This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft File: 4rvHBn-KfFfWhtZ160aOmbhr1i0.mft (raw, json) Hash identifier: NMHdt1pl7af54GlC3jLIZnnCpGyE2hW/Myn9Y1xvWMo= Subject key identifier: 6D:37:2A:DB:DB:25:5B:FD:CD:5B:2E:A4:F2:1A:89:45:B2:D3:5E:77 Authority key identifier: E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D Certificate issuer: /CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d Certificate serial: 019C427E0BB24517A5366FE6DBE4A50BE930 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft Manifest number: 17E3 Signing time: Mon 09 Feb 2026 13:01:22 +0000 Manifest this update: Mon 09 Feb 2026 13:01:22 +0000 Manifest next update: Tue 10 Feb 2026 13:01:22 +0000 Files and hashes: 1: 4rvHBn-KfFfWhtZ160aOmbhr1i0.crl (hash: 5fpzUo7OA1v06fzoKtWoGkjotoGR0/W6Y2uEWKfNxcU=) 2: bfmoXJzoDdpM9K6Axg6RQ6PcK7A.roa (hash: z7weft+bC6v8Gp+CtsE+ZYXb+kZuusFeVfZLKQMSX24=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:0b:b2:45:17:a5:36:6f:e6:db:e4:a5:0b:e9:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d Validity Not Before: Feb 9 13:01:22 2026 GMT Not After : Feb 10 13:01:22 2026 GMT Subject: CN=6d372adbdb255bfdcd5b2ea4f21a8945b2d35e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:de:4f:22:81:b5:5e:6e:00:43:43:86:fa:5a: 8b:90:fc:95:cb:c3:50:19:da:24:2f:f2:c9:11:74: e7:1a:6f:ec:c7:2b:2b:f2:ca:62:7c:80:41:85:63: 53:e1:87:c8:52:7a:66:48:7a:85:2b:8b:60:57:9a: 4f:54:26:99:15:8a:4e:b4:e2:06:18:0e:8e:aa:38: ba:72:c1:23:47:43:fe:b4:67:00:ad:3d:7a:04:bc: a7:81:35:ba:2d:35:a7:70:65:b1:49:14:c4:8f:31: eb:c6:70:a2:a7:01:dc:25:c0:93:07:fc:e0:e7:3a: 78:08:00:9d:7e:29:c3:92:2b:27:7d:8f:92:ea:ab: c4:49:53:c8:94:17:c2:40:cd:e5:69:c6:41:53:06: 68:45:df:6d:f4:81:89:81:98:8c:05:c7:e1:90:60: 09:68:50:da:a8:ab:1d:43:bc:00:41:55:43:87:f8: ba:be:37:e6:d4:72:28:d6:50:a8:2e:92:07:85:92: e4:8d:bc:fd:b5:d7:5c:e8:f8:c3:43:45:9c:f1:49: 3e:f4:90:a0:da:79:f5:af:92:a4:3c:c5:52:63:d2: 20:cb:ad:8f:13:9f:36:32:54:57:f7:d6:c6:77:d2: e1:46:18:fe:e6:d7:bd:fc:e8:ec:23:aa:d2:90:ff: 10:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:37:2A:DB:DB:25:5B:FD:CD:5B:2E:A4:F2:1A:89:45:B2:D3:5E:77 X509v3 Authority Key Identifier: keyid:E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:71:be:7a:c8:0f:e1:e1:17:ce:50:c7:5b:0d:52:58:a4:c1: 20:12:9f:b1:f7:f1:04:5f:4b:39:32:30:7f:d2:df:94:78:e8: 5e:30:c4:39:3d:2f:a2:c3:fc:11:86:eb:b6:65:06:8b:fc:7f: 99:cc:d2:d2:9f:ba:e0:12:1f:41:b2:75:9a:f6:9c:3b:f9:18: 91:17:ea:17:0a:d8:68:de:be:db:05:c2:fc:e1:51:ab:02:9d: b6:d0:88:8a:0a:af:3e:82:34:80:41:77:f9:ff:0d:cc:99:2e: 97:98:e7:34:93:1a:d8:71:47:73:49:4d:18:07:66:f5:1b:df: 23:ff:42:25:9e:2e:57:60:80:90:24:9a:b5:53:a7:5e:0c:34: 03:fe:e4:e1:b3:c4:dd:b7:02:25:23:5d:ba:ff:a4:64:52:4d: ce:6e:f2:ae:c4:84:bb:7e:d1:3d:44:bc:f2:42:db:c0:11:5a: 83:ea:53:a4:96:b8:17:af:f3:26:4e:9c:d4:52:27:ab:98:de: fb:3d:e4:47:e7:da:53:81:e9:92:2d:de:ec:65:e6:6d:cb:b3: 6f:fa:e1:b9:37:b7:f1:ed:5f:fa:c7:81:c6:d3:27:c7:16:ec: e0:b8:a5:13:ab:36:90:33:ee:82:0d:34:23:b6:9d:ff:3f:0d: 98:a2:61:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfguyRRelNm/m2+SlC+kwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyYmJjNzA2N2Y4YTdjNTdkNjg2ZDY3NWViNDY4ZTk5Yjg2 YmQ2MmQwHhcNMjYwMjA5MTMwMTIyWhcNMjYwMjEwMTMwMTIyWjAzMTEwLwYDVQQD Eyg2ZDM3MmFkYmRiMjU1YmZkY2Q1YjJlYTRmMjFhODk0NWIyZDM1ZTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtN5PIoG1Xm4AQ0OG+lqLkPyVy8NQ GdokL/LJEXTnGm/sxysr8spifIBBhWNT4YfIUnpmSHqFK4tgV5pPVCaZFYpOtOIG GA6Oqji6csEjR0P+tGcArT16BLyngTW6LTWncGWxSRTEjzHrxnCipwHcJcCTB/zg 5zp4CACdfinDkisnfY+S6qvESVPIlBfCQM3lacZBUwZoRd9t9IGJgZiMBcfhkGAJ aFDaqKsdQ7wAQVVDh/i6vjfm1HIo1lCoLpIHhZLkjbz9tddc6PjDQ0Wc8Uk+9JCg 2nn1r5KkPMVSY9Igy62PE582MlRX99bGd9LhRhj+5te9/OjsI6rSkP8QfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG03KtvbJVv9zVsupPIaiUWy0153MB8GA1UdIwQY MBaAFOK7xwZ/inxX1obWdetGjpm4a9YtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHJ2SEJuLUtmRmZXaHRaMTYwYU9tYmhyMWkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8yZGFjOGItNzZjZC00MGYwLTg1NGUt MWRhMmFjYzc2ZTExLzEvNHJ2SEJuLUtmRmZXaHRaMTYwYU9tYmhyMWkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy8yZGFjOGItNzZjZC00MGYwLTg1NGUtMWRhMmFjYzc2ZTEx LzEvNHJ2SEJuLUtmRmZXaHRaMTYwYU9tYmhyMWkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXHG+esgP 4eEXzlDHWw1SWKTBIBKfsffxBF9LOTIwf9LflHjoXjDEOT0vosP8EYbrtmUGi/x/ mczS0p+64BIfQbJ1mvacO/kYkRfqFwrYaN6+2wXC/OFRqwKdttCIigqvPoI0gEF3 +f8NzJkul5jnNJMa2HFHc0lNGAdm9RvfI/9CJZ4uV2CAkCSatVOnXgw0A/7k4bPE 3bcCJSNduv+kZFJNzm7yrsSEu37RPUS88kLbwBFag+pTpJa4F6/zJk6c1FInq5je +z3kR+faU4Hpki3e7GXmbcuzb/rhuTe38e1f+seBxtMnxxbs4LilE6s2kDPugg00 I7ad/z8NmKJhnQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:02:25 2026 by rpki-client