This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft File: idSzdf1Mr9XfusQG3SWmHSLdNso.mft (raw, json) Hash identifier: l6SsQQUeEGeWEwa6EHb3d6WtM7dM5P2AJqci/FEJ/Tk= Subject key identifier: 12:76:AF:A1:B4:39:3B:C9:D4:68:DF:79:67:82:47:D8:75:BD:FE:E9 Authority key identifier: 89:D4:B3:75:FD:4C:AF:D5:DF:BA:C4:06:DD:25:A6:1D:22:DD:36:CA Certificate issuer: /CN=89d4b375fd4cafd5dfbac406dd25a61d22dd36ca Certificate serial: 019C432298B26204D699CA242E2091C9A07E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft Manifest number: 138D Signing time: Mon 09 Feb 2026 16:01:06 +0000 Manifest this update: Mon 09 Feb 2026 16:01:06 +0000 Manifest next update: Tue 10 Feb 2026 16:01:06 +0000 Files and hashes: 1: idSzdf1Mr9XfusQG3SWmHSLdNso.crl (hash: E6TofoQwrgpbS+1L06+HhHSyUf0heLjGiRxewyp559I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:98:b2:62:04:d6:99:ca:24:2e:20:91:c9:a0:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89d4b375fd4cafd5dfbac406dd25a61d22dd36ca Validity Not Before: Feb 9 16:01:06 2026 GMT Not After : Feb 10 16:01:06 2026 GMT Subject: CN=1276afa1b4393bc9d468df79678247d875bdfee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cc:36:8e:ac:af:e0:2a:91:b2:b0:fb:f9:bc: c7:87:84:86:f3:3e:25:4f:46:98:61:3a:cb:20:1f: 7d:69:0e:49:81:46:dc:e2:d2:9c:20:41:41:49:f5: c1:09:c0:59:27:a2:e6:dd:c6:73:0b:f9:b8:9c:4b: 5d:c0:7c:ff:26:85:62:f4:29:2e:2a:35:0f:f5:b6: f4:1b:2c:02:d3:a6:3b:f2:ea:f4:c3:f7:82:2f:7f: 97:fa:87:76:0e:77:c1:60:2c:1c:35:8d:29:7b:9a: e2:6e:55:1d:73:c2:1e:41:8b:87:df:93:99:33:f8: cf:15:b8:69:55:74:81:5a:0a:8a:44:fb:1c:8d:cc: ca:88:23:fa:26:8d:69:34:ae:4c:d4:38:e9:1a:e8: d7:69:d9:c9:11:00:70:89:84:92:8d:db:92:b9:d2: 6a:11:bc:8a:3d:0c:7c:95:07:60:5a:05:d2:6a:cd: 46:79:93:17:6b:a3:ee:0e:b9:8c:3c:65:71:ae:ff: b6:e2:7c:4d:5e:58:e9:c1:43:b8:ad:74:6f:17:67: 5d:3e:11:d8:21:35:a1:82:00:76:26:a0:99:0e:fc: 02:c7:59:2c:b6:e2:59:84:14:9f:f4:e5:28:33:4a: 8b:35:0f:fa:22:51:e7:e3:c8:e4:b3:d4:82:84:df: 2e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:76:AF:A1:B4:39:3B:C9:D4:68:DF:79:67:82:47:D8:75:BD:FE:E9 X509v3 Authority Key Identifier: keyid:89:D4:B3:75:FD:4C:AF:D5:DF:BA:C4:06:DD:25:A6:1D:22:DD:36:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:8a:e0:99:e3:76:76:41:97:3d:0b:24:a4:db:be:7f:e3:82: 1b:86:b6:f7:5e:6d:91:d1:04:cb:23:b0:f4:aa:8c:c7:da:e2: 17:1d:28:0e:a2:c9:a4:ec:b8:27:9d:8e:1f:fd:b0:b7:e0:66: 80:86:f5:ed:3c:d2:46:62:65:6e:be:87:5f:ae:43:c8:c3:8a: a0:a4:a1:50:9f:c8:fd:bd:96:87:9d:85:e2:ae:fd:13:2a:fb: b7:57:1d:be:87:e5:da:7a:3f:1d:da:3b:6a:72:04:2c:c0:d0: 03:29:f5:b4:9b:26:a9:92:bd:b9:e1:57:a5:88:96:d6:4e:9f: 46:f4:04:38:74:e3:a9:6f:c3:04:85:0d:a7:c6:b1:28:2a:76: 11:86:fb:72:a2:5d:b1:c2:2b:c5:91:f7:2e:e1:e5:32:22:19: e8:e0:74:fc:e2:ad:1f:77:14:7e:60:5c:80:86:4b:1e:b5:96: fa:93:cf:28:21:4e:3a:47:56:03:06:9b:38:2a:92:c9:5a:a7: ce:b5:94:8b:cb:c1:c7:b1:a9:bf:78:90:b1:93:b0:d7:a0:76: da:71:14:15:22:11:be:d5:f6:ac:7e:00:15:04:50:51:b8:8f: 3d:70:7a:70:a0:e3:8d:e1:9d:11:0d:e9:7c:c4:1d:b7:4f:65: 64:cf:df:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpiyYgTWmcokLiCRyaB+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5ZDRiMzc1ZmQ0Y2FmZDVkZmJhYzQwNmRkMjVhNjFkMjJk ZDM2Y2EwHhcNMjYwMjA5MTYwMTA2WhcNMjYwMjEwMTYwMTA2WjAzMTEwLwYDVQQD EygxMjc2YWZhMWI0MzkzYmM5ZDQ2OGRmNzk2NzgyNDdkODc1YmRmZWU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMw2jqyv4CqRsrD7+bzHh4SG8z4l T0aYYTrLIB99aQ5JgUbc4tKcIEFBSfXBCcBZJ6Lm3cZzC/m4nEtdwHz/JoVi9Cku KjUP9bb0GywC06Y78ur0w/eCL3+X+od2DnfBYCwcNY0pe5riblUdc8IeQYuH35OZ M/jPFbhpVXSBWgqKRPscjczKiCP6Jo1pNK5M1DjpGujXadnJEQBwiYSSjduSudJq EbyKPQx8lQdgWgXSas1GeZMXa6PuDrmMPGVxrv+24nxNXljpwUO4rXRvF2ddPhHY ITWhggB2JqCZDvwCx1kstuJZhBSf9OUoM0qLNQ/6IlHn48jks9SChN8uHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBJ2r6G0OTvJ1GjfeWeCR9h1vf7pMB8GA1UdIwQY MBaAFInUs3X9TK/V37rEBt0lph0i3TbKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWRTemRmMU1yOVhmdXNRRzNTV21IU0xkTnNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi9iY2FkOGQtOGU1NS00YTgxLWIzOTMt Mjc0MjUxMjUyMDc3LzEvaWRTemRmMU1yOVhmdXNRRzNTV21IU0xkTnNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi9iY2FkOGQtOGU1NS00YTgxLWIzOTMtMjc0MjUxMjUyMDc3 LzEvaWRTemRmMU1yOVhmdXNRRzNTV21IU0xkTnNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANorgmeN2 dkGXPQskpNu+f+OCG4a2915tkdEEyyOw9KqMx9riFx0oDqLJpOy4J52OH/2wt+Bm gIb17TzSRmJlbr6HX65DyMOKoKShUJ/I/b2Wh52F4q79Eyr7t1cdvofl2no/Hdo7 anIELMDQAyn1tJsmqZK9ueFXpYiW1k6fRvQEOHTjqW/DBIUNp8axKCp2EYb7cqJd scIrxZH3LuHlMiIZ6OB0/OKtH3cUfmBcgIZLHrWW+pPPKCFOOkdWAwabOCqSyVqn zrWUi8vBx7Gpv3iQsZOw16B22nEUFSIRvtX2rH4AFQRQUbiPPXB6cKDjjeGdEQ3p fMQdt09lZM/fGQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:07 2026 by rpki-client