This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft File: CaT39OTp5yw6M5P7XW6nQrwbTCg.mft (raw, json) Hash identifier: InTRAauJFyyNluUE2UpWudT6HqS78ZqWslELjNESBQA= Subject key identifier: AB:D2:FA:7A:88:D9:41:28:13:C4:E1:40:C8:42:2E:51:8B:69:24:E0 Authority key identifier: 09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28 Certificate issuer: /CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28 Certificate serial: 019C41D8E0B672864ABDE1685CB54E79A83C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft Manifest number: 11D3 Signing time: Mon 09 Feb 2026 10:00:58 +0000 Manifest this update: Mon 09 Feb 2026 10:00:58 +0000 Manifest next update: Tue 10 Feb 2026 10:00:58 +0000 Files and hashes: 1: 0tgdN2qxcJplebNaaWT9iaqWv6s.roa (hash: SVEBZu78M2nPUUItloPsYESxd6cYYGpVpIZuduXUUjU=) 2: CaT39OTp5yw6M5P7XW6nQrwbTCg.crl (hash: YS3rUH6SQYTv7Xh1DgYW66L1lbdZey2bLVNIo4yc5JA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:e0:b6:72:86:4a:bd:e1:68:5c:b5:4e:79:a8:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28 Validity Not Before: Feb 9 10:00:58 2026 GMT Not After : Feb 10 10:00:58 2026 GMT Subject: CN=abd2fa7a88d9412813c4e140c8422e518b6924e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:29:37:39:de:95:b0:51:5a:9d:80:5f:9a:4e: 4e:c7:5b:5c:be:1c:b5:be:f9:1a:04:c0:72:1c:be: 92:be:1a:04:ef:60:c9:f1:dc:9c:1f:d7:69:a2:65: ca:f4:22:18:2e:84:49:13:95:8d:d6:ea:3d:42:f6: c4:95:08:31:a5:46:a8:ed:5d:23:87:6c:12:b8:2a: b1:a1:05:4e:ba:27:8d:c7:79:34:7a:85:e4:08:50: 8e:55:16:5a:cc:c4:67:76:91:b7:ce:b3:61:91:c5: dc:75:59:53:15:01:2f:80:f6:17:6d:85:ce:04:d5: 49:1e:c7:90:0d:15:d8:48:52:25:25:80:95:77:1e: e7:21:cc:97:38:92:c8:cb:e1:ca:85:80:ed:34:d6: 55:6b:16:0d:a6:4b:f9:e1:73:3c:3e:6a:5f:92:bc: bf:f5:26:ec:7c:1b:36:9e:14:3c:2f:a8:0b:04:07: 85:24:de:08:03:fb:94:fb:28:f9:23:c8:3e:be:fd: 4f:44:e0:25:f6:9a:6e:b7:db:c9:a1:61:36:6c:9f: 97:f8:b7:4c:57:8a:76:65:fd:f4:e5:cd:8f:ea:32: 51:6d:24:28:fa:15:4a:cd:cc:61:d6:f8:6e:fc:9b: 70:ac:54:99:cf:af:52:2e:ba:67:a2:3f:c0:93:41: 4f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D2:FA:7A:88:D9:41:28:13:C4:E1:40:C8:42:2E:51:8B:69:24:E0 X509v3 Authority Key Identifier: keyid:09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:b7:5b:4a:3c:97:80:05:18:39:1d:8d:63:7b:a8:3d:10:5f: cb:c4:bd:c5:a2:0f:67:fb:68:8b:f9:93:ca:eb:fc:24:e2:4a: 7b:e6:74:86:55:95:7b:d4:a3:56:1e:f0:16:d6:7a:f8:28:9e: 7a:6f:82:ed:66:fb:20:8c:5e:d7:b0:4a:2d:6d:a9:5b:04:0c: 30:c8:2b:d4:00:af:bf:4e:0e:e9:0f:bf:f9:46:19:77:8f:60: 62:96:6a:ca:3e:30:6b:c2:0a:05:43:9a:df:0b:64:f9:74:e5: 60:64:20:46:d7:5e:06:f3:00:95:cc:98:8b:aa:bb:99:e2:fd: 5a:e7:12:64:7f:46:39:09:cb:bb:25:eb:b9:14:9b:2e:41:7e: 45:3a:50:02:0e:d6:aa:86:16:3c:3c:44:a1:98:65:28:34:7d: 19:00:30:37:20:5b:15:64:ad:21:97:b3:72:ca:6b:7d:a3:bb: f8:92:85:cc:9a:5c:c9:89:85:a3:d1:6a:53:72:07:86:4b:58: 2b:78:fa:8f:40:4b:f8:9f:12:9b:e0:79:f1:9b:e6:9f:ed:6e: f2:8b:77:25:2f:a5:21:bd:6d:f8:ab:6c:6d:1a:0d:e3:7a:b8: 83:37:60:26:da:06:4a:6c:f1:17:37:38:01:bc:1a:d3:97:f7: 26:97:3e:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2OC2coZKveFoXLVOeag8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5YTRmN2Y0ZTRlOWU3MmMzYTMzOTNmYjVkNmVhNzQyYmMx YjRjMjgwHhcNMjYwMjA5MTAwMDU4WhcNMjYwMjEwMTAwMDU4WjAzMTEwLwYDVQQD EyhhYmQyZmE3YTg4ZDk0MTI4MTNjNGUxNDBjODQyMmU1MThiNjkyNGUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ik3Od6VsFFanYBfmk5Ox1tcvhy1 vvkaBMByHL6SvhoE72DJ8dycH9dpomXK9CIYLoRJE5WN1uo9QvbElQgxpUao7V0j h2wSuCqxoQVOuieNx3k0eoXkCFCOVRZazMRndpG3zrNhkcXcdVlTFQEvgPYXbYXO BNVJHseQDRXYSFIlJYCVdx7nIcyXOJLIy+HKhYDtNNZVaxYNpkv54XM8Pmpfkry/ 9SbsfBs2nhQ8L6gLBAeFJN4IA/uU+yj5I8g+vv1PROAl9pput9vJoWE2bJ+X+LdM V4p2Zf305c2P6jJRbSQo+hVKzcxh1vhu/JtwrFSZz69SLrpnoj/Ak0FPcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKvS+nqI2UEoE8ThQMhCLlGLaSTgMB8GA1UdIwQY MBaAFAmk9/Tk6ecsOjOT+11up0K8G0woMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2FUMzlPVHA1eXc2TTVQN1hXNm5RcndiVENnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy8zYjQ4ZDUtMjhkYS00Mzg1LTkzOTUt Mjg0YzgyZGVjN2M2LzEvQ2FUMzlPVHA1eXc2TTVQN1hXNm5RcndiVENnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy8zYjQ4ZDUtMjhkYS00Mzg1LTkzOTUtMjg0YzgyZGVjN2M2 LzEvQ2FUMzlPVHA1eXc2TTVQN1hXNm5RcndiVENnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAibdbSjyX gAUYOR2NY3uoPRBfy8S9xaIPZ/toi/mTyuv8JOJKe+Z0hlWVe9SjVh7wFtZ6+Cie em+C7Wb7IIxe17BKLW2pWwQMMMgr1ACvv04O6Q+/+UYZd49gYpZqyj4wa8IKBUOa 3wtk+XTlYGQgRtdeBvMAlcyYi6q7meL9WucSZH9GOQnLuyXruRSbLkF+RTpQAg7W qoYWPDxEoZhlKDR9GQAwNyBbFWStIZezcsprfaO7+JKFzJpcyYmFo9FqU3IHhktY K3j6j0BL+J8Sm+B58Zvmn+1u8ot3JS+lIb1t+KtsbRoN43q4gzdgJtoGSmzxFzc4 Abwa05f3Jpc+Tw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:34 2026 by rpki-client