This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json) Hash identifier: ineqcPv93/Q4LjbUKcGxBs5Vl82lMPVCtZ6RAqCmrK4= Subject key identifier: 83:87:C9:0B:9B:18:B8:7D:C9:2F:84:54:1B:AC:3C:F7:B8:1C:F3:55 Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31 Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31 Certificate serial: 019C438FD777F6FF2FC25553CEF2F85D982E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft Manifest number: 0D12 Signing time: Mon 09 Feb 2026 18:00:26 +0000 Manifest this update: Mon 09 Feb 2026 18:00:26 +0000 Manifest next update: Tue 10 Feb 2026 18:00:26 +0000 Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: VuMMlzNsohoE6Axs+AHQjlhw5lt3UByBEdeTOFhX/WA=) 2: yqbwyn5sfCL6hbkLZAJdRWAyPBM.roa (hash: ZWKRKB/jnik25oPS/+Y2ymZERk+OEa7DBYYnhwqGBQc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:d7:77:f6:ff:2f:c2:55:53:ce:f2:f8:5d:98:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31 Validity Not Before: Feb 9 18:00:26 2026 GMT Not After : Feb 10 18:00:26 2026 GMT Subject: CN=8387c90b9b18b87dc92f84541bac3cf7b81cf355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bc:d5:29:99:c2:52:59:86:38:6a:8d:3d:f2: da:7d:e3:aa:35:e2:aa:eb:5f:d6:d4:a3:57:ae:79: 3a:47:f9:cf:10:a4:eb:eb:f0:3d:4a:2e:06:d1:9d: 99:c2:b6:ae:ea:b0:c4:51:06:b7:7e:02:24:82:31: e5:c8:ee:9d:4d:ed:39:9a:a8:42:1b:a5:e5:c0:aa: fa:e5:a2:02:ed:14:75:f6:89:c7:1e:64:bf:c6:a3: a7:df:33:6b:e3:bf:c2:7e:2f:3d:cb:a9:09:70:5d: e6:96:e9:25:69:38:4a:ba:bf:59:aa:00:b6:0c:a0: 96:3d:7f:44:42:4b:45:5c:d8:55:3c:1f:7d:db:ae: ee:c6:48:ed:b4:e4:b2:81:89:2c:fa:fd:d8:fd:c5: 8b:92:5f:2b:13:ee:85:3c:25:ac:c6:9f:da:ed:7e: f7:f4:10:e1:b4:4d:e1:bd:6d:b6:fe:82:2c:07:f3: 81:cd:a7:0d:21:c1:3b:19:d8:13:22:ef:e5:8c:9c: 44:24:8e:6e:ca:d9:18:65:6e:8c:bd:49:0c:9d:6a: 63:f1:64:c6:47:e0:1d:52:28:af:ed:4a:8c:5b:5c: 3e:ec:ef:ac:46:27:2e:6b:28:68:c3:e4:34:27:68: 34:2d:9d:72:f9:9f:ce:e4:cb:9c:a2:99:f7:81:c7: 62:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:87:C9:0B:9B:18:B8:7D:C9:2F:84:54:1B:AC:3C:F7:B8:1C:F3:55 X509v3 Authority Key Identifier: keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:7a:7a:4a:26:8c:af:94:e0:51:6f:86:82:f6:cc:41:07:d5: ad:ed:18:4c:3a:5b:6c:2c:71:b8:9e:45:b1:d4:bc:b1:5c:d8: 80:64:2a:38:10:4f:17:56:4a:59:d7:49:41:01:95:8d:67:96: dd:ff:c5:49:56:eb:05:43:8c:91:6f:1b:d2:b7:bb:e0:3d:ec: 2e:d2:04:33:55:1b:7d:05:d7:5e:4c:63:71:ae:91:bb:19:62: 86:c6:14:57:a8:48:e5:92:1d:f3:d5:5f:4f:0c:b6:4a:0e:cf: 16:82:a3:76:c3:7c:83:11:fd:7a:83:62:53:55:3d:ca:9c:b1: fe:ee:a7:ad:e8:c0:a4:24:ab:6d:75:ed:e7:40:24:0b:25:46: b8:c8:c8:14:10:74:67:51:e2:85:dc:39:d7:d6:b9:1e:23:db: 5e:34:e3:d5:bc:f0:85:52:e8:cf:83:57:2a:08:31:2a:90:24: dc:08:d1:b0:72:57:96:10:cf:63:98:ea:b5:5d:54:6b:9d:a2: 56:dc:b2:f8:53:18:a9:b4:12:6e:06:ce:8e:19:95:c1:18:fd: d2:25:66:37:34:c4:8e:9e:bf:0e:01:48:e9:74:bf:6a:7c:dc: 28:a4:e1:30:a2:16:c2:ef:d1:fe:d7:82:65:5d:3b:96:4a:e3: 07:d3:dc:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj9d39v8vwlVTzvL4XZguMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MzU0MzIxYzEyNTQzNjAxNDVlYWYyNWY2OTkzOGI4ZGYz NDdiMzEwHhcNMjYwMjA5MTgwMDI2WhcNMjYwMjEwMTgwMDI2WjAzMTEwLwYDVQQD Eyg4Mzg3YzkwYjliMThiODdkYzkyZjg0NTQxYmFjM2NmN2I4MWNmMzU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrzVKZnCUlmGOGqNPfLafeOqNeKq 61/W1KNXrnk6R/nPEKTr6/A9Si4G0Z2Zwrau6rDEUQa3fgIkgjHlyO6dTe05mqhC G6XlwKr65aIC7RR19onHHmS/xqOn3zNr47/Cfi89y6kJcF3mluklaThKur9ZqgC2 DKCWPX9EQktFXNhVPB99267uxkjttOSygYks+v3Y/cWLkl8rE+6FPCWsxp/a7X73 9BDhtE3hvW22/oIsB/OBzacNIcE7GdgTIu/ljJxEJI5uytkYZW6MvUkMnWpj8WTG R+AdUiiv7UqMW1w+7O+sRicuayhow+Q0J2g0LZ1y+Z/O5Mucopn3gcdi5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIOHyQubGLh9yS+EVBusPPe4HPNVMB8GA1UdIwQY MBaAFNU1QyHBJUNgFF6vJfaZOLjfNHsxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9kOWY5YTgtZGEwMS00ZDM1LTgyODQt YjY0ZWI4ZDgzNjU4LzEvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9kOWY5YTgtZGEwMS00ZDM1LTgyODQtYjY0ZWI4ZDgzNjU4 LzEvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfHp6SiaM r5TgUW+GgvbMQQfVre0YTDpbbCxxuJ5FsdS8sVzYgGQqOBBPF1ZKWddJQQGVjWeW 3f/FSVbrBUOMkW8b0re74D3sLtIEM1UbfQXXXkxjca6RuxlihsYUV6hI5ZId89Vf Twy2Sg7PFoKjdsN8gxH9eoNiU1U9ypyx/u6nrejApCSrbXXt50AkCyVGuMjIFBB0 Z1Hihdw519a5HiPbXjTj1bzwhVLoz4NXKggxKpAk3AjRsHJXlhDPY5jqtV1Ua52i Vtyy+FMYqbQSbgbOjhmVwRj90iVmNzTEjp6/DgFI6XS/anzcKKThMKIWwu/R/teC ZV07lkrjB9PcDg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:48 2026 by rpki-client