This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft File: 6kHoOY_3zvtSIWNusighJuv-O3g.mft (raw, json) Hash identifier: 9bCIpU3k989oWyDYlqm8sOVbGn2AfcLaAhMZd34Az7A= Subject key identifier: 4B:EC:C4:0C:CE:5D:88:15:5C:8C:D3:11:62:5C:4B:94:6F:A8:4D:5A Authority key identifier: EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78 Certificate issuer: /CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78 Certificate serial: 019C4322B56302127ED161616906F61BBDA2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft Manifest number: 045F Signing time: Mon 09 Feb 2026 16:01:13 +0000 Manifest this update: Mon 09 Feb 2026 16:01:13 +0000 Manifest next update: Tue 10 Feb 2026 16:01:13 +0000 Files and hashes: 1: 6kHoOY_3zvtSIWNusighJuv-O3g.crl (hash: EwEaszwfSkzTF1v1xbpFu4rPGu+kT5digemeaudc5+k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:b5:63:02:12:7e:d1:61:61:69:06:f6:1b:bd:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78 Validity Not Before: Feb 9 16:01:13 2026 GMT Not After : Feb 10 16:01:13 2026 GMT Subject: CN=4becc40cce5d88155c8cd311625c4b946fa84d5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0e:35:d7:0a:fa:9d:57:c6:97:56:b4:bc:29: 42:c2:55:1d:ff:9f:94:f9:06:cd:68:fe:f2:a4:88: 25:92:56:bc:df:c7:91:49:25:c1:55:f9:20:7d:64: da:c9:68:01:ec:5f:af:27:7c:06:df:e4:5a:63:b0: dc:af:f9:5e:13:6e:8d:8a:a7:01:c3:ad:d0:d7:00: 0a:94:3b:39:01:dc:3d:c6:34:35:79:91:0c:5b:59: a3:51:ca:30:23:50:1a:d7:9a:42:76:4d:7b:ff:e7: 1c:f0:91:46:c6:20:a1:0e:59:a2:02:50:b1:54:c4: 5d:f2:59:c5:90:88:db:e8:cb:50:f1:0d:98:a7:88: a6:c6:f5:e9:cd:70:41:6b:ba:a6:e5:6f:72:b8:01: a1:99:44:34:df:0a:b9:0c:60:18:f5:e3:a5:08:7f: a8:f2:41:76:b4:64:16:84:93:af:f4:b7:b0:1a:3c: 5a:58:a8:99:f0:d5:a0:fa:fe:2d:60:b1:34:02:ae: 04:d0:94:4e:ae:e2:c4:2c:4f:03:cb:dc:2e:34:80: 1e:38:b5:b1:c2:e2:80:41:64:b0:44:8d:88:83:8c: d2:66:95:86:0b:65:d6:17:ad:30:79:f3:a7:5d:ce: 4b:f1:11:fd:c1:33:54:a0:b1:17:8c:b1:35:55:4e: 36:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:EC:C4:0C:CE:5D:88:15:5C:8C:D3:11:62:5C:4B:94:6F:A8:4D:5A X509v3 Authority Key Identifier: keyid:EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:f0:47:21:76:fc:69:7d:d1:5f:6c:76:f7:9d:b1:b4:ac:27: c9:56:d5:ce:8b:ae:83:b2:25:71:5d:a3:10:31:0b:28:78:ef: 35:c9:b1:71:80:c8:c9:67:ef:37:82:b1:98:30:ee:26:b3:52: 6a:16:69:e9:56:bc:1d:05:aa:66:c7:f2:f1:1b:4c:cf:d3:7f: a9:3b:7e:97:e3:e2:94:b4:57:5c:6c:1f:1d:df:1d:71:8f:99: 07:34:21:ff:89:31:b1:65:85:a2:6e:08:c6:3c:41:bc:2e:c3: 18:19:ad:fe:ef:80:3f:e1:2b:f0:10:6e:e2:06:18:06:4b:ed: e1:61:9a:9a:ee:dc:48:ff:27:c8:e6:c4:53:7e:f6:ee:76:4d: 30:35:78:8d:c3:df:43:82:41:c2:6d:c5:da:56:bb:f6:62:ca: fb:f7:00:6a:fe:e2:d0:f2:5e:8c:9f:fa:9f:ff:66:ef:cf:70: a4:f6:65:6c:77:62:ac:5d:6f:30:32:15:12:6a:7e:61:0a:67: a2:01:e0:88:53:33:cc:ac:2f:98:68:3b:90:b2:89:2e:88:fa: e6:69:17:a8:e8:2c:1d:b9:d5:0c:84:16:fd:ac:04:97:96:1f: 95:1f:c5:6b:ec:59:23:0b:1f:4c:ef:fb:8b:a8:c9:4e:a1:68: f1:79:2f:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIrVjAhJ+0WFhaQb2G72iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhNDFlODM5OGZmN2NlZmI1MjIxNjM2ZWIyMjgyMTI2ZWJm ZTNiNzgwHhcNMjYwMjA5MTYwMTEzWhcNMjYwMjEwMTYwMTEzWjAzMTEwLwYDVQQD Eyg0YmVjYzQwY2NlNWQ4ODE1NWM4Y2QzMTE2MjVjNGI5NDZmYTg0ZDVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5g411wr6nVfGl1a0vClCwlUd/5+U +QbNaP7ypIglkla838eRSSXBVfkgfWTayWgB7F+vJ3wG3+RaY7Dcr/leE26NiqcB w63Q1wAKlDs5Adw9xjQ1eZEMW1mjUcowI1Aa15pCdk17/+cc8JFGxiChDlmiAlCx VMRd8lnFkIjb6MtQ8Q2Yp4imxvXpzXBBa7qm5W9yuAGhmUQ03wq5DGAY9eOlCH+o 8kF2tGQWhJOv9LewGjxaWKiZ8NWg+v4tYLE0Aq4E0JROruLELE8Dy9wuNIAeOLWx wuKAQWSwRI2Ig4zSZpWGC2XWF60wefOnXc5L8RH9wTNUoLEXjLE1VU42DwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEvsxAzOXYgVXIzTEWJcS5RvqE1aMB8GA1UdIwQY MBaAFOpB6DmP9877UiFjbrIoISbr/jt4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy81M2NiZTgtZjVhNy00MDdkLTg0Y2Ut NjI4YjQzOTRiODIyLzEvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy81M2NiZTgtZjVhNy00MDdkLTg0Y2UtNjI4YjQzOTRiODIy LzEvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASfBHIXb8 aX3RX2x2952xtKwnyVbVzouug7IlcV2jEDELKHjvNcmxcYDIyWfvN4KxmDDuJrNS ahZp6Va8HQWqZsfy8RtMz9N/qTt+l+PilLRXXGwfHd8dcY+ZBzQh/4kxsWWFom4I xjxBvC7DGBmt/u+AP+Er8BBu4gYYBkvt4WGamu7cSP8nyObEU3727nZNMDV4jcPf Q4JBwm3F2la79mLK+/cAav7i0PJejJ/6n/9m789wpPZlbHdirF1vMDIVEmp+YQpn ogHgiFMzzKwvmGg7kLKJLoj65mkXqOgsHbnVDIQW/awEl5YflR/Fa+xZIwsfTO/7 i6jJTqFo8XkvIA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:16 2026 by rpki-client