This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft File: TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft (raw, json) Hash identifier: l0u/deD8PX2p2hRgHiszmWYFwNU159klOGfcu7MlMOI= Subject key identifier: BF:DC:E4:60:0A:F1:14:3C:03:51:56:F2:FF:E1:12:96:1F:68:C9:EC Authority key identifier: 4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4 Certificate issuer: /CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4 Certificate serial: 019C43FE598658D426E0093DC3B18D7AB4B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft Manifest number: 0D83 Signing time: Mon 09 Feb 2026 20:01:08 +0000 Manifest this update: Mon 09 Feb 2026 20:01:08 +0000 Manifest next update: Tue 10 Feb 2026 20:01:08 +0000 Files and hashes: 1: TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl (hash: 07sguAIV2IwfncU6nWp/jE7mFVpOqIxHahy2J6t0vgc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:59:86:58:d4:26:e0:09:3d:c3:b1:8d:7a:b4:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e91162bb0d9b551bf5f7b1c15ee315a51a677f4 Validity Not Before: Feb 9 20:01:08 2026 GMT Not After : Feb 10 20:01:08 2026 GMT Subject: CN=bfdce4600af1143c035156f2ffe112961f68c9ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:90:f5:e1:6d:99:ad:17:47:ea:85:47:16:97: e6:aa:71:4e:ca:9c:5e:6b:7e:75:c3:86:b6:82:2a: 97:3e:2f:1a:32:bd:b9:74:aa:f8:2d:69:50:94:09: e1:d6:dc:75:db:40:98:ef:54:2b:06:a0:a8:e3:61: 52:9b:97:ff:c2:86:ab:1e:66:cf:b9:db:ac:4b:2a: 6d:b1:18:14:19:d7:19:0e:25:7a:fd:e9:83:17:b1: fe:d8:0d:e9:c8:b4:a3:77:61:73:e8:05:d1:7f:11: eb:d2:fc:34:1d:49:56:02:b2:3a:38:e1:0b:2e:b0: 9d:13:1d:e5:9b:08:50:fb:bb:6f:a3:ef:ae:b2:c2: 93:8c:ce:a1:50:8a:ec:31:5b:34:35:12:c8:09:ed: 38:2d:7e:f0:49:f5:29:e2:ef:71:a5:4d:ef:40:55: 10:3f:ea:ae:46:00:45:73:09:9a:ce:13:9f:48:ab: 03:7f:a2:03:ee:48:f4:72:e1:ff:4b:e9:da:01:ce: 8d:96:49:57:1d:7c:9e:b8:2e:5c:0f:29:75:fd:b3: fb:90:d7:99:8f:48:d1:8d:fb:c7:88:3a:86:82:f0: 87:7b:d7:8a:46:5e:18:3d:d3:31:a5:8e:f9:3f:11: c0:b7:96:66:16:ae:07:84:0b:05:b9:77:d8:50:0a: 5e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DC:E4:60:0A:F1:14:3C:03:51:56:F2:FF:E1:12:96:1F:68:C9:EC X509v3 Authority Key Identifier: keyid:4E:91:16:2B:B0:D9:B5:51:BF:5F:7B:1C:15:EE:31:5A:51:A6:77:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TpEWK7DZtVG_X3scFe4xWlGmd_Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/229c3f-9972-43d6-8e42-5713f1749c1d/1/TpEWK7DZtVG_X3scFe4xWlGmd_Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:3c:2a:ca:a7:c7:7b:2a:41:cc:96:dc:4f:1a:9f:c8:81:ed: ef:b4:fc:dd:ce:8c:31:c0:bb:ad:45:13:74:37:66:22:e2:85: 86:fe:00:ef:c4:37:d4:ff:ab:88:c9:ef:51:db:51:fb:97:4c: fa:b1:c7:43:f7:74:68:c4:02:94:56:75:f4:23:04:b7:1b:b2: 56:19:2f:69:56:92:42:a0:83:94:45:fe:21:72:19:bf:f2:fe: d3:ca:7b:d5:33:33:55:06:ed:52:30:e5:96:b2:91:cf:19:c2: 78:cc:4b:c2:b8:21:d7:b9:61:d7:dc:d9:ef:af:1b:a5:14:80: 12:79:3b:ba:8e:e3:35:af:f9:8e:b0:22:87:f4:8f:56:7c:e0: 07:74:a3:4b:87:e8:5c:8f:ee:08:90:38:13:68:53:26:a4:d9: 18:e7:65:50:65:93:da:b9:81:16:1c:b6:15:7f:38:15:73:6d: 1b:a8:1c:1d:71:3d:50:a8:d5:a1:8c:3f:46:cd:31:98:7a:10: 59:a3:f4:0b:e7:0b:80:64:e2:88:92:2a:5f:ed:65:b7:0e:e9: 78:30:bc:7c:96:07:a4:7f:11:99:89:18:0f:52:dd:06:a5:8c: 53:96:f0:4a:32:f2:68:30:0d:81:31:41:68:2d:0a:4c:3e:95: cf:17:9b:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/lmGWNQm4Ak9w7GNerS2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlOTExNjJiYjBkOWI1NTFiZjVmN2IxYzE1ZWUzMTVhNTFh Njc3ZjQwHhcNMjYwMjA5MjAwMTA4WhcNMjYwMjEwMjAwMTA4WjAzMTEwLwYDVQQD EyhiZmRjZTQ2MDBhZjExNDNjMDM1MTU2ZjJmZmUxMTI5NjFmNjhjOWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAopD14W2ZrRdH6oVHFpfmqnFOypxe a351w4a2giqXPi8aMr25dKr4LWlQlAnh1tx120CY71QrBqCo42FSm5f/woarHmbP udusSyptsRgUGdcZDiV6/emDF7H+2A3pyLSjd2Fz6AXRfxHr0vw0HUlWArI6OOEL LrCdEx3lmwhQ+7tvo++ussKTjM6hUIrsMVs0NRLICe04LX7wSfUp4u9xpU3vQFUQ P+quRgBFcwmazhOfSKsDf6ID7kj0cuH/S+naAc6NlklXHXyeuC5cDyl1/bP7kNeZ j0jRjfvHiDqGgvCHe9eKRl4YPdMxpY75PxHAt5ZmFq4HhAsFuXfYUApeSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/c5GAK8RQ8A1FW8v/hEpYfaMnsMB8GA1UdIwQY MBaAFE6RFiuw2bVRv197HBXuMVpRpnf0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHBFV0s3RFp0VkdfWDNzY0ZlNHhXbEdtZF9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMjljM2YtOTk3Mi00M2Q2LThlNDIt NTcxM2YxNzQ5YzFkLzEvVHBFV0s3RFp0VkdfWDNzY0ZlNHhXbEdtZF9RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi8yMjljM2YtOTk3Mi00M2Q2LThlNDItNTcxM2YxNzQ5YzFk LzEvVHBFV0s3RFp0VkdfWDNzY0ZlNHhXbEdtZF9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQTwqyqfH eypBzJbcTxqfyIHt77T83c6MMcC7rUUTdDdmIuKFhv4A78Q31P+riMnvUdtR+5dM +rHHQ/d0aMQClFZ19CMEtxuyVhkvaVaSQqCDlEX+IXIZv/L+08p71TMzVQbtUjDl lrKRzxnCeMxLwrgh17lh19zZ768bpRSAEnk7uo7jNa/5jrAih/SPVnzgB3SjS4fo XI/uCJA4E2hTJqTZGOdlUGWT2rmBFhy2FX84FXNtG6gcHXE9UKjVoYw/Rs0xmHoQ WaP0C+cLgGTiiJIqX+1ltw7peDC8fJYHpH8RmYkYD1LdBqWMU5bwSjLyaDANgTFB aC0KTD6Vzxebpw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:19:17 2026 by rpki-client