This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft File: TvMzZvDPXk-oBO730eKSlO6lFIw.mft (raw, json) Hash identifier: wOuEiBJHDLeHNvdUMPuwbfTagfCycImyH/MzJ/6G2/o= Subject key identifier: 64:A8:74:FE:2E:2B:F0:99:63:0B:D1:43:B2:CE:C8:15:CA:F2:24:40 Authority key identifier: 4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C Certificate issuer: /CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c Certificate serial: 019C42B4598FBCE2D7EC3D84E015A85DFD7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft Manifest number: 04A9 Signing time: Mon 09 Feb 2026 14:00:41 +0000 Manifest this update: Mon 09 Feb 2026 14:00:41 +0000 Manifest next update: Tue 10 Feb 2026 14:00:41 +0000 Files and hashes: 1: TvMzZvDPXk-oBO730eKSlO6lFIw.crl (hash: T0KvSZmIQKaNrKOYqNv7qM2DQmwEQ6Ea47S98KshNq8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:59:8f:bc:e2:d7:ec:3d:84:e0:15:a8:5d:fd:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c Validity Not Before: Feb 9 14:00:41 2026 GMT Not After : Feb 10 14:00:41 2026 GMT Subject: CN=64a874fe2e2bf099630bd143b2cec815caf22440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b9:bc:34:c9:bc:dd:06:54:dd:73:c4:e1:92: 38:45:4f:f7:b4:e6:5c:2d:7f:38:05:96:6c:a0:85: 23:87:a3:b8:cf:fd:b6:d0:56:10:d7:a8:5e:51:05: 53:34:04:ed:f1:c2:d9:a7:1d:73:d3:d3:08:89:45: d5:0f:dc:4d:05:9a:7b:cf:db:39:98:fa:c3:bf:3e: 2b:04:67:75:38:64:c5:7f:10:c0:e2:48:d2:68:84: 32:cb:d4:64:d3:e3:25:21:ad:3d:d8:08:45:f9:84: 26:c1:0d:46:17:fe:1c:40:c3:cc:31:57:88:56:d4: 52:1d:c1:c4:76:d1:dd:d1:03:fe:ff:78:aa:07:6e: 3a:d3:45:36:25:e0:a2:2a:15:08:7a:c8:21:2d:d3: 96:83:12:fc:cb:d6:e3:28:0c:04:e3:d4:4e:a3:6a: da:7b:3b:47:9a:f4:7b:3f:18:75:57:36:42:ea:fb: 01:4f:5d:e5:b1:3e:4a:83:74:1e:e0:a2:7f:5e:c2: 0b:f4:67:8c:27:42:0f:bc:43:c3:20:f3:02:a3:41: 3f:86:6c:73:e2:1a:af:fd:6a:f6:3a:a5:b0:6a:c4: 4a:2f:9b:8e:02:96:aa:a1:14:75:9e:be:19:fd:76: b7:88:ab:4a:6c:fa:4f:5b:ea:de:6e:e8:d2:65:2c: 82:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A8:74:FE:2E:2B:F0:99:63:0B:D1:43:B2:CE:C8:15:CA:F2:24:40 X509v3 Authority Key Identifier: keyid:4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:e3:42:4c:eb:01:ad:a5:52:37:c1:e0:e6:70:3d:ed:1c:1c: 39:b7:99:4a:c9:00:04:fc:a5:4d:39:e7:a4:3a:1d:26:9d:1d: fb:17:4e:8d:ee:8c:bd:88:82:3b:4f:58:48:1e:4d:64:e8:ea: 93:b9:9d:70:ac:66:66:74:a9:0b:56:a9:6f:31:9b:dc:aa:ea: 24:ed:19:2d:56:9b:35:ea:0f:ed:74:4c:9a:bd:e8:ca:89:bd: 13:7e:f9:84:7f:d4:66:c7:95:13:77:8a:d4:7d:75:d9:60:33: 90:02:fd:70:5d:6c:ac:e7:a6:e2:d4:42:b1:a5:d5:91:75:76: d0:af:a9:1d:d1:5b:00:51:ac:a5:4d:36:9a:08:f6:ee:82:40: 78:8e:30:76:89:78:27:04:66:00:f6:75:4a:5d:8f:36:7b:6f: da:de:e2:ec:36:bc:8f:f4:b8:4e:48:5f:bd:f5:0c:d7:fc:b6: 15:54:bf:f5:52:cb:c9:4d:ea:ba:a4:e5:b4:cc:5b:1d:88:ca: 77:38:6b:5d:75:a9:62:42:db:29:b7:5a:8d:cf:b7:2b:22:79: aa:ad:9a:34:60:cb:4b:a9:f1:63:21:f5:1e:14:38:42:5f:c6: e9:68:5e:4b:f7:42:7a:ad:73:22:8f:c0:be:32:5e:42:d3:ea: d6:c2:6a:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtFmPvOLX7D2E4BWoXf1/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZjMzMzY2ZjBjZjVlNGZhODA0ZWVmN2QxZTI5Mjk0ZWVh NTE0OGMwHhcNMjYwMjA5MTQwMDQxWhcNMjYwMjEwMTQwMDQxWjAzMTEwLwYDVQQD Eyg2NGE4NzRmZTJlMmJmMDk5NjMwYmQxNDNiMmNlYzgxNWNhZjIyNDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7m8NMm83QZU3XPE4ZI4RU/3tOZc LX84BZZsoIUjh6O4z/220FYQ16heUQVTNATt8cLZpx1z09MIiUXVD9xNBZp7z9s5 mPrDvz4rBGd1OGTFfxDA4kjSaIQyy9Rk0+MlIa092AhF+YQmwQ1GF/4cQMPMMVeI VtRSHcHEdtHd0QP+/3iqB24600U2JeCiKhUIesghLdOWgxL8y9bjKAwE49ROo2ra eztHmvR7Pxh1VzZC6vsBT13lsT5Kg3Qe4KJ/XsIL9GeMJ0IPvEPDIPMCo0E/hmxz 4hqv/Wr2OqWwasRKL5uOApaqoRR1nr4Z/Xa3iKtKbPpPW+rebujSZSyCuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGSodP4uK/CZYwvRQ7LOyBXK8iRAMB8GA1UdIwQY MBaAFE7zM2bwz15PqATu99HikpTupRSMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8zODQ0OWMtYWFkOC00MDVhLWI3Zjct NmQ5ZjM4NGQyYmMzLzEvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8zODQ0OWMtYWFkOC00MDVhLWI3ZjctNmQ5ZjM4NGQyYmMz LzEvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN+NCTOsB raVSN8Hg5nA97RwcObeZSskABPylTTnnpDodJp0d+xdOje6MvYiCO09YSB5NZOjq k7mdcKxmZnSpC1apbzGb3KrqJO0ZLVabNeoP7XRMmr3oyom9E375hH/UZseVE3eK 1H112WAzkAL9cF1srOem4tRCsaXVkXV20K+pHdFbAFGspU02mgj27oJAeI4wdol4 JwRmAPZ1Sl2PNntv2t7i7Da8j/S4TkhfvfUM1/y2FVS/9VLLyU3quqTltMxbHYjK dzhrXXWpYkLbKbdajc+3KyJ5qq2aNGDLS6nxYyH1HhQ4Ql/G6WheS/dCeq1zIo/A vjJeQtPq1sJq/g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:33 2026 by rpki-client