This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft File: 0CAT81SL49yz3KGNT8k3ifRPA78.mft (raw, json) Hash identifier: 0kSNHPa//su3GSsklWo1R1XsqG8MpiOuMud5mR9RXsc= Subject key identifier: D1:6B:D6:C0:A9:71:94:8C:16:E7:46:EC:34:44:F5:BE:2A:30:D8:4E Authority key identifier: D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF Certificate issuer: /CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf Certificate serial: 019C42463F3FAB89D3CEB12EB1E1796A290B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 12:00:25 +0000 Manifest this update: Mon 09 Feb 2026 12:00:25 +0000 Manifest next update: Tue 10 Feb 2026 12:00:25 +0000 Files and hashes: 1: 0CAT81SL49yz3KGNT8k3ifRPA78.crl (hash: E2TS8Vw5rlAQhok8XeiG/Ks9tuesA56/fK3T7s6t5R8=) 2: DhpOUL_Ta1FDpH83x5fYZb3w0iw.roa (hash: 31Sl0HBZjZWI7Tb9GRR7XcM/c70/RPdQDShrKX9L2rs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:3f:3f:ab:89:d3:ce:b1:2e:b1:e1:79:6a:29:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf Validity Not Before: Feb 9 12:00:25 2026 GMT Not After : Feb 10 12:00:25 2026 GMT Subject: CN=d16bd6c0a971948c16e746ec3444f5be2a30d84e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:47:b5:78:e0:06:f5:8a:3d:c7:aa:8d:c5:0e: 0c:2f:c0:eb:17:2c:2c:3e:ad:1c:99:2e:c8:0c:6b: bd:55:9a:ac:b8:4b:2f:f2:86:e5:b7:10:7e:f0:f1: 9c:9c:13:20:72:2b:a7:57:46:8c:52:b8:b5:8c:ff: 32:1f:cf:d0:d0:47:fb:bb:5d:53:f7:70:0d:57:69: a1:ce:03:a7:91:3d:7d:9a:86:2b:e6:92:3c:7c:a0: a2:37:70:a2:33:9e:d4:5f:5c:36:c8:c7:95:a7:a1: 81:c6:50:87:fb:04:41:01:1c:16:bb:13:8d:8e:41: 2d:42:a9:7a:b5:ed:48:6f:bf:1f:8b:76:fb:7e:ae: 3f:19:cf:95:a8:56:45:83:4c:62:15:6f:9a:2a:2c: f2:81:49:8a:f0:12:9e:d7:8d:0b:23:6d:3a:56:4b: db:8d:1b:c3:b1:23:f0:04:1e:c9:f4:32:84:9a:be: 41:9a:4b:27:3e:3c:df:85:d5:3b:94:0b:57:09:e8: 81:7f:63:2d:dd:4e:86:75:90:b9:0a:f8:98:15:9d: 7d:5a:22:22:73:ce:f8:90:57:90:5d:e4:cb:c3:0a: 02:97:70:96:01:86:2d:4e:e5:2e:19:fe:c7:c6:ea: 07:a3:28:84:8a:bf:d5:e1:81:5c:f9:af:58:a3:7f: a0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:6B:D6:C0:A9:71:94:8C:16:E7:46:EC:34:44:F5:BE:2A:30:D8:4E X509v3 Authority Key Identifier: keyid:D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:5a:f6:bc:2d:99:63:24:70:79:ea:5c:b7:e1:e5:4b:f4:f5: 67:32:07:3b:59:bb:bb:48:63:d3:5b:f3:85:6e:fa:53:a4:55: d7:35:75:88:5b:df:08:48:17:76:2b:e8:f8:f0:b6:34:4e:02: cd:f5:e1:20:f7:f8:c2:c2:8e:5b:26:b9:9c:e9:f2:3b:0a:77: 5c:5d:32:d5:4c:83:83:44:7d:ad:3d:c6:71:a8:c9:d6:2a:46: 31:dd:e4:10:cb:8b:93:8b:88:e2:80:79:4d:bc:26:67:65:90: a3:f2:5a:ae:65:73:9f:5c:44:fa:56:fc:1a:94:39:86:34:f2: 64:b6:72:b0:8b:5f:82:f2:3e:e3:0b:1d:19:55:8f:54:9b:d2: e7:5a:89:83:75:a2:c4:a0:8a:b7:44:9a:84:ab:5b:94:54:5d: f0:56:0a:1f:80:c1:0a:70:f6:72:fd:6d:35:15:c8:be:b6:3b: 9c:63:bd:8f:a0:9c:a3:9b:1b:9f:f1:b7:08:bc:84:ff:6d:3e: 58:f1:fa:14:d2:28:dc:2b:0a:9a:ae:ca:3d:0e:d1:dd:b6:e7: 23:10:9a:3d:24:af:ea:b9:10:62:d0:3e:60:e7:bc:fc:70:0b: 4f:d9:9c:74:8a:5c:01:4f:41:93:3d:2e:82:13:de:7a:6c:42: 77:ae:36:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRj8/q4nTzrEuseF5aikLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwMjAxM2YzNTQ4YmUzZGNiM2RjYTE4ZDRmYzkzNzg5ZjQ0 ZjAzYmYwHhcNMjYwMjA5MTIwMDI1WhcNMjYwMjEwMTIwMDI1WjAzMTEwLwYDVQQD EyhkMTZiZDZjMGE5NzE5NDhjMTZlNzQ2ZWMzNDQ0ZjViZTJhMzBkODRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0e1eOAG9Yo9x6qNxQ4ML8DrFyws Pq0cmS7IDGu9VZqsuEsv8obltxB+8PGcnBMgciunV0aMUri1jP8yH8/Q0Ef7u11T 93ANV2mhzgOnkT19moYr5pI8fKCiN3CiM57UX1w2yMeVp6GBxlCH+wRBARwWuxON jkEtQql6te1Ib78fi3b7fq4/Gc+VqFZFg0xiFW+aKizygUmK8BKe140LI206Vkvb jRvDsSPwBB7J9DKEmr5BmksnPjzfhdU7lAtXCeiBf2Mt3U6GdZC5CviYFZ19WiIi c874kFeQXeTLwwoCl3CWAYYtTuUuGf7HxuoHoyiEir/V4YFc+a9Yo3+g6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNFr1sCpcZSMFudG7DRE9b4qMNhOMB8GA1UdIwQY MBaAFNAgE/NUi+Pcs9yhjU/JN4n0TwO/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMENBVDgxU0w0OXl6M0tHTlQ4azNpZlJQQTc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZDQzMWEtOTcwNi00ZjM4LTgwMGIt MmE2ODVmNzhiMjlkLzEvMENBVDgxU0w0OXl6M0tHTlQ4azNpZlJQQTc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9iZDQzMWEtOTcwNi00ZjM4LTgwMGItMmE2ODVmNzhiMjlk LzEvMENBVDgxU0w0OXl6M0tHTlQ4azNpZlJQQTc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFFr2vC2Z YyRweepct+HlS/T1ZzIHO1m7u0hj01vzhW76U6RV1zV1iFvfCEgXdivo+PC2NE4C zfXhIPf4wsKOWya5nOnyOwp3XF0y1UyDg0R9rT3GcajJ1ipGMd3kEMuLk4uI4oB5 TbwmZ2WQo/JarmVzn1xE+lb8GpQ5hjTyZLZysItfgvI+4wsdGVWPVJvS51qJg3Wi xKCKt0SahKtblFRd8FYKH4DBCnD2cv1tNRXIvrY7nGO9j6Cco5sbn/G3CLyE/20+ WPH6FNIo3CsKmq7KPQ7R3bbnIxCaPSSv6rkQYtA+YOe8/HALT9mcdIpcAU9Bkz0u ghPeemxCd642Mw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:12 2026 by rpki-client