This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft File: sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json) Hash identifier: K80SN/WzL2jQQ68GU31lkyvACPP96tao32inl7kwLrQ= Subject key identifier: 1E:54:FC:77:D5:CB:59:FE:BE:E8:9B:C3:EF:DE:4B:B8:1E:4B:A8:9E Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A Certificate issuer: /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a Certificate serial: 019C4322CF8B61BB8DDA5137BD52BC52CAB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 16:01:20 +0000 Manifest this update: Mon 09 Feb 2026 16:01:20 +0000 Manifest next update: Tue 10 Feb 2026 16:01:20 +0000 Files and hashes: 1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: r7F+5BcpmjMY9t/y1QXNxNJaAXaKbt0xY0hLrWfBYTM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:cf:8b:61:bb:8d:da:51:37:bd:52:bc:52:ca:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a Validity Not Before: Feb 9 16:01:20 2026 GMT Not After : Feb 10 16:01:20 2026 GMT Subject: CN=1e54fc77d5cb59febee89bc3efde4bb81e4ba89e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e1:a0:10:63:e6:08:23:82:60:d4:12:bd:5f: 91:ad:67:98:66:80:3a:a4:43:78:13:f8:24:17:86: b3:15:34:fc:30:3c:5a:a9:80:63:b5:6b:c4:40:09: 0d:bf:02:99:b8:42:ff:34:0c:26:84:6a:0b:ef:4f: a6:56:ce:78:58:ef:98:00:c8:20:78:e8:fa:ac:70: fd:53:8c:de:9f:a0:0f:9a:38:8b:d7:f8:7a:84:46: a0:6c:f2:8e:88:b1:4a:1e:eb:45:16:c0:99:d7:c2: 0f:e3:f5:50:af:b2:a3:0f:d6:e7:c6:01:4f:e7:10: 60:d1:13:e8:2a:2e:80:e6:27:da:f9:65:30:19:d9: 0d:95:6f:52:18:53:56:cb:31:b9:1c:58:d1:24:de: 65:2f:6e:c4:bc:99:64:94:c6:9c:45:9d:eb:86:34: c8:10:c5:39:7b:31:b1:f4:54:d5:23:a5:b2:ab:f0: 97:e9:dc:80:e3:17:c1:e8:bd:b6:0d:97:a1:57:51: 5f:33:82:7a:65:bc:ef:a9:b1:02:77:c1:9b:48:3c: a6:39:17:b3:8c:48:a7:2c:ce:0f:87:50:f3:21:77: f0:1c:83:af:94:e3:c2:ed:a1:fa:e1:e9:29:c3:2e: 5c:8a:9c:11:a4:c2:ec:6a:67:80:b1:56:5d:09:47: de:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:54:FC:77:D5:CB:59:FE:BE:E8:9B:C3:EF:DE:4B:B8:1E:4B:A8:9E X509v3 Authority Key Identifier: keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:56:dc:51:21:b5:cd:87:0e:db:86:fd:c7:92:d7:0e:13:7e: c3:68:e8:fd:17:b2:f8:8d:6d:26:14:31:de:9a:e6:2e:0c:70: ab:c2:5f:d4:bd:1f:55:a0:72:f2:9a:3e:4c:66:77:d0:24:3d: f4:5e:3b:32:ad:6c:57:cb:19:f4:30:96:e4:32:c2:7c:8b:49: 35:6a:91:26:3f:c4:eb:ca:62:0c:c2:76:8a:27:f0:bb:5b:b5: a6:53:64:ce:37:03:36:8f:16:17:66:82:b2:11:22:9c:94:12: d9:64:34:50:4a:b2:50:4f:54:29:b5:33:6d:3f:9f:c0:48:42: 85:b5:6e:15:51:15:f8:2a:47:45:66:f8:90:84:aa:5c:8f:6e: 24:b2:a4:91:ac:f7:d5:17:32:d1:ca:63:c9:c4:a4:3d:f7:e3: b8:5a:b7:79:52:63:4f:07:f8:df:6d:9f:4f:64:35:00:35:08: 88:84:2b:c7:fc:a5:77:b1:9a:e5:b6:a6:8e:f7:ca:be:18:38: b1:8d:3a:2c:a8:38:af:61:54:6c:bc:ed:bc:b4:ab:8a:ae:0e: 35:e7:46:56:f7:f3:21:79:1f:24:4f:59:06:58:0a:a3:ed:3b: 91:bc:f5:77:69:95:39:d4:64:20:30:66:ba:c7:95:8f:ef:0f: 97:b2:e2:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIs+LYbuN2lE3vVK8Usq4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwMjljNzI3YzZlMjJlZWQ4ZmJjZDFlOGI3NjkzOTU3OGQw ZGNhMGEwHhcNMjYwMjA5MTYwMTIwWhcNMjYwMjEwMTYwMTIwWjAzMTEwLwYDVQQD EygxZTU0ZmM3N2Q1Y2I1OWZlYmVlODliYzNlZmRlNGJiODFlNGJhODllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0OGgEGPmCCOCYNQSvV+RrWeYZoA6 pEN4E/gkF4azFTT8MDxaqYBjtWvEQAkNvwKZuEL/NAwmhGoL70+mVs54WO+YAMgg eOj6rHD9U4zen6APmjiL1/h6hEagbPKOiLFKHutFFsCZ18IP4/VQr7KjD9bnxgFP 5xBg0RPoKi6A5ifa+WUwGdkNlW9SGFNWyzG5HFjRJN5lL27EvJlklMacRZ3rhjTI EMU5ezGx9FTVI6Wyq/CX6dyA4xfB6L22DZehV1FfM4J6ZbzvqbECd8GbSDymORez jEinLM4Ph1DzIXfwHIOvlOPC7aH64ekpwy5cipwRpMLsameAsVZdCUfeXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB5U/HfVy1n+vuibw+/eS7geS6ieMB8GA1UdIwQY MBaAFLApxyfG4i7tj7zR6LdpOVeNDcoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC80NjE1YTEtOTA1Mi00MGM2LWExOGQt YTBkNzk5MjRkYjZjLzEvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC80NjE1YTEtOTA1Mi00MGM2LWExOGQtYTBkNzk5MjRkYjZj LzEvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKFbcUSG1 zYcO24b9x5LXDhN+w2jo/Rey+I1tJhQx3prmLgxwq8Jf1L0fVaBy8po+TGZ30CQ9 9F47Mq1sV8sZ9DCW5DLCfItJNWqRJj/E68piDMJ2iifwu1u1plNkzjcDNo8WF2aC shEinJQS2WQ0UEqyUE9UKbUzbT+fwEhChbVuFVEV+CpHRWb4kISqXI9uJLKkkaz3 1Rcy0cpjycSkPffjuFq3eVJjTwf4322fT2Q1ADUIiIQrx/yld7Ga5bamjvfKvhg4 sY06LKg4r2FUbLztvLSriq4ONedGVvfzIXkfJE9ZBlgKo+07kbz1d2mVOdRkIDBm useVj+8Pl7LiaA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:13 2026 by rpki-client