This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json) Hash identifier: 8bynAT6o8pUUuPMrLqUaMQeyzhFideHy56nJbAatY0E= Subject key identifier: 17:41:7D:54:C2:4D:50:08:80:9E:B6:75:69:40:0B:06:99:45:6A:4B Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33 Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733 Certificate serial: 019C43220CD8D157EB97E45296EFB89624EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 16:00:30 +0000 Manifest this update: Mon 09 Feb 2026 16:00:30 +0000 Manifest next update: Tue 10 Feb 2026 16:00:30 +0000 Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: HvX5elijW6BARL1Q5CRBeBn5Z3/+U4rR7LBwm5jAVmw=) 2: gZRVVjbr0VF9kLZepM4sAakfV64.roa (hash: OS+DVlQyVLtcNxKCYd+cy14Vh3Z+rz6mTy8GBtTKd0Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:0c:d8:d1:57:eb:97:e4:52:96:ef:b8:96:24:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733 Validity Not Before: Feb 9 16:00:30 2026 GMT Not After : Feb 10 16:00:30 2026 GMT Subject: CN=17417d54c24d5008809eb67569400b0699456a4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c7:25:8e:ae:e8:bf:77:20:49:8a:5b:3a:c9: 2b:30:c2:ed:95:00:35:14:18:b9:a8:0b:6d:a4:b1: 69:ef:9c:c8:ad:8f:0b:50:79:38:10:d1:14:9f:7a: 21:d8:e7:c6:ef:22:3a:0f:8c:d9:e0:8a:6b:7c:68: 3e:cc:e5:f9:40:b2:24:4b:7e:00:0d:32:79:79:c2: 3c:03:69:6e:22:64:13:9b:2a:27:87:8e:e2:0d:93: e7:88:9a:de:b0:f5:3e:06:0e:67:a6:25:4a:87:42: a8:d6:1b:25:3e:b1:a5:12:ae:9b:1e:e1:ac:45:59: cd:79:2b:63:65:6d:8d:d3:f5:38:3c:6f:93:df:5d: 03:5a:29:94:e1:e3:5c:14:8c:c9:8b:2b:e7:d7:7d: 40:6c:cf:6d:c2:63:21:04:43:21:80:dc:d2:ff:1c: 87:13:a7:56:1a:3e:d4:94:ae:0c:76:81:5f:4d:f9: 61:3f:17:78:5b:68:4e:05:ed:33:d4:64:ee:75:40: 96:76:37:5e:fe:05:7c:ae:00:1a:a9:8e:3e:12:d2: 2f:6e:31:65:1b:ab:e6:47:d5:b7:d4:15:6b:69:9e: 81:19:b6:20:b2:11:30:bd:5d:29:87:ad:a7:dc:90: 10:a3:59:3b:9e:4b:ea:1e:76:aa:a8:23:35:41:22: 31:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:41:7D:54:C2:4D:50:08:80:9E:B6:75:69:40:0B:06:99:45:6A:4B X509v3 Authority Key Identifier: keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:26:bc:25:16:ee:c1:2e:6f:7b:54:25:a4:79:e7:3a:3f:f1: 35:09:19:2c:aa:22:81:04:c7:29:28:0c:13:bd:84:86:59:66: ee:f8:80:93:20:70:28:83:91:47:42:b1:5f:b7:55:e3:df:ab: cf:b4:da:bc:3f:5f:53:d6:67:5e:ea:2a:db:b0:7a:49:95:2a: b8:40:f0:6c:b7:38:67:ba:dc:29:c7:45:20:3c:9c:8f:51:64: 3a:88:b6:78:cd:ca:80:9d:3c:ee:19:a5:7f:db:6f:f3:91:7c: 4a:8c:b4:c2:d8:97:75:d4:b6:00:06:66:a0:6e:c3:0b:27:5f: b0:c5:33:8b:c4:b0:7e:d5:71:68:1a:e2:aa:6d:d1:42:a0:cd: 6b:d2:22:d5:05:6e:04:f0:ec:2c:9e:c2:85:b1:cd:43:b3:11: 4b:40:45:24:f9:84:ed:76:4f:9f:b9:3d:66:85:f0:4b:79:69: 26:7a:90:32:0a:0f:80:b4:24:31:ba:31:52:8a:b3:9a:57:b3: 20:b5:1f:c3:05:48:98:40:ef:57:d7:23:6d:75:87:d7:b7:75: 16:aa:3c:86:85:e8:de:8e:7a:99:30:d4:1f:69:47:a0:33:31: a4:32:38:b8:36:5b:75:33:35:a0:a5:0a:4b:32:10:9f:3c:49: 15:53:fe:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIgzY0Vfrl+RSlu+4liTrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZjdjZDBlYzRjM2JjNTRjNTk0MzEzMDdlZWMzNmVmMDM4 Mjc3MzMwHhcNMjYwMjA5MTYwMDMwWhcNMjYwMjEwMTYwMDMwWjAzMTEwLwYDVQQD EygxNzQxN2Q1NGMyNGQ1MDA4ODA5ZWI2NzU2OTQwMGIwNjk5NDU2YTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtccljq7ov3cgSYpbOskrMMLtlQA1 FBi5qAttpLFp75zIrY8LUHk4ENEUn3oh2OfG7yI6D4zZ4IprfGg+zOX5QLIkS34A DTJ5ecI8A2luImQTmyonh47iDZPniJresPU+Bg5npiVKh0Ko1hslPrGlEq6bHuGs RVnNeStjZW2N0/U4PG+T310DWimU4eNcFIzJiyvn131AbM9twmMhBEMhgNzS/xyH E6dWGj7UlK4MdoFfTflhPxd4W2hOBe0z1GTudUCWdjde/gV8rgAaqY4+EtIvbjFl G6vmR9W31BVraZ6BGbYgshEwvV0ph62n3JAQo1k7nkvqHnaqqCM1QSIxBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBdBfVTCTVAIgJ62dWlACwaZRWpLMB8GA1UdIwQY MBaAFNH3zQ7Ew7xUxZQxMH7sNu8DgnczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGZmTkRzVER2RlRGbERFd2Z1dzI3d09DZHpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8wMjRkNDctNDdiMi00MGI1LWEyYjgt OWNiNWQ4OGZkZDM5LzEvMGZmTkRzVER2RlRGbERFd2Z1dzI3d09DZHpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8wMjRkNDctNDdiMi00MGI1LWEyYjgtOWNiNWQ4OGZkZDM5 LzEvMGZmTkRzVER2RlRGbERFd2Z1dzI3d09DZHpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnya8JRbu wS5ve1QlpHnnOj/xNQkZLKoigQTHKSgME72Ehllm7viAkyBwKIORR0KxX7dV49+r z7TavD9fU9ZnXuoq27B6SZUquEDwbLc4Z7rcKcdFIDycj1FkOoi2eM3KgJ087hml f9tv85F8Soy0wtiXddS2AAZmoG7DCydfsMUzi8SwftVxaBriqm3RQqDNa9Ii1QVu BPDsLJ7ChbHNQ7MRS0BFJPmE7XZPn7k9ZoXwS3lpJnqQMgoPgLQkMboxUoqzmlez ILUfwwVImEDvV9cjbXWH17d1Fqo8hoXo3o56mTDUH2lHoDMxpDI4uDZbdTM1oKUK SzIQnzxJFVP+Yw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:20 2026 by rpki-client