This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft File: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft (raw, json) Hash identifier: BIVu/6eJERMWixCCj9YLobwqqvutEcLAGiiqaUs2dZ8= Subject key identifier: 02:A0:C0:7E:77:F6:70:75:02:FF:E0:34:CA:99:4B:09:AF:AB:A8:4D Authority key identifier: 4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34 Certificate issuer: /CN=4a1d20be77e12232323c1422fb5198fea0086034 Certificate serial: 019C42EB7A752760712642B520053ED49725 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 15:00:54 +0000 Manifest this update: Mon 09 Feb 2026 15:00:54 +0000 Manifest next update: Tue 10 Feb 2026 15:00:54 +0000 Files and hashes: 1: KbY3nni1wEfL__PANyZgyUs7RUY.roa (hash: gJHLBx+13eQSnJw340+rzpbr2Pvo3zONDmCvI5/SYVk=) 2: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl (hash: V9mXa1t+hgD1y5lEKWOPWO2kzfK3fIT6JcuvHjZxeDY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:7a:75:27:60:71:26:42:b5:20:05:3e:d4:97:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a1d20be77e12232323c1422fb5198fea0086034 Validity Not Before: Feb 9 15:00:54 2026 GMT Not After : Feb 10 15:00:54 2026 GMT Subject: CN=02a0c07e77f6707502ffe034ca994b09afaba84d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:99:3e:f2:a7:1e:ed:cf:4f:23:ea:ea:4c:e7: 30:eb:6c:35:3d:60:45:36:e0:c8:ee:02:60:b0:b2: 3a:c6:17:1a:ca:fe:34:75:84:4b:1d:ef:eb:f3:79: 1b:5c:70:e5:ef:f9:72:15:d0:40:a2:16:2a:46:e0: 7b:41:10:21:5f:74:14:11:72:e0:6d:51:30:74:6a: a5:cb:ef:ee:e3:af:2b:78:16:ce:9f:11:b0:40:9f: 0c:87:43:db:da:d2:72:38:9f:d5:a5:7d:15:c1:05: ff:4d:83:2c:57:f8:24:7a:cd:66:ef:7d:4c:72:0a: 6d:78:dd:d1:49:b8:b6:8e:b0:a5:68:53:09:67:a8: 4a:c4:e3:03:73:80:f9:e4:85:48:99:4b:ea:4a:f1: 7c:45:85:43:cf:00:64:23:0b:b8:a7:d0:9d:52:59: 98:b5:a9:12:88:12:e5:c2:46:d1:ed:db:2e:d4:6f: f2:ab:36:ed:2c:14:b3:5c:e5:67:50:a8:40:72:be: b2:47:05:55:8a:cb:75:97:52:53:c8:64:43:34:c7: df:22:b0:74:2b:92:1b:85:0b:60:01:53:4c:20:34: 9f:db:fe:11:92:39:f4:5b:a5:a4:b0:b8:43:52:01: 1d:f5:06:89:fa:df:47:1d:2e:03:fa:5e:6d:1d:ea: 15:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A0:C0:7E:77:F6:70:75:02:FF:E0:34:CA:99:4B:09:AF:AB:A8:4D X509v3 Authority Key Identifier: keyid:4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:3e:7d:ec:bf:aa:53:bb:ba:b3:08:99:60:b3:6c:bc:e8:a9: d3:fa:1e:f7:d5:3f:d8:86:f1:05:dd:ea:96:eb:d7:eb:f1:d4: 14:36:70:47:b2:a0:9f:32:2b:f1:e0:8f:bb:18:af:5e:0f:3d: 52:9a:db:22:67:fe:a1:ea:4b:8e:d8:19:ec:47:e3:d1:cf:6c: 2b:22:d1:42:52:95:b3:4e:c3:66:e9:4e:de:8d:72:88:32:62: 56:6b:3d:66:fd:bf:19:85:de:6f:fd:56:fe:25:0b:7a:10:24: d4:8d:ef:9d:0a:2e:b9:d0:5a:ee:47:d3:96:a1:cf:29:4e:be: 1d:4b:b2:96:11:ed:e0:3a:47:3f:84:86:8d:ba:22:b4:b2:35: b1:0c:c0:64:41:d0:6f:b4:0f:75:63:cb:20:d3:a4:c3:47:36: c1:55:26:69:90:a4:5d:24:10:89:6f:f6:11:7e:af:0c:9b:1d: 50:c5:57:d7:25:40:2a:35:be:f9:49:e7:26:46:76:2e:8f:a1: e1:70:65:d4:5d:49:ae:fc:17:d0:7f:64:c5:28:48:26:58:ac: 60:e3:48:50:ef:b0:af:44:80:e8:f6:15:b0:bb:4e:56:e8:e4: e6:34:6c:4c:34:09:74:40:b1:f8:f0:3f:2f:dc:a6:8f:72:df: 92:58:54:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC63p1J2BxJkK1IAU+1JclMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhMWQyMGJlNzdlMTIyMzIzMjNjMTQyMmZiNTE5OGZlYTAw ODYwMzQwHhcNMjYwMjA5MTUwMDU0WhcNMjYwMjEwMTUwMDU0WjAzMTEwLwYDVQQD EygwMmEwYzA3ZTc3ZjY3MDc1MDJmZmUwMzRjYTk5NGIwOWFmYWJhODRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA55k+8qce7c9PI+rqTOcw62w1PWBF NuDI7gJgsLI6xhcayv40dYRLHe/r83kbXHDl7/lyFdBAohYqRuB7QRAhX3QUEXLg bVEwdGqly+/u468reBbOnxGwQJ8Mh0Pb2tJyOJ/VpX0VwQX/TYMsV/gkes1m731M cgpteN3RSbi2jrClaFMJZ6hKxOMDc4D55IVImUvqSvF8RYVDzwBkIwu4p9CdUlmY takSiBLlwkbR7dsu1G/yqzbtLBSzXOVnUKhAcr6yRwVVist1l1JTyGRDNMffIrB0 K5IbhQtgAVNMIDSf2/4Rkjn0W6WksLhDUgEd9QaJ+t9HHS4D+l5tHeoV3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAKgwH539nB1Av/gNMqZSwmvq6hNMB8GA1UdIwQY MBaAFEodIL534SIyMjwUIvtRmP6gCGA0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2gwZ3ZuZmhJakl5UEJRaS0xR1lfcUFJWURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi82M2M5ZGItOGFiOS00YzFlLWFmMjct ZWQyODg1MWVjYjc2LzEvU2gwZ3ZuZmhJakl5UEJRaS0xR1lfcUFJWURRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi82M2M5ZGItOGFiOS00YzFlLWFmMjctZWQyODg1MWVjYjc2 LzEvU2gwZ3ZuZmhJakl5UEJRaS0xR1lfcUFJWURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmD597L+q U7u6swiZYLNsvOip0/oe99U/2IbxBd3qluvX6/HUFDZwR7KgnzIr8eCPuxivXg89 UprbImf+oepLjtgZ7Efj0c9sKyLRQlKVs07DZulO3o1yiDJiVms9Zv2/GYXeb/1W /iULehAk1I3vnQouudBa7kfTlqHPKU6+HUuylhHt4DpHP4SGjboitLI1sQzAZEHQ b7QPdWPLINOkw0c2wVUmaZCkXSQQiW/2EX6vDJsdUMVX1yVAKjW++UnnJkZ2Lo+h 4XBl1F1JrvwX0H9kxShIJlisYONIUO+wr0SA6PYVsLtOVujk5jRsTDQJdECx+PA/ L9ymj3LfklhULA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:49 2026 by rpki-client