This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft File: _tdzOdk4vvCHWZKTwgGzufgiNiM.mft (raw, json) Hash identifier: yFq7/CO8Qu4j44BbONv2sgvJ4wXhpoFPZu2XK2zm4tA= Subject key identifier: EB:EB:DE:CA:98:1B:86:20:F8:78:70:DA:64:5B:89:E1:AD:9F:B7:9F Authority key identifier: FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23 Certificate issuer: /CN=fed77339d938bef087599293c201b3b9f8223623 Certificate serial: 019C43594DF9066D7D53E588E8246FBC86AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft Manifest number: 17A2 Signing time: Mon 09 Feb 2026 17:00:51 +0000 Manifest this update: Mon 09 Feb 2026 17:00:51 +0000 Manifest next update: Tue 10 Feb 2026 17:00:51 +0000 Files and hashes: 1: _tdzOdk4vvCHWZKTwgGzufgiNiM.crl (hash: fYARwsww7dwroU+orm3zhZJuMKC5X0usfVHs0GeO9R8=) 2: dVMqcvXursPYfDYSCDAE4DhRFlc.roa (hash: Yq3X9779TMJZn56pp7FdF+bqg71vRgvQymxrtb6IBFY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:4d:f9:06:6d:7d:53:e5:88:e8:24:6f:bc:86:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fed77339d938bef087599293c201b3b9f8223623 Validity Not Before: Feb 9 17:00:51 2026 GMT Not After : Feb 10 17:00:51 2026 GMT Subject: CN=ebebdeca981b8620f87870da645b89e1ad9fb79f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e8:93:c9:ac:f0:c5:5d:23:d3:16:4b:80:87: 03:30:2a:a5:dd:e3:29:d9:0f:ff:8e:f0:1a:73:78: 51:93:3a:72:0f:76:1b:c5:2e:c4:5f:7b:9d:fc:ae: 23:17:6d:01:fa:01:ee:b0:60:eb:fc:80:de:0f:54: d9:ce:b5:ee:47:63:f0:14:ad:c5:f4:ad:20:f9:cb: cf:f3:08:b5:eb:88:38:2e:8c:49:20:6a:34:5a:ec: e9:2a:c6:8e:e6:5d:97:f6:5b:f8:4f:ec:6d:cd:f1: db:af:22:53:24:1e:f1:5e:74:20:2a:04:a9:51:00: a8:38:d1:5a:7f:b1:5c:38:0e:16:71:1f:78:24:2d: d4:08:cf:fc:ae:15:3a:80:fb:9a:d5:7e:c0:f9:58: 78:a3:27:ba:bd:b3:1d:44:43:69:f9:b0:bd:e8:30: a5:41:e7:b0:98:09:e8:95:58:3a:a2:58:3c:b3:e3: 84:a6:94:7a:d7:76:31:6c:c3:9c:ac:8f:c3:c7:19: fd:cf:e3:ba:e8:2e:cc:dd:b8:b9:83:fe:52:18:59: ed:33:c0:62:be:1b:27:e8:d1:06:7b:d9:8f:6c:7e: 03:02:d8:df:35:2b:e6:40:22:d1:62:46:e1:3f:61: 64:e4:8f:f4:48:d2:93:23:12:6b:d7:c1:e8:90:1f: 94:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:EB:DE:CA:98:1B:86:20:F8:78:70:DA:64:5B:89:E1:AD:9F:B7:9F X509v3 Authority Key Identifier: keyid:FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:f5:80:74:70:a2:94:be:b2:68:b1:09:7b:f5:c0:2c:01:f7: 6d:01:69:4d:05:ed:dd:ea:da:c7:41:81:34:7a:f2:03:9f:91: 57:90:98:77:2a:7b:28:95:74:6d:18:c3:ee:2a:73:18:5b:e9: 5c:75:5e:3d:a2:60:9a:25:62:05:5d:8f:3d:ab:58:a1:17:80: bb:e1:59:69:9f:4f:c6:dd:ce:3f:a3:af:eb:d2:6a:12:aa:b3: 0b:13:a4:99:b1:dc:e8:0b:26:c7:d5:46:6e:ba:7f:f9:f7:8e: a3:5a:cb:1c:6a:14:4c:d7:f1:e8:d7:aa:cd:2b:7a:4c:35:f4: 1e:48:94:5f:c3:8a:ca:46:16:72:c1:6e:89:3f:64:cb:76:21: 2e:97:ea:1f:c8:ac:c4:36:0e:e6:eb:34:fc:90:74:01:f5:02: b4:cd:d0:b9:94:a6:2d:cd:16:e7:6d:86:81:0f:cb:99:8f:5c: 02:e4:84:36:d8:ff:00:f4:95:bc:40:1e:20:6f:5a:c5:83:fb: 79:c4:18:1b:90:8f:33:13:60:c2:7c:8d:d3:67:a0:85:4d:3a: 46:c3:54:0b:af:d8:a6:ba:2f:b3:f5:bd:56:98:bc:a3:89:c4: 4a:bf:15:92:ed:1e:f2:61:c1:89:bb:1d:1b:16:cd:20:57:b0: b2:aa:44:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWU35Bm19U+WI6CRvvIarMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlZDc3MzM5ZDkzOGJlZjA4NzU5OTI5M2MyMDFiM2I5Zjgy MjM2MjMwHhcNMjYwMjA5MTcwMDUxWhcNMjYwMjEwMTcwMDUxWjAzMTEwLwYDVQQD EyhlYmViZGVjYTk4MWI4NjIwZjg3ODcwZGE2NDViODllMWFkOWZiNzlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+iTyazwxV0j0xZLgIcDMCql3eMp 2Q//jvAac3hRkzpyD3YbxS7EX3ud/K4jF20B+gHusGDr/IDeD1TZzrXuR2PwFK3F 9K0g+cvP8wi164g4LoxJIGo0WuzpKsaO5l2X9lv4T+xtzfHbryJTJB7xXnQgKgSp UQCoONFaf7FcOA4WcR94JC3UCM/8rhU6gPua1X7A+Vh4oye6vbMdRENp+bC96DCl QeewmAnolVg6olg8s+OEppR613YxbMOcrI/Dxxn9z+O66C7M3bi5g/5SGFntM8Bi vhsn6NEGe9mPbH4DAtjfNSvmQCLRYkbhP2Fk5I/0SNKTIxJr18HokB+UcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOvr3sqYG4Yg+Hhw2mRbieGtn7efMB8GA1UdIwQY MBaAFP7XcznZOL7wh1mSk8IBs7n4IjYjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9iZmI4MTctN2UyZC00NDU4LWJhYjEt ZDE3NTAwMjBjYWY1LzEvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS9iZmI4MTctN2UyZC00NDU4LWJhYjEtZDE3NTAwMjBjYWY1 LzEvX3Rkek9kazR2dkNIV1pLVHdnR3p1ZmdpTmlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACvWAdHCi lL6yaLEJe/XALAH3bQFpTQXt3erax0GBNHryA5+RV5CYdyp7KJV0bRjD7ipzGFvp XHVePaJgmiViBV2PPatYoReAu+FZaZ9Pxt3OP6Ov69JqEqqzCxOkmbHc6Asmx9VG brp/+feOo1rLHGoUTNfx6NeqzSt6TDX0HkiUX8OKykYWcsFuiT9ky3YhLpfqH8is xDYO5us0/JB0AfUCtM3QuZSmLc0W522GgQ/LmY9cAuSENtj/APSVvEAeIG9axYP7 ecQYG5CPMxNgwnyN02eghU06RsNUC6/Yprovs/W9Vpi8o4nESr8Vku0e8mHBibsd GxbNIFewsqpESw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:30 2026 by rpki-client