This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft File: 9XpIEqFZ72qekpcudXKtZi1yIVo.mft (raw, json) Hash identifier: 2FaPwhWdCMkF81duHRfrpFg5lBjhQVklpUtiDQIj/RY= Subject key identifier: 37:76:A2:20:75:A0:3C:1C:F1:73:19:C2:4D:3F:FF:47:E5:81:92:0D Authority key identifier: F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A Certificate issuer: /CN=f57a4812a159ef6a9e92972e7572ad662d72215a Certificate serial: 019C42EB6D2B078D8ACBCA3F17030061A4E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft Manifest number: 1101 Signing time: Mon 09 Feb 2026 15:00:50 +0000 Manifest this update: Mon 09 Feb 2026 15:00:50 +0000 Manifest next update: Tue 10 Feb 2026 15:00:50 +0000 Files and hashes: 1: 9XpIEqFZ72qekpcudXKtZi1yIVo.crl (hash: qeXpDiG8lxrAYfU5dvtNJfurbwX/ycGlgyvAlO96h/o=) 2: lKVJdRF0hE9bPtqV3XlzvhT3Iqs.roa (hash: GeIEq9ieMXhGCkHBVtks0M5q4Jm8CcNNhR3YdczhVxM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:6d:2b:07:8d:8a:cb:ca:3f:17:03:00:61:a4:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f57a4812a159ef6a9e92972e7572ad662d72215a Validity Not Before: Feb 9 15:00:50 2026 GMT Not After : Feb 10 15:00:50 2026 GMT Subject: CN=3776a22075a03c1cf17319c24d3fff47e581920d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:59:32:b6:5a:f2:62:a3:4a:25:2f:17:a5:59: 7a:99:b6:8d:02:b3:25:e0:16:02:26:8d:fb:37:59: 21:6d:2e:11:6c:2f:f4:0e:71:9b:3c:ab:5d:4a:23: a0:be:09:26:db:7b:6e:73:55:1b:ef:53:bd:22:fc: 88:24:82:6d:6d:a0:02:b1:f7:9e:31:bf:7d:e1:c9: a6:62:01:85:59:4c:a9:0d:9f:c2:b8:67:61:93:9f: 92:db:db:d1:2e:d0:28:6c:65:7a:95:0e:36:a4:da: dd:8e:43:b4:58:90:1f:87:49:af:22:1e:87:31:80: 04:69:e4:74:90:8e:53:f5:03:c9:6a:09:1d:90:0a: 40:02:54:b7:6b:7a:3c:d0:fe:f6:5d:a1:3d:95:db: 7a:08:2d:a6:1d:03:91:52:3d:05:1c:d8:67:86:82: cd:06:3b:8e:3b:6c:24:dc:32:31:ff:bb:5c:39:52: 72:f7:94:af:bd:d1:23:e3:48:65:0a:4f:c2:7d:d2: ba:21:6e:e1:0b:8a:2c:f5:f2:e3:68:46:9c:71:db: 27:d8:bc:8a:86:c0:36:24:cd:fa:c1:c0:17:17:e1: 72:08:03:ec:f1:dc:23:a0:d3:2a:be:f1:be:8c:dd: e6:50:b0:9f:59:4e:2b:0d:1b:6d:a7:82:c3:fc:5f: 44:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:76:A2:20:75:A0:3C:1C:F1:73:19:C2:4D:3F:FF:47:E5:81:92:0D X509v3 Authority Key Identifier: keyid:F5:7A:48:12:A1:59:EF:6A:9E:92:97:2E:75:72:AD:66:2D:72:21:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XpIEqFZ72qekpcudXKtZi1yIVo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4fbe10-9487-4115-9856-beb70fd415ca/1/9XpIEqFZ72qekpcudXKtZi1yIVo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:23:c6:b0:aa:ff:b3:53:15:6f:51:83:23:d0:39:fa:cd:b8: 9e:f5:04:a0:43:9b:7d:48:11:e8:66:1f:45:c4:33:22:94:78: 14:be:00:c0:58:ba:be:df:13:27:0d:12:90:ef:47:46:34:93: c1:a4:3a:75:f1:1e:f5:68:c6:05:8e:cf:12:82:46:3d:9c:26: f4:59:d9:fd:25:68:16:11:61:58:82:96:a2:fa:80:ce:14:fc: 20:f0:e3:aa:23:f7:e5:bf:e6:f7:18:40:17:93:06:96:27:5b: c4:69:b0:c5:24:77:98:32:c4:ed:6b:ca:e9:b3:0d:44:3c:3b: 4d:d1:04:85:09:bc:e4:15:2f:42:2d:c2:72:4f:8c:7c:ce:fa: 38:2c:ed:cc:60:91:1f:32:0f:d1:2f:3d:1e:dc:f4:5b:04:57: df:f6:30:bc:58:83:94:e7:a7:89:b2:89:12:60:7b:89:12:90: 93:3e:71:30:23:2c:9f:ef:98:9c:af:e3:42:45:0b:e2:79:bc: 99:cd:3e:a3:a7:7b:97:36:9b:59:89:07:62:09:99:15:33:e7: 18:43:ab:6f:94:17:76:91:4a:66:c1:f1:2c:49:66:af:2f:0b: e0:83:ef:03:42:21:76:ad:f5:8f:22:e0:24:9d:82:a2:ef:c1: ae:19:ba:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC620rB42Ky8o/FwMAYaTlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1N2E0ODEyYTE1OWVmNmE5ZTkyOTcyZTc1NzJhZDY2MmQ3 MjIxNWEwHhcNMjYwMjA5MTUwMDUwWhcNMjYwMjEwMTUwMDUwWjAzMTEwLwYDVQQD EygzNzc2YTIyMDc1YTAzYzFjZjE3MzE5YzI0ZDNmZmY0N2U1ODE5MjBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1kytlryYqNKJS8XpVl6mbaNArMl 4BYCJo37N1khbS4RbC/0DnGbPKtdSiOgvgkm23tuc1Ub71O9IvyIJIJtbaACsfee Mb994cmmYgGFWUypDZ/CuGdhk5+S29vRLtAobGV6lQ42pNrdjkO0WJAfh0mvIh6H MYAEaeR0kI5T9QPJagkdkApAAlS3a3o80P72XaE9ldt6CC2mHQORUj0FHNhnhoLN BjuOO2wk3DIx/7tcOVJy95SvvdEj40hlCk/CfdK6IW7hC4os9fLjaEaccdsn2LyK hsA2JM36wcAXF+FyCAPs8dwjoNMqvvG+jN3mULCfWU4rDRttp4LD/F9ErQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDd2oiB1oDwc8XMZwk0//0flgZINMB8GA1UdIwQY MBaAFPV6SBKhWe9qnpKXLnVyrWYtciFaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOVhwSUVxRlo3MnFla3BjdWRYS3RaaTF5SVZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy80ZmJlMTAtOTQ4Ny00MTE1LTk4NTYt YmViNzBmZDQxNWNhLzEvOVhwSUVxRlo3MnFla3BjdWRYS3RaaTF5SVZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy80ZmJlMTAtOTQ4Ny00MTE1LTk4NTYtYmViNzBmZDQxNWNh LzEvOVhwSUVxRlo3MnFla3BjdWRYS3RaaTF5SVZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXSPGsKr/ s1MVb1GDI9A5+s24nvUEoEObfUgR6GYfRcQzIpR4FL4AwFi6vt8TJw0SkO9HRjST waQ6dfEe9WjGBY7PEoJGPZwm9FnZ/SVoFhFhWIKWovqAzhT8IPDjqiP35b/m9xhA F5MGlidbxGmwxSR3mDLE7WvK6bMNRDw7TdEEhQm85BUvQi3Cck+MfM76OCztzGCR HzIP0S89Htz0WwRX3/YwvFiDlOenibKJEmB7iRKQkz5xMCMsn++YnK/jQkUL4nm8 mc0+o6d7lzabWYkHYgmZFTPnGEOrb5QXdpFKZsHxLElmry8L4IPvA0Ihdq31jyLg JJ2Cou/Brhm6sg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:38 2026 by rpki-client