This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft File: 0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft (raw, json) Hash identifier: XXtZRi0K5NGmP5PmNuYh3kocL8sJZqeQEHzWRx0oMH0= Subject key identifier: B0:70:89:DB:EB:B9:E4:AF:66:54:90:5D:3F:E7:E9:84:30:E6:86:83 Authority key identifier: D2:D4:BD:71:A4:3D:8C:DD:46:2A:61:EE:E0:D9:47:00:C7:E6:42:5F Certificate issuer: /CN=d2d4bd71a43d8cdd462a61eee0d94700c7e6425f Certificate serial: 019C44A2FE98150005A01B4F631EA2271271 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tS9caQ9jN1GKmHu4NlHAMfmQl8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft Manifest number: 018C Signing time: Mon 09 Feb 2026 23:00:58 +0000 Manifest this update: Mon 09 Feb 2026 23:00:58 +0000 Manifest next update: Tue 10 Feb 2026 23:00:58 +0000 Files and hashes: 1: 0tS9caQ9jN1GKmHu4NlHAMfmQl8.crl (hash: EGC9iHm8U4DaF5OUappSUmBC0RlKXZp/s4cNXg576K0=) 2: 7y2-JyJSBLPzJ1F-GfRB9L2A1lc.roa (hash: Je64415GY9BUK++a0MLtgLPvf9KrlsWdU946uIXLKos=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft rsync://rpki.ripe.net/repository/DEFAULT/0tS9caQ9jN1GKmHu4NlHAMfmQl8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:fe:98:15:00:05:a0:1b:4f:63:1e:a2:27:12:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2d4bd71a43d8cdd462a61eee0d94700c7e6425f Validity Not Before: Feb 9 23:00:58 2026 GMT Not After : Feb 10 23:00:58 2026 GMT Subject: CN=b07089dbebb9e4af6654905d3fe7e98430e68683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ff:e5:8c:45:72:81:80:24:64:f0:4e:f6:96: b5:cb:f9:46:31:a5:af:c1:84:68:82:85:81:aa:77: dc:24:03:df:41:21:d8:53:a7:e0:ab:75:e2:8c:df: 62:04:f1:99:4b:66:c5:3c:69:1b:54:b8:ac:ac:e2: 18:0b:08:d2:c1:68:1a:77:38:36:fa:b5:85:5a:2f: 53:f0:4f:8f:09:11:52:06:f4:15:af:b4:77:cf:77: ac:54:ef:0a:ec:a2:bb:32:a9:82:7b:ad:29:6b:9c: 23:a4:79:5d:b8:ad:c3:1c:29:3d:78:96:e3:ee:aa: d1:48:e0:d0:25:7f:59:6b:ce:92:5c:72:5b:d9:18: 5d:21:c2:aa:06:82:34:9f:db:d7:c1:6d:04:e4:63: 4e:1c:26:30:3e:9f:35:6b:f7:a7:c7:02:1c:9e:6f: b1:4b:80:bb:fd:d0:c9:2e:68:2b:09:21:76:89:46: d7:11:9f:a0:ad:80:07:61:f3:cb:10:88:90:5f:66: 5f:88:8a:d2:77:7e:28:11:37:f7:bb:b5:4a:16:e5: 74:a3:0d:2c:46:9e:ff:60:41:37:a0:81:c8:67:f9: db:62:c3:68:93:12:aa:da:b5:5d:aa:50:ed:25:87: e3:2a:34:a5:42:a2:fb:17:25:10:ff:27:ef:f9:e4: b6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:70:89:DB:EB:B9:E4:AF:66:54:90:5D:3F:E7:E9:84:30:E6:86:83 X509v3 Authority Key Identifier: keyid:D2:D4:BD:71:A4:3D:8C:DD:46:2A:61:EE:E0:D9:47:00:C7:E6:42:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tS9caQ9jN1GKmHu4NlHAMfmQl8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/41dd00-b57b-4638-a08b-6853c41ca03e/1/0tS9caQ9jN1GKmHu4NlHAMfmQl8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:ce:61:56:41:cb:dc:07:d3:54:70:0a:d5:89:73:70:e4:ea: df:2b:0b:58:b5:ee:43:69:fe:68:77:66:ca:e9:77:55:1c:fe: a7:32:e1:96:12:5f:8d:98:ed:1f:10:5a:b2:2f:24:09:fc:92: b7:c5:c3:dd:79:6d:2c:a5:a0:39:21:38:bb:78:0b:94:28:18: 2a:40:b9:e5:de:3d:ff:cf:fe:38:4a:05:72:23:2c:1a:e4:e5: 82:da:f7:a9:c9:3e:50:4d:08:9d:b0:b9:4e:41:8b:39:e1:d7: 93:62:01:3d:a9:9a:2d:93:f1:34:ef:14:ee:a7:82:70:c2:8b: 00:7a:b8:e8:94:ff:73:c7:7f:95:b9:8f:b9:6a:8b:31:3f:83: 72:48:38:8a:ce:99:21:a3:44:e4:f5:8f:83:d0:e7:36:cb:37: ed:ac:c9:5a:13:93:82:b6:a2:00:fe:61:ab:ed:51:20:9b:87: 92:9d:5d:19:28:c3:6e:0e:fe:30:19:a1:a0:56:41:de:66:5d: 0e:91:fd:ae:8f:85:08:d3:74:95:70:11:43:f0:ef:08:f3:55: 99:1e:70:e0:0e:59:c4:be:c1:a5:50:1e:5c:d2:4e:73:34:f7: 9a:9a:f5:34:47:b1:01:96:88:47:77:b7:ca:64:ec:64:17:e5: 5c:7e:45:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEov6YFQAFoBtPYx6iJxJxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyZDRiZDcxYTQzZDhjZGQ0NjJhNjFlZWUwZDk0NzAwYzdl NjQyNWYwHhcNMjYwMjA5MjMwMDU4WhcNMjYwMjEwMjMwMDU4WjAzMTEwLwYDVQQD EyhiMDcwODlkYmViYjllNGFmNjY1NDkwNWQzZmU3ZTk4NDMwZTY4NjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvP/ljEVygYAkZPBO9pa1y/lGMaWv wYRogoWBqnfcJAPfQSHYU6fgq3XijN9iBPGZS2bFPGkbVLisrOIYCwjSwWgadzg2 +rWFWi9T8E+PCRFSBvQVr7R3z3esVO8K7KK7MqmCe60pa5wjpHlduK3DHCk9eJbj 7qrRSODQJX9Za86SXHJb2RhdIcKqBoI0n9vXwW0E5GNOHCYwPp81a/enxwIcnm+x S4C7/dDJLmgrCSF2iUbXEZ+grYAHYfPLEIiQX2ZfiIrSd34oETf3u7VKFuV0ow0s Rp7/YEE3oIHIZ/nbYsNokxKq2rVdqlDtJYfjKjSlQqL7FyUQ/yfv+eS2HwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLBwidvrueSvZlSQXT/n6YQw5oaDMB8GA1UdIwQY MBaAFNLUvXGkPYzdRiph7uDZRwDH5kJfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHRTOWNhUTlqTjFHS21IdTRObEhBTWZtUWw4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80MWRkMDAtYjU3Yi00NjM4LWEwOGIt Njg1M2M0MWNhMDNlLzEvMHRTOWNhUTlqTjFHS21IdTRObEhBTWZtUWw4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi80MWRkMDAtYjU3Yi00NjM4LWEwOGItNjg1M2M0MWNhMDNl LzEvMHRTOWNhUTlqTjFHS21IdTRObEhBTWZtUWw4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWs5hVkHL 3AfTVHAK1YlzcOTq3ysLWLXuQ2n+aHdmyul3VRz+pzLhlhJfjZjtHxBasi8kCfyS t8XD3XltLKWgOSE4u3gLlCgYKkC55d49/8/+OEoFciMsGuTlgtr3qck+UE0InbC5 TkGLOeHXk2IBPamaLZPxNO8U7qeCcMKLAHq46JT/c8d/lbmPuWqLMT+Dckg4is6Z IaNE5PWPg9DnNss37azJWhOTgraiAP5hq+1RIJuHkp1dGSjDbg7+MBmhoFZB3mZd DpH9ro+FCNN0lXARQ/DvCPNVmR5w4A5ZxL7BpVAeXNJOczT3mpr1NEexAZaIR3e3 ymTsZBflXH5FrQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:47:34 2026 by rpki-client