This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft File: VGgc0JnIW-caIjUMsT8EglwB-PA.mft (raw, json) Hash identifier: 8PvMt6Ly77dTs81JlPv+ecKQGU3t10Y7KBF/cCeIDWk= Subject key identifier: BC:8D:28:64:66:A7:D4:36:41:2E:89:B3:A7:82:FD:00:7E:08:D7:D0 Authority key identifier: 54:68:1C:D0:99:C8:5B:E7:1A:22:35:0C:B1:3F:04:82:5C:01:F8:F0 Certificate issuer: /CN=54681cd099c85be71a22350cb13f04825c01f8f0 Certificate serial: 019C43224E7C44A9E6F369E81A02CA133429 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft Manifest number: 0E68 Signing time: Mon 09 Feb 2026 16:00:47 +0000 Manifest this update: Mon 09 Feb 2026 16:00:47 +0000 Manifest next update: Tue 10 Feb 2026 16:00:47 +0000 Files and hashes: 1: VGgc0JnIW-caIjUMsT8EglwB-PA.crl (hash: MY0TihLUoiSDPtvYe7ElGtyFPi3XEPE/oQdttrXDt+E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:4e:7c:44:a9:e6:f3:69:e8:1a:02:ca:13:34:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54681cd099c85be71a22350cb13f04825c01f8f0 Validity Not Before: Feb 9 16:00:47 2026 GMT Not After : Feb 10 16:00:47 2026 GMT Subject: CN=bc8d286466a7d436412e89b3a782fd007e08d7d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d9:94:71:a6:2c:58:b3:9b:c5:4e:9f:83:43: 20:25:91:36:fd:d6:01:47:93:6b:2f:3d:0f:04:66: 70:f3:7e:bf:3d:05:f8:a6:86:df:16:2c:d7:a0:1c: 23:4d:5f:f1:9a:dc:05:2a:cf:aa:8e:2c:1b:26:95: 5c:8e:f2:9e:d3:cc:b7:2b:46:42:7d:05:ca:a6:22: b7:f5:09:a8:ac:66:d4:2c:04:9c:b5:a7:33:ba:be: ac:b6:e9:f5:9a:fe:f1:29:61:dd:71:62:2b:c8:08: 77:4f:ff:7e:18:53:ca:35:7e:9e:76:f2:be:75:a3: a4:6b:5a:19:41:1e:52:5c:bb:31:89:f0:98:91:6b: 8e:85:fd:58:3d:74:65:65:c5:08:a0:f4:13:0c:cf: 1b:a9:c6:78:81:39:08:99:e3:ae:7c:71:30:7e:39: de:32:52:e0:7b:b0:77:79:1e:05:d9:c3:98:58:87: 3f:9b:3c:5b:e1:0d:30:5e:c2:73:cd:ba:72:17:c4: da:18:1d:5b:64:57:02:c1:b7:7b:fe:a4:19:53:7d: d0:8d:86:40:f6:52:28:36:96:c7:be:1e:5a:7f:3d: 2b:b7:48:ca:aa:8d:2f:a9:89:30:26:52:bd:6b:57: a6:ca:fb:b8:f0:23:cd:e6:51:39:88:44:6c:aa:2f: 81:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:8D:28:64:66:A7:D4:36:41:2E:89:B3:A7:82:FD:00:7E:08:D7:D0 X509v3 Authority Key Identifier: keyid:54:68:1C:D0:99:C8:5B:E7:1A:22:35:0C:B1:3F:04:82:5C:01:F8:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:7e:fe:9b:7c:7c:aa:63:91:55:90:6f:08:5a:cd:6d:39:21: 02:91:85:7e:12:3e:fe:2c:7e:0a:37:dd:57:5a:62:9c:25:31: f4:b8:f7:9c:ba:4c:76:f8:7a:20:9e:8f:64:3a:f9:3f:01:d7: 96:83:dc:5e:62:c2:1b:50:3a:f3:4c:61:f8:8c:2d:05:af:41: 55:2a:2f:69:fb:24:1b:29:47:9a:50:b7:18:e2:5e:46:8e:66: 96:0b:e1:1a:33:38:c2:64:ef:9f:f8:b0:d5:b8:1f:96:8f:c3: 65:bf:00:3f:ed:dc:64:c7:d9:72:3d:59:0f:e9:6a:16:fb:73: 91:39:3b:35:90:83:13:c1:84:31:c0:ce:bc:32:ea:9e:b5:2c: 60:0e:aa:ac:61:f9:f3:e3:9b:fe:86:b8:83:61:69:f4:c2:c5: 6d:33:d7:4e:f8:6a:ca:76:ef:79:93:75:39:32:b1:15:f0:1b: ef:e2:d6:84:d8:d4:80:d1:f0:70:ae:ff:c8:e1:44:3c:47:a7: 16:09:1f:15:cc:21:8f:13:f7:18:1f:ad:f7:a1:0d:18:a6:f3: 3f:0a:f4:db:02:59:71:dc:16:4e:58:10:2a:7a:44:0a:b8:d2: 9b:88:09:04:da:eb:48:b4:d4:aa:40:59:fb:a2:15:a5:e2:53: 94:11:00:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIk58RKnm82noGgLKEzQpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0NjgxY2QwOTljODViZTcxYTIyMzUwY2IxM2YwNDgyNWMw MWY4ZjAwHhcNMjYwMjA5MTYwMDQ3WhcNMjYwMjEwMTYwMDQ3WjAzMTEwLwYDVQQD EyhiYzhkMjg2NDY2YTdkNDM2NDEyZTg5YjNhNzgyZmQwMDdlMDhkN2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNmUcaYsWLObxU6fg0MgJZE2/dYB R5NrLz0PBGZw836/PQX4pobfFizXoBwjTV/xmtwFKs+qjiwbJpVcjvKe08y3K0ZC fQXKpiK39QmorGbULASctaczur6stun1mv7xKWHdcWIryAh3T/9+GFPKNX6edvK+ daOka1oZQR5SXLsxifCYkWuOhf1YPXRlZcUIoPQTDM8bqcZ4gTkImeOufHEwfjne MlLge7B3eR4F2cOYWIc/mzxb4Q0wXsJzzbpyF8TaGB1bZFcCwbd7/qQZU33QjYZA 9lIoNpbHvh5afz0rt0jKqo0vqYkwJlK9a1emyvu48CPN5lE5iERsqi+BPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLyNKGRmp9Q2QS6Js6eC/QB+CNfQMB8GA1UdIwQY MBaAFFRoHNCZyFvnGiI1DLE/BIJcAfjwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkdnYzBKbklXLWNhSWpVTXNUOEVnbHdCLVBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8wODUwMTMtZGQzZC00Y2E3LWJhNzkt Yzg4MjgzZjhmMTE3LzEvVkdnYzBKbklXLWNhSWpVTXNUOEVnbHdCLVBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8wODUwMTMtZGQzZC00Y2E3LWJhNzktYzg4MjgzZjhmMTE3 LzEvVkdnYzBKbklXLWNhSWpVTXNUOEVnbHdCLVBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmn7+m3x8 qmORVZBvCFrNbTkhApGFfhI+/ix+CjfdV1pinCUx9Lj3nLpMdvh6IJ6PZDr5PwHX loPcXmLCG1A680xh+IwtBa9BVSovafskGylHmlC3GOJeRo5mlgvhGjM4wmTvn/iw 1bgflo/DZb8AP+3cZMfZcj1ZD+lqFvtzkTk7NZCDE8GEMcDOvDLqnrUsYA6qrGH5 8+Ob/oa4g2Fp9MLFbTPXTvhqynbveZN1OTKxFfAb7+LWhNjUgNHwcK7/yOFEPEen FgkfFcwhjxP3GB+t96ENGKbzPwr02wJZcdwWTlgQKnpECrjSm4gJBNrrSLTUqkBZ +6IVpeJTlBEA0Q== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:34 2026 by rpki-client