This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft File: tm6nNZIhwbd9bMAG97ZwapqQgpk.mft (raw, json) Hash identifier: DwCuuj2CNV6aipzLhLz/GkS2byCTO44YLmHzu7RRJZw= Subject key identifier: CE:F6:67:B6:A2:FF:09:8F:DE:C3:62:A0:92:B6:3D:0E:78:23:9B:91 Authority key identifier: B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99 Certificate issuer: /CN=b66ea7359221c1b77d6cc006f7b6706a9a908299 Certificate serial: 019C42463429C7AB1B93382D488BAA4B13BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft Manifest number: 1821 Signing time: Mon 09 Feb 2026 12:00:22 +0000 Manifest this update: Mon 09 Feb 2026 12:00:22 +0000 Manifest next update: Tue 10 Feb 2026 12:00:22 +0000 Files and hashes: 1: 4bWETyrA4CdryhK6-uJfwCn5JA0.roa (hash: iIF3K/40pMYxfSHgY9tEa5lmOQsb+JoU1NG9FV62m80=) 2: tm6nNZIhwbd9bMAG97ZwapqQgpk.crl (hash: +9rr4HH6DeUhlWQISTr0wD2X8YEJgbw+MpmVXH6q8qc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:34:29:c7:ab:1b:93:38:2d:48:8b:aa:4b:13:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b66ea7359221c1b77d6cc006f7b6706a9a908299 Validity Not Before: Feb 9 12:00:22 2026 GMT Not After : Feb 10 12:00:22 2026 GMT Subject: CN=cef667b6a2ff098fdec362a092b63d0e78239b91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fa:12:61:a1:48:f0:35:b8:5f:43:3b:54:11: 7f:70:32:e0:16:bd:a4:2a:d0:8e:b4:bf:6f:bb:a6: 8c:a4:31:42:86:c9:10:b7:5b:a1:85:af:98:e3:51: 97:e6:f8:c9:31:d4:ea:fc:cc:1e:cc:0a:33:05:84: 77:90:be:f7:12:a8:ea:66:8b:da:bc:e6:09:67:52: 6d:56:14:b0:f6:42:58:6c:9c:92:3a:18:e5:cc:c0: 76:94:0f:e8:7a:b8:9b:23:39:00:31:63:a0:c2:ab: 46:df:77:5b:57:02:09:6b:f8:de:ca:06:4f:76:9e: b6:41:da:9f:cc:ed:05:02:ef:78:97:0e:47:d5:fe: d3:3f:d1:f6:0c:55:af:77:29:77:e7:c1:00:a6:56: 92:f3:aa:c5:c7:65:18:ff:26:8f:52:ef:28:72:a3: 0e:46:db:c1:5a:68:41:13:5b:14:65:86:92:59:2e: 68:08:99:24:d2:9f:d4:b9:3d:54:e7:14:f2:d8:35: 52:96:16:9f:76:dd:f6:17:17:a8:77:c1:31:a2:d1: be:8f:e8:5c:ac:70:ee:06:3a:08:61:f6:08:60:63: 88:a5:5c:ac:54:8a:9c:ce:b9:67:9b:a1:f8:92:15: b3:9a:e6:a6:2e:6f:fe:ef:46:2e:8a:5a:6c:32:48: 53:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:F6:67:B6:A2:FF:09:8F:DE:C3:62:A0:92:B6:3D:0E:78:23:9B:91 X509v3 Authority Key Identifier: keyid:B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:7f:c3:52:f3:18:11:c0:7a:40:8c:d9:13:9b:d4:8e:2d:65: 40:9f:ae:6f:0f:8e:5e:13:a0:35:4f:de:1c:78:d2:68:28:23: 5b:1f:61:e7:80:9b:f3:97:d5:d2:8a:ac:d8:d8:be:8c:dd:86: 9f:3c:a5:d3:59:24:5e:bf:82:9d:d7:3e:2a:41:ac:79:e4:00: 76:97:3f:35:29:e1:ef:bd:90:ae:4c:f8:ed:ed:69:71:a4:9c: 14:30:bc:06:2f:59:57:1b:b7:26:bd:14:ed:0d:b1:6d:58:60: e3:a7:0b:8f:a8:3d:fc:2e:cd:64:67:77:dd:34:b9:50:91:6d: 6d:2f:2e:d2:9e:7f:b7:de:8f:12:5f:80:75:87:63:e1:67:ad: 3c:61:39:84:a0:a3:0a:23:af:7e:b5:ae:8e:59:ba:2d:b2:ea: 1e:0e:60:29:c4:d7:1c:97:e1:18:f4:8c:c4:45:ed:30:34:77: 4e:8e:0e:a4:fe:7a:8a:58:c9:4c:5a:d3:8c:cd:87:3e:14:b7: 06:20:d1:68:00:76:a7:b6:e1:cb:76:73:4b:3c:5c:ff:37:e7: 41:df:be:2a:9e:34:c3:a2:18:ef:ea:80:04:fb:8d:3a:6c:b9: 77:5f:13:4a:89:61:1c:cb:41:ba:0e:f2:b4:04:fd:e1:9a:21: 76:f5:33:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRjQpx6sbkzgtSIuqSxO+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2NmVhNzM1OTIyMWMxYjc3ZDZjYzAwNmY3YjY3MDZhOWE5 MDgyOTkwHhcNMjYwMjA5MTIwMDIyWhcNMjYwMjEwMTIwMDIyWjAzMTEwLwYDVQQD EyhjZWY2NjdiNmEyZmYwOThmZGVjMzYyYTA5MmI2M2QwZTc4MjM5YjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPoSYaFI8DW4X0M7VBF/cDLgFr2k KtCOtL9vu6aMpDFChskQt1uhha+Y41GX5vjJMdTq/MwezAozBYR3kL73EqjqZova vOYJZ1JtVhSw9kJYbJySOhjlzMB2lA/oeribIzkAMWOgwqtG33dbVwIJa/jeygZP dp62QdqfzO0FAu94lw5H1f7TP9H2DFWvdyl358EAplaS86rFx2UY/yaPUu8ocqMO RtvBWmhBE1sUZYaSWS5oCJkk0p/UuT1U5xTy2DVSlhafdt32Fxeod8ExotG+j+hc rHDuBjoIYfYIYGOIpVysVIqczrlnm6H4khWzmuamLm/+70YuilpsMkhTEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM72Z7ai/wmP3sNioJK2PQ54I5uRMB8GA1UdIwQY MBaAFLZupzWSIcG3fWzABve2cGqakIKZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdG02bk5aSWh3YmQ5Yk1BRzk3WndhcHFRZ3BrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9mODdhMmUtNDZiMS00YTY2LWE5MGMt Njk5ODM1YzkyYmZlLzEvdG02bk5aSWh3YmQ5Yk1BRzk3WndhcHFRZ3BrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9mODdhMmUtNDZiMS00YTY2LWE5MGMtNjk5ODM1YzkyYmZl LzEvdG02bk5aSWh3YmQ5Yk1BRzk3WndhcHFRZ3BrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL3/DUvMY EcB6QIzZE5vUji1lQJ+ubw+OXhOgNU/eHHjSaCgjWx9h54Cb85fV0oqs2Ni+jN2G nzyl01kkXr+Cndc+KkGseeQAdpc/NSnh772Qrkz47e1pcaScFDC8Bi9ZVxu3Jr0U 7Q2xbVhg46cLj6g9/C7NZGd33TS5UJFtbS8u0p5/t96PEl+AdYdj4WetPGE5hKCj CiOvfrWujlm6LbLqHg5gKcTXHJfhGPSMxEXtMDR3To4OpP56iljJTFrTjM2HPhS3 BiDRaAB2p7bhy3ZzSzxc/zfnQd++Kp40w6IY7+qABPuNOmy5d18TSolhHMtBug7y tAT94ZohdvUzxA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:53 2026 by rpki-client