This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft File: 4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft (raw, json) Hash identifier: k/6w2DRR+lU49REwShrA6x5cQOtXEKmmKNSSImo3BpI= Subject key identifier: D7:90:37:67:AA:6A:A3:AB:B7:B7:1D:06:77:6F:34:EE:15:DB:DA:DC Authority key identifier: E1:20:2E:2E:4B:65:DB:3B:1F:E5:81:CD:B1:99:01:0B:2E:90:CF:78 Certificate issuer: /CN=e1202e2e4b65db3b1fe581cdb199010b2e90cf78 Certificate serial: 019C438FF58FC5CCCA7D283C0603E04D2FCD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft Manifest number: 0F91 Signing time: Mon 09 Feb 2026 18:00:33 +0000 Manifest this update: Mon 09 Feb 2026 18:00:33 +0000 Manifest next update: Tue 10 Feb 2026 18:00:33 +0000 Files and hashes: 1: 4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl (hash: CB7AIS/+9rw6cmbZ0geezzipFDsgVMlXcyQsZQ2okTc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:f5:8f:c5:cc:ca:7d:28:3c:06:03:e0:4d:2f:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1202e2e4b65db3b1fe581cdb199010b2e90cf78 Validity Not Before: Feb 9 18:00:33 2026 GMT Not After : Feb 10 18:00:33 2026 GMT Subject: CN=d7903767aa6aa3abb7b71d06776f34ee15dbdadc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:71:fb:cd:28:62:14:13:83:33:21:a3:1c:7d: 72:4c:54:6e:db:3e:69:54:a3:05:24:23:22:5f:80: fe:10:22:0b:f3:83:ba:56:8d:88:89:cc:42:46:8a: e7:07:64:4b:27:9a:5c:5e:b8:bf:d4:ce:c2:db:6b: a9:d0:3d:2d:5e:e3:f6:1c:b2:20:2c:db:52:a4:dd: b7:e3:95:33:d9:cf:a1:c7:fc:7f:d6:99:1a:5a:1e: 8e:f4:fa:18:d6:fe:03:3c:ea:ef:03:6b:cf:6b:59: 01:c4:13:cb:43:6b:8e:94:c2:22:2b:71:35:dd:3e: 4e:14:66:fb:76:9f:2e:5b:bd:73:60:20:40:e6:cd: 1f:3a:c7:77:de:e4:3d:8b:0e:b1:27:d1:b9:0e:da: 4b:66:4b:0a:5d:ac:a2:92:17:57:da:1d:ad:99:11: b6:bd:98:00:48:e8:24:3a:33:e9:ca:54:ae:cd:82: 3b:d3:95:08:dd:8f:2f:37:0d:3a:11:39:3d:c4:0e: d8:7b:fa:de:ee:e5:4c:ac:b9:86:34:6a:4e:5f:79: 54:3a:22:e6:d5:f7:9e:c3:a0:bf:aa:ce:cf:e5:7c: b3:a8:34:7b:72:6b:da:87:de:70:3b:e1:74:7b:2e: 72:bb:d0:8d:2f:4c:da:95:ae:91:86:7d:5d:73:09: f0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:90:37:67:AA:6A:A3:AB:B7:B7:1D:06:77:6F:34:EE:15:DB:DA:DC X509v3 Authority Key Identifier: keyid:E1:20:2E:2E:4B:65:DB:3B:1F:E5:81:CD:B1:99:01:0B:2E:90:CF:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:2e:6b:3a:3d:1d:e0:27:df:f8:47:1b:8c:34:19:2c:ff:03: cc:3c:6b:27:68:88:34:df:b3:a5:cd:99:97:78:60:ec:8c:5b: 27:7c:98:ca:59:cc:e7:53:cb:2b:72:b6:51:d8:99:82:5e:09: 86:db:47:81:f6:2f:e2:d0:48:31:5a:6d:1b:48:32:fb:50:71: 3d:a2:dc:bd:d4:09:37:76:74:44:04:93:c0:f1:d8:d2:f9:86: 87:85:6f:f0:a2:dc:ef:1d:45:ee:ae:7a:ef:f0:ea:be:53:8b: 9e:8f:3c:fd:b1:c7:eb:ee:ec:1e:1a:d4:cb:ec:98:b7:32:3b: 9a:e5:02:db:83:6a:de:21:2a:3b:22:11:47:da:c4:8a:61:5e: b9:db:d4:f5:22:f0:47:72:e1:6f:d6:f3:bc:99:c1:d4:52:43: f1:45:f0:1d:8b:34:dd:4c:ee:9b:ab:d1:ae:ec:ce:22:ac:95: 22:b5:37:e3:17:7a:87:b6:f8:f7:6d:80:f4:2c:2c:b7:27:ec: 1a:84:b8:2f:59:5e:75:8b:2f:67:87:92:33:50:f4:8b:d3:47: 7c:97:ad:57:6f:42:d9:52:39:fc:42:d5:f8:30:91:61:7e:27: 73:60:2a:e2:dd:86:4f:bb:06:4b:63:7e:03:60:98:d3:90:82: 75:ef:22:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj/WPxczKfSg8BgPgTS/NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxMjAyZTJlNGI2NWRiM2IxZmU1ODFjZGIxOTkwMTBiMmU5 MGNmNzgwHhcNMjYwMjA5MTgwMDMzWhcNMjYwMjEwMTgwMDMzWjAzMTEwLwYDVQQD EyhkNzkwMzc2N2FhNmFhM2FiYjdiNzFkMDY3NzZmMzRlZTE1ZGJkYWRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHH7zShiFBODMyGjHH1yTFRu2z5p VKMFJCMiX4D+ECIL84O6Vo2IicxCRornB2RLJ5pcXri/1M7C22up0D0tXuP2HLIg LNtSpN2345Uz2c+hx/x/1pkaWh6O9PoY1v4DPOrvA2vPa1kBxBPLQ2uOlMIiK3E1 3T5OFGb7dp8uW71zYCBA5s0fOsd33uQ9iw6xJ9G5DtpLZksKXayikhdX2h2tmRG2 vZgASOgkOjPpylSuzYI705UI3Y8vNw06ETk9xA7Ye/re7uVMrLmGNGpOX3lUOiLm 1feew6C/qs7P5XyzqDR7cmvah95wO+F0ey5yu9CNL0zala6Rhn1dcwnwLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNeQN2eqaqOrt7cdBndvNO4V29rcMB8GA1UdIwQY MBaAFOEgLi5LZds7H+WBzbGZAQsukM94MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFNBdUxrdGwyenNmNVlITnNaa0JDeTZRejNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9hNzczZDctNTU0Zi00NjlmLWI0Zjgt N2RjNjkyNWNkNDJmLzEvNFNBdUxrdGwyenNmNVlITnNaa0JDeTZRejNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9hNzczZDctNTU0Zi00NjlmLWI0ZjgtN2RjNjkyNWNkNDJm LzEvNFNBdUxrdGwyenNmNVlITnNaa0JDeTZRejNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEi5rOj0d 4Cff+EcbjDQZLP8DzDxrJ2iINN+zpc2Zl3hg7IxbJ3yYylnM51PLK3K2UdiZgl4J httHgfYv4tBIMVptG0gy+1BxPaLcvdQJN3Z0RASTwPHY0vmGh4Vv8KLc7x1F7q56 7/DqvlOLno88/bHH6+7sHhrUy+yYtzI7muUC24Nq3iEqOyIRR9rEimFeudvU9SLw R3Lhb9bzvJnB1FJD8UXwHYs03Uzum6vRruzOIqyVIrU34xd6h7b4922A9Cwstyfs GoS4L1ledYsvZ4eSM1D0i9NHfJetV29C2VI5/ELV+DCRYX4nc2Aq4t2GT7sGS2N+ A2CY05CCde8iDw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:19 2026 by rpki-client