This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft File: TtMkzMCQuDGCmReur3ODTwg0Ss4.mft (raw, json) Hash identifier: J+Fikm3KxrcJ04oBiqvGcq+Lx4aRc2pPDPBIvsl4mA4= Subject key identifier: 34:04:BE:6D:28:57:14:BC:39:D7:A4:E7:1D:A9:67:9D:75:9C:85:38 Authority key identifier: 4E:D3:24:CC:C0:90:B8:31:82:99:17:AE:AF:73:83:4F:08:34:4A:CE Certificate issuer: /CN=4ed324ccc090b831829917aeaf73834f08344ace Certificate serial: 019C4321FA04727C3B7DF5B3CCA314968CB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft Manifest number: 0320 Signing time: Mon 09 Feb 2026 16:00:25 +0000 Manifest this update: Mon 09 Feb 2026 16:00:25 +0000 Manifest next update: Tue 10 Feb 2026 16:00:25 +0000 Files and hashes: 1: C6nXsG6UDvJjYHmVMk3MguMztUw.roa (hash: DZ6jiw9DI8ZM7KfN0j9o/vZRidGddKGFVOWlQEbKrbI=) 2: TtMkzMCQuDGCmReur3ODTwg0Ss4.crl (hash: EPH8MwfZCqJxY7UwA/xKM+1kigDio1CHryQYytns7uE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:fa:04:72:7c:3b:7d:f5:b3:cc:a3:14:96:8c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ed324ccc090b831829917aeaf73834f08344ace Validity Not Before: Feb 9 16:00:25 2026 GMT Not After : Feb 10 16:00:25 2026 GMT Subject: CN=3404be6d285714bc39d7a4e71da9679d759c8538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0f:31:af:37:b7:62:45:27:d4:70:0a:2b:a9: 22:3a:05:ba:68:6f:40:24:06:6f:10:98:f6:5b:e6: b7:47:a9:67:2f:da:68:db:ff:fb:02:72:1d:e8:0c: bb:d1:fe:c3:2c:02:14:5c:6b:b0:c4:90:dd:0b:f9: f5:be:df:88:80:5d:31:f2:b0:27:9b:7c:68:16:d5: 2e:d9:08:d4:29:0c:05:a1:8e:2e:03:1d:c2:aa:80: 7d:f7:5c:50:57:4e:76:36:9c:9e:18:44:fa:fc:89: 0f:5e:60:38:49:76:5d:d5:e9:da:d0:63:e0:9d:da: 5d:f6:f4:97:13:53:59:36:f6:af:ec:2f:9d:60:42: 66:04:23:ea:b4:d3:0b:86:6c:9c:96:6c:8f:1a:33: a8:b4:8e:92:60:8d:de:89:7c:cd:eb:79:3a:ae:2e: 9a:7e:15:2e:94:52:16:30:66:37:6c:ff:75:c7:cc: 1d:8d:80:80:fb:f9:df:cf:7d:ed:6b:10:8c:26:c8: 10:2f:9d:a8:a6:0a:e2:e0:f2:62:34:23:f7:1f:d5: 02:fa:01:7c:75:91:7c:f4:1a:13:71:cc:79:43:6d: 77:ab:d5:5e:76:c1:7c:ab:90:4e:04:2e:de:29:63: d6:5d:1b:e2:9b:a7:23:20:20:ba:6b:05:ae:43:29: 10:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:04:BE:6D:28:57:14:BC:39:D7:A4:E7:1D:A9:67:9D:75:9C:85:38 X509v3 Authority Key Identifier: keyid:4E:D3:24:CC:C0:90:B8:31:82:99:17:AE:AF:73:83:4F:08:34:4A:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:65:9f:00:a8:c9:84:9b:a2:37:7b:29:5b:3b:f5:a6:33:aa: c3:c8:12:96:a8:e0:3c:db:79:49:e1:45:42:d1:b7:ef:4c:81: 02:b8:1e:1a:4d:45:bf:0f:d5:1f:f8:aa:a5:75:34:a6:af:c0: ed:57:87:12:62:e3:a9:4c:ac:d6:1d:91:f4:9d:e5:a0:b3:b3: 6c:76:12:9d:c2:1f:4c:a3:b7:9a:43:9f:89:92:15:1b:ea:3a: 51:06:97:05:fb:1c:cf:bc:b3:cb:77:94:54:51:61:46:8e:0f: 97:c7:0b:43:0e:f0:6b:de:5b:68:49:e3:88:d1:14:5d:51:a2: 17:b5:2f:73:2b:c6:28:6a:9d:11:4a:28:84:a7:06:d7:ab:5f: cb:39:93:46:72:34:29:76:27:bf:13:77:c1:53:df:76:72:0d: 32:c0:11:7f:c0:ce:15:0c:8a:0f:47:bd:fa:13:3c:d5:3d:7a: 1f:dc:f8:a7:1f:2a:51:51:ad:00:79:1a:b1:95:20:7d:e7:a8: e4:f1:60:04:6b:9c:2b:99:55:6a:79:dd:45:f5:3f:37:56:5a: 28:a7:ac:67:7d:5b:34:d0:a9:1b:0d:e4:ce:c1:39:a2:44:59: d7:c6:d6:36:8d:ad:65:6a:c6:4d:53:39:e7:e4:ec:70:a0:30: a9:c7:da:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIfoEcnw7ffWzzKMUloywMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZDMyNGNjYzA5MGI4MzE4Mjk5MTdhZWFmNzM4MzRmMDgz NDRhY2UwHhcNMjYwMjA5MTYwMDI1WhcNMjYwMjEwMTYwMDI1WjAzMTEwLwYDVQQD EygzNDA0YmU2ZDI4NTcxNGJjMzlkN2E0ZTcxZGE5Njc5ZDc1OWM4NTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsw8xrze3YkUn1HAKK6kiOgW6aG9A JAZvEJj2W+a3R6lnL9po2//7AnId6Ay70f7DLAIUXGuwxJDdC/n1vt+IgF0x8rAn m3xoFtUu2QjUKQwFoY4uAx3CqoB991xQV052NpyeGET6/IkPXmA4SXZd1ena0GPg ndpd9vSXE1NZNvav7C+dYEJmBCPqtNMLhmyclmyPGjOotI6SYI3eiXzN63k6ri6a fhUulFIWMGY3bP91x8wdjYCA+/nfz33taxCMJsgQL52opgri4PJiNCP3H9UC+gF8 dZF89BoTccx5Q213q9VedsF8q5BOBC7eKWPWXRvim6cjICC6awWuQykQtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDQEvm0oVxS8Odek5x2pZ511nIU4MB8GA1UdIwQY MBaAFE7TJMzAkLgxgpkXrq9zg08INErOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHRNa3pNQ1F1REdDbVJldXIzT0RUd2cwU3M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8wMTdjMzctNjFiNi00ZDQwLTg4MWEt NTNhMDg0MzkwNTI3LzEvVHRNa3pNQ1F1REdDbVJldXIzT0RUd2cwU3M0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy8wMTdjMzctNjFiNi00ZDQwLTg4MWEtNTNhMDg0MzkwNTI3 LzEvVHRNa3pNQ1F1REdDbVJldXIzT0RUd2cwU3M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQGWfAKjJ hJuiN3spWzv1pjOqw8gSlqjgPNt5SeFFQtG370yBArgeGk1Fvw/VH/iqpXU0pq/A 7VeHEmLjqUys1h2R9J3loLOzbHYSncIfTKO3mkOfiZIVG+o6UQaXBfscz7yzy3eU VFFhRo4Pl8cLQw7wa95baEnjiNEUXVGiF7UvcyvGKGqdEUoohKcG16tfyzmTRnI0 KXYnvxN3wVPfdnINMsARf8DOFQyKD0e9+hM81T16H9z4px8qUVGtAHkasZUgfeeo 5PFgBGucK5lVanndRfU/N1ZaKKesZ31bNNCpGw3kzsE5okRZ18bWNo2tZWrGTVM5 5+TscKAwqcfatQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:25 2026 by rpki-client