This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft File: 52vcVigM5dn89QMlGKfsm2HizO0.mft (raw, json) Hash identifier: pjcsfWvJZhsYEuHQvujKB8fyB1NfYswjUWb9I12I8Fc= Subject key identifier: 40:3B:1B:68:9A:4B:62:03:04:B3:D0:E7:CC:08:3D:8F:83:D0:3F:06 Authority key identifier: E7:6B:DC:56:28:0C:E5:D9:FC:F5:03:25:18:A7:EC:9B:61:E2:CC:ED Certificate issuer: /CN=e76bdc56280ce5d9fcf5032518a7ec9b61e2cced Certificate serial: 019C43227297F028151B9ACB11AC6F1ED1CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52vcVigM5dn89QMlGKfsm2HizO0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft Manifest number: 12D9 Signing time: Mon 09 Feb 2026 16:00:56 +0000 Manifest this update: Mon 09 Feb 2026 16:00:56 +0000 Manifest next update: Tue 10 Feb 2026 16:00:56 +0000 Files and hashes: 1: 52vcVigM5dn89QMlGKfsm2HizO0.crl (hash: gmZG0pAPOk/cazJZJeGUKEOqROkOKYjyDGkHLprTcz8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft rsync://rpki.ripe.net/repository/DEFAULT/52vcVigM5dn89QMlGKfsm2HizO0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:72:97:f0:28:15:1b:9a:cb:11:ac:6f:1e:d1:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76bdc56280ce5d9fcf5032518a7ec9b61e2cced Validity Not Before: Feb 9 16:00:56 2026 GMT Not After : Feb 10 16:00:56 2026 GMT Subject: CN=403b1b689a4b620304b3d0e7cc083d8f83d03f06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:de:ee:ee:f0:b6:fc:5b:0c:a6:07:1f:67:cf: 3b:00:ec:ab:72:7c:4a:8d:ef:ae:53:bd:2f:a9:e2: b9:d4:9d:ab:5e:f0:c5:c1:66:47:95:6a:d4:e8:f1: 7a:5d:36:b2:19:c2:79:9b:48:1b:fa:c3:04:6a:df: cf:f3:3a:9c:ec:e0:e4:54:10:f6:8e:9a:f5:d7:06: 26:05:67:44:6e:24:e6:8c:f3:22:50:bb:3d:09:07: 78:cb:eb:6d:44:0b:99:e6:7d:d6:a2:61:17:32:be: 15:af:e9:00:b4:35:7e:16:39:1e:52:2e:01:f7:ff: f1:46:5b:18:21:43:1f:73:79:18:6f:c9:63:fa:6c: 1b:d3:2d:9d:04:10:b5:35:35:33:a0:eb:6e:66:eb: d1:f2:05:51:a7:b7:b6:e5:21:06:e4:d5:91:9b:07: ac:a7:04:4a:46:63:88:f9:de:9e:23:4b:d2:2f:fd: 19:b3:9c:c8:cb:15:5f:cb:79:0c:db:fa:c5:e8:d5: 86:89:46:8f:e1:eb:64:50:f3:b1:23:18:04:10:6b: ae:0c:8b:11:8a:92:46:9f:9e:2c:43:91:03:81:4e: f6:6f:6b:30:6e:4a:73:07:0f:8a:d3:60:82:1d:19: b3:48:03:d0:cb:fd:72:71:cb:b2:21:23:73:90:20: ac:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:3B:1B:68:9A:4B:62:03:04:B3:D0:E7:CC:08:3D:8F:83:D0:3F:06 X509v3 Authority Key Identifier: keyid:E7:6B:DC:56:28:0C:E5:D9:FC:F5:03:25:18:A7:EC:9B:61:E2:CC:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52vcVigM5dn89QMlGKfsm2HizO0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/3ddd6a-3025-4196-84c2-f1c24a8139db/1/52vcVigM5dn89QMlGKfsm2HizO0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:b3:07:32:e3:15:64:d3:12:65:45:7c:5e:ec:ac:06:6c:25: 85:7d:be:4c:42:fb:5a:de:47:0b:af:c4:7f:24:e2:54:a0:fb: 37:34:6f:36:a6:d0:c1:72:67:b9:ba:79:85:14:78:4e:81:91: f8:7b:b4:29:e4:af:a6:14:a2:5f:27:c1:fb:2f:c4:bf:de:47: 33:66:d8:24:0a:97:71:0a:07:67:0f:1c:29:a4:7f:09:6a:96: 58:1b:96:3c:61:23:4a:e9:77:7c:47:b1:19:85:e5:ef:9c:d0: 6c:91:5d:61:3f:7e:2a:da:e0:f5:ff:f1:ae:fa:3f:97:5c:9f: b9:01:3b:19:96:a1:fa:52:53:43:ca:29:13:51:2a:f8:c4:ad: 31:73:f0:71:e1:62:d8:fb:e8:5f:fa:e4:a0:87:59:f8:58:87: ff:77:44:67:d6:23:a2:8e:ba:6a:ef:14:65:ff:3a:61:17:b6: 0b:e0:0e:14:54:67:54:8c:24:da:19:11:36:0a:ef:c7:76:43: 19:44:c7:e8:e7:c1:49:80:ac:b8:da:6a:aa:d5:28:8f:ff:b0: a0:5a:e6:12:59:7a:21:b5:bc:4e:54:38:dc:28:8e:77:57:31: 9d:bd:e0:9d:e7:b0:7a:fc:11:c7:ea:a9:11:f5:58:3a:e2:0b: 62:dc:9e:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDInKX8CgVG5rLEaxvHtHLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmJkYzU2MjgwY2U1ZDlmY2Y1MDMyNTE4YTdlYzliNjFl MmNjZWQwHhcNMjYwMjA5MTYwMDU2WhcNMjYwMjEwMTYwMDU2WjAzMTEwLwYDVQQD Eyg0MDNiMWI2ODlhNGI2MjAzMDRiM2QwZTdjYzA4M2Q4ZjgzZDAzZjA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxt7u7vC2/FsMpgcfZ887AOyrcnxK je+uU70vqeK51J2rXvDFwWZHlWrU6PF6XTayGcJ5m0gb+sMEat/P8zqc7ODkVBD2 jpr11wYmBWdEbiTmjPMiULs9CQd4y+ttRAuZ5n3WomEXMr4Vr+kAtDV+FjkeUi4B 9//xRlsYIUMfc3kYb8lj+mwb0y2dBBC1NTUzoOtuZuvR8gVRp7e25SEG5NWRmwes pwRKRmOI+d6eI0vSL/0Zs5zIyxVfy3kM2/rF6NWGiUaP4etkUPOxIxgEEGuuDIsR ipJGn54sQ5EDgU72b2swbkpzBw+K02CCHRmzSAPQy/1yccuyISNzkCCs9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEA7G2iaS2IDBLPQ58wIPY+D0D8GMB8GA1UdIwQY MBaAFOdr3FYoDOXZ/PUDJRin7Jth4sztMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTJ2Y1ZpZ001ZG44OVFNbEdLZnNtMkhpek8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8zZGRkNmEtMzAyNS00MTk2LTg0YzIt ZjFjMjRhODEzOWRiLzEvNTJ2Y1ZpZ001ZG44OVFNbEdLZnNtMkhpek8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC8zZGRkNmEtMzAyNS00MTk2LTg0YzItZjFjMjRhODEzOWRi LzEvNTJ2Y1ZpZ001ZG44OVFNbEdLZnNtMkhpek8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAirMHMuMV ZNMSZUV8XuysBmwlhX2+TEL7Wt5HC6/EfyTiVKD7NzRvNqbQwXJnubp5hRR4ToGR +Hu0KeSvphSiXyfB+y/Ev95HM2bYJAqXcQoHZw8cKaR/CWqWWBuWPGEjSul3fEex GYXl75zQbJFdYT9+Ktrg9f/xrvo/l1yfuQE7GZah+lJTQ8opE1Eq+MStMXPwceFi 2PvoX/rkoIdZ+FiH/3dEZ9Yjoo66au8UZf86YRe2C+AOFFRnVIwk2hkRNgrvx3ZD GUTH6OfBSYCsuNpqqtUoj/+woFrmEll6IbW8TlQ43CiOd1cxnb3gneewevwRx+qp EfVYOuILYtyeYg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:29 2026 by rpki-client