This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft File: ScKchYIxItOsfH9IBdWyQocNLeI.mft (raw, json) Hash identifier: 3tbZMSlFxl1X5Qh/5i97lzq5ybdEBmunIX43nDlnQxw= Subject key identifier: 84:65:8A:50:0A:AA:1A:5B:B5:F7:C5:20:5D:45:A1:D2:C2:80:C3:D0 Authority key identifier: 49:C2:9C:85:82:31:22:D3:AC:7C:7F:48:05:D5:B2:42:87:0D:2D:E2 Certificate issuer: /CN=49c29c85823122d3ac7c7f4805d5b242870d2de2 Certificate serial: 019C42EB8531EFFB0FB691B599A36E14E283 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ScKchYIxItOsfH9IBdWyQocNLeI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft Manifest number: 15A5 Signing time: Mon 09 Feb 2026 15:00:57 +0000 Manifest this update: Mon 09 Feb 2026 15:00:57 +0000 Manifest next update: Tue 10 Feb 2026 15:00:57 +0000 Files and hashes: 1: ScKchYIxItOsfH9IBdWyQocNLeI.crl (hash: QOgZjqlamtP8aQSGI+zLWUnTsdf0vGCPdWaIEyfE3i4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.crl rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft rsync://rpki.ripe.net/repository/DEFAULT/ScKchYIxItOsfH9IBdWyQocNLeI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:85:31:ef:fb:0f:b6:91:b5:99:a3:6e:14:e2:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49c29c85823122d3ac7c7f4805d5b242870d2de2 Validity Not Before: Feb 9 15:00:57 2026 GMT Not After : Feb 10 15:00:57 2026 GMT Subject: CN=84658a500aaa1a5bb5f7c5205d45a1d2c280c3d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2f:c9:0f:de:bb:c5:da:0d:51:5d:42:af:90: b6:32:eb:7f:5f:42:14:99:c7:dc:8a:f9:ad:11:66: 04:6d:25:89:3a:58:d7:79:95:ef:fe:0b:f0:54:c0: 8c:66:fc:67:22:a2:2a:78:6c:20:5a:34:50:4a:20: c9:4e:ff:72:bd:ef:4f:bc:d3:de:fa:90:30:a1:77: ed:2c:d8:3a:41:37:f4:d8:26:b6:d7:72:46:10:a6: aa:2a:91:b1:4f:b4:d3:6d:c4:44:90:ac:69:81:3d: 28:dd:81:36:3d:7a:81:67:c9:b6:0a:0a:53:90:5e: bf:04:d7:62:fa:2e:8d:dd:0a:ac:9a:38:8f:64:6e: ba:55:6a:38:01:49:a0:91:28:bb:a3:41:a9:c7:c4: b2:0e:2e:59:86:bf:f1:66:18:53:59:c8:38:80:58: 22:99:4c:b7:0b:94:2f:08:11:9c:91:bb:57:5e:82: 5b:c1:dc:6e:43:58:33:78:bd:01:9d:46:8a:99:21: a1:76:e8:28:41:cb:23:11:ee:b7:cf:40:ce:94:b7: 52:93:17:0e:58:71:ab:3d:c8:5f:9e:f0:5e:a9:6e: 25:5d:e1:3d:c0:1b:8c:71:56:16:37:f9:fd:95:1a: c0:e7:c3:a3:bf:ba:46:78:82:1e:95:c0:5c:3f:5c: c7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:65:8A:50:0A:AA:1A:5B:B5:F7:C5:20:5D:45:A1:D2:C2:80:C3:D0 X509v3 Authority Key Identifier: keyid:49:C2:9C:85:82:31:22:D3:AC:7C:7F:48:05:D5:B2:42:87:0D:2D:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ScKchYIxItOsfH9IBdWyQocNLeI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:bb:a6:9a:bf:fb:63:5e:fd:7c:3c:eb:91:5b:72:f9:c7:9a: 9e:e4:4d:1c:8f:27:cd:d0:ee:1c:bf:22:f9:96:05:cc:d5:03: 50:4b:20:f3:9d:b6:2c:b1:bc:42:ac:0b:ce:7b:6e:9d:67:1f: f7:22:ef:b0:e9:9c:b5:c8:b3:37:24:bf:08:81:ee:40:0f:9c: f6:a5:fa:6f:8e:c8:27:d2:da:8a:6d:f6:a3:00:a6:05:96:55: b2:a4:db:be:9c:bc:1f:b1:cb:d1:0c:c7:43:4b:f0:3c:84:28: c6:cf:fa:34:49:5e:37:d3:5a:a4:0c:11:70:d2:e0:f7:98:f6: 75:16:97:fc:f3:4f:fc:b1:60:fd:7f:c3:d9:9a:c9:c6:fd:e3: 0d:73:a2:ae:c8:80:0f:af:35:a8:95:1e:59:24:84:56:4c:c8: 30:4b:b6:36:65:5f:8f:44:42:22:c5:56:04:94:13:a1:8a:c1: 3c:bb:09:d4:78:e8:c8:06:23:04:a5:9d:4c:31:09:5d:73:b6: 20:26:50:e5:55:3e:83:c1:e5:19:09:73:e1:9b:f1:74:35:40: 95:0e:99:db:36:f1:ce:f9:85:a6:a9:dd:96:57:03:a2:d3:61: 66:d2:d3:21:16:12:66:95:99:30:bc:98:81:03:53:3b:7b:9d: 3e:18:5c:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC64Ux7/sPtpG1maNuFOKDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5YzI5Yzg1ODIzMTIyZDNhYzdjN2Y0ODA1ZDViMjQyODcw ZDJkZTIwHhcNMjYwMjA5MTUwMDU3WhcNMjYwMjEwMTUwMDU3WjAzMTEwLwYDVQQD Eyg4NDY1OGE1MDBhYWExYTViYjVmN2M1MjA1ZDQ1YTFkMmMyODBjM2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4S/JD967xdoNUV1Cr5C2Mut/X0IU mcfcivmtEWYEbSWJOljXeZXv/gvwVMCMZvxnIqIqeGwgWjRQSiDJTv9yve9PvNPe +pAwoXftLNg6QTf02Ca213JGEKaqKpGxT7TTbcREkKxpgT0o3YE2PXqBZ8m2CgpT kF6/BNdi+i6N3QqsmjiPZG66VWo4AUmgkSi7o0Gpx8SyDi5Zhr/xZhhTWcg4gFgi mUy3C5QvCBGckbtXXoJbwdxuQ1gzeL0BnUaKmSGhdugoQcsjEe63z0DOlLdSkxcO WHGrPchfnvBeqW4lXeE9wBuMcVYWN/n9lRrA58Ojv7pGeIIelcBcP1zHewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIRlilAKqhpbtffFIF1FodLCgMPQMB8GA1UdIwQY MBaAFEnCnIWCMSLTrHx/SAXVskKHDS3iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2NLY2hZSXhJdE9zZkg5SUJkV3lRb2NOTGVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hNTdhNjMtYTZiNC00MTY1LTllNWUt OWMyZDA0NGRkNGFmLzEvU2NLY2hZSXhJdE9zZkg5SUJkV3lRb2NOTGVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hNTdhNjMtYTZiNC00MTY1LTllNWUtOWMyZDA0NGRkNGFm LzEvU2NLY2hZSXhJdE9zZkg5SUJkV3lRb2NOTGVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVLummr/7 Y179fDzrkVty+ceanuRNHI8nzdDuHL8i+ZYFzNUDUEsg8522LLG8QqwLzntunWcf 9yLvsOmctcizNyS/CIHuQA+c9qX6b47IJ9Laim32owCmBZZVsqTbvpy8H7HL0QzH Q0vwPIQoxs/6NEleN9NapAwRcNLg95j2dRaX/PNP/LFg/X/D2ZrJxv3jDXOirsiA D681qJUeWSSEVkzIMEu2NmVfj0RCIsVWBJQToYrBPLsJ1HjoyAYjBKWdTDEJXXO2 ICZQ5VU+g8HlGQlz4ZvxdDVAlQ6Z2zbxzvmFpqndllcDotNhZtLTIRYSZpWZMLyY gQNTO3udPhhc/w== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:30 2026 by rpki-client