This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft File: tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft (raw, json) Hash identifier: dIgCNvU+cvY+x1tqi8XfUeO84QhZ7txiJ1Qh8zS5icE= Subject key identifier: A1:1E:E1:2A:D3:E3:1F:8E:07:59:C1:26:6E:FE:26:21:DF:4A:A5:24 Authority key identifier: B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77 Certificate issuer: /CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977 Certificate serial: 019C44A2B5B26706539AE3B27F28A8BA8AAB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft Manifest number: 0E42 Signing time: Mon 09 Feb 2026 23:00:39 +0000 Manifest this update: Mon 09 Feb 2026 23:00:39 +0000 Manifest next update: Tue 10 Feb 2026 23:00:39 +0000 Files and hashes: 1: dIqmIrGGl8FI-sOwGOw90e9FkJY.roa (hash: ux/S4urJBgHoaCGluZkTkGPr6Fq78RqIkr3zENS3Pqk=) 2: tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl (hash: aC4lDRaKrKgme474abtwbDqhqOng8JS9CO+vMNtMoFE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:b5:b2:67:06:53:9a:e3:b2:7f:28:a8:ba:8a:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5ccdd883f6dd114ecf6f72716a84634f67ac977 Validity Not Before: Feb 9 23:00:39 2026 GMT Not After : Feb 10 23:00:39 2026 GMT Subject: CN=a11ee12ad3e31f8e0759c1266efe2621df4aa524 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:56:c3:1d:c6:47:85:3d:47:fd:79:1c:d3:11: 41:7e:48:b4:e7:da:1e:8d:f9:da:58:16:e3:84:83: c2:21:4f:16:14:c9:40:c7:b7:4e:34:d7:0c:60:b2: 48:c9:17:33:02:ff:2c:1c:c9:7b:0b:22:be:e6:ba: 7a:c4:c2:08:71:95:3a:9e:13:b1:29:7d:9c:c4:64: e8:e5:36:16:ec:eb:94:d7:e8:4b:83:b7:eb:4c:23: 84:f5:28:ee:95:f5:09:d6:54:02:96:38:0b:08:99: 73:99:f7:16:d9:13:56:7b:c7:4a:0c:58:27:0c:38: 36:ad:d6:38:e7:f8:bb:38:d7:8a:6d:e5:06:1f:38: a8:5f:df:d9:00:eb:c5:f2:b4:89:dc:07:e0:eb:6a: 4a:73:0a:56:ac:31:fb:c3:ad:4f:fa:9a:fc:25:1a: 29:15:3a:3f:65:11:bc:ea:a5:77:ee:6a:40:ae:62: 67:0d:4c:98:c1:d5:c9:b9:07:f3:83:5f:20:0f:c2: be:91:db:7f:63:1d:92:0e:09:cc:db:ce:11:dd:0b: dc:ed:d7:83:f7:bc:ac:97:c7:15:eb:30:7c:6a:fa: e0:2c:66:48:93:fc:38:a3:00:69:7f:70:76:e2:86: 69:6a:7e:cf:a7:8e:01:88:8a:3f:7c:4c:db:5b:b6: 1c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1E:E1:2A:D3:E3:1F:8E:07:59:C1:26:6E:FE:26:21:DF:4A:A5:24 X509v3 Authority Key Identifier: keyid:B5:CC:DD:88:3F:6D:D1:14:EC:F6:F7:27:16:A8:46:34:F6:7A:C9:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tczdiD9t0RTs9vcnFqhGNPZ6yXc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ba784d-746e-49e7-a408-4abaf53a50af/1/tczdiD9t0RTs9vcnFqhGNPZ6yXc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:31:f0:4c:9a:93:7f:e4:dd:97:2a:2d:ae:7b:4e:6c:ba:1f: 16:3b:1a:81:3f:1c:89:41:cc:17:d2:58:96:b9:79:b0:e0:3d: ce:02:2d:3a:36:67:69:18:d9:61:0f:4d:a6:3e:03:10:00:71: 47:31:44:e0:1a:9c:af:71:5a:5a:b5:4c:e5:2e:ad:fa:1b:d0: b8:b3:17:63:79:21:1c:2f:35:27:c0:85:8f:b1:8a:d5:62:dc: bc:bb:d7:fa:f9:00:fe:82:02:a3:ca:72:1f:77:62:18:ca:d9: 6a:d2:5c:a3:d7:fb:22:89:09:7d:ec:00:98:16:68:7c:3f:fc: eb:6f:5e:ef:ee:e5:28:e0:ec:4c:2b:ff:bd:73:c3:7a:82:2b: 10:3b:e9:bc:01:97:db:4a:7c:bf:d5:ef:b9:12:4a:a6:97:c0: d4:e6:2a:91:a6:eb:a6:08:e1:9a:2e:d2:87:15:c5:88:31:ca: 9b:b6:37:ee:c4:72:f8:f6:d3:0b:36:b3:bc:02:03:b0:ef:5c: 7f:fe:07:e4:f0:6f:14:6d:23:9f:09:29:99:a9:b4:d2:30:cb: b1:36:57:df:84:6b:8f:c8:c8:96:9e:39:b9:6d:da:01:e2:0e: 8d:54:a3:a9:1f:e1:e9:84:e6:04:35:13:33:e4:9e:8a:32:1c: 43:de:ab:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEorWyZwZTmuOyfyiouoqrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1Y2NkZDg4M2Y2ZGQxMTRlY2Y2ZjcyNzE2YTg0NjM0ZjY3 YWM5NzcwHhcNMjYwMjA5MjMwMDM5WhcNMjYwMjEwMjMwMDM5WjAzMTEwLwYDVQQD EyhhMTFlZTEyYWQzZTMxZjhlMDc1OWMxMjY2ZWZlMjYyMWRmNGFhNTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFbDHcZHhT1H/Xkc0xFBfki059oe jfnaWBbjhIPCIU8WFMlAx7dONNcMYLJIyRczAv8sHMl7CyK+5rp6xMIIcZU6nhOx KX2cxGTo5TYW7OuU1+hLg7frTCOE9SjulfUJ1lQCljgLCJlzmfcW2RNWe8dKDFgn DDg2rdY45/i7ONeKbeUGHzioX9/ZAOvF8rSJ3Afg62pKcwpWrDH7w61P+pr8JRop FTo/ZRG86qV37mpArmJnDUyYwdXJuQfzg18gD8K+kdt/Yx2SDgnM284R3Qvc7deD 97ysl8cV6zB8avrgLGZIk/w4owBpf3B24oZpan7Pp44BiIo/fEzbW7Yc0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKEe4SrT4x+OB1nBJm7+JiHfSqUkMB8GA1UdIwQY MBaAFLXM3Yg/bdEU7Pb3JxaoRjT2esl3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGN6ZGlEOXQwUlRzOXZjbkZxaEdOUFo2eVhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9iYTc4NGQtNzQ2ZS00OWU3LWE0MDgt NGFiYWY1M2E1MGFmLzEvdGN6ZGlEOXQwUlRzOXZjbkZxaEdOUFo2eVhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9iYTc4NGQtNzQ2ZS00OWU3LWE0MDgtNGFiYWY1M2E1MGFm LzEvdGN6ZGlEOXQwUlRzOXZjbkZxaEdOUFo2eVhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoTHwTJqT f+TdlyotrntObLofFjsagT8ciUHMF9JYlrl5sOA9zgItOjZnaRjZYQ9Npj4DEABx RzFE4Bqcr3FaWrVM5S6t+hvQuLMXY3khHC81J8CFj7GK1WLcvLvX+vkA/oICo8py H3diGMrZatJco9f7IokJfewAmBZofD/8629e7+7lKODsTCv/vXPDeoIrEDvpvAGX 20p8v9XvuRJKppfA1OYqkabrpgjhmi7ShxXFiDHKm7Y37sRy+PbTCzazvAIDsO9c f/4H5PBvFG0jnwkpmam00jDLsTZX34Rrj8jIlp45uW3aAeIOjVSjqR/h6YTmBDUT M+SeijIcQ96rmg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:47:40 2026 by rpki-client