This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft File: m1GT2EOvGT4kh1aGZzyViW6uNJc.mft (raw, json) Hash identifier: jtJ/3lHI5mAucemQJODQvEEn16gFcOyhoMhK2BTYqm4= Subject key identifier: A9:B3:BA:4B:C0:FD:17:0A:DA:AE:8E:9B:F5:46:AE:43:25:39:CF:A9 Authority key identifier: 9B:51:93:D8:43:AF:19:3E:24:87:56:86:67:3C:95:89:6E:AE:34:97 Certificate issuer: /CN=9b5193d843af193e24875686673c95896eae3497 Certificate serial: 019C435964A8C103913F6D0980DA71F68094 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft Manifest number: 0C1E Signing time: Mon 09 Feb 2026 17:00:57 +0000 Manifest this update: Mon 09 Feb 2026 17:00:57 +0000 Manifest next update: Tue 10 Feb 2026 17:00:57 +0000 Files and hashes: 1: m1GT2EOvGT4kh1aGZzyViW6uNJc.crl (hash: CMBFaO7kk9WbZXDvWduP+3HCKQXBq/WxWuNmQiAfdzQ=) 2: yf4fsCLIG2l9cGmJeTOIIc51YeU.roa (hash: UF4YxdCOV/UBjXOSABiqqWZqo/WkePyMELF0t7EktlA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:64:a8:c1:03:91:3f:6d:09:80:da:71:f6:80:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b5193d843af193e24875686673c95896eae3497 Validity Not Before: Feb 9 17:00:57 2026 GMT Not After : Feb 10 17:00:57 2026 GMT Subject: CN=a9b3ba4bc0fd170adaae8e9bf546ae432539cfa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:50:02:00:ad:d9:19:4e:54:8f:30:a1:1f:47: 53:b0:c2:25:09:f3:39:77:ce:27:49:9d:e0:e6:6d: 6e:5c:61:24:bf:0f:f2:c2:72:2c:5a:3a:69:4e:e8: 1c:fa:63:67:0f:62:e9:7c:bb:36:77:ea:69:19:47: a5:ba:00:25:0e:8e:23:35:81:be:a5:db:2c:a0:0f: 45:61:5a:70:24:22:2a:d9:7e:1b:89:08:0e:31:05: fe:3f:ef:23:7d:01:6e:9f:49:66:6c:98:47:62:7c: af:ea:04:d1:e6:fc:1f:94:e8:0a:6a:48:e9:a0:a0: fd:38:46:7f:0b:54:cf:0a:4b:60:24:8a:86:93:07: 04:13:b5:f5:b9:ec:93:c1:58:4f:7c:0b:b9:52:57: ee:3d:f3:de:62:8e:02:53:8a:e8:02:25:02:e8:84: 3f:33:e6:68:db:09:6d:13:62:20:22:71:c7:5f:e2: ac:18:07:0c:57:5a:63:7a:5a:75:ff:e4:8d:12:b6: 82:ea:68:19:d8:4b:ab:d9:91:1e:6b:94:24:14:91: b2:aa:e3:26:ad:56:f3:6f:9a:a8:ea:e7:7e:1b:3f: 12:c5:19:ce:7e:64:51:c7:41:48:5a:7a:bf:e7:0a: 47:10:13:66:61:6a:ab:aa:9b:cb:f2:b4:fe:fe:e8: be:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B3:BA:4B:C0:FD:17:0A:DA:AE:8E:9B:F5:46:AE:43:25:39:CF:A9 X509v3 Authority Key Identifier: keyid:9B:51:93:D8:43:AF:19:3E:24:87:56:86:67:3C:95:89:6E:AE:34:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1GT2EOvGT4kh1aGZzyViW6uNJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b5e940-6511-4805-8d0c-000ead39765a/1/m1GT2EOvGT4kh1aGZzyViW6uNJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:ce:ae:ec:92:dd:a1:9f:3f:0a:4e:c0:70:f7:c7:3b:e0:8b: a6:d1:7b:45:12:9b:a6:eb:14:84:84:ee:3c:ad:9a:50:de:96: 47:f0:77:a5:78:64:c9:f7:3f:94:57:84:18:93:23:ab:7f:32: e8:98:f2:5c:87:90:42:36:aa:25:4c:13:08:b6:7f:81:ad:e3: 83:6a:77:48:dd:7e:60:be:d9:93:ca:90:6c:b6:f0:7d:79:24: ee:f9:61:08:fa:38:96:c4:42:61:36:b3:8e:86:08:d7:72:17: 05:6b:4f:6a:ab:20:43:cb:7e:6e:28:61:94:5b:e2:cd:a4:0b: 18:e2:be:c5:8a:ca:37:d1:7e:59:1c:ce:83:9c:b6:a0:17:86: 44:f8:0e:d6:05:ec:1e:1d:d9:9a:5c:b1:56:e8:26:68:c4:16: 1b:2e:ef:44:24:37:cd:95:fd:63:03:86:38:33:0e:eb:ea:68: a6:e0:80:e0:f5:fb:37:32:94:b4:a4:67:a9:9b:88:32:d1:d0: c3:bd:c9:cb:70:f8:a8:9e:7a:02:8e:ae:89:9e:bb:b7:c8:b6: 4a:4d:30:87:ff:d5:0a:7f:28:9b:65:b9:49:93:34:f1:d5:25: f8:b4:a9:f9:c5:48:f8:18:5e:fe:4a:08:1d:12:39:d0:34:ea: 6b:0a:c3:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWSowQORP20JgNpx9oCUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliNTE5M2Q4NDNhZjE5M2UyNDg3NTY4NjY3M2M5NTg5NmVh ZTM0OTcwHhcNMjYwMjA5MTcwMDU3WhcNMjYwMjEwMTcwMDU3WjAzMTEwLwYDVQQD EyhhOWIzYmE0YmMwZmQxNzBhZGFhZThlOWJmNTQ2YWU0MzI1MzljZmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVACAK3ZGU5UjzChH0dTsMIlCfM5 d84nSZ3g5m1uXGEkvw/ywnIsWjppTugc+mNnD2LpfLs2d+ppGUelugAlDo4jNYG+ pdssoA9FYVpwJCIq2X4biQgOMQX+P+8jfQFun0lmbJhHYnyv6gTR5vwflOgKakjp oKD9OEZ/C1TPCktgJIqGkwcEE7X1ueyTwVhPfAu5UlfuPfPeYo4CU4roAiUC6IQ/ M+Zo2wltE2IgInHHX+KsGAcMV1pjelp1/+SNEraC6mgZ2Eur2ZEea5QkFJGyquMm rVbzb5qo6ud+Gz8SxRnOfmRRx0FIWnq/5wpHEBNmYWqrqpvL8rT+/ui+eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKmzukvA/RcK2q6Om/VGrkMlOc+pMB8GA1UdIwQY MBaAFJtRk9hDrxk+JIdWhmc8lYlurjSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTFHVDJFT3ZHVDRraDFhR1p6eVZpVzZ1TkpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9iNWU5NDAtNjUxMS00ODA1LThkMGMt MDAwZWFkMzk3NjVhLzEvbTFHVDJFT3ZHVDRraDFhR1p6eVZpVzZ1TkpjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9iNWU5NDAtNjUxMS00ODA1LThkMGMtMDAwZWFkMzk3NjVh LzEvbTFHVDJFT3ZHVDRraDFhR1p6eVZpVzZ1TkpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACs6u7JLd oZ8/Ck7AcPfHO+CLptF7RRKbpusUhITuPK2aUN6WR/B3pXhkyfc/lFeEGJMjq38y 6JjyXIeQQjaqJUwTCLZ/ga3jg2p3SN1+YL7Zk8qQbLbwfXkk7vlhCPo4lsRCYTaz joYI13IXBWtPaqsgQ8t+bihhlFvizaQLGOK+xYrKN9F+WRzOg5y2oBeGRPgO1gXs Hh3ZmlyxVugmaMQWGy7vRCQ3zZX9YwOGODMO6+popuCA4PX7NzKUtKRnqZuIMtHQ w73Jy3D4qJ56Ao6uiZ67t8i2Sk0wh//VCn8om2W5SZM08dUl+LSp+cVI+Bhe/koI HRI50DTqawrD4g== -----END CERTIFICATE-----Generated at Mon Feb 9 23:53:21 2026 by rpki-client