This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.mft File: GAIUWTANFfrFUHBc9uJYmZ09hro.mft (raw, json) Hash identifier: u1oCLPFHSdfSnO6GmTiuVWrp1S7C0198Cs7S4HRhA+U= Subject key identifier: 2E:E2:42:F7:48:BB:F5:08:F9:5A:C5:32:7C:D2:F8:2E:BC:40:C6:B0 Authority key identifier: 18:02:14:59:30:0D:15:FA:C5:50:70:5C:F6:E2:58:99:9D:3D:86:BA Certificate issuer: /CN=18021459300d15fac550705cf6e258999d3d86ba Certificate serial: 019C427DC47A502FCEA31987D6A35A800771 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GAIUWTANFfrFUHBc9uJYmZ09hro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.mft Manifest number: 0CF2 Signing time: Mon 09 Feb 2026 13:01:04 +0000 Manifest this update: Mon 09 Feb 2026 13:01:04 +0000 Manifest next update: Tue 10 Feb 2026 13:01:04 +0000 Files and hashes: 1: GAIUWTANFfrFUHBc9uJYmZ09hro.crl (hash: pm737rgiZZFGT1iJNozp69YNcjHLQxTOYSR+5req5o0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.crl rsync://rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.mft rsync://rpki.ripe.net/repository/DEFAULT/GAIUWTANFfrFUHBc9uJYmZ09hro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:c4:7a:50:2f:ce:a3:19:87:d6:a3:5a:80:07:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18021459300d15fac550705cf6e258999d3d86ba Validity Not Before: Feb 9 13:01:04 2026 GMT Not After : Feb 10 13:01:04 2026 GMT Subject: CN=2ee242f748bbf508f95ac5327cd2f82ebc40c6b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c0:a9:c9:2a:3f:0c:b2:b4:f3:00:4f:37:c9: fd:e4:16:8f:ce:ed:2f:ac:0f:7c:71:a6:12:8d:8f: 71:9f:f4:f9:46:e3:90:f0:a1:52:c6:4c:34:5a:97: bf:fc:ac:2c:1b:40:2f:c0:b7:51:49:b7:3a:1e:46: ed:62:5f:4a:81:9c:f2:b9:bf:7f:71:a4:5a:75:f8: 46:4d:a8:6e:90:17:fc:2c:99:5e:f2:84:03:ac:b7: ac:6f:ae:77:24:71:33:55:41:72:aa:b6:6f:55:e3: 73:fb:3a:93:ae:f7:12:01:2d:3a:c0:9f:a6:c3:58: 58:fb:3e:d8:94:7b:eb:8e:37:14:16:fd:8e:9d:17: d7:a6:01:d1:d5:39:60:71:d8:15:19:88:f1:1b:8c: c9:05:60:95:92:95:5f:18:45:15:90:71:c4:da:35: 5d:d9:c6:52:b6:56:25:65:0d:49:39:43:30:93:98: 97:8d:1c:11:05:8e:48:b8:bf:fd:70:a1:f7:5f:1d: 39:99:1a:6c:b5:76:90:4e:85:61:e9:94:06:08:94: c4:fd:3a:6c:a7:8c:2f:09:46:9d:4a:27:ae:b8:66: 4b:66:bd:bb:b5:0b:7d:6f:9a:fc:07:e4:a3:89:bf: a5:8a:f5:0a:44:a4:23:73:c7:49:66:1d:45:14:fc: b7:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E2:42:F7:48:BB:F5:08:F9:5A:C5:32:7C:D2:F8:2E:BC:40:C6:B0 X509v3 Authority Key Identifier: keyid:18:02:14:59:30:0D:15:FA:C5:50:70:5C:F6:E2:58:99:9D:3D:86:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GAIUWTANFfrFUHBc9uJYmZ09hro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:ab:0f:5b:f1:c6:31:18:4c:d9:84:d2:9f:3b:16:5d:3e:fd: 34:3b:7f:f2:5d:65:b2:46:61:6e:fe:f8:ac:29:10:8b:1e:aa: b1:38:cf:96:cc:21:1f:8e:49:f6:f7:14:03:c0:f3:f9:2e:20: 57:19:a9:0f:a6:40:84:c6:b7:8e:11:76:bc:be:ab:48:e3:9e: a0:a0:bf:10:59:94:66:b0:26:84:75:e3:e7:46:33:0c:21:e9: aa:93:61:e8:35:aa:40:e3:cc:26:12:a2:87:89:77:db:47:d9: 8f:e1:78:ca:41:1e:0f:2c:76:50:cf:a0:ab:d4:68:d5:13:35: ff:e8:7a:20:33:b1:17:3b:53:ec:31:ab:d2:70:30:0c:74:bc: 71:c9:4c:78:b9:56:4c:1e:23:6b:9b:5d:ee:e0:04:26:95:1b: 8e:71:ec:c7:71:16:8f:97:8e:b6:42:69:da:58:f2:6a:e1:bf: fd:56:fd:25:b2:9a:ae:92:23:22:c7:e8:17:04:c2:6d:63:ac: d3:e1:f8:62:6c:d7:2c:3a:a2:01:2e:c4:7e:0b:e4:64:ab:17: 89:3d:38:f2:a8:f4:3f:86:a8:4e:6c:35:aa:51:da:4c:56:6c: c3:1f:4f:6e:58:dc:32:d6:73:0b:41:28:9c:b5:f2:a6:1d:60: 4d:19:89:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfcR6UC/OoxmH1qNagAdxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4MDIxNDU5MzAwZDE1ZmFjNTUwNzA1Y2Y2ZTI1ODk5OWQz ZDg2YmEwHhcNMjYwMjA5MTMwMTA0WhcNMjYwMjEwMTMwMTA0WjAzMTEwLwYDVQQD EygyZWUyNDJmNzQ4YmJmNTA4Zjk1YWM1MzI3Y2QyZjgyZWJjNDBjNmIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8CpySo/DLK08wBPN8n95BaPzu0v rA98caYSjY9xn/T5RuOQ8KFSxkw0Wpe//KwsG0AvwLdRSbc6HkbtYl9KgZzyub9/ caRadfhGTahukBf8LJle8oQDrLesb653JHEzVUFyqrZvVeNz+zqTrvcSAS06wJ+m w1hY+z7YlHvrjjcUFv2OnRfXpgHR1TlgcdgVGYjxG4zJBWCVkpVfGEUVkHHE2jVd 2cZStlYlZQ1JOUMwk5iXjRwRBY5IuL/9cKH3Xx05mRpstXaQToVh6ZQGCJTE/Tps p4wvCUadSieuuGZLZr27tQt9b5r8B+Sjib+livUKRKQjc8dJZh1FFPy3ywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC7iQvdIu/UI+VrFMnzS+C68QMawMB8GA1UdIwQY MBaAFBgCFFkwDRX6xVBwXPbiWJmdPYa6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0FJVVdUQU5GZnJGVUhCYzl1SlltWjA5aHJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83ZDMzMjctNzA4NC00Y2VkLTk5Njct OTIyNGNlMmU5NjVhLzEvR0FJVVdUQU5GZnJGVUhCYzl1SlltWjA5aHJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS83ZDMzMjctNzA4NC00Y2VkLTk5NjctOTIyNGNlMmU5NjVh LzEvR0FJVVdUQU5GZnJGVUhCYzl1SlltWjA5aHJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfqsPW/HG MRhM2YTSnzsWXT79NDt/8l1lskZhbv74rCkQix6qsTjPlswhH45J9vcUA8Dz+S4g VxmpD6ZAhMa3jhF2vL6rSOOeoKC/EFmUZrAmhHXj50YzDCHpqpNh6DWqQOPMJhKi h4l320fZj+F4ykEeDyx2UM+gq9Ro1RM1/+h6IDOxFztT7DGr0nAwDHS8cclMeLlW TB4ja5td7uAEJpUbjnHsx3EWj5eOtkJp2ljyauG//Vb9JbKarpIjIsfoFwTCbWOs 0+H4YmzXLDqiAS7EfgvkZKsXiT048qj0P4aoTmw1qlHaTFZswx9PbljcMtZzC0Eo nLXyph1gTRmJWg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:58 2026 by rpki-client