This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft File: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft (raw, json) Hash identifier: gT7u570i6YMhlWdENAn6s+VbmV6M5y6vJm5h8mVX3lo= Subject key identifier: 32:4F:23:DE:82:0C:6E:66:BC:A0:D7:3B:B1:05:79:13:01:27:AF:18 Authority key identifier: D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69 Certificate issuer: /CN=d788851981cfb3c15624b6e97f60a3d991d6d969 Certificate serial: 019C4321D84C84B7F44CAF3A45E469CFE269 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft Manifest number: 06E6 Signing time: Mon 09 Feb 2026 16:00:17 +0000 Manifest this update: Mon 09 Feb 2026 16:00:17 +0000 Manifest next update: Tue 10 Feb 2026 16:00:17 +0000 Files and hashes: 1: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl (hash: qsNAoE65fcwdnKeZ1ZFymwNrltvMu7HyWRDRkTy9/D0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:d8:4c:84:b7:f4:4c:af:3a:45:e4:69:cf:e2:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d788851981cfb3c15624b6e97f60a3d991d6d969 Validity Not Before: Feb 9 16:00:17 2026 GMT Not After : Feb 10 16:00:17 2026 GMT Subject: CN=324f23de820c6e66bca0d73bb10579130127af18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bf:83:d2:80:41:a1:28:f4:59:56:1c:46:4a: 25:29:c7:87:69:ce:32:7b:c5:61:bf:f7:2e:f4:79: 43:36:54:73:b6:c8:9f:b5:c4:2d:a8:d5:b5:8d:ea: 0a:26:ae:87:86:cc:76:37:54:4e:df:15:ce:d7:93: 9e:c8:c1:c1:fb:65:5f:ae:bb:fb:f0:df:aa:9d:b3: 1d:e5:d1:1d:d8:3b:32:b1:e8:78:b0:77:cd:29:e0: 22:44:bd:e0:fd:f9:71:0a:77:e3:0d:22:5c:28:37: 2d:63:51:ae:be:8c:2f:8a:b3:77:ba:97:84:f4:ab: 4c:f6:0a:96:31:8d:a3:77:bb:ea:ec:8f:93:06:65: f2:7a:1f:c2:15:76:04:90:02:c0:41:81:4d:1a:9c: 13:c8:c5:a4:31:93:f1:ef:d3:25:5a:a9:20:74:c9: 6b:70:13:27:d9:ad:a8:c5:6a:e4:64:ac:88:09:13: 50:62:6c:d5:d3:d9:46:9b:3d:ac:1a:d2:e9:dc:8c: 1c:fa:27:f1:f7:3e:e4:3e:b9:ce:77:a4:b3:d2:4a: 67:93:fd:6f:eb:0e:0a:a5:0d:28:77:a7:93:1d:4a: e1:ff:89:25:a1:4b:e0:1c:5d:fb:11:99:1b:83:65: ac:1a:72:6e:ab:58:fc:6d:4a:fe:cc:94:3a:c1:68: 84:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4F:23:DE:82:0C:6E:66:BC:A0:D7:3B:B1:05:79:13:01:27:AF:18 X509v3 Authority Key Identifier: keyid:D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:3e:ec:7f:9e:d0:7f:c2:34:d1:4b:05:b1:ee:ec:94:84:03: 91:82:3e:18:3a:c1:9e:f8:29:4b:0c:a0:81:f9:97:73:11:41: 8c:72:4f:75:43:0c:de:2f:ec:f8:06:2a:9f:09:aa:0b:75:50: dd:d7:5c:fa:c3:6a:3b:90:54:16:a8:ef:c7:06:f0:d6:7c:eb: 40:6b:aa:18:5c:44:57:28:06:02:db:78:1f:dc:06:d6:27:cb: 13:d4:92:27:64:03:29:73:69:33:aa:6d:fa:9c:8d:1a:0d:79: 91:6d:7a:32:29:2c:74:f3:3d:6a:7a:cd:ff:a7:c2:10:27:ea: 4e:69:ee:b8:3f:12:22:3d:73:1f:dc:60:91:ad:d0:4b:9b:85: 26:2e:76:3f:2d:11:6b:b8:e4:f6:e1:fb:4d:be:db:7b:a2:40: 4a:8e:f4:0d:c7:30:4b:1b:65:85:4b:93:a2:4c:67:c8:f1:a8: e5:ab:13:8d:b7:26:f4:94:b4:57:35:b0:5e:3c:b6:2e:5b:1f: 66:4c:a5:96:d1:e1:36:bc:1d:0f:de:09:ca:3d:bf:58:3c:c0: a1:16:11:df:1a:53:13:cd:3e:32:3d:61:55:bc:ad:bb:d4:12: b1:1f:ab:cd:d9:ab:b5:61:e7:5c:79:27:ba:26:df:48:6d:40: 9f:b7:2e:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIdhMhLf0TK86ReRpz+JpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3ODg4NTE5ODFjZmIzYzE1NjI0YjZlOTdmNjBhM2Q5OTFk NmQ5NjkwHhcNMjYwMjA5MTYwMDE3WhcNMjYwMjEwMTYwMDE3WjAzMTEwLwYDVQQD EygzMjRmMjNkZTgyMGM2ZTY2YmNhMGQ3M2JiMTA1NzkxMzAxMjdhZjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAor+D0oBBoSj0WVYcRkolKceHac4y e8Vhv/cu9HlDNlRztsiftcQtqNW1jeoKJq6Hhsx2N1RO3xXO15OeyMHB+2Vfrrv7 8N+qnbMd5dEd2Dsyseh4sHfNKeAiRL3g/flxCnfjDSJcKDctY1GuvowvirN3upeE 9KtM9gqWMY2jd7vq7I+TBmXyeh/CFXYEkALAQYFNGpwTyMWkMZPx79MlWqkgdMlr cBMn2a2oxWrkZKyICRNQYmzV09lGmz2sGtLp3Iwc+ifx9z7kPrnOd6Sz0kpnk/1v 6w4KpQ0od6eTHUrh/4kloUvgHF37EZkbg2WsGnJuq1j8bUr+zJQ6wWiEyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDJPI96CDG5mvKDXO7EFeRMBJ68YMB8GA1UdIwQY MBaAFNeIhRmBz7PBViS26X9go9mR1tlpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTRpRkdZSFBzOEZXSkxicGYyQ2oyWkhXMldrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC8wZTIzMTEtZjlhMS00ODk2LTlkOTgt ZDA4MDA0NDkzZDE0LzEvMTRpRkdZSFBzOEZXSkxicGYyQ2oyWkhXMldrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC8wZTIzMTEtZjlhMS00ODk2LTlkOTgtZDA4MDA0NDkzZDE0 LzEvMTRpRkdZSFBzOEZXSkxicGYyQ2oyWkhXMldrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATj7sf57Q f8I00UsFse7slIQDkYI+GDrBnvgpSwyggfmXcxFBjHJPdUMM3i/s+AYqnwmqC3VQ 3ddc+sNqO5BUFqjvxwbw1nzrQGuqGFxEVygGAtt4H9wG1ifLE9SSJ2QDKXNpM6pt +pyNGg15kW16MiksdPM9anrN/6fCECfqTmnuuD8SIj1zH9xgka3QS5uFJi52Py0R a7jk9uH7Tb7be6JASo70DccwSxtlhUuTokxnyPGo5asTjbcm9JS0VzWwXjy2Llsf ZkylltHhNrwdD94Jyj2/WDzAoRYR3xpTE80+Mj1hVbytu9QSsR+rzdmrtWHnXHkn uibfSG1An7cupw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:17 2026 by rpki-client