This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft File: TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft (raw, json) Hash identifier: jDy7hyR86JYXkC2won6EAyYKtFJH32exKMTHMRHSbcY= Subject key identifier: F3:3A:DF:CC:44:4E:2F:A8:60:B0:C4:2B:1B:A8:7F:BF:3F:98:EC:1D Authority key identifier: 4D:0F:25:7F:33:9C:FB:9E:27:54:B6:CC:24:36:4F:0F:12:90:58:DB Certificate issuer: /CN=4d0f257f339cfb9e2754b6cc24364f0f129058db Certificate serial: 019C4390B30F0CBF52040D0070707AD69169 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft Manifest number: 1649 Signing time: Mon 09 Feb 2026 18:01:22 +0000 Manifest this update: Mon 09 Feb 2026 18:01:22 +0000 Manifest next update: Tue 10 Feb 2026 18:01:22 +0000 Files and hashes: 1: TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl (hash: JFKAtVKUCRjdh3vCnB2O+RfJF/+53838+fjL3AvTPGk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:b3:0f:0c:bf:52:04:0d:00:70:70:7a:d6:91:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d0f257f339cfb9e2754b6cc24364f0f129058db Validity Not Before: Feb 9 18:01:22 2026 GMT Not After : Feb 10 18:01:22 2026 GMT Subject: CN=f33adfcc444e2fa860b0c42b1ba87fbf3f98ec1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:51:5a:fe:bc:98:8d:08:17:1e:de:82:32:e6: 56:20:ac:5a:dc:00:93:98:7b:2b:ce:7c:cb:34:42: c3:92:6a:37:8e:26:90:d8:e0:2e:2f:f1:cd:66:cd: e4:15:76:04:49:94:bb:cc:72:21:32:fc:3c:0e:a3: e8:70:03:c8:f7:51:0b:47:9f:fe:3c:b4:17:84:ea: 67:b8:68:3b:41:74:31:83:74:f5:ee:df:81:d1:cf: 01:9d:61:3d:41:12:31:e7:25:95:99:5b:fa:d9:59: 8f:f8:a4:fe:8e:b1:c3:07:67:20:64:66:63:35:69: 50:a6:9b:23:b4:25:13:21:b4:39:ad:cb:db:21:10: 5d:b6:f9:b0:66:53:85:eb:12:a0:67:86:13:36:b7: a1:51:3c:dc:0b:a7:79:59:65:bb:bc:1d:74:1c:0a: 0a:8b:aa:cb:a8:08:72:0d:47:60:89:56:58:48:0c: a6:88:99:40:95:d5:f5:03:0f:84:d8:3d:c2:a9:0d: dd:08:11:5a:67:e1:f4:d9:3c:0f:7b:06:24:b5:ad: 40:ec:c2:29:47:01:a3:ee:6e:e7:c2:bc:e9:64:c2: f8:fc:df:64:61:a6:0f:28:c6:4f:91:a8:be:6d:3b: 9a:e7:1f:9b:d9:ee:84:38:eb:01:a7:46:b0:19:ff: 9d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:3A:DF:CC:44:4E:2F:A8:60:B0:C4:2B:1B:A8:7F:BF:3F:98:EC:1D X509v3 Authority Key Identifier: keyid:4D:0F:25:7F:33:9C:FB:9E:27:54:B6:CC:24:36:4F:0F:12:90:58:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:75:b3:77:36:78:f3:05:65:44:2e:61:7a:82:42:4f:af:10: cb:fd:e3:50:66:c2:77:79:2e:e9:65:84:20:3f:97:fb:09:07: fa:5e:28:37:fd:39:c6:cc:27:bd:b2:ed:af:58:49:b2:c6:1a: 09:8d:b8:f2:67:f1:4b:f0:62:74:cd:f4:71:17:7a:47:74:ed: e1:d1:45:4c:be:e3:4b:a7:cb:25:a4:ed:71:d6:37:cf:0d:a9: 36:18:70:d8:2a:f0:9e:99:31:bc:41:07:fc:b6:b9:30:f2:28: 98:5c:18:dc:4c:de:dc:5c:c1:2b:48:bb:43:34:bc:ed:46:49: 84:5a:4a:c8:93:3d:17:0d:f6:0d:c0:45:95:da:14:6d:75:86: 93:d1:3e:8d:b7:4e:67:9c:aa:5d:ed:89:95:08:63:6c:48:ee: 6f:40:27:f6:19:58:e9:9f:1f:0a:5c:7c:95:45:55:53:ae:c6: 2c:f8:2c:4d:2d:7e:d2:f9:de:a7:4b:5f:b5:51:cf:45:1c:ce: 74:0f:8f:d2:5f:65:e6:33:aa:95:61:3c:8e:74:2e:ce:c8:37: 6f:7e:e0:f1:b5:7b:2a:3e:96:da:3e:b1:84:ad:05:06:84:ee: 61:6c:44:05:a1:83:2f:9c:e2:71:64:6c:37:c0:63:2e:2d:2e: cd:c1:37:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkLMPDL9SBA0AcHB61pFpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMGYyNTdmMzM5Y2ZiOWUyNzU0YjZjYzI0MzY0ZjBmMTI5 MDU4ZGIwHhcNMjYwMjA5MTgwMTIyWhcNMjYwMjEwMTgwMTIyWjAzMTEwLwYDVQQD EyhmMzNhZGZjYzQ0NGUyZmE4NjBiMGM0MmIxYmE4N2ZiZjNmOThlYzFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVFa/ryYjQgXHt6CMuZWIKxa3ACT mHsrznzLNELDkmo3jiaQ2OAuL/HNZs3kFXYESZS7zHIhMvw8DqPocAPI91ELR5/+ PLQXhOpnuGg7QXQxg3T17t+B0c8BnWE9QRIx5yWVmVv62VmP+KT+jrHDB2cgZGZj NWlQppsjtCUTIbQ5rcvbIRBdtvmwZlOF6xKgZ4YTNrehUTzcC6d5WWW7vB10HAoK i6rLqAhyDUdgiVZYSAymiJlAldX1Aw+E2D3CqQ3dCBFaZ+H02TwPewYkta1A7MIp RwGj7m7nwrzpZML4/N9kYaYPKMZPkai+bTua5x+b2e6EOOsBp0awGf+dvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPM638xETi+oYLDEKxuof78/mOwdMB8GA1UdIwQY MBaAFE0PJX8znPueJ1S2zCQ2Tw8SkFjbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFE4bGZ6T2MtNTRuVkxiTUpEWlBEeEtRV05zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80MjM5ZTktZTY3MC00NGYxLTg2OGUt ZjNmNTgxZGZjNjQ4LzEvVFE4bGZ6T2MtNTRuVkxiTUpEWlBEeEtRV05zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC80MjM5ZTktZTY3MC00NGYxLTg2OGUtZjNmNTgxZGZjNjQ4 LzEvVFE4bGZ6T2MtNTRuVkxiTUpEWlBEeEtRV05zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJHWzdzZ4 8wVlRC5heoJCT68Qy/3jUGbCd3ku6WWEID+X+wkH+l4oN/05xswnvbLtr1hJssYa CY248mfxS/BidM30cRd6R3Tt4dFFTL7jS6fLJaTtcdY3zw2pNhhw2CrwnpkxvEEH /La5MPIomFwY3Eze3FzBK0i7QzS87UZJhFpKyJM9Fw32DcBFldoUbXWGk9E+jbdO Z5yqXe2JlQhjbEjub0An9hlY6Z8fClx8lUVVU67GLPgsTS1+0vnep0tftVHPRRzO dA+P0l9l5jOqlWE8jnQuzsg3b37g8bV7Kj6W2j6xhK0FBoTuYWxEBaGDL5zicWRs N8BjLi0uzcE3aw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:22 2026 by rpki-client