This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft File: Cani7ovOptW5GcSjPSbZu_mCqEM.mft (raw, json) Hash identifier: JXj4jgmk3PGEEXO8+i98VaviETfCeTC4zMBMffGlHwY= Subject key identifier: 11:AA:22:53:35:CE:B3:75:8D:D1:4A:0A:02:7E:EA:15:AF:02:A5:FE Authority key identifier: 09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43 Certificate issuer: /CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843 Certificate serial: 019C4246A724AEA2494B11FA188420B82DD8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft Manifest number: 0C8E Signing time: Mon 09 Feb 2026 12:00:52 +0000 Manifest this update: Mon 09 Feb 2026 12:00:52 +0000 Manifest next update: Tue 10 Feb 2026 12:00:52 +0000 Files and hashes: 1: Cani7ovOptW5GcSjPSbZu_mCqEM.crl (hash: iE6x2lDvCkarsfVyZN1+hVEc3tgjk9os+LXRkRzrBL4=) 2: ToM6N48G8WGMzFpuQ0Gt_pOWEHc.roa (hash: f5NlaoVCrJ+ZbPHrxjLY8hxzqQ0aKUh9p8kFFA8E7Vo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:a7:24:ae:a2:49:4b:11:fa:18:84:20:b8:2d:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843 Validity Not Before: Feb 9 12:00:52 2026 GMT Not After : Feb 10 12:00:52 2026 GMT Subject: CN=11aa225335ceb3758dd14a0a027eea15af02a5fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:53:9b:e7:d0:af:2d:64:89:a8:83:bb:c1:1d: 11:4e:b3:43:c0:c5:1b:57:67:4b:23:14:c1:90:05: 46:b4:e3:7d:68:36:77:f1:f8:09:f1:da:8e:97:20: fd:16:23:4d:45:71:f6:5f:57:d8:f6:72:9f:40:9a: 04:1e:be:5c:59:64:fb:21:df:7b:42:78:be:b4:42: a0:51:5c:95:9d:35:03:04:21:06:d1:42:fa:9e:2e: df:07:7c:68:53:f9:57:87:a6:5f:81:f4:08:e3:3f: bf:82:69:aa:5b:35:25:c7:19:e5:87:5e:73:65:a2: fd:57:f1:69:74:ee:ac:56:ca:99:f1:ac:9d:cb:46: 9b:1c:4d:6a:cf:b9:3d:27:b8:c3:26:2d:2c:a1:c1: 03:7a:72:7a:4a:07:f0:ac:b2:e3:52:b0:18:d6:13: c2:63:e7:d8:19:92:c9:f5:3f:2c:c1:d0:72:c0:86: 1c:b9:97:68:f5:9d:31:7b:75:9b:19:db:34:2c:01: ae:0d:b1:de:e0:40:a0:17:27:98:b0:02:78:4e:9f: 29:1b:83:b5:a2:29:a8:c6:2b:01:d1:fe:1c:bf:42: 98:35:7e:64:ed:6b:17:a9:b4:40:87:66:85:cf:7d: db:b1:df:09:a2:73:97:b0:11:d1:be:8f:bf:2a:7e: f0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AA:22:53:35:CE:B3:75:8D:D1:4A:0A:02:7E:EA:15:AF:02:A5:FE X509v3 Authority Key Identifier: keyid:09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:90:c7:5a:0f:f3:a6:25:77:4b:94:f3:d3:85:6d:c7:c0:91: 3e:9b:2b:43:27:5e:6c:e4:bd:4a:85:9a:66:95:50:1c:d7:b5: ec:e4:d7:c2:ac:66:de:11:7c:e4:8d:cc:44:a5:d9:58:28:dc: 34:01:a2:ef:e5:d0:cc:a2:f5:1f:4d:06:b1:22:2a:92:eb:0f: 6c:01:80:a7:3a:f9:9b:33:be:b6:06:c2:94:1e:88:ff:f8:09: 13:0f:de:58:86:bf:c9:7d:08:a2:f0:fd:67:68:e6:a6:77:ce: 2e:9b:84:8a:89:dc:f9:b9:80:f6:7b:17:47:3d:4a:7a:2b:b8: cf:b1:b9:4c:c2:69:4e:cc:ec:33:aa:5b:56:f6:8b:84:65:2d: 3b:b3:dd:5b:df:08:e4:64:03:94:2a:b9:67:49:a0:fb:a5:77: ce:39:5e:f5:36:b5:ac:45:96:1e:e1:2b:e4:37:8d:78:1f:70: 4b:63:00:83:20:0e:dc:ea:1d:a5:99:74:76:0c:08:c2:97:ec: cf:7b:ba:1c:c5:2b:38:1e:c4:f1:17:1f:06:c5:13:d3:f7:e4: 3d:84:f5:89:bc:10:e7:09:ef:6d:1d:26:43:d7:2a:d1:5c:6e: ca:40:ff:8d:d4:89:87:77:f4:4b:26:b7:88:3f:38:cf:29:98: 83:e3:e5:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRqckrqJJSxH6GIQguC3YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5YTllMmVlOGJjZWE2ZDViOTE5YzRhMzNkMjZkOWJiZjk4 MmE4NDMwHhcNMjYwMjA5MTIwMDUyWhcNMjYwMjEwMTIwMDUyWjAzMTEwLwYDVQQD EygxMWFhMjI1MzM1Y2ViMzc1OGRkMTRhMGEwMjdlZWExNWFmMDJhNWZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlOb59CvLWSJqIO7wR0RTrNDwMUb V2dLIxTBkAVGtON9aDZ38fgJ8dqOlyD9FiNNRXH2X1fY9nKfQJoEHr5cWWT7Id97 Qni+tEKgUVyVnTUDBCEG0UL6ni7fB3xoU/lXh6ZfgfQI4z+/gmmqWzUlxxnlh15z ZaL9V/FpdO6sVsqZ8aydy0abHE1qz7k9J7jDJi0socEDenJ6SgfwrLLjUrAY1hPC Y+fYGZLJ9T8swdBywIYcuZdo9Z0xe3WbGds0LAGuDbHe4ECgFyeYsAJ4Tp8pG4O1 oimoxisB0f4cv0KYNX5k7WsXqbRAh2aFz33bsd8JonOXsBHRvo+/Kn7wWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBGqIlM1zrN1jdFKCgJ+6hWvAqX+MB8GA1UdIwQY MBaAFAmp4u6LzqbVuRnEoz0m2bv5gqhDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2FuaTdvdk9wdFc1R2NTalBTYlp1X21DcUVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS81OGQxNWItOWYwMi00MmM0LWIwMmQt YTAxZWVhNjVmZDMzLzEvQ2FuaTdvdk9wdFc1R2NTalBTYlp1X21DcUVNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS81OGQxNWItOWYwMi00MmM0LWIwMmQtYTAxZWVhNjVmZDMz LzEvQ2FuaTdvdk9wdFc1R2NTalBTYlp1X21DcUVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP5DHWg/z piV3S5Tz04Vtx8CRPpsrQydebOS9SoWaZpVQHNe17OTXwqxm3hF85I3MRKXZWCjc NAGi7+XQzKL1H00GsSIqkusPbAGApzr5mzO+tgbClB6I//gJEw/eWIa/yX0IovD9 Z2jmpnfOLpuEionc+bmA9nsXRz1Keiu4z7G5TMJpTszsM6pbVvaLhGUtO7PdW98I 5GQDlCq5Z0mg+6V3zjle9Ta1rEWWHuEr5DeNeB9wS2MAgyAO3OodpZl0dgwIwpfs z3u6HMUrOB7E8RcfBsUT0/fkPYT1ibwQ5wnvbR0mQ9cq0VxuykD/jdSJh3f0Sya3 iD84zymYg+PlDA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:06 2026 by rpki-client