This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft File: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft (raw, json) Hash identifier: Z3hqv+R+/YHjYIuQp+v2PLUnGG68PfB+7hpdC7IHrLo= Subject key identifier: E7:38:DD:38:CA:ED:B5:00:A8:CC:B2:09:F3:79:5C:05:83:45:B2:4A Authority key identifier: 0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C Certificate issuer: /CN=0acf3dccea317e35e70541a48b2586a4d32bd94c Certificate serial: 019C45109F3321196F381DBA16837337AC16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft Manifest number: 0888 Signing time: Tue 10 Feb 2026 01:00:43 +0000 Manifest this update: Tue 10 Feb 2026 01:00:43 +0000 Manifest next update: Wed 11 Feb 2026 01:00:43 +0000 Files and hashes: 1: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl (hash: Q+Ujzg1j5dX/oGHITThgBdzvPToyVgiSGE0bPovGJqE=) 2: ZVMWIA2gRCKHPJyp2BWSpGeeJhw.roa (hash: rWWFhgQdz68f3CP7zyhwG/M5s65BBuAVvNtPkXYPboQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:10:9f:33:21:19:6f:38:1d:ba:16:83:73:37:ac:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0acf3dccea317e35e70541a48b2586a4d32bd94c Validity Not Before: Feb 10 01:00:43 2026 GMT Not After : Feb 11 01:00:43 2026 GMT Subject: CN=e738dd38caedb500a8ccb209f3795c058345b24a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b2:d4:25:20:f7:a7:34:54:ac:65:cd:fd:48: b6:d6:ad:12:f0:77:64:8b:f4:f2:b3:eb:29:ce:08: 0e:6a:b9:76:08:ec:23:24:67:25:45:c4:d8:8d:4a: 95:ce:80:4a:f6:9c:43:21:d6:87:2a:f9:a6:b5:5b: 5d:1d:ff:ac:ef:78:cf:bb:4b:3d:36:29:a0:5c:f6: 1f:a0:27:71:d4:17:e8:1e:ee:d4:2f:69:f5:0f:b1: db:3a:a6:97:8f:bc:7a:c9:30:a1:a9:97:c7:ab:ee: 41:66:aa:72:1c:ba:21:9f:74:57:c9:bf:a5:a7:9a: ca:fb:34:e8:1f:0b:f9:52:33:b9:da:30:7f:1b:88: bb:15:0d:61:ae:c0:fb:b2:7c:46:90:7e:7e:73:0a: 35:6f:e1:15:ba:2c:5f:4c:9a:81:a6:e6:6b:ce:74: 1a:dd:8c:15:21:66:12:e8:09:7c:8a:a5:52:42:44: eb:b1:f0:c9:53:9e:06:bc:87:a0:64:87:ac:3f:90: 0e:52:76:c4:5d:26:03:61:0f:1b:f1:06:b1:01:fe: ac:e1:ca:ae:00:3b:5d:1a:56:86:be:60:ba:e0:28: 0b:a3:68:f7:f4:72:af:73:fe:aa:16:cc:7d:87:60: 24:16:9c:2c:37:d2:e5:e1:3f:e9:c0:3d:55:27:ed: 02:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:38:DD:38:CA:ED:B5:00:A8:CC:B2:09:F3:79:5C:05:83:45:B2:4A X509v3 Authority Key Identifier: keyid:0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:5e:c9:82:70:2b:22:d4:8f:a7:1c:f9:d3:c1:d5:65:8e:89: e5:c2:3a:98:87:25:a5:d7:2f:a8:ac:20:cd:6d:8e:5c:fd:e4: 6a:aa:02:25:82:21:95:83:a2:87:04:fe:b4:1b:5d:66:91:fa: 40:69:b8:df:05:30:66:61:37:90:d1:a6:9e:2d:d1:00:b9:7d: ce:c6:f8:45:90:9a:3e:03:0d:2c:b3:9e:bd:6d:21:38:9d:34: 9d:cd:75:67:71:0a:b3:02:9d:02:88:0a:d2:9a:be:6f:48:74: 70:b3:10:14:4c:58:1b:6f:3f:7e:0f:c1:93:21:87:7b:e9:05: 9e:ef:c2:19:bc:11:1a:c3:d7:5d:be:17:e4:77:0d:70:78:93: 52:10:82:0a:36:c7:52:3a:c9:75:d4:9f:97:0b:42:6b:92:39: 86:3a:38:ac:63:8b:65:44:c7:d6:5e:3b:0d:5f:8c:21:9b:7f: 61:55:45:49:70:5d:c8:cf:7d:d7:73:e4:0a:96:31:a7:73:7f: f3:6c:5f:43:24:be:76:b7:ad:16:4f:30:61:d8:26:d0:f0:16: 04:1a:a6:cd:11:c4:19:bd:54:22:cd:31:cb:37:fc:52:09:f5: 70:61:c6:0c:25:73:22:87:f0:45:11:1d:f1:79:80:d8:54:11: 00:69:e4:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEJ8zIRlvOB26FoNzN6wWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhY2YzZGNjZWEzMTdlMzVlNzA1NDFhNDhiMjU4NmE0ZDMy YmQ5NGMwHhcNMjYwMjEwMDEwMDQzWhcNMjYwMjExMDEwMDQzWjAzMTEwLwYDVQQD EyhlNzM4ZGQzOGNhZWRiNTAwYThjY2IyMDlmMzc5NWMwNTgzNDViMjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrLUJSD3pzRUrGXN/Ui21q0S8Hdk i/Tys+spzggOarl2COwjJGclRcTYjUqVzoBK9pxDIdaHKvmmtVtdHf+s73jPu0s9 NimgXPYfoCdx1BfoHu7UL2n1D7HbOqaXj7x6yTChqZfHq+5BZqpyHLohn3RXyb+l p5rK+zToHwv5UjO52jB/G4i7FQ1hrsD7snxGkH5+cwo1b+EVuixfTJqBpuZrznQa 3YwVIWYS6Al8iqVSQkTrsfDJU54GvIegZIesP5AOUnbEXSYDYQ8b8QaxAf6s4cqu ADtdGlaGvmC64CgLo2j39HKvc/6qFsx9h2AkFpwsN9Ll4T/pwD1VJ+0CoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOc43TjK7bUAqMyyCfN5XAWDRbJKMB8GA1UdIwQY MBaAFArPPczqMX415wVBpIslhqTTK9lMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ3M4OXpPb3hmalhuQlVHa2l5V0dwTk1yMlV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy8yMWJiZjctY2JmMi00MTk4LWFmY2Mt NGJlNGRkNmNkMmVjLzEvQ3M4OXpPb3hmalhuQlVHa2l5V0dwTk1yMlV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy8yMWJiZjctY2JmMi00MTk4LWFmY2MtNGJlNGRkNmNkMmVj LzEvQ3M4OXpPb3hmalhuQlVHa2l5V0dwTk1yMlV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYl7JgnAr ItSPpxz508HVZY6J5cI6mIclpdcvqKwgzW2OXP3kaqoCJYIhlYOihwT+tBtdZpH6 QGm43wUwZmE3kNGmni3RALl9zsb4RZCaPgMNLLOevW0hOJ00nc11Z3EKswKdAogK 0pq+b0h0cLMQFExYG28/fg/BkyGHe+kFnu/CGbwRGsPXXb4X5HcNcHiTUhCCCjbH UjrJddSflwtCa5I5hjo4rGOLZUTH1l47DV+MIZt/YVVFSXBdyM9913PkCpYxp3N/ 82xfQyS+dretFk8wYdgm0PAWBBqmzRHEGb1UIs0xyzf8Ugn1cGHGDCVzIofwRREd 8XmA2FQRAGnkvw== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:05 2026 by rpki-client