This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft File: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft (raw, json) Hash identifier: CJxPYMMdF7QHx2X+4IMnYk2uwn0Iux7auY3h87FoSxs= Subject key identifier: 0F:24:CB:FE:65:8E:6F:68:98:E2:52:0B:B6:55:DB:99:EB:AF:68:D5 Authority key identifier: 98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26 Certificate issuer: /CN=98241aac9eda7bef69089f647b5d8f774ff43a26 Certificate serial: 019C427D3CCC7DEB5872E1147BC8E8C583A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft Manifest number: 0F44 Signing time: Mon 09 Feb 2026 13:00:29 +0000 Manifest this update: Mon 09 Feb 2026 13:00:29 +0000 Manifest next update: Tue 10 Feb 2026 13:00:29 +0000 Files and hashes: 1: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl (hash: mcUU0aTB8+FUDEpEUoQ1yh9Ue8pnJsHiuuuCJARk+yw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:3c:cc:7d:eb:58:72:e1:14:7b:c8:e8:c5:83:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98241aac9eda7bef69089f647b5d8f774ff43a26 Validity Not Before: Feb 9 13:00:29 2026 GMT Not After : Feb 10 13:00:29 2026 GMT Subject: CN=0f24cbfe658e6f6898e2520bb655db99ebaf68d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:db:a9:bc:3e:2c:b9:91:0f:18:83:0f:62:6b: 98:27:8b:ed:86:2d:79:8d:56:93:e0:f2:71:c3:70: 4b:3f:c1:ba:e6:e5:4e:ad:c5:dd:8b:ef:91:87:52: 57:0f:b3:c0:22:b1:24:a2:f4:3f:27:37:2e:63:95: 81:29:b0:ed:b3:94:9e:5c:ef:d3:8a:1f:75:5a:93: 30:72:50:85:8d:7a:8a:68:56:a6:fb:82:3f:f4:0a: bd:84:c9:1a:88:0b:12:52:db:3f:38:82:21:d3:64: 0e:ae:ef:ca:10:b6:37:87:b6:41:1c:04:4d:2c:7e: 00:ac:ce:61:44:e8:1e:4e:1e:af:ee:69:55:cd:a6: de:95:83:40:7b:30:cf:47:b3:86:28:9b:44:e9:79: 6a:b9:96:0a:7d:4b:e5:fa:47:81:ce:75:28:1c:4f: 5b:12:30:f7:f1:08:4d:15:57:51:9c:be:f6:02:59: 2b:31:01:2c:31:d5:42:7b:8c:47:3a:6b:5f:c9:02: 50:12:fa:e5:aa:aa:2e:8e:34:a0:4a:8f:0b:0f:07: f2:d7:42:2c:47:69:b8:69:70:b3:ab:03:12:6c:3f: 67:76:ad:bc:dc:9d:96:c7:49:e1:5f:af:b0:d4:44: be:3e:48:3e:be:d7:84:5f:75:14:70:06:84:a3:26: 99:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:24:CB:FE:65:8E:6F:68:98:E2:52:0B:B6:55:DB:99:EB:AF:68:D5 X509v3 Authority Key Identifier: keyid:98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:b4:25:7d:3c:f3:4e:c6:94:e3:fb:eb:62:02:9f:02:65:ae: bb:7a:13:cd:ab:f3:1a:95:b0:ec:cd:ea:d6:3a:02:04:61:9c: d7:48:fe:a0:44:84:a7:02:3d:70:8d:9b:aa:0e:f1:56:59:1b: 87:ff:f6:d8:6e:60:95:6e:b8:b6:ed:da:09:0c:69:77:22:a8: 8b:22:ff:59:42:ce:78:a7:7f:97:c4:d8:05:f7:32:bb:cd:38: b5:9b:65:78:95:3b:45:1b:30:3b:55:a6:38:a1:a6:83:83:92: 8d:01:b9:8f:a6:53:f7:9d:6e:81:0c:10:86:08:fa:cf:f3:cc: de:cc:83:79:c2:b3:8b:fc:86:d0:34:9b:87:93:69:af:91:a0: 4d:fd:ad:62:fe:c5:ce:51:09:77:e5:70:f9:a0:a5:90:b2:70: d3:73:5e:d8:3b:11:23:c9:c4:de:53:67:9b:e7:a8:66:4f:96: a4:8b:d5:04:de:e7:97:cb:6d:a4:78:31:45:d1:de:fa:53:8f: fe:d5:98:ba:f9:87:eb:47:77:21:33:f3:34:e1:eb:11:8a:c3: bd:b9:42:6b:c2:0f:71:b2:90:4d:a0:01:43:78:80:8a:d6:6e: 05:d5:72:b6:4f:45:a6:78:0e:90:bd:62:ad:00:7b:f9:a0:f2: 21:43:72:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfTzMfetYcuEUe8joxYOmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4MjQxYWFjOWVkYTdiZWY2OTA4OWY2NDdiNWQ4Zjc3NGZm NDNhMjYwHhcNMjYwMjA5MTMwMDI5WhcNMjYwMjEwMTMwMDI5WjAzMTEwLwYDVQQD EygwZjI0Y2JmZTY1OGU2ZjY4OThlMjUyMGJiNjU1ZGI5OWViYWY2OGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNupvD4suZEPGIMPYmuYJ4vthi15 jVaT4PJxw3BLP8G65uVOrcXdi++Rh1JXD7PAIrEkovQ/JzcuY5WBKbDts5SeXO/T ih91WpMwclCFjXqKaFam+4I/9Aq9hMkaiAsSUts/OIIh02QOru/KELY3h7ZBHARN LH4ArM5hROgeTh6v7mlVzabelYNAezDPR7OGKJtE6XlquZYKfUvl+keBznUoHE9b EjD38QhNFVdRnL72AlkrMQEsMdVCe4xHOmtfyQJQEvrlqqoujjSgSo8LDwfy10Is R2m4aXCzqwMSbD9ndq283J2Wx0nhX6+w1ES+Pkg+vteEX3UUcAaEoyaZ6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA8ky/5ljm9omOJSC7ZV25nrr2jVMB8GA1UdIwQY MBaAFJgkGqye2nvvaQifZHtdj3dP9DomMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUNRYXJKN2FlLTlwQ0o5a2UxMlBkMF8wT2lZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9jZGE5NTgtM2NhYi00YjIzLTkxNmMt MzVkZTM4NGMwOTgyLzEvbUNRYXJKN2FlLTlwQ0o5a2UxMlBkMF8wT2lZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9jZGE5NTgtM2NhYi00YjIzLTkxNmMtMzVkZTM4NGMwOTgy LzEvbUNRYXJKN2FlLTlwQ0o5a2UxMlBkMF8wT2lZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABbQlfTzz TsaU4/vrYgKfAmWuu3oTzavzGpWw7M3q1joCBGGc10j+oESEpwI9cI2bqg7xVlkb h//22G5glW64tu3aCQxpdyKoiyL/WULOeKd/l8TYBfcyu804tZtleJU7RRswO1Wm OKGmg4OSjQG5j6ZT951ugQwQhgj6z/PM3syDecKzi/yG0DSbh5Npr5GgTf2tYv7F zlEJd+Vw+aClkLJw03Ne2DsRI8nE3lNnm+eoZk+WpIvVBN7nl8ttpHgxRdHe+lOP /tWYuvmH60d3ITPzNOHrEYrDvblCa8IPcbKQTaABQ3iAitZuBdVytk9FpngOkL1i rQB7+aDyIUNyHA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:42 2026 by rpki-client