This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.mft File: veOk-yaB2yi1w_Xx1GotNZlg-qQ.mft (raw, json) Hash identifier: iAr5m2k8dwz3M4dT7aqnoYWlwE35kmfMCVW2T2jxkBg= Subject key identifier: 58:00:F1:EF:D8:F6:98:7C:54:47:F5:C2:7D:E9:77:E7:EA:4A:1D:74 Authority key identifier: BD:E3:A4:FB:26:81:DB:28:B5:C3:F5:F1:D4:6A:2D:35:99:60:FA:A4 Certificate issuer: /CN=bde3a4fb2681db28b5c3f5f1d46a2d359960faa4 Certificate serial: 019C41A1AC16F95F799167EF8EB027FAF488 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/veOk-yaB2yi1w_Xx1GotNZlg-qQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.mft Manifest number: 1460 Signing time: Mon 09 Feb 2026 09:00:40 +0000 Manifest this update: Mon 09 Feb 2026 09:00:40 +0000 Manifest next update: Tue 10 Feb 2026 09:00:40 +0000 Files and hashes: 1: veOk-yaB2yi1w_Xx1GotNZlg-qQ.crl (hash: juW2Zxh/IiVxkb+Qcsf/nz+uWtfRMSw1V41Z0HMHv0Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.mft rsync://rpki.ripe.net/repository/DEFAULT/veOk-yaB2yi1w_Xx1GotNZlg-qQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:ac:16:f9:5f:79:91:67:ef:8e:b0:27:fa:f4:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bde3a4fb2681db28b5c3f5f1d46a2d359960faa4 Validity Not Before: Feb 9 09:00:40 2026 GMT Not After : Feb 10 09:00:40 2026 GMT Subject: CN=5800f1efd8f6987c5447f5c27de977e7ea4a1d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:73:90:a5:82:98:50:0c:ee:2f:2d:32:02:05: 21:50:2c:61:2c:14:3f:a1:d1:d8:4b:3b:6a:1e:64: ec:34:76:2d:25:36:3c:de:0d:e1:fd:c8:0a:94:bd: ab:a1:87:d8:42:8f:e0:db:9a:df:90:b9:15:d1:92: f2:dd:8c:11:21:04:6b:9d:d7:38:b5:69:d8:8f:1f: b9:5c:6a:58:e8:49:d3:2d:d4:d6:39:16:9c:9b:b0: 1f:69:a2:e5:6f:50:15:62:08:62:a6:63:2f:e0:57: fb:ef:34:e8:68:05:37:3d:d7:a9:da:74:9d:a1:ff: ec:d9:cd:9f:2e:66:0d:b4:1e:e6:cd:81:63:4d:ff: 35:2a:6a:1f:74:14:1f:45:f2:91:84:74:50:30:00: 9e:40:59:5d:d4:c6:b2:64:29:98:b2:7d:9b:c4:78: 9f:2c:cd:79:a0:17:f6:ea:88:60:ea:c4:f4:f7:a1: 0c:37:96:30:91:ab:da:7a:e5:fe:7e:34:07:34:3d: 8e:41:a6:be:75:94:f8:b3:ab:e6:9b:ce:5d:07:a1: 44:0c:3a:cd:33:16:6a:4d:28:a8:1b:d5:3c:89:6a: dc:d0:d3:5a:1b:69:06:5c:4a:7e:b5:99:3c:c2:be: 02:5e:ee:91:73:19:e5:b8:6c:ad:52:53:f2:b1:5f: 3e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:00:F1:EF:D8:F6:98:7C:54:47:F5:C2:7D:E9:77:E7:EA:4A:1D:74 X509v3 Authority Key Identifier: keyid:BD:E3:A4:FB:26:81:DB:28:B5:C3:F5:F1:D4:6A:2D:35:99:60:FA:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/veOk-yaB2yi1w_Xx1GotNZlg-qQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:c9:60:9b:4d:1d:e0:fb:78:0a:16:02:4f:4e:7a:1d:dd:8e: fd:7b:dc:5f:0e:1f:57:5d:be:0e:7f:a2:76:52:63:36:18:8f: 3e:3c:2e:1c:1a:1b:c2:2e:e2:88:22:d2:15:b7:2f:8b:ae:c4: 3f:be:c2:de:b6:25:ca:aa:b7:41:fc:20:9a:ca:36:22:1b:bf: f1:d6:68:c2:04:db:05:ee:c2:0e:38:43:d9:9a:b2:89:2b:26: 87:90:81:52:4c:9f:04:70:b0:35:ff:18:3d:13:d6:e6:5d:13: 93:77:b0:37:e0:6c:e9:1e:90:b7:ce:76:07:09:2a:88:33:c4: 24:a6:57:c8:34:d2:54:75:b4:92:a5:6c:da:9d:47:d2:80:28: 73:59:13:62:69:3b:54:fb:f1:7b:38:27:82:00:47:39:84:c8: 04:dd:3a:b3:d9:57:2f:50:49:f9:b3:39:c2:68:9f:b8:c4:3c: 89:54:c3:4d:87:80:cf:3e:b2:40:fc:de:5b:a8:f1:bc:31:cc: 0f:13:22:03:90:d1:2a:27:19:76:62:98:45:b9:1f:fc:32:cc: e3:10:12:6a:71:cd:ba:08:a3:41:31:15:37:d0:3e:64:8c:a8: 9e:06:da:6a:06:0b:2c:b2:31:51:30:54:94:3e:ae:57:7c:a4: d7:13:bc:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoawW+V95kWfvjrAn+vSIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZTNhNGZiMjY4MWRiMjhiNWMzZjVmMWQ0NmEyZDM1OTk2 MGZhYTQwHhcNMjYwMjA5MDkwMDQwWhcNMjYwMjEwMDkwMDQwWjAzMTEwLwYDVQQD Eyg1ODAwZjFlZmQ4ZjY5ODdjNTQ0N2Y1YzI3ZGU5NzdlN2VhNGExZDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXOQpYKYUAzuLy0yAgUhUCxhLBQ/ odHYSztqHmTsNHYtJTY83g3h/cgKlL2roYfYQo/g25rfkLkV0ZLy3YwRIQRrndc4 tWnYjx+5XGpY6EnTLdTWORacm7AfaaLlb1AVYghipmMv4Ff77zToaAU3Pdep2nSd of/s2c2fLmYNtB7mzYFjTf81KmofdBQfRfKRhHRQMACeQFld1MayZCmYsn2bxHif LM15oBf26ohg6sT096EMN5YwkavaeuX+fjQHND2OQaa+dZT4s6vmm85dB6FEDDrN MxZqTSioG9U8iWrc0NNaG2kGXEp+tZk8wr4CXu6RcxnluGytUlPysV8+mQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFgA8e/Y9ph8VEf1wn3pd+fqSh10MB8GA1UdIwQY MBaAFL3jpPsmgdsotcP18dRqLTWZYPqkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmVPay15YUIyeWkxd19YeDFHb3ROWmxnLXFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi8yMWRlNjctNDk3NS00N2E4LTg0NmMt ODA4ZmVhYWY5ODdkLzEvdmVPay15YUIyeWkxd19YeDFHb3ROWmxnLXFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi8yMWRlNjctNDk3NS00N2E4LTg0NmMtODA4ZmVhYWY5ODdk LzEvdmVPay15YUIyeWkxd19YeDFHb3ROWmxnLXFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlclgm00d 4Pt4ChYCT056Hd2O/XvcXw4fV12+Dn+idlJjNhiPPjwuHBobwi7iiCLSFbcvi67E P77C3rYlyqq3Qfwgmso2Ihu/8dZowgTbBe7CDjhD2ZqyiSsmh5CBUkyfBHCwNf8Y PRPW5l0Tk3ewN+Bs6R6Qt852BwkqiDPEJKZXyDTSVHW0kqVs2p1H0oAoc1kTYmk7 VPvxezgnggBHOYTIBN06s9lXL1BJ+bM5wmifuMQ8iVTDTYeAzz6yQPzeW6jxvDHM DxMiA5DRKicZdmKYRbkf/DLM4xASanHNugijQTEVN9A+ZIyongbaagYLLLIxUTBU lD6uV3yk1xO81A== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:08 2026 by rpki-client