This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.mft File: SVfItkDqWWxdEac7PSZu54w_Cds.mft (raw, json) Hash identifier: A43r1MJqB1Ow+3E/8v10l8R0moZvxNwDlQzVpVgfKsc= Subject key identifier: 9E:C1:95:F1:A3:42:97:86:3D:78:F5:B8:9E:C9:4D:CE:CB:95:CD:26 Authority key identifier: 49:57:C8:B6:40:EA:59:6C:5D:11:A7:3B:3D:26:6E:E7:8C:3F:09:DB Certificate issuer: /CN=4957c8b640ea596c5d11a73b3d266ee78c3f09db Certificate serial: 019C43C6FD037A39A7915DF0F5B8B4E2AC90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SVfItkDqWWxdEac7PSZu54w_Cds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.mft Manifest number: 0A9E Signing time: Mon 09 Feb 2026 19:00:40 +0000 Manifest this update: Mon 09 Feb 2026 19:00:40 +0000 Manifest next update: Tue 10 Feb 2026 19:00:40 +0000 Files and hashes: 1: SVfItkDqWWxdEac7PSZu54w_Cds.crl (hash: j4pLg9kyu3PdY8YhgBns/NzNCfCysO4OBdrzNHRI2TY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.mft rsync://rpki.ripe.net/repository/DEFAULT/SVfItkDqWWxdEac7PSZu54w_Cds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:fd:03:7a:39:a7:91:5d:f0:f5:b8:b4:e2:ac:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4957c8b640ea596c5d11a73b3d266ee78c3f09db Validity Not Before: Feb 9 19:00:40 2026 GMT Not After : Feb 10 19:00:40 2026 GMT Subject: CN=9ec195f1a34297863d78f5b89ec94dcecb95cd26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6c:58:e4:be:8b:69:11:80:ec:2c:67:da:57: 02:0f:d5:a2:f1:c5:ab:a4:74:cd:43:68:28:67:b0: 81:84:de:79:c2:80:f1:c8:60:45:86:76:85:17:9a: c8:0d:ec:c1:18:3d:ae:d1:9f:b8:41:39:06:16:1c: b5:3e:22:df:ea:5a:36:3b:e2:0a:88:f5:b8:b9:44: 48:77:fe:de:b3:2f:64:7d:27:bd:e9:96:ab:57:79: 2b:25:93:c8:2a:99:36:f4:79:78:a9:4f:78:5b:6b: 2f:a6:57:2e:6b:18:92:67:fb:e1:f9:f4:a3:41:2f: 4c:1d:5e:8c:7b:44:a4:48:92:08:67:ff:44:39:40: 0a:75:19:bb:ca:0c:b4:91:94:63:b4:b1:e6:18:49: f1:9d:d0:bc:ca:e5:89:57:a0:96:52:ff:fe:e9:af: 68:e9:20:8e:a1:a7:ef:cb:27:3f:aa:0d:05:4f:32: b4:ba:d5:61:df:46:1f:42:3b:fb:3e:df:77:51:f7: 73:49:c2:7b:e9:9d:44:f3:c8:13:d7:aa:0f:b2:aa: 12:9d:07:3d:4a:01:5b:d7:04:fd:94:f4:5a:32:47: e1:68:64:16:1d:5c:ac:18:9b:d3:93:2b:23:b1:95: 8f:01:7c:10:f7:82:75:02:16:a8:54:df:e7:01:05: ae:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:C1:95:F1:A3:42:97:86:3D:78:F5:B8:9E:C9:4D:CE:CB:95:CD:26 X509v3 Authority Key Identifier: keyid:49:57:C8:B6:40:EA:59:6C:5D:11:A7:3B:3D:26:6E:E7:8C:3F:09:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SVfItkDqWWxdEac7PSZu54w_Cds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f2:7c:09:ff:1f:25:15:4d:74:1d:d0:a5:a0:39:76:74:67: 96:d2:90:d5:a7:c4:e6:c9:ef:35:c6:e7:b1:a8:33:f2:31:fd: 36:6c:73:34:35:40:ef:c1:a9:8b:0b:84:6e:4e:a0:85:69:1f: 42:e0:41:b9:23:89:8c:ee:a1:c2:ce:f8:f0:b6:91:7c:01:c2: 76:d4:7d:6b:be:2a:fa:2a:d4:c6:9f:25:a5:fc:9e:37:17:44: 5f:5b:10:1d:27:c0:f5:a7:05:50:17:24:c1:1e:9a:57:27:f2: 76:e9:f3:bd:a5:f4:3a:e2:d4:02:e3:27:db:ed:16:94:fd:af: ea:a7:8c:19:02:b7:cf:68:26:8b:36:a3:a3:f8:1b:5e:67:15: e5:29:fe:8d:2a:1f:3e:3d:49:e4:3f:fd:66:de:02:c8:91:e0: 81:e1:e2:96:75:28:59:94:8c:4b:cf:3d:6f:27:c5:1d:bf:b5: c9:39:cf:c6:1d:ed:2d:39:b4:51:23:2a:b6:e6:08:71:df:cc: 4e:69:c7:b7:a7:7c:8b:a7:7e:f2:f3:85:ba:31:48:74:4f:a8: 2d:52:15:04:83:48:7a:b3:8d:cb:f2:5a:c1:6e:b6:e0:d6:97: af:88:c2:82:05:10:cc:3b:99:fa:cc:4b:b1:ed:3c:ce:6c:1a: 9b:97:ab:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxv0DejmnkV3w9bi04qyQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5NTdjOGI2NDBlYTU5NmM1ZDExYTczYjNkMjY2ZWU3OGMz ZjA5ZGIwHhcNMjYwMjA5MTkwMDQwWhcNMjYwMjEwMTkwMDQwWjAzMTEwLwYDVQQD Eyg5ZWMxOTVmMWEzNDI5Nzg2M2Q3OGY1Yjg5ZWM5NGRjZWNiOTVjZDI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmxY5L6LaRGA7Cxn2lcCD9Wi8cWr pHTNQ2goZ7CBhN55woDxyGBFhnaFF5rIDezBGD2u0Z+4QTkGFhy1PiLf6lo2O+IK iPW4uURId/7esy9kfSe96ZarV3krJZPIKpk29Hl4qU94W2svplcuaxiSZ/vh+fSj QS9MHV6Me0SkSJIIZ/9EOUAKdRm7ygy0kZRjtLHmGEnxndC8yuWJV6CWUv/+6a9o 6SCOoafvyyc/qg0FTzK0utVh30YfQjv7Pt93UfdzScJ76Z1E88gT16oPsqoSnQc9 SgFb1wT9lPRaMkfhaGQWHVysGJvTkysjsZWPAXwQ94J1AhaoVN/nAQWuMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ7BlfGjQpeGPXj1uJ7JTc7Llc0mMB8GA1UdIwQY MBaAFElXyLZA6llsXRGnOz0mbueMPwnbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1ZmSXRrRHFXV3hkRWFjN1BTWnU1NHdfQ2RzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8wY2VlYzMtNDgyYS00MWE1LTk3ZWIt YmZlMWUxNzNkOGYwLzEvU1ZmSXRrRHFXV3hkRWFjN1BTWnU1NHdfQ2RzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy8wY2VlYzMtNDgyYS00MWE1LTk3ZWItYmZlMWUxNzNkOGYw LzEvU1ZmSXRrRHFXV3hkRWFjN1BTWnU1NHdfQ2RzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjfJ8Cf8f JRVNdB3QpaA5dnRnltKQ1afE5snvNcbnsagz8jH9NmxzNDVA78GpiwuEbk6ghWkf QuBBuSOJjO6hws748LaRfAHCdtR9a74q+irUxp8lpfyeNxdEX1sQHSfA9acFUBck wR6aVyfydunzvaX0OuLUAuMn2+0WlP2v6qeMGQK3z2gmizajo/gbXmcV5Sn+jSof Pj1J5D/9Zt4CyJHggeHilnUoWZSMS889byfFHb+1yTnPxh3tLTm0USMqtuYIcd/M TmnHt6d8i6d+8vOFujFIdE+oLVIVBINIerONy/JawW624NaXr4jCggUQzDuZ+sxL se08zmwam5erMQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:47 2026 by rpki-client