This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft File: toF3Ytn8jxGwHPUjS25DHPvsG80.mft (raw, json) Hash identifier: lksRdjzaH0jzeRNBtavBHzYosIoa3LRI4Imn4e5Ht1s= Subject key identifier: 77:02:C3:7D:23:32:5F:36:A2:0A:5F:75:D5:9B:B0:B5:D1:CE:06:CA Authority key identifier: B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD Certificate issuer: /CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd Certificate serial: 019C427D907D67D7B4A4A24296BD453BBDB1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft Manifest number: 0B70 Signing time: Mon 09 Feb 2026 13:00:51 +0000 Manifest this update: Mon 09 Feb 2026 13:00:51 +0000 Manifest next update: Tue 10 Feb 2026 13:00:51 +0000 Files and hashes: 1: TCoBlMxDiguWCq2X4av9S4gQXEQ.roa (hash: 6msXgBjxx6Yi7xW5PUuzbdt4jO41s2SyXCfLVxtofm0=) 2: toF3Ytn8jxGwHPUjS25DHPvsG80.crl (hash: fB5OJ4pyOxbYQ5z4eko0aB644nEHMm/oKbr2aoPsUig=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:90:7d:67:d7:b4:a4:a2:42:96:bd:45:3b:bd:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd Validity Not Before: Feb 9 13:00:51 2026 GMT Not After : Feb 10 13:00:51 2026 GMT Subject: CN=7702c37d23325f36a20a5f75d59bb0b5d1ce06ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:79:4c:32:3f:bc:3f:08:5c:e7:1b:66:b2:1a: 41:e6:60:36:e0:7e:70:5d:96:2a:7e:50:d7:77:0a: 76:21:14:d2:23:62:cb:8f:37:a9:06:ba:ab:34:cd: fb:a3:38:e4:06:94:4f:e1:e2:9a:2e:b3:2a:66:f4: 50:00:27:0e:ee:26:f1:35:ae:5f:79:ac:e5:e4:6a: 67:7e:40:9c:ca:e0:54:fc:28:31:7a:27:15:8b:87: 28:e1:af:de:23:4b:d4:ea:af:47:0e:f9:4d:9a:28: 4f:e7:e1:69:ea:a4:85:ec:15:26:ca:73:9a:5d:36: d1:15:93:ea:4e:f8:60:05:9c:05:f7:f3:d2:b1:d3: da:f3:c8:5c:41:8a:4d:b2:91:20:3d:d6:55:3d:40: 5c:8b:89:da:93:af:d8:1a:ee:39:f8:5e:57:3e:90: c6:4b:5a:3e:82:f9:47:a9:de:40:8c:45:fc:bc:24: 7e:4a:d3:51:64:51:b3:17:5b:49:f7:bf:1b:4b:12: da:e8:96:cc:3b:83:68:af:8f:1c:4f:1a:ea:0f:31: 9f:0f:76:29:45:7c:ec:2a:36:cd:a7:d6:34:b8:fa: 15:24:66:7b:d6:74:64:eb:7e:6f:64:41:7a:11:4e: f4:88:f0:b5:15:cc:2f:19:23:ef:3e:59:75:e1:da: 94:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:02:C3:7D:23:32:5F:36:A2:0A:5F:75:D5:9B:B0:B5:D1:CE:06:CA X509v3 Authority Key Identifier: keyid:B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:4c:4b:a1:67:72:47:b2:c5:cb:97:a9:70:7a:48:06:96:e5: 2f:48:37:25:c7:2f:b4:38:17:95:f7:89:07:22:56:3b:1a:f7: 85:43:24:2f:3b:03:62:26:88:04:d9:e6:70:7f:e7:e8:c4:0d: 14:b1:f8:40:f5:6f:9b:ac:38:44:4b:f4:59:b0:21:eb:25:23: f2:94:ba:e6:ba:8a:81:dc:30:90:ce:eb:47:29:9d:db:e5:af: 25:4e:d1:05:5d:b7:e5:37:6e:44:16:15:0a:e9:b4:b6:13:56: 4e:ba:0a:e8:cb:fd:fb:87:dc:82:4b:fd:19:b8:7a:89:60:11: ca:97:34:3b:85:60:5b:2e:fb:fe:e5:a9:b2:1a:1c:dd:71:3c: 4e:26:57:8b:56:d9:39:90:e4:e7:88:91:59:38:98:db:54:47: b5:4c:5b:84:a3:96:1a:28:bd:f9:10:38:b0:43:fc:c4:ff:ad: 5f:f8:83:d2:3b:e6:52:70:15:a7:5c:44:80:d3:4d:c3:cb:54: c0:ba:4d:f8:97:40:10:1c:fc:67:04:cc:ee:b6:ec:fe:09:37: 91:dc:2c:49:19:79:e3:5c:e3:71:fc:9e:2a:21:dc:14:61:fa: 77:b2:cd:c8:3e:0f:f2:c0:80:6b:a7:f4:82:05:74:b2:80:a9: ff:72:b7:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfZB9Z9e0pKJClr1FO72xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2ODE3NzYyZDlmYzhmMTFiMDFjZjUyMzRiNmU0MzFjZmJl YzFiY2QwHhcNMjYwMjA5MTMwMDUxWhcNMjYwMjEwMTMwMDUxWjAzMTEwLwYDVQQD Eyg3NzAyYzM3ZDIzMzI1ZjM2YTIwYTVmNzVkNTliYjBiNWQxY2UwNmNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXlMMj+8Pwhc5xtmshpB5mA24H5w XZYqflDXdwp2IRTSI2LLjzepBrqrNM37ozjkBpRP4eKaLrMqZvRQACcO7ibxNa5f eazl5GpnfkCcyuBU/CgxeicVi4co4a/eI0vU6q9HDvlNmihP5+Fp6qSF7BUmynOa XTbRFZPqTvhgBZwF9/PSsdPa88hcQYpNspEgPdZVPUBci4nak6/YGu45+F5XPpDG S1o+gvlHqd5AjEX8vCR+StNRZFGzF1tJ978bSxLa6JbMO4Nor48cTxrqDzGfD3Yp RXzsKjbNp9Y0uPoVJGZ71nRk635vZEF6EU70iPC1FcwvGSPvPll14dqUvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHcCw30jMl82ogpfddWbsLXRzgbKMB8GA1UdIwQY MBaAFLaBd2LZ/I8RsBz1I0tuQxz77BvNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdG9GM1l0bjhqeEd3SFBValMyNURIUHZzRzgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xZTYzYTMtYjMwNi00MTNhLWFkZjQt ZDNmMjY1YWQ1MTRmLzEvdG9GM1l0bjhqeEd3SFBValMyNURIUHZzRzgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8xZTYzYTMtYjMwNi00MTNhLWFkZjQtZDNmMjY1YWQ1MTRm LzEvdG9GM1l0bjhqeEd3SFBValMyNURIUHZzRzgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABUxLoWdy R7LFy5epcHpIBpblL0g3JccvtDgXlfeJByJWOxr3hUMkLzsDYiaIBNnmcH/n6MQN FLH4QPVvm6w4REv0WbAh6yUj8pS65rqKgdwwkM7rRymd2+WvJU7RBV235TduRBYV Cum0thNWTroK6Mv9+4fcgkv9Gbh6iWARypc0O4VgWy77/uWpshoc3XE8TiZXi1bZ OZDk54iRWTiY21RHtUxbhKOWGii9+RA4sEP8xP+tX/iD0jvmUnAVp1xEgNNNw8tU wLpN+JdAEBz8ZwTM7rbs/gk3kdwsSRl541zjcfyeKiHcFGH6d7LNyD4P8sCAa6f0 ggV0soCp/3K3VQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:28 2026 by rpki-client