This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json) Hash identifier: v7xme7eTW4ta+dTz16GnUa73m+RQj5HmXmI38vVaMkA= Subject key identifier: 02:5A:90:7D:6D:B6:AC:D6:42:8D:7A:70:D7:71:00:22:46:C3:22:11 Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6 Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6 Certificate serial: 019C44D9BF591E6E39D7656908FAB68E5A83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft Manifest number: 0B3E Signing time: Tue 10 Feb 2026 00:00:46 +0000 Manifest this update: Tue 10 Feb 2026 00:00:46 +0000 Manifest next update: Wed 11 Feb 2026 00:00:46 +0000 Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: GPqsk6xYYRTCvslb4L358DIdIvDqDR4DmJa0JnxsY8U=) 2: K7zaYiA4cUm1xenNoU5bzoYVcUA.roa (hash: loCWwpkjmfHoTvN0F0nQ8C+FbDYIJy/va2o4zLxPRX0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:bf:59:1e:6e:39:d7:65:69:08:fa:b6:8e:5a:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6 Validity Not Before: Feb 10 00:00:46 2026 GMT Not After : Feb 11 00:00:46 2026 GMT Subject: CN=025a907d6db6acd6428d7a70d771002246c32211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:eb:3c:8d:87:30:e4:75:0c:33:af:f5:bf:25: f9:b5:ad:f7:1a:b3:fe:4b:60:17:b3:7a:c8:45:33: 9b:39:dc:4c:9f:46:7f:bc:16:28:a0:fb:a5:3f:c7: df:20:54:90:2f:96:30:c5:41:b5:fa:67:64:17:f9: 62:4e:31:e3:fb:20:3b:f1:ee:02:44:01:25:9d:d5: 93:2a:9b:d8:cd:a6:45:88:83:ca:56:57:78:86:b5: f0:e5:49:ae:a6:e1:4a:48:ca:44:5a:aa:66:33:da: c0:d7:b3:9f:25:ee:1d:26:d9:9a:48:00:5c:8f:f0: 64:34:bf:2c:b8:85:19:74:56:22:ed:a1:a6:75:43: 1a:a7:c8:d5:a4:bb:a7:94:ec:2b:a8:05:14:80:5d: ad:93:70:9d:47:5e:82:b7:7a:ef:cf:fd:a8:ec:d7: 63:dc:34:fc:5c:f6:e3:b8:48:dc:f3:0a:00:63:b5: ff:37:bd:b9:c4:ab:7e:14:7c:1a:26:cc:16:30:6d: f4:14:35:7d:a2:1e:44:56:67:74:b7:ff:7b:8a:ed: 1a:68:82:8b:00:98:b1:0d:d1:65:56:f6:70:59:19: bb:1c:0b:3b:95:2c:86:9d:6d:0d:f0:22:2a:ca:35: 09:80:58:38:55:63:92:97:23:0e:0d:32:5c:d6:41: fb:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:5A:90:7D:6D:B6:AC:D6:42:8D:7A:70:D7:71:00:22:46:C3:22:11 X509v3 Authority Key Identifier: keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:38:39:e9:71:5e:5b:67:3c:55:0e:6a:73:e6:7b:fe:f8:17: f6:88:c6:a9:29:8a:f7:03:e3:cc:b6:6d:a0:9a:ab:74:23:28: 27:45:e4:ce:aa:e3:ba:6c:03:07:4c:37:a5:62:c5:90:42:ce: 40:1b:d6:5e:f3:82:5b:e5:c3:2a:e1:17:b2:73:20:6c:6e:c3: 11:35:a4:01:f6:ef:80:81:05:63:a1:24:a3:10:b6:65:31:fb: ef:50:6f:c1:c6:78:89:a1:5a:b2:dc:40:6f:fd:46:9c:45:eb: 78:8a:e5:34:9d:cd:23:6f:c1:ae:bb:f5:fc:1d:58:d8:a2:b4: db:bd:fa:1f:b7:9c:65:34:ba:41:16:83:94:71:51:a5:33:71: 30:40:59:6a:4a:d1:2d:34:9f:5f:74:35:7b:1f:af:b0:16:5e: 59:e0:20:f6:42:63:87:79:47:8a:a0:4c:8c:09:2d:ec:66:18: 99:32:6e:04:dc:55:95:1b:ef:63:1d:c1:9d:58:b8:82:b5:2d: 9d:1d:a7:c8:aa:87:12:bf:5e:0a:7a:df:6b:86:22:3d:fc:db: 34:3a:a1:31:3a:44:b1:cc:4e:56:20:e9:79:9b:a3:3c:60:83: 33:28:48:41:65:b2:ba:88:c5:54:fd:aa:30:a1:ef:10:bc:68: 7e:2c:ad:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2b9ZHm4512VpCPq2jlqDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhNzAyMDJjMzEyZGQyYzdhNmZmYzMxN2FhODZlNGUyMDY5 MjQ5YTYwHhcNMjYwMjEwMDAwMDQ2WhcNMjYwMjExMDAwMDQ2WjAzMTEwLwYDVQQD EygwMjVhOTA3ZDZkYjZhY2Q2NDI4ZDdhNzBkNzcxMDAyMjQ2YzMyMjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4es8jYcw5HUMM6/1vyX5ta33GrP+ S2AXs3rIRTObOdxMn0Z/vBYooPulP8ffIFSQL5YwxUG1+mdkF/liTjHj+yA78e4C RAElndWTKpvYzaZFiIPKVld4hrXw5UmupuFKSMpEWqpmM9rA17OfJe4dJtmaSABc j/BkNL8suIUZdFYi7aGmdUMap8jVpLunlOwrqAUUgF2tk3CdR16Ct3rvz/2o7Ndj 3DT8XPbjuEjc8woAY7X/N725xKt+FHwaJswWMG30FDV9oh5EVmd0t/97iu0aaIKL AJixDdFlVvZwWRm7HAs7lSyGnW0N8CIqyjUJgFg4VWOSlyMODTJc1kH77wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAJakH1ttqzWQo16cNdxACJGwyIRMB8GA1UdIwQY MBaAFApwICwxLdLHpv/DF6qG5OIGkkmmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84ZmY2OTctNTdmYy00MGZmLThhNTMt NjhjODQ5Mjc3ZDczLzEvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS84ZmY2OTctNTdmYy00MGZmLThhNTMtNjhjODQ5Mjc3ZDcz LzEvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJDg56XFe W2c8VQ5qc+Z7/vgX9ojGqSmK9wPjzLZtoJqrdCMoJ0XkzqrjumwDB0w3pWLFkELO QBvWXvOCW+XDKuEXsnMgbG7DETWkAfbvgIEFY6EkoxC2ZTH771BvwcZ4iaFastxA b/1GnEXreIrlNJ3NI2/Brrv1/B1Y2KK02736H7ecZTS6QRaDlHFRpTNxMEBZakrR LTSfX3Q1ex+vsBZeWeAg9kJjh3lHiqBMjAkt7GYYmTJuBNxVlRvvYx3BnVi4grUt nR2nyKqHEr9eCnrfa4YiPfzbNDqhMTpEscxOViDpeZujPGCDMyhIQWWyuojFVP2q MKHvELxofiytEA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:12 2026 by rpki-client