This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft File: 9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft (raw, json) Hash identifier: C3uM05bt8tf3w4QBq2HPF3rB6Ubuq4hkkLp52Rv+5wI= Subject key identifier: 73:C4:14:C4:FF:0B:61:5B:8D:63:30:47:EC:ED:7E:95:1A:C0:05:C9 Authority key identifier: F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE Certificate issuer: /CN=f656fa18b119c3a49cbbcc56a60457439a4492ce Certificate serial: 019C438FD300484DEC0753EEFED8A90FEBE6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft Manifest number: 179C Signing time: Mon 09 Feb 2026 18:00:24 +0000 Manifest this update: Mon 09 Feb 2026 18:00:24 +0000 Manifest next update: Tue 10 Feb 2026 18:00:24 +0000 Files and hashes: 1: 9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl (hash: BsiIH7RiT0Jd06xZ/mVpTs9D01/Nwv/qYME4LkeCfnI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:d3:00:48:4d:ec:07:53:ee:fe:d8:a9:0f:eb:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f656fa18b119c3a49cbbcc56a60457439a4492ce Validity Not Before: Feb 9 18:00:24 2026 GMT Not After : Feb 10 18:00:24 2026 GMT Subject: CN=73c414c4ff0b615b8d633047eced7e951ac005c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3e:cd:a3:49:45:5b:23:b9:62:fd:d9:26:51: 92:fc:be:08:65:80:30:eb:eb:6b:94:49:89:40:70: 09:96:85:4d:79:61:33:2a:3c:80:22:77:b9:ae:3c: 78:87:55:0e:33:53:ec:fb:5b:45:ba:9c:83:a3:b2: 84:8e:78:1c:99:d7:fc:17:c8:84:46:e9:ed:e3:44: 77:8b:ef:80:d9:e8:1c:60:7c:8f:3f:38:f2:e4:c7: 1a:4c:ba:95:d0:e3:89:ce:ea:cc:83:10:9a:8b:5f: 42:cc:34:0e:56:1c:4c:cd:5e:4b:9e:cc:02:37:ec: 30:39:04:ff:98:6f:66:5c:35:98:8a:bd:98:b4:5b: eb:31:70:88:63:23:d5:da:2b:c5:61:18:c6:0b:bf: a7:ec:f5:c6:57:46:f4:85:9b:da:8c:3f:3e:0d:2a: 96:b1:26:5e:e5:c7:c5:96:63:83:76:37:d5:d5:d4: 8d:a4:20:c0:f0:d3:0c:fd:e1:8b:ce:da:06:c2:14: 67:f7:74:ca:42:ea:72:57:77:19:0a:2c:88:0c:27: 32:c3:7f:35:f4:4f:1e:04:67:4c:e1:d5:39:36:f1: e5:9d:c0:2d:e4:56:52:ef:5a:82:1b:c2:6c:de:9a: 0b:6d:a5:7c:06:55:1f:58:25:1f:e6:87:fd:51:1d: d6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C4:14:C4:FF:0B:61:5B:8D:63:30:47:EC:ED:7E:95:1A:C0:05:C9 X509v3 Authority Key Identifier: keyid:F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:98:08:a5:9b:84:0a:10:ed:2c:6a:8b:7d:3a:a3:3b:6f:1e: fd:0a:9b:8e:e2:e8:a7:a8:f5:2d:49:76:ed:18:cd:6a:40:eb: 9e:c3:3d:b4:b1:fa:a7:b0:cd:d2:01:68:ec:92:93:7a:19:23: 45:ef:4a:93:2d:aa:b4:9b:f8:70:db:00:c4:a7:54:3a:3a:29: 3f:ab:ec:af:2b:92:20:f9:03:f1:a1:67:36:73:89:3b:7b:7a: 10:99:1f:0c:b1:ae:4b:08:dc:db:bc:94:3c:97:b7:3c:64:46: 77:72:17:fd:15:7e:fc:e1:f0:45:79:bd:00:7a:1e:59:70:ec: fe:d3:2c:c0:7b:2f:8f:2d:70:d2:93:12:13:65:cb:6c:aa:5c: 40:b9:19:a5:56:8b:a0:c3:9b:86:4e:1b:53:e8:7b:13:44:58: c6:5e:63:cb:6d:63:93:a6:b4:78:dd:87:2d:ca:9d:f2:f7:b3: 1f:74:55:cb:e7:01:45:16:aa:1f:01:2b:7d:1f:6c:2d:7d:d6: fb:3e:5f:1a:77:5a:73:0d:2a:b0:20:ea:f5:80:4a:f0:d1:4c: 95:42:a3:2a:0b:4e:a4:c8:b9:46:e5:42:d1:96:5e:37:49:77: f4:8c:0a:5b:88:13:6f:8e:11:50:81:81:0e:d4:6d:18:40:eb: 1c:17:cc:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj9MASE3sB1Pu/tipD+vmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY2NTZmYTE4YjExOWMzYTQ5Y2JiY2M1NmE2MDQ1NzQzOWE0 NDkyY2UwHhcNMjYwMjA5MTgwMDI0WhcNMjYwMjEwMTgwMDI0WjAzMTEwLwYDVQQD Eyg3M2M0MTRjNGZmMGI2MTViOGQ2MzMwNDdlY2VkN2U5NTFhYzAwNWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtj7No0lFWyO5Yv3ZJlGS/L4IZYAw 6+trlEmJQHAJloVNeWEzKjyAIne5rjx4h1UOM1Ps+1tFupyDo7KEjngcmdf8F8iE Runt40R3i++A2egcYHyPPzjy5McaTLqV0OOJzurMgxCai19CzDQOVhxMzV5LnswC N+wwOQT/mG9mXDWYir2YtFvrMXCIYyPV2ivFYRjGC7+n7PXGV0b0hZvajD8+DSqW sSZe5cfFlmODdjfV1dSNpCDA8NMM/eGLztoGwhRn93TKQupyV3cZCiyIDCcyw381 9E8eBGdM4dU5NvHlncAt5FZS71qCG8Js3poLbaV8BlUfWCUf5of9UR3WPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHPEFMT/C2FbjWMwR+ztfpUawAXJMB8GA1UdIwQY MBaAFPZW+hixGcOknLvMVqYEV0OaRJLOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWxiNkdMRVp3NlNjdTh4V3BnUlhRNXBFa3M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9mMmQzYTItYjE0YS00MTFhLTg2Mjkt YzkyMGYxNjQ2YzljLzEvOWxiNkdMRVp3NlNjdTh4V3BnUlhRNXBFa3M0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC9mMmQzYTItYjE0YS00MTFhLTg2MjktYzkyMGYxNjQ2Yzlj LzEvOWxiNkdMRVp3NlNjdTh4V3BnUlhRNXBFa3M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPJgIpZuE ChDtLGqLfTqjO28e/QqbjuLop6j1LUl27RjNakDrnsM9tLH6p7DN0gFo7JKTehkj Re9Kky2qtJv4cNsAxKdUOjopP6vsryuSIPkD8aFnNnOJO3t6EJkfDLGuSwjc27yU PJe3PGRGd3IX/RV+/OHwRXm9AHoeWXDs/tMswHsvjy1w0pMSE2XLbKpcQLkZpVaL oMObhk4bU+h7E0RYxl5jy21jk6a0eN2HLcqd8vezH3RVy+cBRRaqHwErfR9sLX3W +z5fGndacw0qsCDq9YBK8NFMlUKjKgtOpMi5RuVC0ZZeN0l39IwKW4gTb44RUIGB DtRtGEDrHBfMtg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:44 2026 by rpki-client