This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json) Hash identifier: PlmhCdRNDS31oUImeIg+iCpr0Q3AGn/P102Sl6QIh8I= Subject key identifier: 04:1F:1D:08:95:62:DB:00:FD:21:CA:BF:54:B3:7C:A0:D6:37:89:76 Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37 Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737 Certificate serial: 019C4322A2DB7390E2C1560E81EAABA62DDE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 16:01:09 +0000 Manifest this update: Mon 09 Feb 2026 16:01:09 +0000 Manifest next update: Tue 10 Feb 2026 16:01:09 +0000 Files and hashes: 1: sBKm5lh9pFW6Bx5UfqBwJxTOW-c.roa (hash: fm7BpsPCc0ljnRZ7PGXN1/E5kbFIYol2cEhLrnlX2S0=) 2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: p/KZsVSl37SH30aoccHB/OKDev+pQoUlVzT9ESmqGv8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:a2:db:73:90:e2:c1:56:0e:81:ea:ab:a6:2d:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737 Validity Not Before: Feb 9 16:01:09 2026 GMT Not After : Feb 10 16:01:09 2026 GMT Subject: CN=041f1d089562db00fd21cabf54b37ca0d6378976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:68:da:69:47:62:20:dc:f6:80:e5:c8:c7:1a: 8c:31:bc:a5:40:16:be:0f:e2:ea:2a:ac:aa:0b:88: 6e:eb:58:47:29:f5:dd:45:69:a9:1b:b9:d4:74:b3: 22:fa:2c:a0:65:bf:48:a3:62:43:ce:27:67:69:c9: e5:16:1e:d3:1d:fe:c9:17:2c:21:15:2e:10:4e:a7: 83:50:a1:69:a5:85:79:d0:6e:11:46:31:90:22:86: 57:f5:26:1b:b2:2f:0f:17:6e:60:d1:a5:a7:b0:f4: b3:6c:cc:b8:98:6d:18:3a:c4:bc:3c:38:dd:3d:73: 8c:a0:ca:48:0c:de:fa:e8:f1:c3:7f:3f:ed:bb:a4: fb:10:1e:47:71:d1:1f:d3:bf:2d:1b:39:87:af:00: 4a:a7:6a:de:96:b6:39:2d:e5:6d:c8:39:a1:01:d3: 3a:15:51:96:86:94:73:7e:22:90:7d:3f:86:53:0a: 27:a0:f1:ab:67:19:72:4c:54:69:32:ed:94:5d:7c: 09:40:50:fc:e8:44:8f:c3:dd:ce:44:b8:66:e9:5d: 2e:b1:5f:1a:e5:fe:ac:77:71:2a:82:c0:11:f8:3a: 15:58:a1:3c:49:3a:22:14:45:be:de:ad:fb:5d:6f: 55:de:a0:97:8a:b2:6a:99:3b:3f:9e:5f:83:d4:90: 35:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1F:1D:08:95:62:DB:00:FD:21:CA:BF:54:B3:7C:A0:D6:37:89:76 X509v3 Authority Key Identifier: keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:c5:59:cb:b7:9c:be:c1:90:3d:8f:11:65:2e:e8:73:00:c2: 9a:44:a3:08:01:9e:8e:e8:c9:f4:f4:8b:38:cc:23:60:57:14: 5e:93:40:f8:1f:22:8a:c8:fc:45:b5:64:b8:3e:15:f6:56:a1: 60:cf:f7:d8:2f:6f:d3:5b:b2:6a:46:b5:85:59:98:46:ab:8a: f6:11:b2:33:ea:0a:80:8a:a7:e8:2c:b6:2b:1b:59:29:2e:79: 35:ab:64:7a:77:79:d4:b1:5d:93:24:8b:37:5c:86:e6:73:16: 66:eb:26:51:4c:20:02:e0:2e:4d:11:35:dd:2d:e8:3c:6f:34: 28:5e:12:ad:3a:96:1a:df:46:33:87:da:82:68:56:4d:07:f4: dd:75:a3:aa:29:e6:3a:c9:c2:91:1f:ce:3d:29:30:f9:88:f9: 24:25:ca:c8:30:66:e0:26:6d:42:1d:c9:5c:cc:b5:a4:2f:8a: b4:a5:4c:9d:77:12:a7:bb:7d:9b:01:e7:5a:a9:5c:2f:5d:cd: 49:a1:b9:68:72:47:5a:ac:1d:ec:c9:65:e8:b8:18:34:6b:57: a7:04:ce:ea:9c:7c:b8:55:48:87:85:de:f0:52:ff:6b:cf:57: 8f:cc:fc:a9:6f:1c:d6:3d:1b:39:b6:d3:fc:e2:98:86:e9:76: 1e:00:e5:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIqLbc5DiwVYOgeqrpi3eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0ODEwZDdjOWJmYzU4YjllMGExZTU5MTY5YzNkZDMyMmRl OWY3MzcwHhcNMjYwMjA5MTYwMTA5WhcNMjYwMjEwMTYwMTA5WjAzMTEwLwYDVQQD EygwNDFmMWQwODk1NjJkYjAwZmQyMWNhYmY1NGIzN2NhMGQ2Mzc4OTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2jaaUdiINz2gOXIxxqMMbylQBa+ D+LqKqyqC4hu61hHKfXdRWmpG7nUdLMi+iygZb9Io2JDzidnacnlFh7THf7JFywh FS4QTqeDUKFppYV50G4RRjGQIoZX9SYbsi8PF25g0aWnsPSzbMy4mG0YOsS8PDjd PXOMoMpIDN766PHDfz/tu6T7EB5HcdEf078tGzmHrwBKp2relrY5LeVtyDmhAdM6 FVGWhpRzfiKQfT+GUwonoPGrZxlyTFRpMu2UXXwJQFD86ESPw93ORLhm6V0usV8a 5f6sd3EqgsAR+DoVWKE8SToiFEW+3q37XW9V3qCXirJqmTs/nl+D1JA1LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAQfHQiVYtsA/SHKv1SzfKDWN4l2MB8GA1UdIwQY MBaAFLSBDXyb/Fi54KHlkWnD3TIt6fc3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdElFTmZKdjhXTG5nb2VXUmFjUGRNaTNwOXpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8zZDRjNDYtNzU0NS00YjNkLThmMWMt MmE2MzQwMmJlYzY2LzEvdElFTmZKdjhXTG5nb2VXUmFjUGRNaTNwOXpjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8zZDRjNDYtNzU0NS00YjNkLThmMWMtMmE2MzQwMmJlYzY2 LzEvdElFTmZKdjhXTG5nb2VXUmFjUGRNaTNwOXpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF8VZy7ec vsGQPY8RZS7ocwDCmkSjCAGejujJ9PSLOMwjYFcUXpNA+B8iisj8RbVkuD4V9lah YM/32C9v01uyaka1hVmYRquK9hGyM+oKgIqn6Cy2KxtZKS55Natkend51LFdkySL N1yG5nMWZusmUUwgAuAuTRE13S3oPG80KF4SrTqWGt9GM4fagmhWTQf03XWjqinm OsnCkR/OPSkw+Yj5JCXKyDBm4CZtQh3JXMy1pC+KtKVMnXcSp7t9mwHnWqlcL13N SaG5aHJHWqwd7Mll6LgYNGtXpwTO6px8uFVIh4Xe8FL/a89Xj8z8qW8c1j0bObbT /OKYhul2HgDl8A== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:04 2026 by rpki-client