This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json) Hash identifier: HcLYKX23ON/jIJCwci7fGt1XJQd4w6fOOmk1NgB1S6A= Subject key identifier: 31:C6:7C:43:CF:9C:0B:E6:86:36:46:A2:3D:77:35:48:75:C3:BC:95 Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98 Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998 Certificate serial: 019C41D8E20A6270D9DABB11E5E4C72E2EE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft Manifest number: 1381 Signing time: Mon 09 Feb 2026 10:00:58 +0000 Manifest this update: Mon 09 Feb 2026 10:00:58 +0000 Manifest next update: Tue 10 Feb 2026 10:00:58 +0000 Files and hashes: 1: cTa4k-r506Jm5F65mksggvloVDA.roa (hash: VUs6amyf7QVphS7d5atiRKNg/52+c1LBxHY+3So5haI=) 2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: CbuwbbHoKKHaeQbac/PYamGOJq/vR8bUyf+O31gFq3Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:e2:0a:62:70:d9:da:bb:11:e5:e4:c7:2e:2e:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998 Validity Not Before: Feb 9 10:00:58 2026 GMT Not After : Feb 10 10:00:58 2026 GMT Subject: CN=31c67c43cf9c0be6863646a23d77354875c3bc95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d7:c9:43:96:13:23:1f:65:c1:f4:eb:e0:55: 68:d7:ba:2e:68:23:1c:9a:26:d8:ac:ba:d6:92:1e: 0a:7c:91:3f:9c:51:ac:72:36:c9:d5:6b:46:11:c2: c8:ca:6e:33:48:f7:3f:7f:f0:0b:a2:5c:c8:1e:9f: ad:a1:43:ee:27:de:c1:17:fe:30:6c:62:79:55:86: 05:96:a3:3c:98:11:f4:59:52:88:65:16:f8:6a:a2: 41:3a:c3:a9:da:c0:96:a2:7c:2d:76:0e:40:ec:70: 85:10:b5:57:18:52:a6:a7:ac:a2:41:17:b1:7d:0e: 1a:11:19:a8:cb:05:ef:50:cb:0a:ed:12:39:06:55: a3:e8:9d:97:e5:43:23:89:4a:62:d9:82:a3:dc:e4: 08:36:d7:e9:5a:0b:87:1c:47:aa:13:53:80:99:72: 2a:51:84:bd:18:b7:24:9f:24:4c:07:4c:85:51:dd: 9f:ae:83:33:c1:dc:09:60:10:e0:6d:dc:ed:a9:60: 32:f8:c2:74:96:47:cb:f7:05:87:38:29:84:aa:0e: 4e:7c:2f:ea:f3:80:9e:a2:b2:7d:bf:27:71:e2:93: be:59:97:b2:e0:9c:6b:89:ee:14:e9:22:01:8a:b0: 96:ab:76:b2:cb:74:6e:db:7e:99:57:ef:eb:a5:c6: 34:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C6:7C:43:CF:9C:0B:E6:86:36:46:A2:3D:77:35:48:75:C3:BC:95 X509v3 Authority Key Identifier: keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:55:ba:b7:13:97:b7:cf:a4:8f:91:63:bf:3c:b6:9d:e9:dc: 1c:9e:50:c4:5f:12:dc:7c:fb:83:bc:b7:de:76:a1:9e:3c:9b: 11:77:dc:2c:20:76:bc:2d:3a:6a:17:4c:21:95:2f:80:d5:5c: 9b:55:82:52:25:35:03:b4:36:25:74:f8:ee:a9:a0:07:7d:c3: 33:26:90:7c:63:65:e7:1b:0e:1c:a5:23:4e:c3:d6:21:2d:21: 4e:d1:f8:c7:6a:f6:81:e6:62:9b:c6:f3:08:d1:db:04:b0:51: bc:89:f2:b2:85:89:05:67:2c:d6:83:da:ab:87:ae:bc:8c:89: f0:a7:51:47:e9:18:df:1c:ef:81:2e:2d:9a:f7:a8:0d:b5:c5: 7f:53:ba:0d:d5:10:83:3c:4b:e9:5c:49:bb:30:04:bd:71:10: 9f:32:b8:b0:be:42:d2:7c:24:ec:e9:d4:1f:73:00:66:27:0d: 3b:26:3a:a6:26:d8:81:3f:62:59:d3:63:5e:ef:0f:19:c3:59: 44:4c:58:99:70:74:12:5c:e9:2c:36:ac:51:79:87:60:9d:55: d8:eb:4d:4d:54:9b:c0:b2:77:ba:16:a8:f8:3e:13:cb:a5:50: f3:f6:38:e3:f0:1d:6c:72:db:12:86:d8:92:ba:b8:76:e3:85: de:98:f8:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2OIKYnDZ2rsR5eTHLi7iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwMWE1OWQwYTYxYWE2MTc0NDM4OTg4Y2M4MzU5OGRiZmVh NWE5OTgwHhcNMjYwMjA5MTAwMDU4WhcNMjYwMjEwMTAwMDU4WjAzMTEwLwYDVQQD EygzMWM2N2M0M2NmOWMwYmU2ODYzNjQ2YTIzZDc3MzU0ODc1YzNiYzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9fJQ5YTIx9lwfTr4FVo17ouaCMc mibYrLrWkh4KfJE/nFGscjbJ1WtGEcLIym4zSPc/f/ALolzIHp+toUPuJ97BF/4w bGJ5VYYFlqM8mBH0WVKIZRb4aqJBOsOp2sCWonwtdg5A7HCFELVXGFKmp6yiQRex fQ4aERmoywXvUMsK7RI5BlWj6J2X5UMjiUpi2YKj3OQINtfpWguHHEeqE1OAmXIq UYS9GLcknyRMB0yFUd2froMzwdwJYBDgbdztqWAy+MJ0lkfL9wWHOCmEqg5OfC/q 84CeorJ9vydx4pO+WZey4Jxrie4U6SIBirCWq3ayy3Ru236ZV+/rpcY0EwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDHGfEPPnAvmhjZGoj13NUh1w7yVMB8GA1UdIwQY MBaAFLAaWdCmGqYXRDiYjMg1mNv+pamYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0JwWjBLWWFwaGRFT0ppTXlEV1kyXzZscVpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9hMGU4ZTMtYTRlNy00YTllLWI3OTgt MDRlMWZhODA4NDI2LzEvc0JwWjBLWWFwaGRFT0ppTXlEV1kyXzZscVpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy9hMGU4ZTMtYTRlNy00YTllLWI3OTgtMDRlMWZhODA4NDI2 LzEvc0JwWjBLWWFwaGRFT0ppTXlEV1kyXzZscVpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAilW6txOX t8+kj5Fjvzy2nencHJ5QxF8S3Hz7g7y33nahnjybEXfcLCB2vC06ahdMIZUvgNVc m1WCUiU1A7Q2JXT47qmgB33DMyaQfGNl5xsOHKUjTsPWIS0hTtH4x2r2geZim8bz CNHbBLBRvInysoWJBWcs1oPaq4euvIyJ8KdRR+kY3xzvgS4tmveoDbXFf1O6DdUQ gzxL6VxJuzAEvXEQnzK4sL5C0nwk7OnUH3MAZicNOyY6pibYgT9iWdNjXu8PGcNZ RExYmXB0ElzpLDasUXmHYJ1V2OtNTVSbwLJ3uhao+D4Ty6VQ8/Y44/AdbHLbEobY krq4duOF3pj47Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:42 2026 by rpki-client