This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/33970f-fa9a-4d11-9766-a844aab0511c/1/CRiOI1NxcPsuRX8xLVRflL2d1-4.mft File: CRiOI1NxcPsuRX8xLVRflL2d1-4.mft (raw, json) Hash identifier: gvOVy944PYVNVYJQosOpuPbhMtmCoMuXKPzTpkGTRU0= Subject key identifier: 2B:2F:43:DC:BA:AE:C0:1D:F5:8B:07:8B:A7:BF:CB:A0:0A:AA:F0:7F Authority key identifier: 09:18:8E:23:53:71:70:FB:2E:45:7F:31:2D:54:5F:94:BD:9D:D7:EE Certificate issuer: /CN=09188e23537170fb2e457f312d545f94bd9dd7ee Certificate serial: 019C42EB5DE7EAB87943D36D8D590106C1DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CRiOI1NxcPsuRX8xLVRflL2d1-4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/33970f-fa9a-4d11-9766-a844aab0511c/1/CRiOI1NxcPsuRX8xLVRflL2d1-4.mft Manifest number: 013E Signing time: Mon 09 Feb 2026 15:00:47 +0000 Manifest this update: Mon 09 Feb 2026 15:00:47 +0000 Manifest next update: Tue 10 Feb 2026 15:00:47 +0000 Files and hashes: 1: CRiOI1NxcPsuRX8xLVRflL2d1-4.crl (hash: 3YTiAdP2Wzy3hBNqJq9YOGTvgBNOKT3k7BCnb2Xi/k4=) 2: xbWf_g-s7HjkxL7IiKbMz-iaHG4.roa (hash: SFaniO5YvRE/Q1MmXdLYQfC7ZkWwnx783aQKjO9iPwk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/33970f-fa9a-4d11-9766-a844aab0511c/1/CRiOI1NxcPsuRX8xLVRflL2d1-4.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/33970f-fa9a-4d11-9766-a844aab0511c/1/CRiOI1NxcPsuRX8xLVRflL2d1-4.mft rsync://rpki.ripe.net/repository/DEFAULT/CRiOI1NxcPsuRX8xLVRflL2d1-4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:5d:e7:ea:b8:79:43:d3:6d:8d:59:01:06:c1:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09188e23537170fb2e457f312d545f94bd9dd7ee Validity Not Before: Feb 9 15:00:47 2026 GMT Not After : Feb 10 15:00:47 2026 GMT Subject: CN=2b2f43dcbaaec01df58b078ba7bfcba00aaaf07f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d7:0b:a9:b9:71:5c:d5:0e:e7:01:f1:fe:48: d8:ef:ee:b6:b3:2e:12:31:92:89:b5:14:93:3d:2f: 5c:d8:62:59:20:24:bd:7a:54:b3:4a:a0:be:3b:39: b5:af:78:4c:30:68:59:b2:99:da:3c:cd:f9:18:4f: 60:84:f3:1a:9d:44:a5:1c:ed:22:06:be:58:40:5c: 6a:1b:70:88:5b:2a:c2:e2:88:d9:45:0c:ec:09:41: 5d:69:08:25:a5:68:07:98:ed:be:73:bf:f7:47:11: 0e:13:bf:5d:fe:c3:13:1d:d5:f6:06:9d:4b:d2:c5: b1:41:b2:b2:e4:38:2e:e4:44:ba:d3:c8:05:89:59: e2:10:51:8c:a0:d6:4d:58:d2:0c:e6:4d:bc:b5:0b: af:12:9f:3a:df:3c:65:2d:c8:36:42:56:f0:20:9c: 87:35:3b:cd:4b:83:26:28:a1:e6:31:bd:d3:5e:83: 9e:48:1d:fc:63:8b:5e:1f:42:99:bc:16:bc:bd:44: c6:47:53:e4:b4:8a:a1:57:83:18:8e:95:6f:eb:e2: dd:2a:5e:43:dc:ca:c3:29:0b:b5:6c:e8:04:72:b2: 49:01:fe:1c:63:53:c5:85:99:4d:d6:27:88:78:68: 47:9f:5c:af:15:66:55:84:c9:75:3c:85:34:df:76: 12:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:2F:43:DC:BA:AE:C0:1D:F5:8B:07:8B:A7:BF:CB:A0:0A:AA:F0:7F X509v3 Authority Key Identifier: keyid:09:18:8E:23:53:71:70:FB:2E:45:7F:31:2D:54:5F:94:BD:9D:D7:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CRiOI1NxcPsuRX8xLVRflL2d1-4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/33970f-fa9a-4d11-9766-a844aab0511c/1/CRiOI1NxcPsuRX8xLVRflL2d1-4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/33970f-fa9a-4d11-9766-a844aab0511c/1/CRiOI1NxcPsuRX8xLVRflL2d1-4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d1:79:08:1f:94:bf:47:1d:7a:14:37:8c:91:c2:4e:14:6c:47: d3:2d:bc:43:5f:ca:20:06:29:a0:d5:01:1d:6f:97:e9:5a:52: 6c:30:84:88:5f:08:99:a0:e4:f7:e0:0a:ca:41:3a:ad:82:b7: d9:15:bf:09:6d:6f:00:88:70:32:ff:e6:77:d4:8a:79:36:a7: 30:09:71:fc:e1:1f:c4:38:c8:f0:7c:c8:c1:99:c6:72:4f:fc: 69:28:12:3e:6b:80:a0:92:67:88:10:f3:d0:84:f0:9d:ee:ec: e5:68:1d:32:a3:c9:e7:c1:8f:65:2b:7f:6e:26:76:a4:51:35: e5:b1:6c:0b:00:79:c3:eb:90:cd:35:32:4a:3b:4e:cd:f3:3c: 4e:17:e1:01:0e:0f:ca:b9:02:fc:c2:38:05:0f:4e:ea:f9:0b: e9:79:9d:7f:14:e1:b6:5f:1f:5e:2c:47:b4:1d:98:d1:09:43: c1:c0:b4:fe:fe:e4:bf:ef:4f:20:a0:be:c4:c7:b9:6f:d9:d9: 32:dc:21:87:05:1b:56:b1:0c:db:86:5e:10:87:22:f5:d1:c7: f5:3d:0c:bb:54:3e:fc:36:00:4d:39:4d:83:2b:6b:f1:00:e3: 94:93:01:48:6d:72:7a:ae:6f:1d:e7:bf:c3:b4:58:61:1a:94: 1b:94:80:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC613n6rh5Q9NtjVkBBsHfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MTg4ZTIzNTM3MTcwZmIyZTQ1N2YzMTJkNTQ1Zjk0YmQ5 ZGQ3ZWUwHhcNMjYwMjA5MTUwMDQ3WhcNMjYwMjEwMTUwMDQ3WjAzMTEwLwYDVQQD EygyYjJmNDNkY2JhYWVjMDFkZjU4YjA3OGJhN2JmY2JhMDBhYWFmMDdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtcLqblxXNUO5wHx/kjY7+62sy4S MZKJtRSTPS9c2GJZICS9elSzSqC+Ozm1r3hMMGhZspnaPM35GE9ghPManUSlHO0i Br5YQFxqG3CIWyrC4ojZRQzsCUFdaQglpWgHmO2+c7/3RxEOE79d/sMTHdX2Bp1L 0sWxQbKy5Dgu5ES608gFiVniEFGMoNZNWNIM5k28tQuvEp863zxlLcg2QlbwIJyH NTvNS4MmKKHmMb3TXoOeSB38Y4teH0KZvBa8vUTGR1PktIqhV4MYjpVv6+LdKl5D 3MrDKQu1bOgEcrJJAf4cY1PFhZlN1ieIeGhHn1yvFWZVhMl1PIU033YSfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCsvQ9y6rsAd9YsHi6e/y6AKqvB/MB8GA1UdIwQY MBaAFAkYjiNTcXD7LkV/MS1UX5S9ndfuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1JpT0kxTnhjUHN1Ulg4eExWUmZsTDJkMS00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8zMzk3MGYtZmE5YS00ZDExLTk3NjYt YTg0NGFhYjA1MTFjLzEvQ1JpT0kxTnhjUHN1Ulg4eExWUmZsTDJkMS00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8zMzk3MGYtZmE5YS00ZDExLTk3NjYtYTg0NGFhYjA1MTFj LzEvQ1JpT0kxTnhjUHN1Ulg4eExWUmZsTDJkMS00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0XkIH5S/ Rx16FDeMkcJOFGxH0y28Q1/KIAYpoNUBHW+X6VpSbDCEiF8ImaDk9+AKykE6rYK3 2RW/CW1vAIhwMv/md9SKeTanMAlx/OEfxDjI8HzIwZnGck/8aSgSPmuAoJJniBDz 0ITwne7s5WgdMqPJ58GPZSt/biZ2pFE15bFsCwB5w+uQzTUySjtOzfM8ThfhAQ4P yrkC/MI4BQ9O6vkL6XmdfxThtl8fXixHtB2Y0QlDwcC0/v7kv+9PIKC+xMe5b9nZ MtwhhwUbVrEM24ZeEIci9dHH9T0Mu1Q+/DYATTlNgytr8QDjlJMBSG1yeq5vHee/ w7RYYRqUG5SAGg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:40 2026 by rpki-client