This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft File: cegLwpz58rQKwwJOD3I126LVelQ.mft (raw, json) Hash identifier: 4VdKhoIFIrteHDdsf0qMoIVTMydMaS7aZbiWXHoB6X8= Subject key identifier: B1:6B:0C:7D:BE:A6:86:F8:F0:3B:CF:80:D0:2E:2C:06:67:7A:C8:81 Authority key identifier: 71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54 Certificate issuer: /CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54 Certificate serial: 019C43C6E43C53F816E78E29A9FD84A83806 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft Manifest number: 075F Signing time: Mon 09 Feb 2026 19:00:33 +0000 Manifest this update: Mon 09 Feb 2026 19:00:33 +0000 Manifest next update: Tue 10 Feb 2026 19:00:33 +0000 Files and hashes: 1: cegLwpz58rQKwwJOD3I126LVelQ.crl (hash: SJC1lHCQi/LimGuvy7/R78YYSC0GgwQe4MuXzsiL0sI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:e4:3c:53:f8:16:e7:8e:29:a9:fd:84:a8:38:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71e80bc29cf9f2b40ac3024e0f7235dba2d57a54 Validity Not Before: Feb 9 19:00:33 2026 GMT Not After : Feb 10 19:00:33 2026 GMT Subject: CN=b16b0c7dbea686f8f03bcf80d02e2c06677ac881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9b:34:c8:4e:6d:73:7e:4b:e0:a0:ef:d2:45: 6b:ad:f7:f5:20:95:35:1e:7a:eb:f7:f0:ed:1f:b7: b3:ba:4f:c1:57:e9:6b:29:e1:7d:26:4d:90:b6:f6: 83:29:76:ad:a9:85:e1:9a:3d:91:18:0f:05:5a:d7: 63:aa:20:5c:cb:b8:7b:bc:35:93:72:9c:5f:8b:a2: 79:df:c3:b3:a7:43:8a:a6:d4:37:5b:49:d6:0c:19: 29:04:18:19:fa:ff:c3:02:1f:46:44:29:3c:93:b3: 8a:27:24:0b:e6:46:64:4e:4e:45:33:bd:37:fc:16: 3f:0d:72:43:f5:16:86:65:6c:44:cb:3f:2d:e8:23: 3c:eb:1e:8e:8c:45:de:c7:f0:41:7e:f5:71:ff:26: 43:c0:a1:26:a9:d2:d4:05:9d:da:7a:ee:aa:cd:c2: 50:6a:90:45:28:bb:20:5d:a0:70:59:da:ca:7b:bc: 5b:f8:30:e0:9e:9b:01:fb:8a:72:5f:ca:0c:5f:f1: 66:39:91:01:f3:9a:21:39:d2:13:38:cc:be:46:09: 35:24:90:45:d2:5a:e4:ea:c7:62:a3:d2:80:cd:0e: 1b:1d:e5:f5:2b:97:23:8c:83:49:6b:20:f8:79:5e: 55:c1:c4:28:8e:57:79:36:26:8c:9d:33:00:69:c5: fa:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6B:0C:7D:BE:A6:86:F8:F0:3B:CF:80:D0:2E:2C:06:67:7A:C8:81 X509v3 Authority Key Identifier: keyid:71:E8:0B:C2:9C:F9:F2:B4:0A:C3:02:4E:0F:72:35:DB:A2:D5:7A:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cegLwpz58rQKwwJOD3I126LVelQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f50353-f4e8-4f60-ae16-7247304fb15f/1/cegLwpz58rQKwwJOD3I126LVelQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:c1:d9:7d:f3:a1:84:30:7e:bf:48:02:13:b2:d4:ae:5c:54: 90:c9:18:1d:eb:c3:10:97:74:d2:c3:ad:94:b4:ee:6a:02:17: d7:d5:10:8f:24:10:84:be:cb:00:94:36:05:26:dd:b3:c8:dc: 3d:a8:f4:b4:cd:6c:2a:cb:63:05:df:8e:91:5a:8d:a1:9f:fb: 80:1e:3a:f7:46:e5:2a:20:10:05:22:30:4c:d5:80:01:70:12: 4f:57:e3:9d:b8:bf:99:a6:5d:f1:8c:ca:d8:8a:12:fc:3d:b0: 65:a0:b6:c9:48:09:79:b6:9a:41:81:b7:ee:c1:a5:3a:77:32: 09:72:7d:a1:71:74:e1:e3:05:99:e0:a1:d8:37:34:88:dd:77: 1d:dd:c5:ae:ab:c7:bf:47:81:76:a4:20:ca:4f:d7:c5:cc:9d: d4:21:a5:6c:92:4c:89:d0:76:09:81:da:03:ac:2f:ae:3e:18: 29:45:f4:69:ea:82:27:eb:d4:55:5a:be:67:d2:df:ca:30:48: f6:68:12:67:e8:41:c6:c4:8b:d7:bb:b1:7b:c7:11:2e:aa:f0: b8:72:c4:f6:24:d4:0b:90:a0:35:51:c0:63:67:c9:79:54:64: 95:18:b8:6c:66:02:ab:32:82:d8:88:fd:3c:a7:7c:2b:81:58: 84:51:60:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxuQ8U/gW544pqf2EqDgGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxZTgwYmMyOWNmOWYyYjQwYWMzMDI0ZTBmNzIzNWRiYTJk NTdhNTQwHhcNMjYwMjA5MTkwMDMzWhcNMjYwMjEwMTkwMDMzWjAzMTEwLwYDVQQD EyhiMTZiMGM3ZGJlYTY4NmY4ZjAzYmNmODBkMDJlMmMwNjY3N2FjODgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtps0yE5tc35L4KDv0kVrrff1IJU1 Hnrr9/DtH7ezuk/BV+lrKeF9Jk2QtvaDKXatqYXhmj2RGA8FWtdjqiBcy7h7vDWT cpxfi6J538Ozp0OKptQ3W0nWDBkpBBgZ+v/DAh9GRCk8k7OKJyQL5kZkTk5FM703 /BY/DXJD9RaGZWxEyz8t6CM86x6OjEXex/BBfvVx/yZDwKEmqdLUBZ3aeu6qzcJQ apBFKLsgXaBwWdrKe7xb+DDgnpsB+4pyX8oMX/FmOZEB85ohOdITOMy+Rgk1JJBF 0lrk6sdio9KAzQ4bHeX1K5cjjINJayD4eV5VwcQojld5NiaMnTMAacX6GQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLFrDH2+pob48DvPgNAuLAZnesiBMB8GA1UdIwQY MBaAFHHoC8Kc+fK0CsMCTg9yNdui1XpUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mNTAzNTMtZjRlOC00ZjYwLWFlMTYt NzI0NzMwNGZiMTVmLzEvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mNTAzNTMtZjRlOC00ZjYwLWFlMTYtNzI0NzMwNGZiMTVm LzEvY2VnTHdwejU4clFLd3dKT0QzSTEyNkxWZWxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAscHZffOh hDB+v0gCE7LUrlxUkMkYHevDEJd00sOtlLTuagIX19UQjyQQhL7LAJQ2BSbds8jc Paj0tM1sKstjBd+OkVqNoZ/7gB4690blKiAQBSIwTNWAAXAST1fjnbi/maZd8YzK 2IoS/D2wZaC2yUgJebaaQYG37sGlOncyCXJ9oXF04eMFmeCh2Dc0iN13Hd3FrqvH v0eBdqQgyk/Xxcyd1CGlbJJMidB2CYHaA6wvrj4YKUX0aeqCJ+vUVVq+Z9LfyjBI 9mgSZ+hBxsSL17uxe8cRLqrwuHLE9iTUC5CgNVHAY2fJeVRklRi4bGYCqzKC2Ij9 PKd8K4FYhFFgYw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:12 2026 by rpki-client