This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft File: S8K4kvLb729UtFNg_rD4QUpahQQ.mft (raw, json) Hash identifier: Y9OusL/uOGGc59sQm1zLeMg16rajWzFWGQRNjk2pjvs= Subject key identifier: 37:99:92:A0:DE:57:14:A5:E8:42:37:0C:19:CD:0D:25:4A:6C:2A:71 Authority key identifier: 4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04 Certificate issuer: /CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504 Certificate serial: 019C42B402EE4259E5977A198182D98F7683 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft Manifest number: 120B Signing time: Mon 09 Feb 2026 14:00:19 +0000 Manifest this update: Mon 09 Feb 2026 14:00:19 +0000 Manifest next update: Tue 10 Feb 2026 14:00:19 +0000 Files and hashes: 1: F4rY5JVMtMl_zYzUZwZp4oeHP1I.roa (hash: E0rqrVkOGoV8SRKX7SA5ZbTVTAKBdcJrr4ggv5rMXIg=) 2: S8K4kvLb729UtFNg_rD4QUpahQQ.crl (hash: bLsHmz1GzI10bK9S5j3VpB+tZ31OLldc9Hi5bvdOIi8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:02:ee:42:59:e5:97:7a:19:81:82:d9:8f:76:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504 Validity Not Before: Feb 9 14:00:19 2026 GMT Not After : Feb 10 14:00:19 2026 GMT Subject: CN=379992a0de5714a5e842370c19cd0d254a6c2a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:26:14:50:9f:a5:cd:b1:a2:81:50:34:f0:18: be:6f:ea:5e:48:41:d4:03:09:e8:32:0d:fd:0a:ae: 22:ca:c1:69:64:74:23:b9:41:71:0c:c3:f4:43:e0: 66:d1:23:e8:9c:c7:d8:59:b3:ce:7c:bc:e3:b9:c8: e5:29:db:fc:d9:16:a6:36:38:03:f0:de:de:0d:17: 5d:d8:7e:f0:d6:cc:f6:ad:68:c3:0b:f6:03:bd:e9: 75:ad:8e:ae:ac:25:32:c5:46:78:8d:99:94:18:69: d9:5c:b6:e1:cd:aa:7b:98:47:db:ae:1b:61:e8:59: 73:c6:bd:c8:19:07:c8:87:a5:05:25:62:56:3c:a4: e0:88:67:0c:3f:8e:15:f4:ff:cf:0d:d2:d8:20:ee: 1f:fc:85:00:d4:dd:78:f4:11:6d:11:a4:d0:eb:2f: 11:be:e1:60:71:87:b0:1e:70:3b:00:88:8e:95:8a: 58:50:e4:e2:80:6e:09:8e:f3:32:0e:e3:45:72:39: 55:5b:f6:e2:21:f2:63:f4:c4:8f:06:3b:d2:d5:2d: df:ed:6d:5f:c8:d3:28:00:56:36:00:0f:b7:49:1f: 39:61:72:63:0e:e7:21:11:e1:65:b5:8d:3f:f4:4d: 72:34:a1:e2:01:5a:cc:a6:ce:62:f5:2b:aa:ed:b7: 21:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:99:92:A0:DE:57:14:A5:E8:42:37:0C:19:CD:0D:25:4A:6C:2A:71 X509v3 Authority Key Identifier: keyid:4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:eb:71:23:25:b9:6c:50:d9:6a:cb:bc:6f:4c:eb:e6:5c:f2: f8:81:93:e1:b6:4b:51:c0:72:8e:5c:0f:68:2b:67:bd:80:42: b3:bf:a0:a6:98:4d:fd:e1:84:1c:7d:02:82:90:e7:af:78:41: 41:01:4b:c2:05:48:b6:6a:ee:b6:95:f6:eb:32:78:e1:2a:49: e9:72:89:89:4a:04:0d:63:e5:20:4f:c6:56:f8:34:b0:a5:39: 2e:d4:7c:3f:e2:ef:2a:0d:bb:c5:3c:e1:9c:d5:c2:00:22:39: ac:62:d5:e8:3d:57:2f:ac:bd:e6:42:41:a1:ac:33:c5:6a:96: 35:b4:ad:55:c6:4c:9d:6c:d3:fc:43:41:33:02:0a:02:e3:6d: a5:a3:8b:3f:65:aa:d6:4a:68:0d:c3:a6:f7:66:6f:64:8b:8b: 23:dc:8e:a7:1d:29:bb:e2:4b:43:09:e7:0e:24:22:72:12:99: a9:4a:6c:86:58:71:66:bd:81:fc:98:c9:4c:f1:fa:9e:7f:e4: 3e:7a:63:78:fc:06:76:a2:39:1e:0e:0a:fc:2d:73:89:82:11: ba:75:ff:39:2d:a7:3f:4e:2c:92:4e:5b:b7:06:40:38:6b:3b: bd:38:4a:1f:d8:29:ce:c2:6a:78:d3:d1:89:86:21:43:f5:8b: c6:f5:da:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtALuQlnll3oZgYLZj3aDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiYzJiODkyZjJkYmVmNmY1NGI0NTM2MGZlYjBmODQxNGE1 YTg1MDQwHhcNMjYwMjA5MTQwMDE5WhcNMjYwMjEwMTQwMDE5WjAzMTEwLwYDVQQD EygzNzk5OTJhMGRlNTcxNGE1ZTg0MjM3MGMxOWNkMGQyNTRhNmMyYTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyCYUUJ+lzbGigVA08Bi+b+peSEHU AwnoMg39Cq4iysFpZHQjuUFxDMP0Q+Bm0SPonMfYWbPOfLzjucjlKdv82RamNjgD 8N7eDRdd2H7w1sz2rWjDC/YDvel1rY6urCUyxUZ4jZmUGGnZXLbhzap7mEfbrhth 6Flzxr3IGQfIh6UFJWJWPKTgiGcMP44V9P/PDdLYIO4f/IUA1N149BFtEaTQ6y8R vuFgcYewHnA7AIiOlYpYUOTigG4JjvMyDuNFcjlVW/biIfJj9MSPBjvS1S3f7W1f yNMoAFY2AA+3SR85YXJjDuchEeFltY0/9E1yNKHiAVrMps5i9Suq7bchzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDeZkqDeVxSl6EI3DBnNDSVKbCpxMB8GA1UdIwQY MBaAFEvCuJLy2+9vVLRTYP6w+EFKWoUEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzhLNGt2TGI3MjlVdEZOZ19yRDRRVXBhaFFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9jMWE4NTItNTVmNS00NTA1LThkOTAt MjE1N2E1NzVkYjBiLzEvUzhLNGt2TGI3MjlVdEZOZ19yRDRRVXBhaFFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9jMWE4NTItNTVmNS00NTA1LThkOTAtMjE1N2E1NzVkYjBi LzEvUzhLNGt2TGI3MjlVdEZOZ19yRDRRVXBhaFFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG+txIyW5 bFDZasu8b0zr5lzy+IGT4bZLUcByjlwPaCtnvYBCs7+gpphN/eGEHH0CgpDnr3hB QQFLwgVItmrutpX26zJ44SpJ6XKJiUoEDWPlIE/GVvg0sKU5LtR8P+LvKg27xTzh nNXCACI5rGLV6D1XL6y95kJBoawzxWqWNbStVcZMnWzT/ENBMwIKAuNtpaOLP2Wq 1kpoDcOm92ZvZIuLI9yOpx0pu+JLQwnnDiQichKZqUpshlhxZr2B/JjJTPH6nn/k PnpjePwGdqI5Hg4K/C1ziYIRunX/OS2nP04skk5btwZAOGs7vThKH9gpzsJqeNPR iYYhQ/WLxvXaaw== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:31 2026 by rpki-client