This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft File: FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft (raw, json) Hash identifier: oociH7VgBpVrlrbkjYdP/6UpOeyVYU1nBjX+oYhhJLo= Subject key identifier: 92:63:C9:80:56:CB:9B:A1:30:BA:75:4F:00:D9:69:03:A4:60:76:CF Authority key identifier: 14:C7:35:25:9F:DB:7B:83:F2:77:AD:F1:2D:08:CC:98:B5:A6:10:0A Certificate issuer: /CN=14c735259fdb7b83f277adf12d08cc98b5a6100a Certificate serial: 019C43227821708E005C21D4E9356163E3FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft Manifest number: 0B31 Signing time: Mon 09 Feb 2026 16:00:58 +0000 Manifest this update: Mon 09 Feb 2026 16:00:58 +0000 Manifest next update: Tue 10 Feb 2026 16:00:58 +0000 Files and hashes: 1: FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl (hash: axJbgWvOocYSeIZyCKfYaGvES2BLq0G7UWdYsvTUGnk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:78:21:70:8e:00:5c:21:d4:e9:35:61:63:e3:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14c735259fdb7b83f277adf12d08cc98b5a6100a Validity Not Before: Feb 9 16:00:58 2026 GMT Not After : Feb 10 16:00:58 2026 GMT Subject: CN=9263c98056cb9ba130ba754f00d96903a46076cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3b:2e:f9:b0:e7:f4:1b:ad:8c:87:75:57:71: 16:aa:5b:db:1c:af:af:9c:b0:db:23:4a:9f:92:77: 58:8c:77:30:0b:21:5e:f3:44:a2:30:97:91:c1:1f: 11:81:e4:3c:77:98:ef:42:91:41:7b:1d:5a:e3:4d: 18:e7:78:7d:b8:d5:2c:f5:e3:8f:47:57:4d:59:4b: e8:8c:7e:e7:70:cf:d1:d2:c7:14:56:ca:e3:b2:7d: 46:11:d0:41:0c:ad:9f:d4:8d:e3:8c:df:aa:d1:35: 52:b2:42:a7:8d:21:33:ea:82:55:f3:0b:94:ca:b9: 5f:2a:b1:35:a4:f4:95:7d:7f:f1:b9:94:4a:c3:db: 1a:b5:a8:0b:53:79:7a:4e:bc:f6:b8:43:37:cb:ae: 5c:f4:9c:cd:db:a8:78:c8:ab:e0:72:7b:54:e7:42: 5b:f4:db:76:4e:ad:31:ef:a9:99:24:64:c1:56:c5: f5:21:8b:d2:7e:25:3b:60:98:43:73:bf:b3:17:db: 2d:65:b5:39:82:2f:de:cd:97:23:b9:3d:24:d1:90: bc:a0:2b:31:0e:fc:5f:92:37:c0:fe:c6:74:e9:8f: ff:b0:da:13:91:6d:ee:dd:d3:3f:0f:f2:cc:5d:6d: 40:42:98:59:71:b6:3d:10:c8:f8:b1:46:5a:14:21: 25:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:63:C9:80:56:CB:9B:A1:30:BA:75:4F:00:D9:69:03:A4:60:76:CF X509v3 Authority Key Identifier: keyid:14:C7:35:25:9F:DB:7B:83:F2:77:AD:F1:2D:08:CC:98:B5:A6:10:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:71:29:28:5a:d6:1f:41:06:b4:d0:7f:e4:0f:e0:a8:dd:29: 1a:e6:25:02:02:f7:1d:80:86:83:ae:83:57:0f:60:20:40:4d: 4e:0e:8d:26:ec:d6:ab:4c:a8:2d:94:e9:9d:4f:43:cd:f4:70: 4f:32:83:50:25:0d:21:3e:8f:59:16:25:44:56:24:69:3d:b2: c5:8a:f5:9e:ca:70:51:01:2d:42:c2:ce:3e:a5:68:3a:e5:19: 9e:72:4a:e3:9f:15:78:fc:74:51:2a:c0:24:dc:b1:d5:90:96: 4e:db:90:8d:c6:a3:ad:59:6d:18:de:67:fd:af:2c:a4:52:d5: 26:80:b5:3d:7c:02:f4:f7:d3:5f:6f:19:6a:cf:d1:af:85:1e: 86:b3:69:15:c1:6e:19:76:4a:95:00:69:34:14:84:84:4f:ef: 64:f9:f3:c3:68:c6:27:46:93:3a:ca:78:7a:7e:e2:65:48:74: af:ee:93:bf:de:38:4f:de:4d:6f:7d:e2:34:ab:ac:28:bd:3e: e6:c1:c9:4c:1e:2c:ab:14:84:df:f0:55:95:a2:ec:84:39:1d: 26:62:b4:ee:4b:b1:55:f7:bc:44:a3:07:f8:4a:23:0a:26:ce: fb:6f:d6:3c:fc:ab:3a:ba:38:95:b6:b4:69:ac:da:f2:9d:0b: 64:64:ef:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDInghcI4AXCHU6TVhY+P+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0YzczNTI1OWZkYjdiODNmMjc3YWRmMTJkMDhjYzk4YjVh NjEwMGEwHhcNMjYwMjA5MTYwMDU4WhcNMjYwMjEwMTYwMDU4WjAzMTEwLwYDVQQD Eyg5MjYzYzk4MDU2Y2I5YmExMzBiYTc1NGYwMGQ5NjkwM2E0NjA3NmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDsu+bDn9ButjId1V3EWqlvbHK+v nLDbI0qfkndYjHcwCyFe80SiMJeRwR8RgeQ8d5jvQpFBex1a400Y53h9uNUs9eOP R1dNWUvojH7ncM/R0scUVsrjsn1GEdBBDK2f1I3jjN+q0TVSskKnjSEz6oJV8wuU yrlfKrE1pPSVfX/xuZRKw9satagLU3l6Trz2uEM3y65c9JzN26h4yKvgcntU50Jb 9Nt2Tq0x76mZJGTBVsX1IYvSfiU7YJhDc7+zF9stZbU5gi/ezZcjuT0k0ZC8oCsx DvxfkjfA/sZ06Y//sNoTkW3u3dM/D/LMXW1AQphZcbY9EMj4sUZaFCElqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJJjyYBWy5uhMLp1TwDZaQOkYHbPMB8GA1UdIwQY MBaAFBTHNSWf23uD8net8S0IzJi1phAKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRk1jMUpaX2JlNFB5ZDYzeExRak1tTFdtRUFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9kZTJiMTYtZmEyYi00YTExLTk1YWIt ZGJlYWY3ODQ4MTdhLzEvRk1jMUpaX2JlNFB5ZDYzeExRak1tTFdtRUFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9kZTJiMTYtZmEyYi00YTExLTk1YWItZGJlYWY3ODQ4MTdh LzEvRk1jMUpaX2JlNFB5ZDYzeExRak1tTFdtRUFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL3EpKFrW H0EGtNB/5A/gqN0pGuYlAgL3HYCGg66DVw9gIEBNTg6NJuzWq0yoLZTpnU9DzfRw TzKDUCUNIT6PWRYlRFYkaT2yxYr1nspwUQEtQsLOPqVoOuUZnnJK458VePx0USrA JNyx1ZCWTtuQjcajrVltGN5n/a8spFLVJoC1PXwC9PfTX28Zas/Rr4UehrNpFcFu GXZKlQBpNBSEhE/vZPnzw2jGJ0aTOsp4en7iZUh0r+6Tv944T95Nb33iNKusKL0+ 5sHJTB4sqxSE3/BVlaLshDkdJmK07kuxVfe8RKMH+EojCibO+2/WPPyrOro4lba0 aaza8p0LZGTvrw== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:21 2026 by rpki-client