This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/a998bb-3bc3-4597-8dcc-c4f22536ab05/1/Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.mft File: Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.mft (raw, json) Hash identifier: 7lboFproEBzCt+nPiLmJMD7nN+VWyil7uellQqJDbq0= Subject key identifier: 61:D7:83:4D:E3:97:EC:72:EB:29:00:28:3E:FE:11:64:F7:CE:6A:16 Authority key identifier: 49:F9:B8:80:F2:59:B8:81:90:70:2C:22:BF:83:21:71:B7:59:74:34 Certificate issuer: /CN=49f9b880f259b88190702c22bf832171b7597434 Certificate serial: 019C41346716D98802EA6DF3B20C11A2159A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/a998bb-3bc3-4597-8dcc-c4f22536ab05/1/Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.mft Manifest number: 1462 Signing time: Mon 09 Feb 2026 07:01:19 +0000 Manifest this update: Mon 09 Feb 2026 07:01:19 +0000 Manifest next update: Tue 10 Feb 2026 07:01:19 +0000 Files and hashes: 1: Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.crl (hash: ldvT9mYCN0vBLxLzRNZBcFO5V2jXthSsjvMvjooH+7Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/a998bb-3bc3-4597-8dcc-c4f22536ab05/1/Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/a998bb-3bc3-4597-8dcc-c4f22536ab05/1/Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:67:16:d9:88:02:ea:6d:f3:b2:0c:11:a2:15:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49f9b880f259b88190702c22bf832171b7597434 Validity Not Before: Feb 9 07:01:19 2026 GMT Not After : Feb 10 07:01:19 2026 GMT Subject: CN=61d7834de397ec72eb2900283efe1164f7ce6a16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7f:02:38:e1:75:8e:c8:7c:99:cd:3c:c2:cd: 9e:62:ce:fb:10:99:b5:bd:51:00:32:92:a0:32:c2: ee:93:da:37:4e:70:11:0a:09:ba:66:bf:4b:48:d7: 20:79:63:4d:9f:e7:84:56:23:7a:c0:32:5e:11:d6: 89:40:25:d1:54:32:5a:98:40:16:39:c3:b7:eb:25: 34:46:c1:aa:87:2b:23:65:60:1a:dc:a0:d1:06:93: 41:78:d9:be:e7:89:75:6b:8d:71:3c:c4:f9:3b:a7: f5:48:aa:cd:74:a0:3a:62:50:e4:b1:5f:61:cf:19: b2:15:60:d9:e3:14:8b:99:79:4e:0f:b4:f0:b5:4d: ab:41:64:56:d7:f7:3b:51:85:9b:9e:f6:02:90:6f: 92:f5:90:fe:9a:cc:51:b6:e5:c1:c8:06:12:37:5c: 28:9e:03:a0:6b:3e:e1:d3:ad:f5:24:ad:c1:5f:88: 52:be:35:51:20:5f:36:cc:f8:6e:3c:23:56:a2:56: 79:19:f8:1c:9f:d1:41:78:e0:e1:13:a7:78:8b:97: b8:85:2d:f0:1f:ab:59:24:b0:df:f1:7e:5d:84:45: 6a:7a:56:76:80:14:75:cd:48:59:c2:19:07:3c:c7: db:b9:06:65:a6:a3:34:d1:11:03:ff:84:88:84:9c: 26:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D7:83:4D:E3:97:EC:72:EB:29:00:28:3E:FE:11:64:F7:CE:6A:16 X509v3 Authority Key Identifier: keyid:49:F9:B8:80:F2:59:B8:81:90:70:2C:22:BF:83:21:71:B7:59:74:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/a998bb-3bc3-4597-8dcc-c4f22536ab05/1/Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/a998bb-3bc3-4597-8dcc-c4f22536ab05/1/Sfm4gPJZuIGQcCwiv4MhcbdZdDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:6f:46:cb:7d:27:20:16:8d:31:f0:ad:e8:20:52:90:99:ad: ab:7b:98:2d:c2:61:b8:6d:9a:59:5a:f7:6b:9a:04:b7:69:7c: 92:60:60:fb:d0:1f:e6:ea:18:87:fb:69:14:6f:e2:05:d3:f6: 40:98:9f:a5:e2:33:4e:2f:9a:76:df:eb:b0:56:c8:a9:0a:ed: ce:37:6f:6d:a6:c1:66:97:91:0a:23:96:ac:38:27:ff:1f:7b: 59:47:1e:88:2a:03:e3:c0:f9:cd:fd:99:9f:8f:6a:11:0d:4f: 06:1b:5c:a3:7a:db:65:c2:e2:3d:77:17:57:85:fb:2b:fe:da: f1:8f:30:54:b7:e7:32:71:d8:be:5a:ee:9f:c0:7d:c9:74:00: 2e:11:88:74:1b:2e:c9:87:1d:f9:e1:03:06:60:9b:f1:3e:2c: 85:39:a4:8b:88:b6:df:15:9f:91:62:6b:e8:e0:4b:33:e2:0c: 2f:bd:08:51:de:e6:c0:36:bc:7b:56:f5:30:40:3e:ec:26:67: a8:9f:24:c3:52:77:31:b1:3c:8c:88:a3:78:57:2b:76:50:42: 6b:70:1f:dd:df:d6:d4:16:6c:45:dd:49:6f:30:70:7f:aa:9f: bb:e9:07:23:8b:d4:20:1a:62:04:72:4b:ce:a6:f5:a9:85:a7: e9:f4:e4:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNGcW2YgC6m3zsgwRohWaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5ZjliODgwZjI1OWI4ODE5MDcwMmMyMmJmODMyMTcxYjc1 OTc0MzQwHhcNMjYwMjA5MDcwMTE5WhcNMjYwMjEwMDcwMTE5WjAzMTEwLwYDVQQD Eyg2MWQ3ODM0ZGUzOTdlYzcyZWIyOTAwMjgzZWZlMTE2NGY3Y2U2YTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsn8COOF1jsh8mc08ws2eYs77EJm1 vVEAMpKgMsLuk9o3TnARCgm6Zr9LSNcgeWNNn+eEViN6wDJeEdaJQCXRVDJamEAW OcO36yU0RsGqhysjZWAa3KDRBpNBeNm+54l1a41xPMT5O6f1SKrNdKA6YlDksV9h zxmyFWDZ4xSLmXlOD7TwtU2rQWRW1/c7UYWbnvYCkG+S9ZD+msxRtuXByAYSN1wo ngOgaz7h0631JK3BX4hSvjVRIF82zPhuPCNWolZ5Gfgcn9FBeODhE6d4i5e4hS3w H6tZJLDf8X5dhEVqelZ2gBR1zUhZwhkHPMfbuQZlpqM00RED/4SIhJwmGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHXg03jl+xy6ykAKD7+EWT3zmoWMB8GA1UdIwQY MBaAFEn5uIDyWbiBkHAsIr+DIXG3WXQ0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2ZtNGdQSlp1SUdRY0N3aXY0TWhjYmRaZERRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9hOTk4YmItM2JjMy00NTk3LThkY2Mt YzRmMjI1MzZhYjA1LzEvU2ZtNGdQSlp1SUdRY0N3aXY0TWhjYmRaZERRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9hOTk4YmItM2JjMy00NTk3LThkY2MtYzRmMjI1MzZhYjA1 LzEvU2ZtNGdQSlp1SUdRY0N3aXY0TWhjYmRaZERRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWG9Gy30n IBaNMfCt6CBSkJmtq3uYLcJhuG2aWVr3a5oEt2l8kmBg+9Af5uoYh/tpFG/iBdP2 QJifpeIzTi+adt/rsFbIqQrtzjdvbabBZpeRCiOWrDgn/x97WUceiCoD48D5zf2Z n49qEQ1PBhtco3rbZcLiPXcXV4X7K/7a8Y8wVLfnMnHYvlrun8B9yXQALhGIdBsu yYcd+eEDBmCb8T4shTmki4i23xWfkWJr6OBLM+IML70IUd7mwDa8e1b1MEA+7CZn qJ8kw1J3MbE8jIijeFcrdlBCa3Af3d/W1BZsRd1JbzBwf6qfu+kHI4vUIBpiBHJL zqb1qYWn6fTk2g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:25 2026 by rpki-client