: c7:9a:e2:b7:ac:d4:7a:a4:c0:33:46:bb:eb:9f:9b: 80:cf:5b:01:b3:d8:b6:3b:fb:47:10:03:f9:18:d0: f6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:C6:0F:24:63:CC:83:24:B8:E0:DF:94:0E:E7:70:3B:44:F4:BC:81 X509v3 Authority Key Identifier: keyid:E0:DF:33:44:51:31:76:25:2A:2C:B6:90:BC:F7:05:D6:49:81:11:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N8zRFExdiUqLLaQvPcF1kmBEfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/cc3b6e-b749-45f1-a868-25e21c9e7de9/1/4N8zRFExdiUqLLaQvPcF1kmBEfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:9e:a9:ca:72:85:8c:94:e9:f3:c3:bd:02:a4:c7:b1:91:5e: b5:9d:ed:9c:6e:b2:e5:7b:06:12:53:39:92:1a:5f:5b:e1:fb: 43:1a:f0:69:7a:1d:fb:ac:d5:6b:46:ad:20:12:ee:6b:a0:1a: bc:98:8d:2d:67:ff:91:6c:fa:f4:c8:c7:26:6d:fb:76:40:ed: a3:13:67:c7:23:c5:0b:6a:e5:af:25:a3:33:8c:8d:9f:0d:da: 30:2d:c9:76:df:06:28:aa:2e:14:9c:b9:16:1f:2e:56:62:b6: f9:88:24:56:49:c8:b6:ea:ec:f7:5a:83:c3:82:34:ff:1f:4d: 11:e2:9c:ee:b0:44:a0:88:78:23:c0:1d:9b:c2:07:37:61:db: d0:12:5c:3f:0e:06:09:a2:4e:73:ab:16:be:f0:1b:0d:ec:7a: eb:11:75:b2:18:90:18:4f:17:41:64:dd:88:00:86:29:30:b6: b6:ae:ad:13:fc:3f:a3:41:32:04:46:fe:97:02:67:ec:34:12: 02:69:78:76:f3:86:53:15:be:6e:6d:55:03:91:1f:ab:df:39: ef:69:87:c5:86:ee:b6:47:59:11:a3:b1:35:2f:f3:9c:32:f2: ea:7d:3c:bb:45:ca:70:45:68:bd:f6:e3:72:98:05:82:75:91: 55:7b:6f:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfS0E1ZEQi9q0IPaHLQ1eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwZGYzMzQ0NTEzMTc2MjUyYTJjYjY5MGJjZjcwNWQ2NDk4 MTExZjUwHhcNMjYwMjA5MTMwMDI1WhcNMjYwMjEwMTMwMDI1WjAzMTEwLwYDVQQD EygwNGM2MGYyNDYzY2M4MzI0YjhlMGRmOTQwZWU3NzAzYjQ0ZjRiYzgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAliRcYMNW4e+3nxXZk4nbxwmHs3h/ Iy7r0hiT57ZqWTsfGR1mozqoSrNYJ+EftyShRO5yz6AHrfgA3NC1pIXSoCrkZGM4 MKRPoiBQcQj9Ai3a6EXVHuHE6/ZGPjOhNTeWEvOw1n7/X66Q1CsVHMkPT+9KEs8y NbgXayNjgUKaEaeXBagk1zl9BtEwAqVV4RTxfRHDEgqZD5FLGwu3itXIqK3qsd+h JnMPFBCsPZPJ3Ob/ObfR/C+tcnZFViNMR3zZ2H4Lo9g0e2SD4gvNXHa/oLaB0jeU XhXUTQEp7+azVbHHmuK3rNR6pMAzRrvrn5uAz1sBs9i2O/tHEAP5GND2AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFATGDyRjzIMkuODflA7ncDtE9LyBMB8GA1UdIwQY MBaAFODfM0RRMXYlKiy2kLz3BdZJgRH1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNE44elJGRXhkaVVxTExhUXZQY0Yxa21CRWZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9jYzNiNmUtYjc0OS00NWYxLWE4Njgt MjVlMjFjOWU3ZGU5LzEvNE44elJGRXhkaVVxTExhUXZQY0Yxa21CRWZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9jYzNiNmUtYjc0OS00NWYxLWE4NjgtMjVlMjFjOWU3ZGU5 LzEvNE44elJGRXhkaVVxTExhUXZQY0Yxa21CRWZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPJ6pynKF jJTp88O9AqTHsZFetZ3tnG6y5XsGElM5khpfW+H7QxrwaXod+6zVa0atIBLua6Aa vJiNLWf/kWz69MjHJm37dkDtoxNnxyPFC2rlryWjM4yNnw3aMC3Jdt8GKKouFJy5 Fh8uVmK2+YgkVknIturs91qDw4I0/x9NEeKc7rBEoIh4I8Adm8IHN2Hb0BJcPw4G CaJOc6sWvvAbDex66xF1shiQGE8XQWTdiACGKTC2tq6tE/w/o0EyBEb+lwJn7DQS Aml4dvOGUxW+bm1VA5Efq98572mHxYbutkdZEaOxNS/znDLy6n08u0XKcEVovfbj cpgFgnWRVXtvtw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:25 2026 by rpki-client