This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft File: mEL3HQwjZ4gu9HCLIGtLbimjezM.mft (raw, json) Hash identifier: NiGLuWEqJrvVdjg+HyGRowvR1SEuT1UXwIZovf40vi0= Subject key identifier: D3:41:E5:2B:65:B1:AC:D5:23:BE:A1:F7:8F:C9:47:F8:F8:B4:DE:13 Authority key identifier: 98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33 Certificate issuer: /CN=9842f71d0c2367882ef4708b206b4b6e29a37b33 Certificate serial: 019C432256D57CECD81D1BE0A5A1386C248A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft Manifest number: 14A5 Signing time: Mon 09 Feb 2026 16:00:49 +0000 Manifest this update: Mon 09 Feb 2026 16:00:49 +0000 Manifest next update: Tue 10 Feb 2026 16:00:49 +0000 Files and hashes: 1: mEL3HQwjZ4gu9HCLIGtLbimjezM.crl (hash: eV9OJjskrT3PNQnctsGJR2NNlXuKks6u/845SCDuIHE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:56:d5:7c:ec:d8:1d:1b:e0:a5:a1:38:6c:24:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9842f71d0c2367882ef4708b206b4b6e29a37b33 Validity Not Before: Feb 9 16:00:49 2026 GMT Not After : Feb 10 16:00:49 2026 GMT Subject: CN=d341e52b65b1acd523bea1f78fc947f8f8b4de13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d2:e4:7a:a7:80:b6:a6:eb:ba:e1:4e:38:e2: 82:29:b1:c6:e5:71:12:a0:91:2a:c6:59:38:29:20: 3d:c0:e8:f9:c6:b2:45:4c:e1:6f:2e:59:f0:28:44: 00:97:58:3c:42:4f:28:e6:af:94:38:12:c1:e2:72: 60:b2:a4:a2:97:56:c6:94:4d:2d:09:11:b0:f3:07: 24:da:6c:b2:dc:40:53:51:32:58:c2:e1:57:a1:d9: 13:f5:a0:27:36:13:0d:84:41:22:3c:17:d6:83:68: 9e:3e:a5:bb:8f:ac:e3:b5:4f:7d:47:03:fd:11:84: d6:9d:35:81:34:7b:30:3c:37:2f:ff:d7:85:00:f3: 6c:b2:98:c3:ae:e3:38:73:31:4b:13:33:18:51:49: f5:7d:d2:01:6e:2f:ea:dd:b6:76:f0:12:8c:c6:3a: 78:b8:58:dd:b4:fe:c0:b4:bb:53:8a:76:f1:49:6f: 8a:79:17:d7:ec:13:40:e0:05:2a:e2:09:32:b5:80: dc:e0:88:50:3c:7b:77:95:ef:ea:22:32:1d:64:af: 7a:67:6d:d0:c0:38:5b:f1:5b:73:9c:f4:81:0b:58: 67:83:0c:bf:86:d4:80:85:13:ba:a2:a0:6f:31:f2: 5c:97:87:de:b2:3b:0b:c6:3e:96:a1:a4:7c:80:68: 7e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:41:E5:2B:65:B1:AC:D5:23:BE:A1:F7:8F:C9:47:F8:F8:B4:DE:13 X509v3 Authority Key Identifier: keyid:98:42:F7:1D:0C:23:67:88:2E:F4:70:8B:20:6B:4B:6E:29:A3:7B:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mEL3HQwjZ4gu9HCLIGtLbimjezM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/25c947-8534-4341-ad6e-7da8dbaea94a/1/mEL3HQwjZ4gu9HCLIGtLbimjezM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:5a:ac:c8:a1:88:ca:fe:07:43:1d:96:dd:7b:fc:91:1e:60: 09:a8:ee:29:1c:17:9b:9d:97:24:ba:ef:48:0c:d5:68:81:3d: cb:0c:2f:98:0d:f5:33:41:79:75:b2:c6:c1:52:ae:ad:ca:f7: c3:be:5d:07:ea:b0:1d:5d:a4:6d:e3:e6:40:fe:70:9b:54:1f: 5c:7c:61:c0:3c:74:f7:e2:ae:1c:c4:81:a8:b3:26:ea:1e:23: ef:12:6e:73:86:35:7f:64:1a:ab:a0:40:8a:4b:de:18:79:3b: df:f6:4f:d0:15:ff:42:de:3f:71:28:fb:8b:b2:b3:15:16:1b: 1b:e4:0e:1d:c8:2c:ef:6f:63:88:3e:f2:62:7b:ea:13:e7:4f: 94:28:83:75:c6:aa:8c:cc:e3:c6:cc:4e:e7:73:dd:43:ce:af: f2:57:be:6e:9a:a3:1b:86:a7:7d:fa:d1:9f:57:77:1a:00:f9: ea:ae:3e:0c:22:7d:48:e4:50:0a:d0:6e:42:b9:7c:58:3c:87: 85:9a:04:d8:7a:4f:f4:32:d8:61:a3:3a:13:1d:a4:a2:b1:2b: 29:40:cb:82:b5:0d:d5:a0:b2:76:e8:83:e0:f3:82:74:f0:ea: 65:2f:8a:e5:81:1c:bc:2f:ea:e5:9b:c8:a8:f6:fa:22:bc:1f: 1b:7b:2f:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlbVfOzYHRvgpaE4bCSKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NDJmNzFkMGMyMzY3ODgyZWY0NzA4YjIwNmI0YjZlMjlh MzdiMzMwHhcNMjYwMjA5MTYwMDQ5WhcNMjYwMjEwMTYwMDQ5WjAzMTEwLwYDVQQD EyhkMzQxZTUyYjY1YjFhY2Q1MjNiZWExZjc4ZmM5NDdmOGY4YjRkZTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptLkeqeAtqbruuFOOOKCKbHG5XES oJEqxlk4KSA9wOj5xrJFTOFvLlnwKEQAl1g8Qk8o5q+UOBLB4nJgsqSil1bGlE0t CRGw8wck2myy3EBTUTJYwuFXodkT9aAnNhMNhEEiPBfWg2iePqW7j6zjtU99RwP9 EYTWnTWBNHswPDcv/9eFAPNsspjDruM4czFLEzMYUUn1fdIBbi/q3bZ28BKMxjp4 uFjdtP7AtLtTinbxSW+KeRfX7BNA4AUq4gkytYDc4IhQPHt3le/qIjIdZK96Z23Q wDhb8VtznPSBC1hngwy/htSAhRO6oqBvMfJcl4fesjsLxj6WoaR8gGh+XQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNNB5StlsazVI76h94/JR/j4tN4TMB8GA1UdIwQY MBaAFJhC9x0MI2eILvRwiyBrS24po3szMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUVMM0hRd2paNGd1OUhDTElHdExiaW1qZXpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yNWM5NDctODUzNC00MzQxLWFkNmUt N2RhOGRiYWVhOTRhLzEvbUVMM0hRd2paNGd1OUhDTElHdExiaW1qZXpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS8yNWM5NDctODUzNC00MzQxLWFkNmUtN2RhOGRiYWVhOTRh LzEvbUVMM0hRd2paNGd1OUhDTElHdExiaW1qZXpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABFqsyKGI yv4HQx2W3Xv8kR5gCajuKRwXm52XJLrvSAzVaIE9ywwvmA31M0F5dbLGwVKurcr3 w75dB+qwHV2kbePmQP5wm1QfXHxhwDx09+KuHMSBqLMm6h4j7xJuc4Y1f2Qaq6BA ikveGHk73/ZP0BX/Qt4/cSj7i7KzFRYbG+QOHcgs729jiD7yYnvqE+dPlCiDdcaq jMzjxsxO53PdQ86v8le+bpqjG4anffrRn1d3GgD56q4+DCJ9SORQCtBuQrl8WDyH hZoE2HpP9DLYYaM6Ex2korErKUDLgrUN1aCyduiD4POCdPDqZS+K5YEcvC/q5ZvI qPb6IrwfG3sv2Q== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:53 2026 by rpki-client