This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft File: EsShfSBma32NKx_-GKRoevkmIY8.mft (raw, json) Hash identifier: B6OWf9Gt7klSAzxptEvCdfdFiz1CPxjw3q6NKwv9Gps= Subject key identifier: 54:DA:C1:1A:C8:5C:1B:CE:1D:B2:EF:74:07:05:E3:CA:04:B9:DF:19 Authority key identifier: 12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F Certificate issuer: /CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f Certificate serial: 019C44A28FB3169984317660AD38684E9889 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 23:00:30 +0000 Manifest this update: Mon 09 Feb 2026 23:00:30 +0000 Manifest next update: Tue 10 Feb 2026 23:00:30 +0000 Files and hashes: 1: 2SnbqmjRC1mfOLhWvcx2MqiVnBQ.roa (hash: 9wsvsp03KFtWIrs+dsNBw/+Vtj/EYC0hFE8Wh2C75jw=) 2: EsShfSBma32NKx_-GKRoevkmIY8.crl (hash: KCZBb1WELjs9d8xsgQiseMq4jtzVsJO4l4uC+ZVr734=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:8f:b3:16:99:84:31:76:60:ad:38:68:4e:98:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f Validity Not Before: Feb 9 23:00:30 2026 GMT Not After : Feb 10 23:00:30 2026 GMT Subject: CN=54dac11ac85c1bce1db2ef740705e3ca04b9df19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:8b:c7:06:70:55:11:03:5c:d5:59:09:3b:e8: 89:1c:20:68:70:97:79:5d:0e:38:49:58:8f:51:14: bc:e6:7d:cb:64:a6:20:34:d0:9c:a8:2e:69:04:90: 58:8d:4b:ba:54:f6:a1:89:08:aa:aa:c5:f9:83:1a: 08:1b:e5:ee:a3:2d:c1:fb:15:b3:84:fc:3d:a1:c0: 47:49:da:cc:a0:f8:8a:f3:a9:af:3b:7f:19:6a:ef: f4:02:ab:3f:6f:63:c9:f2:84:04:6d:bf:c6:19:4b: bb:e7:bb:ce:cb:0a:45:96:12:6e:00:3f:bf:3b:a7: 72:82:1b:7d:cc:58:f7:c2:ca:d4:32:78:e0:ee:0d: 74:6a:2f:38:a2:d6:ca:74:36:95:14:e0:74:6e:44: d0:18:f0:76:94:0e:94:b2:93:d4:25:bd:94:28:0f: e0:5a:36:b0:06:62:1a:07:76:fb:05:c8:ab:39:00: d3:ef:14:5a:49:41:88:56:2e:0f:09:77:85:b3:34: f5:5d:78:56:a3:7f:8f:55:a2:a9:99:d1:5e:88:0d: 55:f4:1e:0c:78:d7:aa:4a:0e:e5:72:40:04:2b:a1: c8:84:40:e5:9d:5f:2c:2a:08:78:86:3c:f0:71:6a: 12:5b:4d:d7:63:27:63:35:ae:65:79:a8:e8:cb:d2: 19:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DA:C1:1A:C8:5C:1B:CE:1D:B2:EF:74:07:05:E3:CA:04:B9:DF:19 X509v3 Authority Key Identifier: keyid:12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:55:52:8d:c4:ad:99:2c:87:a8:92:7b:be:e3:36:a8:a8:0b: 4c:a6:60:ef:16:25:b0:97:b5:77:f9:03:c6:32:0b:ae:8c:c0: cc:5c:bb:2a:9d:23:60:7b:15:c4:65:e8:86:c0:1c:41:90:d9: 4f:dd:c9:c0:3b:6c:f0:fb:34:3f:41:a0:c6:db:10:a0:4c:05: 75:5c:c6:be:db:30:47:3e:bd:af:0d:14:5d:41:60:e8:71:94: c8:be:04:64:2f:fa:9c:c0:3f:c0:98:c5:9b:fd:c0:ef:fa:3f: 60:b3:db:a4:6c:99:c0:eb:e2:b7:ab:0f:ec:a8:4f:fa:51:af: 6b:04:79:0a:b7:38:d9:cd:70:98:c5:d5:8e:7b:8c:f3:51:56: cf:05:b9:b0:5b:d6:93:59:2c:5a:a1:88:6b:61:50:fc:04:7e: 41:e1:c7:59:2f:7b:e0:15:63:a2:4e:10:55:f9:be:4d:be:c6: e6:9a:5e:5f:1d:72:74:7e:76:67:4e:3b:2d:77:e8:18:03:da: 10:36:99:5b:68:6f:9f:b0:fe:eb:f2:19:80:d8:62:4e:48:1c: 3e:f3:94:65:32:9a:69:d5:34:d5:c1:fa:3c:16:45:39:30:a0: 22:35:c7:de:de:31:ed:52:1d:ab:1a:c3:fb:98:da:3b:1d:d2: 89:ae:18:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEoo+zFpmEMXZgrThoTpiJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyYzRhMTdkMjA2NjZiN2Q4ZDJiMWZmZTE4YTQ2ODdhZjky NjIxOGYwHhcNMjYwMjA5MjMwMDMwWhcNMjYwMjEwMjMwMDMwWjAzMTEwLwYDVQQD Eyg1NGRhYzExYWM4NWMxYmNlMWRiMmVmNzQwNzA1ZTNjYTA0YjlkZjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ovHBnBVEQNc1VkJO+iJHCBocJd5 XQ44SViPURS85n3LZKYgNNCcqC5pBJBYjUu6VPahiQiqqsX5gxoIG+Xuoy3B+xWz hPw9ocBHSdrMoPiK86mvO38Zau/0Aqs/b2PJ8oQEbb/GGUu757vOywpFlhJuAD+/ O6dyght9zFj3wsrUMnjg7g10ai84otbKdDaVFOB0bkTQGPB2lA6UspPUJb2UKA/g WjawBmIaB3b7BcirOQDT7xRaSUGIVi4PCXeFszT1XXhWo3+PVaKpmdFeiA1V9B4M eNeqSg7lckAEK6HIhEDlnV8sKgh4hjzwcWoSW03XYydjNa5leajoy9IZTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFTawRrIXBvOHbLvdAcF48oEud8ZMB8GA1UdIwQY MBaAFBLEoX0gZmt9jSsf/hikaHr5JiGPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRXNTaGZTQm1hMzJOS3hfLUdLUm9ldmttSVk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS84MzExODEtYjBiMy00YjJlLTg4ZGMt NDlhOTZhODIyMTRlLzEvRXNTaGZTQm1hMzJOS3hfLUdLUm9ldmttSVk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS84MzExODEtYjBiMy00YjJlLTg4ZGMtNDlhOTZhODIyMTRl LzEvRXNTaGZTQm1hMzJOS3hfLUdLUm9ldmttSVk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkFVSjcSt mSyHqJJ7vuM2qKgLTKZg7xYlsJe1d/kDxjILrozAzFy7Kp0jYHsVxGXohsAcQZDZ T93JwDts8Ps0P0GgxtsQoEwFdVzGvtswRz69rw0UXUFg6HGUyL4EZC/6nMA/wJjF m/3A7/o/YLPbpGyZwOvit6sP7KhP+lGvawR5Crc42c1wmMXVjnuM81FWzwW5sFvW k1ksWqGIa2FQ/AR+QeHHWS974BVjok4QVfm+Tb7G5ppeXx1ydH52Z047LXfoGAPa EDaZW2hvn7D+6/IZgNhiTkgcPvOUZTKaadU01cH6PBZFOTCgIjXH3t4x7VIdqxrD +5jaOx3Sia4YfA== -----END CERTIFICATE-----Generated at Tue Feb 10 02:51:26 2026 by rpki-client