This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft File: tWpL1vXr8vf_2ajRzZparN5iKFw.mft (raw, json) Hash identifier: rfN4JxQRviHeW0RbsubGtmjKOrUeq7QLkVWuuToXOS8= Subject key identifier: BE:DF:B1:36:0C:80:E6:F8:5E:F3:82:31:D2:A8:BD:B2:F0:41:5C:94 Authority key identifier: B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C Certificate issuer: /CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c Certificate serial: 019C41D8CF8738E2FD984229A7BF8F026EC5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft Manifest number: 09C9 Signing time: Mon 09 Feb 2026 10:00:53 +0000 Manifest this update: Mon 09 Feb 2026 10:00:53 +0000 Manifest next update: Tue 10 Feb 2026 10:00:53 +0000 Files and hashes: 1: tWpL1vXr8vf_2ajRzZparN5iKFw.crl (hash: qcyRJAcNED1Mx3JS/ftkHWwCk5Zjih+gxnLHWyVb08s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:cf:87:38:e2:fd:98:42:29:a7:bf:8f:02:6e:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c Validity Not Before: Feb 9 10:00:53 2026 GMT Not After : Feb 10 10:00:53 2026 GMT Subject: CN=bedfb1360c80e6f85ef38231d2a8bdb2f0415c94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f4:79:75:f4:ab:f1:97:1e:8d:24:4a:80:0f: 73:3c:c4:bc:88:02:95:fa:3e:e7:1d:5a:1e:9e:e9: 9b:b3:98:80:48:9e:5b:aa:17:0b:bc:a7:72:df:46: c1:e3:48:ff:80:87:71:bb:a1:8e:5b:2c:80:93:8c: e4:4e:01:4e:9a:e0:37:2b:4c:37:ab:ec:1b:bd:1d: de:3b:fc:a5:00:59:ae:8d:47:32:e7:27:2c:23:87: 2f:4b:0d:42:37:61:dc:25:6e:85:e0:2d:7b:0d:04: 85:5b:e2:a7:b4:35:86:7e:a2:cb:73:48:a3:0c:8b: ca:6b:f2:93:a4:27:72:56:7d:c0:f3:19:32:14:80: c2:4b:d7:d4:a4:5c:7d:37:c8:a9:cc:42:c0:40:a4: 3c:a3:c3:1e:b4:64:e6:62:f2:c6:eb:a6:38:72:cd: ff:9b:d8:ce:20:e0:e4:74:d8:ce:2e:85:4d:4e:b4: 02:68:48:66:7f:f9:38:02:86:56:15:c0:62:1f:f7: 2e:77:6d:ba:5a:54:5b:e0:8e:39:ec:fb:e9:d7:fc: 7a:7c:5c:c6:d2:8a:5e:b9:4b:23:43:08:8d:b1:ff: fa:93:e3:13:75:f1:c7:63:62:09:5b:0a:4a:db:b2: 90:a2:29:39:2d:27:d5:2b:be:ba:b3:fc:d7:54:1e: 14:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DF:B1:36:0C:80:E6:F8:5E:F3:82:31:D2:A8:BD:B2:F0:41:5C:94 X509v3 Authority Key Identifier: keyid:B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:31:43:f8:1e:fa:db:a5:b3:87:16:7d:f1:43:0d:ad:93:92: a4:01:f2:ea:33:11:a3:0a:7e:29:b7:30:a9:5b:2c:bd:40:7a: be:82:4c:a9:79:0c:1c:35:38:33:a9:9e:5d:e1:f6:15:1a:f8: 6a:34:a5:0d:81:d6:a3:3f:f8:83:63:6a:f7:f9:5f:a9:c6:f5: 58:08:73:9f:36:a2:c9:85:99:e6:f1:f5:4d:b8:57:ac:e9:60: c0:15:03:b9:6f:c8:48:36:6f:e0:7e:cd:e4:80:98:eb:a5:79: 1c:15:67:ee:0c:3b:da:37:11:28:28:f1:86:80:a1:86:fa:3a: 34:82:77:15:52:60:d3:fb:55:d7:4c:c7:b8:28:47:c8:c1:46: 94:46:6c:fa:db:c0:cb:22:9d:4a:e0:ca:04:1a:d9:27:c1:4b: 6d:eb:3c:4a:7e:53:b1:cd:0c:88:dd:8a:de:21:2b:e3:77:04: 54:78:51:cb:99:77:f5:02:48:37:93:24:7c:0e:f6:86:29:51: cd:05:08:0b:69:30:6d:9c:44:a8:a6:82:1e:52:56:22:00:15: 50:47:38:4e:d4:82:2e:23:8b:12:fa:98:6e:a6:c2:09:6a:a3: d5:95:de:0e:0a:b6:97:cb:b2:41:0d:53:6f:cc:50:6a:fd:24: 1b:19:ca:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2M+HOOL9mEIpp7+PAm7FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NmE0YmQ2ZjVlYmYyZjdmZmQ5YThkMWNkOWE1YWFjZGU2 MjI4NWMwHhcNMjYwMjA5MTAwMDUzWhcNMjYwMjEwMTAwMDUzWjAzMTEwLwYDVQQD EyhiZWRmYjEzNjBjODBlNmY4NWVmMzgyMzFkMmE4YmRiMmYwNDE1Yzk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvR5dfSr8ZcejSRKgA9zPMS8iAKV +j7nHVoenumbs5iASJ5bqhcLvKdy30bB40j/gIdxu6GOWyyAk4zkTgFOmuA3K0w3 q+wbvR3eO/ylAFmujUcy5ycsI4cvSw1CN2HcJW6F4C17DQSFW+KntDWGfqLLc0ij DIvKa/KTpCdyVn3A8xkyFIDCS9fUpFx9N8ipzELAQKQ8o8MetGTmYvLG66Y4cs3/ m9jOIODkdNjOLoVNTrQCaEhmf/k4AoZWFcBiH/cud226WlRb4I457Pvp1/x6fFzG 0opeuUsjQwiNsf/6k+MTdfHHY2IJWwpK27KQoik5LSfVK766s/zXVB4UDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL7fsTYMgOb4XvOCMdKovbLwQVyUMB8GA1UdIwQY MBaAFLVqS9b16/L3/9mo0c2aWqzeYihcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMt MDgyZTExMzYzZjBhLzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMtMDgyZTExMzYzZjBh LzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAajFD+B76 26WzhxZ98UMNrZOSpAHy6jMRowp+KbcwqVssvUB6voJMqXkMHDU4M6meXeH2FRr4 ajSlDYHWoz/4g2Nq9/lfqcb1WAhznzaiyYWZ5vH1TbhXrOlgwBUDuW/ISDZv4H7N 5ICY66V5HBVn7gw72jcRKCjxhoChhvo6NIJ3FVJg0/tV10zHuChHyMFGlEZs+tvA yyKdSuDKBBrZJ8FLbes8Sn5Tsc0MiN2K3iEr43cEVHhRy5l39QJIN5MkfA72hilR zQUIC2kwbZxEqKaCHlJWIgAVUEc4TtSCLiOLEvqYbqbCCWqj1ZXeDgq2l8uyQQ1T b8xQav0kGxnK6w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:09 2026 by rpki-client