This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft File: 0627YSN4H_DjVBNEaseTHP9KSQ0.mft (raw, json) Hash identifier: noaRxTil+kax/Sg62syKgZ/b+/bRA9wAgSwSD5c/STM= Subject key identifier: C8:05:A2:23:34:D3:A1:BE:60:9E:BE:55:E3:F8:9B:F5:E5:78:E5:E3 Authority key identifier: D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D Certificate issuer: /CN=d3adbb6123781ff0e35413446ac7931cff4a490d Certificate serial: 019C427DDE2E8ACB9D867BD4BF0E849023EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 13:01:10 +0000 Manifest this update: Mon 09 Feb 2026 13:01:10 +0000 Manifest next update: Tue 10 Feb 2026 13:01:10 +0000 Files and hashes: 1: 0627YSN4H_DjVBNEaseTHP9KSQ0.crl (hash: tWpeGImmt0Rr8Yr03eGandSoZU2woouqt8nycxjJ9Po=) 2: uVyWlFLKciqrsAXXjZQjx39QcNU.roa (hash: jEDtg9ux39nelJUaz7u7+ZJxoa/PnUqwfRMuyqZC6j0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:de:2e:8a:cb:9d:86:7b:d4:bf:0e:84:90:23:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3adbb6123781ff0e35413446ac7931cff4a490d Validity Not Before: Feb 9 13:01:10 2026 GMT Not After : Feb 10 13:01:10 2026 GMT Subject: CN=c805a22334d3a1be609ebe55e3f89bf5e578e5e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:86:ce:4a:2e:84:8c:8e:f0:17:f1:6a:55:c4: 91:11:b8:b3:92:13:78:b0:4d:3c:57:30:39:ca:f4: d0:ec:57:80:92:ce:6a:74:87:d1:9d:42:81:cb:fc: 59:c5:1e:11:17:21:cb:4d:96:4c:d4:86:94:2c:98: 40:ec:88:8d:f3:5b:1b:d6:e0:72:49:71:f1:d4:24: 0e:4d:e5:6d:ad:67:d2:84:a4:e4:c7:c8:21:a3:39: 47:99:79:c2:81:dc:61:2f:81:61:df:72:ef:67:46: 0b:f0:1a:4e:4d:86:5f:f0:4b:47:8b:fd:a8:5f:c9: a5:2e:fe:98:f0:f0:20:de:44:4d:1d:f9:a1:06:24: 2d:88:13:d1:52:98:f9:c1:d6:bb:60:e7:9b:2a:d1: ae:bb:ea:27:6b:2d:ed:3c:99:56:3a:b4:fa:30:d8: 00:a9:7f:b0:ca:ca:a0:f0:cc:47:83:75:95:b5:b1: ee:28:ff:ec:be:8b:4f:2f:e0:97:7a:15:c7:cf:21: aa:43:93:87:7d:b7:3d:c7:5e:fe:21:39:65:5a:a1: d3:92:f4:c5:cc:19:6f:dc:16:e8:6a:ab:b3:88:e6: d3:31:d1:23:53:70:bb:d0:f5:c6:38:55:75:31:47: 87:c2:83:b9:68:0e:25:47:91:11:08:e5:4c:5b:b7: 86:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:05:A2:23:34:D3:A1:BE:60:9E:BE:55:E3:F8:9B:F5:E5:78:E5:E3 X509v3 Authority Key Identifier: keyid:D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:ce:2a:03:37:01:fa:0d:ba:ad:69:ec:41:ce:31:b0:54:1c: 32:10:96:35:03:f1:1f:53:eb:bf:5b:8d:04:5f:0d:f8:93:9a: 00:2c:82:2e:b7:93:42:8d:8c:b1:65:36:48:e0:1b:1d:03:b4: bc:fa:3f:7f:b2:09:ac:31:39:6c:6d:9e:26:85:0c:b8:2c:66: ca:3c:0a:e9:d2:87:8f:63:29:55:ac:f5:17:97:6a:2a:c0:98: 0b:2d:dc:78:7f:ec:d5:3d:40:34:be:c2:17:43:28:21:55:e0: ec:22:cd:7d:54:8e:94:df:15:5f:72:76:07:d7:c3:d3:d8:44: 13:f0:f0:fc:df:03:a3:5d:d0:f5:8f:bb:eb:90:ee:11:86:49: ca:7a:75:2c:53:e9:d2:aa:65:05:cc:eb:f0:0d:aa:0f:96:64: 5a:1f:0f:c5:db:49:52:92:03:14:ec:47:05:19:bc:5e:1b:ef: d2:69:af:1c:ef:8b:c4:8f:98:06:d4:32:d5:62:6e:d5:ae:f3: e8:61:a3:e9:d5:36:5e:65:f0:0f:35:c5:86:24:db:7b:80:5c: ef:8f:25:4d:91:b3:c9:83:d2:5e:75:18:1b:fd:76:a4:ea:6a: 6b:4b:55:c3:62:05:74:a2:49:8a:77:d4:66:60:97:a6:7e:ee: 64:56:67:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfd4uisudhnvUvw6EkCPqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzYWRiYjYxMjM3ODFmZjBlMzU0MTM0NDZhYzc5MzFjZmY0 YTQ5MGQwHhcNMjYwMjA5MTMwMTEwWhcNMjYwMjEwMTMwMTEwWjAzMTEwLwYDVQQD EyhjODA1YTIyMzM0ZDNhMWJlNjA5ZWJlNTVlM2Y4OWJmNWU1NzhlNWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIbOSi6EjI7wF/FqVcSREbizkhN4 sE08VzA5yvTQ7FeAks5qdIfRnUKBy/xZxR4RFyHLTZZM1IaULJhA7IiN81sb1uBy SXHx1CQOTeVtrWfShKTkx8ghozlHmXnCgdxhL4Fh33LvZ0YL8BpOTYZf8EtHi/2o X8mlLv6Y8PAg3kRNHfmhBiQtiBPRUpj5wda7YOebKtGuu+onay3tPJlWOrT6MNgA qX+wysqg8MxHg3WVtbHuKP/svotPL+CXehXHzyGqQ5OHfbc9x17+ITllWqHTkvTF zBlv3BboaquziObTMdEjU3C70PXGOFV1MUeHwoO5aA4lR5ERCOVMW7eGEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMgFoiM006G+YJ6+VeP4m/XleOXjMB8GA1UdIwQY MBaAFNOtu2EjeB/w41QTRGrHkxz/SkkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDYyN1lTTjRIX0RqVkJORWFzZVRIUDlLU1EwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS84YTNlZTktNGYzNy00NWJlLThhYWMt Nzk4YWI3NzNlYWZhLzEvMDYyN1lTTjRIX0RqVkJORWFzZVRIUDlLU1EwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS84YTNlZTktNGYzNy00NWJlLThhYWMtNzk4YWI3NzNlYWZh LzEvMDYyN1lTTjRIX0RqVkJORWFzZVRIUDlLU1EwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu84qAzcB +g26rWnsQc4xsFQcMhCWNQPxH1Prv1uNBF8N+JOaACyCLreTQo2MsWU2SOAbHQO0 vPo/f7IJrDE5bG2eJoUMuCxmyjwK6dKHj2MpVaz1F5dqKsCYCy3ceH/s1T1ANL7C F0MoIVXg7CLNfVSOlN8VX3J2B9fD09hEE/Dw/N8Do13Q9Y+765DuEYZJynp1LFPp 0qplBczr8A2qD5ZkWh8PxdtJUpIDFOxHBRm8Xhvv0mmvHO+LxI+YBtQy1WJu1a7z 6GGj6dU2XmXwDzXFhiTbe4Bc748lTZGzyYPSXnUYG/12pOpqa0tVw2IFdKJJinfU ZmCXpn7uZFZntg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:36 2026 by rpki-client