This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft File: WFRbn70B0owOptCPW0cts0-tLqM.mft (raw, json) Hash identifier: rmt/6ezTvuTwC3VSdpO593o5wPXOGGZDlR+rwadd40k= Subject key identifier: 65:24:BA:31:0F:E7:0F:EA:3B:C5:18:B3:06:08:FC:6F:6E:B2:F0:93 Authority key identifier: 58:54:5B:9F:BD:01:D2:8C:0E:A6:D0:8F:5B:47:2D:B3:4F:AD:2E:A3 Certificate issuer: /CN=58545b9fbd01d28c0ea6d08f5b472db34fad2ea3 Certificate serial: 019C41A1DC51FC204BA2128F511891F609FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFRbn70B0owOptCPW0cts0-tLqM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft Manifest number: 17D5 Signing time: Mon 09 Feb 2026 09:00:52 +0000 Manifest this update: Mon 09 Feb 2026 09:00:52 +0000 Manifest next update: Tue 10 Feb 2026 09:00:52 +0000 Files and hashes: 1: WFRbn70B0owOptCPW0cts0-tLqM.crl (hash: 3MsQBQbyms2TXOf9Oew6I8HFYAd7K1bNm+Mu+YT1vO8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.crl rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft rsync://rpki.ripe.net/repository/DEFAULT/WFRbn70B0owOptCPW0cts0-tLqM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:dc:51:fc:20:4b:a2:12:8f:51:18:91:f6:09:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58545b9fbd01d28c0ea6d08f5b472db34fad2ea3 Validity Not Before: Feb 9 09:00:52 2026 GMT Not After : Feb 10 09:00:52 2026 GMT Subject: CN=6524ba310fe70fea3bc518b30608fc6f6eb2f093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3b:86:92:d2:e5:81:e5:ae:ec:e9:d3:7a:9d: 56:67:8f:d7:ca:d2:7c:d2:5d:1d:54:16:5c:b4:5a: 35:6b:9d:37:c5:33:65:c0:37:9c:c4:58:e1:48:8f: e5:b2:60:66:4a:d3:50:cd:d7:43:42:5d:3f:0b:17: 2f:ab:31:97:73:ee:36:34:53:bb:51:0e:09:10:aa: ab:06:27:f7:98:99:d2:32:91:00:19:ac:90:9c:8e: 57:81:e6:5e:d9:1e:16:a0:80:ac:c9:72:f6:2a:1b: d7:db:f0:a5:34:fe:1a:9b:e5:ff:e8:f2:0a:7c:05: d0:ed:d5:50:ce:b9:bf:55:84:bd:d9:8a:09:45:c2: 5b:e5:e7:2a:39:28:cb:92:35:c1:48:a3:59:54:ac: 17:4e:88:87:ea:9e:6e:25:46:67:82:54:ba:cc:66: 6c:fc:3b:87:36:f8:ee:e0:82:6d:8d:41:97:32:b5: a5:82:80:18:fd:bc:6b:f1:e6:22:23:b9:b3:03:b4: 89:a6:85:8d:06:05:aa:4f:f5:48:91:bb:e3:a8:59: 7f:07:c8:f4:ae:19:97:6a:d5:0f:1d:78:c2:a2:7d: ba:14:a7:da:03:3a:b1:ec:a4:f3:3a:98:d9:14:7b: 80:1a:c6:09:75:3e:27:a6:98:46:8f:43:26:63:64: 78:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:24:BA:31:0F:E7:0F:EA:3B:C5:18:B3:06:08:FC:6F:6E:B2:F0:93 X509v3 Authority Key Identifier: keyid:58:54:5B:9F:BD:01:D2:8C:0E:A6:D0:8F:5B:47:2D:B3:4F:AD:2E:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFRbn70B0owOptCPW0cts0-tLqM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:95:4e:cc:25:5a:b6:b4:c3:41:65:aa:c2:8e:f4:26:e0:90: 83:c1:2b:50:a2:7a:69:a4:aa:3e:4b:d4:28:f4:3a:d3:e3:8f: 61:35:1a:92:cc:38:f7:cb:d8:44:90:96:e8:96:9f:40:a2:a2: 20:cb:1a:e8:e3:95:88:7e:ef:3a:9a:4b:17:95:09:5d:ff:be: 6f:10:b6:8a:5f:82:71:3e:12:38:b8:27:e1:36:c6:2f:f0:f6: 8d:d1:c0:93:a2:e2:52:9c:f5:1d:79:9b:9b:b9:81:ca:5c:58: 1a:d8:1f:c4:69:b5:45:93:6c:41:1c:e0:cf:52:66:54:ac:94: de:de:25:51:68:0b:62:c1:94:b1:aa:1a:e7:55:78:99:24:f4: 60:c1:7e:3c:0c:9f:12:55:3f:c6:66:96:b9:0f:d5:98:eb:ed: 47:2c:6b:6e:db:5e:02:2d:94:cd:7e:97:49:42:5f:0b:18:c8: 9f:4d:e7:92:27:f8:9c:aa:e4:2c:c0:0f:31:37:c6:dd:8a:58: 2e:ed:0a:5d:f8:9b:a6:a2:1e:41:ef:b3:5a:9f:5e:0c:88:81: dc:06:00:a7:e9:e6:ee:91:60:a2:0b:a6:47:62:54:89:b0:37: 75:3f:ea:71:31:97:3a:e3:81:77:77:7b:f1:1f:68:c2:17:09: 6f:7a:a9:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBodxR/CBLohKPURiR9gn9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4NTQ1YjlmYmQwMWQyOGMwZWE2ZDA4ZjViNDcyZGIzNGZh ZDJlYTMwHhcNMjYwMjA5MDkwMDUyWhcNMjYwMjEwMDkwMDUyWjAzMTEwLwYDVQQD Eyg2NTI0YmEzMTBmZTcwZmVhM2JjNTE4YjMwNjA4ZmM2ZjZlYjJmMDkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTuGktLlgeWu7OnTep1WZ4/XytJ8 0l0dVBZctFo1a503xTNlwDecxFjhSI/lsmBmStNQzddDQl0/CxcvqzGXc+42NFO7 UQ4JEKqrBif3mJnSMpEAGayQnI5XgeZe2R4WoICsyXL2KhvX2/ClNP4am+X/6PIK fAXQ7dVQzrm/VYS92YoJRcJb5ecqOSjLkjXBSKNZVKwXToiH6p5uJUZnglS6zGZs /DuHNvju4IJtjUGXMrWlgoAY/bxr8eYiI7mzA7SJpoWNBgWqT/VIkbvjqFl/B8j0 rhmXatUPHXjCon26FKfaAzqx7KTzOpjZFHuAGsYJdT4npphGj0MmY2R4rwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGUkujEP5w/qO8UYswYI/G9usvCTMB8GA1UdIwQY MBaAFFhUW5+9AdKMDqbQj1tHLbNPrS6jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0ZSYm43MEIwb3dPcHRDUFcwY3RzMC10THFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85Y2ZjNzktOGJkYS00ODYyLWE3ZDgt NGY4ZDkzNTVkODYyLzEvV0ZSYm43MEIwb3dPcHRDUFcwY3RzMC10THFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85Y2ZjNzktOGJkYS00ODYyLWE3ZDgtNGY4ZDkzNTVkODYy LzEvV0ZSYm43MEIwb3dPcHRDUFcwY3RzMC10THFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR5VOzCVa trTDQWWqwo70JuCQg8ErUKJ6aaSqPkvUKPQ60+OPYTUaksw498vYRJCW6JafQKKi IMsa6OOViH7vOppLF5UJXf++bxC2il+CcT4SOLgn4TbGL/D2jdHAk6LiUpz1HXmb m7mBylxYGtgfxGm1RZNsQRzgz1JmVKyU3t4lUWgLYsGUsaoa51V4mST0YMF+PAyf ElU/xmaWuQ/VmOvtRyxrbtteAi2UzX6XSUJfCxjIn03nkif4nKrkLMAPMTfG3YpY Lu0KXfibpqIeQe+zWp9eDIiB3AYAp+nm7pFgogumR2JUibA3dT/qcTGXOuOBd3d7 8R9owhcJb3qpaA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:38 2026 by rpki-client