This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft File: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft (raw, json) Hash identifier: jEJ6dfIA4GFt1Z0P/jMaTS9nn+S6eiXhSOQRiOY4EAw= Subject key identifier: 7A:75:BA:F4:22:82:AB:BF:36:E5:5A:4C:55:77:E7:22:53:AE:00:FB Authority key identifier: 09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5 Certificate issuer: /CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5 Certificate serial: 019C413471B2691230E8F11E60E5C8B31E52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft Manifest number: 1340 Signing time: Mon 09 Feb 2026 07:01:21 +0000 Manifest this update: Mon 09 Feb 2026 07:01:21 +0000 Manifest next update: Tue 10 Feb 2026 07:01:21 +0000 Files and hashes: 1: 0I00I8J66neTXe4iZZcrlFXaZ8U.roa (hash: coA5RtPDBJN+kY2dT0FgtVFZYsCgYcbOym4tHbbuY/Y=) 2: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl (hash: 6JsRqqnTj6yeTZQ7b9RPc4jIcLAR5R2+32PBsFNNhhY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:71:b2:69:12:30:e8:f1:1e:60:e5:c8:b3:1e:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5 Validity Not Before: Feb 9 07:01:21 2026 GMT Not After : Feb 10 07:01:21 2026 GMT Subject: CN=7a75baf42282abbf36e55a4c5577e72253ae00fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:91:fc:68:4d:f6:e9:3d:8a:fb:f1:9c:5e:42: 43:ed:a9:4f:01:b8:4c:62:a5:7d:c0:a3:42:5f:4b: f7:d4:8a:29:80:be:be:65:4e:25:0e:d2:a2:2c:42: bf:87:9d:0b:f0:4a:63:5d:5e:ba:a7:2e:76:3b:3b: 5f:94:f6:c9:21:14:53:5f:d0:06:9e:f0:86:a6:0e: 30:4d:3f:83:f4:c4:66:38:03:1f:ff:d8:5d:e2:13: f7:62:cf:d1:5b:f9:df:77:90:3f:80:e2:0c:b3:69: 7e:fe:4f:d6:1e:8c:3e:b8:af:d1:1c:3b:70:48:fb: 26:9b:1d:43:cb:62:0a:f4:7c:3d:65:63:59:25:96: 8b:0b:b6:80:7d:07:9e:b9:34:1b:42:8d:9f:59:2b: d1:42:a0:ec:37:33:74:60:52:6b:57:ed:8b:18:dd: 80:29:08:8f:ad:4f:b3:72:c5:8c:a4:63:ac:39:b6: 11:dd:3b:39:71:78:93:51:3e:1f:3b:9c:87:21:d4: c8:2c:28:c7:34:4d:62:0b:fd:76:be:2a:52:09:cf: c5:7e:92:26:9c:5b:84:a4:c6:17:46:bb:f1:e1:02: fe:b0:c7:af:72:8e:d6:d1:9d:b0:a0:e0:9a:fa:b3: d9:f1:15:05:1b:32:1f:e9:93:f3:c9:4f:ab:d5:75: 3d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:75:BA:F4:22:82:AB:BF:36:E5:5A:4C:55:77:E7:22:53:AE:00:FB X509v3 Authority Key Identifier: keyid:09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:f5:7f:b5:2d:04:66:af:83:91:19:9a:92:1d:80:f0:e0:ad: 70:8c:33:00:42:fc:c7:3a:52:80:cd:da:68:bb:56:46:89:26: e6:c5:db:60:14:b1:39:a8:40:c9:fc:09:58:ee:ff:98:70:29: f8:6a:9b:5c:13:32:71:86:09:56:31:ae:da:dc:15:a5:a6:ce: 6a:c7:b7:e6:1b:43:de:3b:3e:9a:57:05:4d:dc:07:37:6e:2f: de:d3:2a:86:9c:c8:ad:9a:c4:38:8a:c6:47:21:e9:2c:c8:d7: 5d:42:eb:20:98:e6:3c:2c:19:42:bc:b1:31:ce:dd:a2:e3:51: 31:46:fe:b9:6c:0d:73:bc:3e:5c:62:ff:99:ae:33:50:ff:71: d4:9e:c3:f0:72:72:89:d4:e4:0e:93:3a:30:25:28:2d:e8:71: 34:ec:f2:de:45:ca:8a:bf:ff:1d:5a:24:25:66:01:6f:d0:9b: c4:89:55:5b:bb:01:de:d1:4a:a4:0a:7f:61:d8:d1:22:7b:0e: 3a:ff:c3:52:2d:e4:68:46:fe:65:97:81:37:c4:87:0d:3f:de: e3:80:e2:1c:a1:a9:25:2d:ba:7f:53:3a:be:a2:21:f7:6a:fb: 57:f5:0c:6c:75:bc:4d:e1:85:71:0d:04:41:44:37:9e:63:68: 3e:d7:2f:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNHGyaRIw6PEeYOXIsx5SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzUwOWU3ZWM2OGZlMmQ5NDM0MDdkNWRkMTI2YTBmNTk2 ZjJhYjUwHhcNMjYwMjA5MDcwMTIxWhcNMjYwMjEwMDcwMTIxWjAzMTEwLwYDVQQD Eyg3YTc1YmFmNDIyODJhYmJmMzZlNTVhNGM1NTc3ZTcyMjUzYWUwMGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5H8aE326T2K+/GcXkJD7alPAbhM YqV9wKNCX0v31IopgL6+ZU4lDtKiLEK/h50L8EpjXV66py52OztflPbJIRRTX9AG nvCGpg4wTT+D9MRmOAMf/9hd4hP3Ys/RW/nfd5A/gOIMs2l+/k/WHow+uK/RHDtw SPsmmx1Dy2IK9Hw9ZWNZJZaLC7aAfQeeuTQbQo2fWSvRQqDsNzN0YFJrV+2LGN2A KQiPrU+zcsWMpGOsObYR3Ts5cXiTUT4fO5yHIdTILCjHNE1iC/12vipSCc/FfpIm nFuEpMYXRrvx4QL+sMevco7W0Z2woOCa+rPZ8RUFGzIf6ZPzyU+r1XU9yQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHp1uvQigqu/NuVaTFV35yJTrgD7MB8GA1UdIwQY MBaAFAk1CefsaP4tlDQH1d0Sag9Zbyq1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1RVSjUteG9faTJVTkFmVjNSSnFEMWx2S3JVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9kZmI5NGMtZmRmNC00OTcyLTlhZDgt N2Q2OTczMzcxMzdiLzEvQ1RVSjUteG9faTJVTkFmVjNSSnFEMWx2S3JVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS9kZmI5NGMtZmRmNC00OTcyLTlhZDgtN2Q2OTczMzcxMzdi LzEvQ1RVSjUteG9faTJVTkFmVjNSSnFEMWx2S3JVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm/V/tS0E Zq+DkRmakh2A8OCtcIwzAEL8xzpSgM3aaLtWRokm5sXbYBSxOahAyfwJWO7/mHAp +GqbXBMycYYJVjGu2twVpabOase35htD3js+mlcFTdwHN24v3tMqhpzIrZrEOIrG RyHpLMjXXULrIJjmPCwZQryxMc7douNRMUb+uWwNc7w+XGL/ma4zUP9x1J7D8HJy idTkDpM6MCUoLehxNOzy3kXKir//HVokJWYBb9CbxIlVW7sB3tFKpAp/YdjRInsO Ov/DUi3kaEb+ZZeBN8SHDT/e44DiHKGpJS26f1M6vqIh92r7V/UMbHW8TeGFcQ0E QUQ3nmNoPtcvvQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:01:56 2026 by rpki-client