This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft File: 435CoUa5C6fNMxrWoT7vHaL7pEA.mft (raw, json) Hash identifier: DeGDyypNK551JdURvShgDq+n4jF5Msq9pMQssKQXpOU= Subject key identifier: 6A:10:34:DB:FE:19:DE:6B:5E:B9:C8:98:EF:F7:E3:1B:23:3B:3D:AB Authority key identifier: E3:7E:42:A1:46:B9:0B:A7:CD:33:1A:D6:A1:3E:EF:1D:A2:FB:A4:40 Certificate issuer: /CN=e37e42a146b90ba7cd331ad6a13eef1da2fba440 Certificate serial: 019C43C6E0AFE9CC146F409A842C957434A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/435CoUa5C6fNMxrWoT7vHaL7pEA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft Manifest number: 0A1D Signing time: Mon 09 Feb 2026 19:00:32 +0000 Manifest this update: Mon 09 Feb 2026 19:00:32 +0000 Manifest next update: Tue 10 Feb 2026 19:00:32 +0000 Files and hashes: 1: 435CoUa5C6fNMxrWoT7vHaL7pEA.crl (hash: fwMgEsw391VOiftuHklvCXKnpzST3hvh61rre85q3nk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft rsync://rpki.ripe.net/repository/DEFAULT/435CoUa5C6fNMxrWoT7vHaL7pEA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:e0:af:e9:cc:14:6f:40:9a:84:2c:95:74:34:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e37e42a146b90ba7cd331ad6a13eef1da2fba440 Validity Not Before: Feb 9 19:00:32 2026 GMT Not After : Feb 10 19:00:32 2026 GMT Subject: CN=6a1034dbfe19de6b5eb9c898eff7e31b233b3dab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0a:62:55:00:b9:a3:fd:81:25:e8:19:96:5b: 5a:0d:2b:2e:2a:75:c3:53:69:c1:7d:0a:e6:07:fc: 10:60:49:61:1e:61:2c:b5:7a:9f:d7:70:3c:20:68: d9:b0:3e:ea:6c:70:a8:32:9a:be:25:5e:96:5d:09: ad:2c:c6:21:1f:bd:a2:b2:18:67:dc:a7:05:26:81: 8d:1f:b6:11:11:39:4b:b5:25:6e:d2:31:c1:9a:40: e7:57:c0:f6:73:5e:88:b7:93:c9:a3:50:23:0a:ee: 3f:8f:e6:b9:48:cd:7a:56:5e:20:65:c6:58:54:36: 72:08:9f:36:d5:a8:72:28:80:de:35:22:eb:f0:eb: e2:3e:f4:5f:fa:79:1d:04:97:7e:71:71:4b:de:64: da:7f:7e:75:bb:e2:69:1c:76:a6:16:1e:69:b7:e9: f8:2a:25:14:33:af:c0:3f:b5:eb:5f:16:d1:97:39: b3:c1:fd:4e:dc:4c:96:51:9f:2e:70:0f:e6:a2:b7: c8:a3:de:b4:4b:f2:ae:8e:3e:05:9c:1a:43:e7:13: 7b:dc:8b:19:a1:3b:c1:c9:f9:b0:6f:94:d6:18:df: 2d:66:32:9a:6e:89:a5:81:36:d1:7e:3b:50:d7:95: b7:8e:67:2f:46:ee:5a:75:4f:c1:28:a8:99:1e:26: a7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:10:34:DB:FE:19:DE:6B:5E:B9:C8:98:EF:F7:E3:1B:23:3B:3D:AB X509v3 Authority Key Identifier: keyid:E3:7E:42:A1:46:B9:0B:A7:CD:33:1A:D6:A1:3E:EF:1D:A2:FB:A4:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/435CoUa5C6fNMxrWoT7vHaL7pEA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:c2:0e:64:1b:c4:de:ad:4d:9b:ca:29:42:ab:1e:d7:d2:36: cd:2c:a5:83:bf:8d:be:3a:18:73:37:f5:ee:e2:34:7d:6c:46: d8:c1:7e:55:a4:6d:69:f1:af:8b:6a:6b:25:4d:53:bb:61:84: cb:6d:de:06:d8:80:78:c9:03:20:cf:71:98:81:b9:a6:69:8e: 8b:45:82:0e:bc:6d:10:ea:60:c1:23:cb:87:11:88:ee:d7:d7: a6:c3:f2:60:6d:44:82:41:94:88:f2:9d:29:9d:51:8b:58:a4: f4:9b:b2:13:12:3c:9b:e3:4d:66:c7:c3:a9:04:31:03:a9:62: 64:4a:fa:ad:36:11:09:e5:94:bb:32:39:15:04:bd:04:89:d0: 7e:84:b0:14:6b:6f:50:ea:3d:4f:96:5a:78:f8:92:39:1a:56: b3:9c:92:a8:b6:cc:c5:0a:f8:f8:51:b4:2f:fc:45:2f:95:c1: 98:e0:66:88:ee:b9:2d:7e:81:90:a3:9d:6b:64:bf:72:e9:a6: a4:17:90:12:0c:d8:3e:6d:14:15:82:86:40:f3:23:98:e8:3b: 3b:43:47:de:3c:15:f9:c6:f7:12:51:78:82:c4:16:b5:2d:e0: a6:ad:fa:a5:08:b3:84:1b:3e:18:70:6f:27:f4:a1:c0:7b:db: 59:f3:a7:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxuCv6cwUb0CahCyVdDShMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzN2U0MmExNDZiOTBiYTdjZDMzMWFkNmExM2VlZjFkYTJm YmE0NDAwHhcNMjYwMjA5MTkwMDMyWhcNMjYwMjEwMTkwMDMyWjAzMTEwLwYDVQQD Eyg2YTEwMzRkYmZlMTlkZTZiNWViOWM4OThlZmY3ZTMxYjIzM2IzZGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQpiVQC5o/2BJegZlltaDSsuKnXD U2nBfQrmB/wQYElhHmEstXqf13A8IGjZsD7qbHCoMpq+JV6WXQmtLMYhH72ishhn 3KcFJoGNH7YRETlLtSVu0jHBmkDnV8D2c16It5PJo1AjCu4/j+a5SM16Vl4gZcZY VDZyCJ821ahyKIDeNSLr8OviPvRf+nkdBJd+cXFL3mTaf351u+JpHHamFh5pt+n4 KiUUM6/AP7XrXxbRlzmzwf1O3EyWUZ8ucA/morfIo960S/Kujj4FnBpD5xN73IsZ oTvByfmwb5TWGN8tZjKabomlgTbRfjtQ15W3jmcvRu5adU/BKKiZHianrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGoQNNv+Gd5rXrnImO/34xsjOz2rMB8GA1UdIwQY MBaAFON+QqFGuQunzTMa1qE+7x2i+6RAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDM1Q29VYTVDNmZOTXhyV29UN3ZIYUw3cEVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8zZWNlNzYtMDU3NS00NmIxLTk0YmYt MDYzMjlmNmUwNDc1LzEvNDM1Q29VYTVDNmZOTXhyV29UN3ZIYUw3cEVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC8zZWNlNzYtMDU3NS00NmIxLTk0YmYtMDYzMjlmNmUwNDc1 LzEvNDM1Q29VYTVDNmZOTXhyV29UN3ZIYUw3cEVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtcIOZBvE 3q1Nm8opQqse19I2zSylg7+NvjoYczf17uI0fWxG2MF+VaRtafGvi2prJU1Tu2GE y23eBtiAeMkDIM9xmIG5pmmOi0WCDrxtEOpgwSPLhxGI7tfXpsPyYG1EgkGUiPKd KZ1Ri1ik9JuyExI8m+NNZsfDqQQxA6liZEr6rTYRCeWUuzI5FQS9BInQfoSwFGtv UOo9T5ZaePiSORpWs5ySqLbMxQr4+FG0L/xFL5XBmOBmiO65LX6BkKOda2S/cumm pBeQEgzYPm0UFYKGQPMjmOg7O0NH3jwV+cb3ElF4gsQWtS3gpq36pQizhBs+GHBv J/ShwHvbWfOnsw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:29 2026 by rpki-client