This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft File: FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft (raw, json) Hash identifier: eFYqJXmOncEis8YmbeG1MPGeuxO5R+inqPRZ4pWE2L8= Subject key identifier: A0:99:08:2D:88:3E:0C:C4:DC:5E:01:2B:E2:A8:57:F6:81:6D:C1:5D Authority key identifier: 16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08 Certificate issuer: /CN=16536fc756a5864aaa2c1e77bb764248dabe2608 Certificate serial: 019C43903930A78C753D6C84B9A21539E8C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft Manifest number: 0862 Signing time: Mon 09 Feb 2026 18:00:51 +0000 Manifest this update: Mon 09 Feb 2026 18:00:51 +0000 Manifest next update: Tue 10 Feb 2026 18:00:51 +0000 Files and hashes: 1: FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl (hash: ECIKpQlFS2ZVp1lZBh0g0q8mbGBPpOM+Ujh8a8SbBEc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:39:30:a7:8c:75:3d:6c:84:b9:a2:15:39:e8:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16536fc756a5864aaa2c1e77bb764248dabe2608 Validity Not Before: Feb 9 18:00:51 2026 GMT Not After : Feb 10 18:00:51 2026 GMT Subject: CN=a099082d883e0cc4dc5e012be2a857f6816dc15d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:95:15:1b:9b:26:94:77:fd:58:92:07:cb:61: 21:63:72:5e:77:30:0c:7e:dd:da:8f:0b:a0:5d:ff: b7:47:fc:ce:3d:e1:7d:7b:e7:7a:3d:e6:dd:82:9b: b5:b5:7d:5b:37:95:8f:b1:19:9b:b2:1d:e6:61:ee: f0:79:43:b7:2b:8b:53:23:44:50:f3:8d:39:71:cf: 14:c2:46:27:ac:ba:0b:52:30:c2:ef:38:f5:81:70: 7e:a4:30:94:9b:60:32:1b:e0:cc:38:96:88:b9:74: 4c:b1:ee:06:9e:98:64:15:ca:61:4c:bf:22:75:8c: ee:a2:1c:2e:ee:0a:6e:51:79:89:05:75:3c:ea:50: 28:5b:c6:c0:da:05:e4:d6:44:03:22:9d:ad:3e:74: 0e:b2:7a:af:fc:9a:24:09:67:ab:69:21:96:e7:1f: 18:9d:37:dc:09:86:09:1e:95:b7:b9:15:6b:1c:eb: fd:47:8f:9d:96:b2:83:00:5d:9a:0f:3b:ab:45:b7: 21:da:3a:b3:aa:db:f9:32:cb:99:d4:20:c8:9d:37: 17:15:f9:2e:9d:b1:19:68:fe:97:17:1c:62:83:61: 8f:4c:9d:f9:be:af:ce:c7:32:0b:c4:fb:68:04:5a: 45:11:08:1d:ac:08:01:d1:96:30:0f:e7:5f:c8:86: 8d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:99:08:2D:88:3E:0C:C4:DC:5E:01:2B:E2:A8:57:F6:81:6D:C1:5D X509v3 Authority Key Identifier: keyid:16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:d2:a4:3e:3f:8b:1f:86:3c:9c:d7:97:18:04:be:a3:42:77: 63:43:44:46:c8:12:2b:b4:ff:83:96:c4:db:69:3c:88:8f:bf: c7:d6:9d:28:17:4b:f7:8d:e0:bc:de:cb:38:81:8c:a4:88:00: 0e:8c:a7:70:ec:d8:38:4e:6f:57:db:ea:2d:ae:46:60:8a:a7: e4:9d:fc:f8:e8:ab:12:7c:7c:ac:de:43:34:86:50:40:e8:8e: c1:c2:76:f4:71:a1:4e:9f:64:0f:8d:13:24:c1:51:94:b5:ac: 5e:9b:28:59:bc:47:9b:93:0d:97:3b:99:76:18:74:19:e0:11: d2:ba:9f:5e:31:44:b4:1a:04:de:69:f0:0b:15:e6:66:6d:56: 73:7a:f0:cd:28:ba:fe:7f:ea:d2:ff:25:51:98:b7:d7:d2:81: 93:64:16:82:b9:0e:14:0d:8e:d0:a6:c1:59:73:4b:12:6f:c6: 6b:09:8d:0b:fe:f2:71:ca:74:ba:ab:65:14:78:1a:5c:74:ac: d3:55:72:01:a2:18:6d:1b:f6:82:66:be:59:e4:87:8c:a1:f1: e8:ef:fe:f2:0b:bc:db:72:e0:de:ca:09:5f:cc:85:93:1a:fc: ff:29:40:e2:7b:ca:ab:c5:dc:c9:a7:a7:51:51:08:72:0b:ba: 50:86:6c:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkDkwp4x1PWyEuaIVOejDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2NTM2ZmM3NTZhNTg2NGFhYTJjMWU3N2JiNzY0MjQ4ZGFi ZTI2MDgwHhcNMjYwMjA5MTgwMDUxWhcNMjYwMjEwMTgwMDUxWjAzMTEwLwYDVQQD EyhhMDk5MDgyZDg4M2UwY2M0ZGM1ZTAxMmJlMmE4NTdmNjgxNmRjMTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZUVG5smlHf9WJIHy2EhY3JedzAM ft3ajwugXf+3R/zOPeF9e+d6Pebdgpu1tX1bN5WPsRmbsh3mYe7weUO3K4tTI0RQ 8405cc8UwkYnrLoLUjDC7zj1gXB+pDCUm2AyG+DMOJaIuXRMse4GnphkFcphTL8i dYzuohwu7gpuUXmJBXU86lAoW8bA2gXk1kQDIp2tPnQOsnqv/JokCWeraSGW5x8Y nTfcCYYJHpW3uRVrHOv9R4+dlrKDAF2aDzurRbch2jqzqtv5MsuZ1CDInTcXFfku nbEZaP6XFxxig2GPTJ35vq/OxzILxPtoBFpFEQgdrAgB0ZYwD+dfyIaNaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKCZCC2IPgzE3F4BK+KoV/aBbcFdMB8GA1UdIwQY MBaAFBZTb8dWpYZKqiwed7t2QkjaviYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmxOdngxYWxoa3FxTEI1M3UzWkNTTnEtSmdnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS85YTRiNDUtZGFjMC00Yzc5LThlMTQt N2YzZWI3NTQ2MTAyLzEvRmxOdngxYWxoa3FxTEI1M3UzWkNTTnEtSmdnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS85YTRiNDUtZGFjMC00Yzc5LThlMTQtN2YzZWI3NTQ2MTAy LzEvRmxOdngxYWxoa3FxTEI1M3UzWkNTTnEtSmdnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAidKkPj+L H4Y8nNeXGAS+o0J3Y0NERsgSK7T/g5bE22k8iI+/x9adKBdL943gvN7LOIGMpIgA DoyncOzYOE5vV9vqLa5GYIqn5J38+OirEnx8rN5DNIZQQOiOwcJ29HGhTp9kD40T JMFRlLWsXpsoWbxHm5MNlzuZdhh0GeAR0rqfXjFEtBoE3mnwCxXmZm1Wc3rwzSi6 /n/q0v8lUZi319KBk2QWgrkOFA2O0KbBWXNLEm/GawmNC/7yccp0uqtlFHgaXHSs 01VyAaIYbRv2gma+WeSHjKHx6O/+8gu823Lg3soJX8yFkxr8/ylA4nvKq8Xcyaen UVEIcgu6UIZsIw== -----END CERTIFICATE-----Generated at Tue Feb 10 02:51:47 2026 by rpki-client