This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft File: 4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft (raw, json) Hash identifier: kK2Cn3H19Xe5TVgTkVrWdnQDRuj5nze9mgbI/hOGdC0= Subject key identifier: D3:48:5C:E8:E1:D0:10:CE:98:FC:2B:5C:FE:85:78:5A:C5:13:46:B2 Authority key identifier: E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4 Certificate issuer: /CN=e0b867131100c15de890110063e638a5f02367c4 Certificate serial: 019C42102B576E1D16C86B91ABAE3C63BCB7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 11:01:21 +0000 Manifest this update: Mon 09 Feb 2026 11:01:21 +0000 Manifest next update: Tue 10 Feb 2026 11:01:21 +0000 Files and hashes: 1: 4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl (hash: jFVDtgGrxhFl5Tv0KxAvd7pR3lnCMI2fXll2B5DXS/s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:2b:57:6e:1d:16:c8:6b:91:ab:ae:3c:63:bc:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e0b867131100c15de890110063e638a5f02367c4 Validity Not Before: Feb 9 11:01:21 2026 GMT Not After : Feb 10 11:01:21 2026 GMT Subject: CN=d3485ce8e1d010ce98fc2b5cfe85785ac51346b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:44:3e:61:07:fa:51:09:05:84:cf:9e:4d:1f: 66:3b:3f:45:8b:fc:c7:df:50:8e:c9:bf:5d:3d:ce: 12:e7:c6:25:cf:06:6d:89:89:ca:8a:65:40:b9:be: d2:5f:01:fd:a9:d9:c9:4f:55:a6:6e:16:d4:c1:a9: 73:3f:0e:3f:ca:d7:14:7d:b7:f7:76:f3:45:be:73: cc:3f:0a:e0:8c:2b:cb:66:4d:ce:ca:3a:1a:39:34: 7a:7d:6b:87:fa:7f:4d:8a:81:9a:04:38:e8:31:9b: 23:0e:fc:04:6c:de:2a:a5:c5:c3:f2:4e:5f:09:4e: 76:30:dc:f9:5c:68:3b:d2:9e:20:f4:60:01:6b:c3: a0:f2:3c:81:2b:f8:28:bc:ee:26:bd:f5:e1:4b:70: d9:fb:c4:0d:81:c4:09:30:b4:87:eb:3b:f6:71:3a: 1f:2c:cc:c7:9d:cd:88:c8:f9:9b:79:dc:c9:a3:5d: 4d:54:d2:6a:df:be:15:fb:22:01:8f:08:e5:6c:4f: a8:b7:f0:69:5d:81:d8:16:75:33:61:44:40:f5:bf: b3:30:98:c3:8e:65:34:0d:09:ed:63:7f:dc:25:84: a9:4f:8f:b9:59:b2:26:b3:a5:b8:df:5a:28:e4:9c: 53:70:72:ce:bb:ca:fe:b8:48:a8:d9:37:c3:be:43: ef:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:48:5C:E8:E1:D0:10:CE:98:FC:2B:5C:FE:85:78:5A:C5:13:46:B2 X509v3 Authority Key Identifier: keyid:E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2a:5d:46:cd:63:ca:00:20:fb:de:e6:ba:86:7c:2b:ce:fe: 8b:54:55:e8:41:fb:ff:62:60:f8:0f:6f:f3:ce:bd:06:46:2d: 59:ac:63:fe:52:bf:19:b2:52:b5:54:41:3b:7d:74:fd:21:64: 77:7a:6d:33:a3:e1:9d:cf:6a:71:06:c7:65:51:cd:13:dd:bf: 08:0c:7a:a8:21:9c:3c:f1:a1:25:1a:e7:19:5f:e5:20:f6:6e: a5:72:d6:f5:5e:1b:8e:8e:f9:1e:c6:f8:85:3e:8c:93:56:1b: e8:fa:34:31:1d:d4:09:7c:5b:6d:d2:1a:73:5d:68:49:9e:fc: 42:eb:3c:fb:00:6e:7b:0b:13:95:e3:a8:a8:88:b5:63:89:57: 0c:b7:61:8f:17:0f:f8:ca:db:24:6a:d9:f4:c0:68:b4:ad:a5: 2c:a5:83:dd:2b:d1:7d:d2:69:1e:89:8e:c7:e1:0e:34:36:3f: 3a:2f:2c:86:cc:6b:5a:72:7e:ed:64:29:ce:12:d8:fd:8c:69: 2a:72:90:9b:c2:5d:78:c3:ec:fd:45:5b:f3:91:18:ff:b8:9b: 1e:21:44:c6:6d:55:d3:4d:63:d6:da:1e:17:c2:91:c6:59:e6: b3:97:09:24:e3:1f:10:3f:c1:82:20:8b:f0:57:6c:48:fc:99: 9e:bd:a1:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCECtXbh0WyGuRq648Y7y3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUwYjg2NzEzMTEwMGMxNWRlODkwMTEwMDYzZTYzOGE1ZjAy MzY3YzQwHhcNMjYwMjA5MTEwMTIxWhcNMjYwMjEwMTEwMTIxWjAzMTEwLwYDVQQD EyhkMzQ4NWNlOGUxZDAxMGNlOThmYzJiNWNmZTg1Nzg1YWM1MTM0NmIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUQ+YQf6UQkFhM+eTR9mOz9Fi/zH 31COyb9dPc4S58YlzwZtiYnKimVAub7SXwH9qdnJT1WmbhbUwalzPw4/ytcUfbf3 dvNFvnPMPwrgjCvLZk3OyjoaOTR6fWuH+n9NioGaBDjoMZsjDvwEbN4qpcXD8k5f CU52MNz5XGg70p4g9GABa8Og8jyBK/govO4mvfXhS3DZ+8QNgcQJMLSH6zv2cTof LMzHnc2IyPmbedzJo11NVNJq374V+yIBjwjlbE+ot/BpXYHYFnUzYURA9b+zMJjD jmU0DQntY3/cJYSpT4+5WbIms6W431oo5JxTcHLOu8r+uEio2TfDvkPvIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNNIXOjh0BDOmPwrXP6FeFrFE0ayMB8GA1UdIwQY MBaAFOC4ZxMRAMFd6JARAGPmOKXwI2fEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNExobkV4RUF3VjNva0JFQVktWTRwZkFqWjhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9lZWU1MjEtMjVmYS00MDA2LTk1MzEt MWUwNDQ4MTQ1MThmLzEvNExobkV4RUF3VjNva0JFQVktWTRwZkFqWjhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9lZWU1MjEtMjVmYS00MDA2LTk1MzEtMWUwNDQ4MTQ1MThm LzEvNExobkV4RUF3VjNva0JFQVktWTRwZkFqWjhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOipdRs1j ygAg+97muoZ8K87+i1RV6EH7/2Jg+A9v8869BkYtWaxj/lK/GbJStVRBO310/SFk d3ptM6Phnc9qcQbHZVHNE92/CAx6qCGcPPGhJRrnGV/lIPZupXLW9V4bjo75Hsb4 hT6Mk1Yb6Po0MR3UCXxbbdIac11oSZ78Qus8+wBuewsTleOoqIi1Y4lXDLdhjxcP +MrbJGrZ9MBotK2lLKWD3SvRfdJpHomOx+EONDY/Oi8shsxrWnJ+7WQpzhLY/Yxp KnKQm8JdeMPs/UVb85EY/7ibHiFExm1V001j1toeF8KRxlnms5cJJOMfED/BgiCL 8FdsSPyZnr2hvg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:01:54 2026 by rpki-client