This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft File: wQdbeoGvSd7_tsg1xWCO4LiEMso.mft (raw, json) Hash identifier: ieg+/AeUq6tNgae24SJR5bkfZMtF/Hvi1qETHxKeASg= Subject key identifier: BC:D8:E5:E3:99:50:EF:3F:18:1D:1C:9E:43:72:DA:AC:D8:C7:FC:D0 Authority key identifier: C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA Certificate issuer: /CN=c1075b7a81af49deffb6c835c5608ee0b88432ca Certificate serial: 019C439010D7A2E391D75D3A96B79210EFDE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft Manifest number: 0341 Signing time: Mon 09 Feb 2026 18:00:40 +0000 Manifest this update: Mon 09 Feb 2026 18:00:40 +0000 Manifest next update: Tue 10 Feb 2026 18:00:40 +0000 Files and hashes: 1: k0b9VtGawXwWdQgfJzcdEYCCg_o.roa (hash: dIXVCTmcfL3HOBzfVAxTvQR3ANPXcc/eVpPbv90sMfE=) 2: wQdbeoGvSd7_tsg1xWCO4LiEMso.crl (hash: V4CfFL+qhjATS2Blv8WZJ9Xp/vLuHzhfsTIjkg6o2pc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:10:d7:a2:e3:91:d7:5d:3a:96:b7:92:10:ef:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c1075b7a81af49deffb6c835c5608ee0b88432ca Validity Not Before: Feb 9 18:00:40 2026 GMT Not After : Feb 10 18:00:40 2026 GMT Subject: CN=bcd8e5e39950ef3f181d1c9e4372daacd8c7fcd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d4:28:ef:4f:d1:22:4e:95:62:9f:a6:16:39: af:4e:15:1a:c4:53:7d:05:cf:57:94:b4:11:8e:39: 7c:bd:f6:27:e5:1f:f7:16:db:6c:8f:bd:40:6e:83: d9:fd:1a:77:7a:18:26:37:c3:48:1d:e6:50:7d:52: 6c:54:a7:3a:07:cc:6f:cc:d4:33:51:0f:43:bb:81: a3:55:34:fa:a0:38:4a:8a:3d:09:e0:2a:3e:47:2c: 98:62:6e:31:da:8e:75:00:49:7a:0a:df:f7:88:d4: e4:86:1d:50:0a:4a:c6:b5:a1:4f:45:15:06:93:b9: 4a:f1:6a:d9:e5:60:cc:85:a2:66:65:e8:1f:c5:0c: 29:36:b9:4b:1d:27:e9:3c:8b:8d:63:1a:1b:ee:0d: 8a:48:28:4c:06:33:6c:40:58:22:e5:ec:10:04:84: 3b:ab:22:f9:ac:7a:40:b2:41:32:5e:57:1e:95:95: ed:6e:7d:c2:1c:4d:36:5f:11:f4:08:a6:53:76:30: c8:6f:e0:af:42:ec:0a:ab:40:c9:24:fc:9b:8a:e1: 6a:bc:c4:1d:87:19:81:89:fe:a1:87:8f:21:91:00: cb:64:23:4c:9e:f9:99:2c:05:f4:19:b4:a0:00:7a: 95:03:5a:d6:62:d4:a4:01:95:06:69:97:98:78:1e: 77:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D8:E5:E3:99:50:EF:3F:18:1D:1C:9E:43:72:DA:AC:D8:C7:FC:D0 X509v3 Authority Key Identifier: keyid:C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:b4:1d:14:3f:87:87:dd:23:ee:a8:14:1b:b3:e3:2d:1d:5d: a5:51:4a:41:0f:19:e5:74:20:5b:5d:d6:a1:b8:59:43:86:ab: e2:2f:36:98:41:e1:57:0e:af:e7:5d:0f:5b:e3:61:42:62:66: 86:01:ec:3c:26:15:f5:fa:f0:2b:2c:1f:62:66:8c:54:8d:0c: 17:86:27:55:64:b8:8d:3a:4b:75:18:0d:f8:c3:ac:94:34:6a: b4:75:0d:49:c9:58:a9:f3:dc:10:80:8c:24:59:18:09:75:f6: 0b:b5:c4:96:c7:ff:1f:56:4c:2b:a6:33:87:bf:dd:da:e9:0e: 9b:09:d6:59:25:8f:c0:4b:17:c0:56:39:4a:3e:cd:e4:d1:57: 74:d9:74:d7:2d:9c:c7:6a:da:13:d2:69:47:5c:01:0d:ba:06: 8b:52:1d:82:33:44:ea:68:2c:dd:aa:6d:b2:f5:b5:93:da:a8: cd:f1:d6:fb:c2:dd:ca:6f:ba:87:1c:ae:52:10:1e:5f:7e:ad: 2d:46:2a:7f:0f:7c:66:23:cd:60:f7:45:d7:09:e2:72:23:da: 72:87:b0:83:66:1f:92:78:35:a1:1d:a7:fd:94:ee:0e:a1:25: 33:84:eb:d5:45:fe:b5:c2:7b:47:8f:9b:4a:69:99:36:e8:2d: 8f:01:bf:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkBDXouOR1106lreSEO/eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxMDc1YjdhODFhZjQ5ZGVmZmI2YzgzNWM1NjA4ZWUwYjg4 NDMyY2EwHhcNMjYwMjA5MTgwMDQwWhcNMjYwMjEwMTgwMDQwWjAzMTEwLwYDVQQD EyhiY2Q4ZTVlMzk5NTBlZjNmMTgxZDFjOWU0MzcyZGFhY2Q4YzdmY2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtQo70/RIk6VYp+mFjmvThUaxFN9 Bc9XlLQRjjl8vfYn5R/3Fttsj71AboPZ/Rp3ehgmN8NIHeZQfVJsVKc6B8xvzNQz UQ9Du4GjVTT6oDhKij0J4Co+RyyYYm4x2o51AEl6Ct/3iNTkhh1QCkrGtaFPRRUG k7lK8WrZ5WDMhaJmZegfxQwpNrlLHSfpPIuNYxob7g2KSChMBjNsQFgi5ewQBIQ7 qyL5rHpAskEyXlcelZXtbn3CHE02XxH0CKZTdjDIb+CvQuwKq0DJJPybiuFqvMQd hxmBif6hh48hkQDLZCNMnvmZLAX0GbSgAHqVA1rWYtSkAZUGaZeYeB538QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLzY5eOZUO8/GB0cnkNy2qzYx/zQMB8GA1UdIwQY MBaAFMEHW3qBr0ne/7bINcVgjuC4hDLKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd1FkYmVvR3ZTZDdfdHNnMXhXQ080TGlFTXNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8yYTgyOWItMzJiMy00OTZhLTgwY2Ut YTAyNDY3ZjY0MjVmLzEvd1FkYmVvR3ZTZDdfdHNnMXhXQ080TGlFTXNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC8yYTgyOWItMzJiMy00OTZhLTgwY2UtYTAyNDY3ZjY0MjVm LzEvd1FkYmVvR3ZTZDdfdHNnMXhXQ080TGlFTXNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASLQdFD+H h90j7qgUG7PjLR1dpVFKQQ8Z5XQgW13WobhZQ4ar4i82mEHhVw6v510PW+NhQmJm hgHsPCYV9frwKywfYmaMVI0MF4YnVWS4jTpLdRgN+MOslDRqtHUNSclYqfPcEICM JFkYCXX2C7XElsf/H1ZMK6Yzh7/d2ukOmwnWWSWPwEsXwFY5Sj7N5NFXdNl01y2c x2raE9JpR1wBDboGi1IdgjNE6mgs3aptsvW1k9qozfHW+8Ldym+6hxyuUhAeX36t LUYqfw98ZiPNYPdF1wniciPacoewg2Yfkng1oR2n/ZTuDqElM4Tr1UX+tcJ7R4+b SmmZNugtjwG/1A== -----END CERTIFICATE-----Generated at Tue Feb 10 00:30:30 2026 by rpki-client