This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft File: X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft (raw, json) Hash identifier: hS4W70J1o3INxuMpmvAGYkRiT4BMzoDvehLR+XiCTfc= Subject key identifier: 99:94:85:10:94:AF:5D:A0:6D:65:8B:31:A6:C0:36:E0:FC:A7:3D:23 Authority key identifier: 5F:B7:46:6D:8E:92:B2:1C:7B:1A:A1:35:F3:0E:FE:6E:73:E1:F8:6C Certificate issuer: /CN=5fb7466d8e92b21c7b1aa135f30efe6e73e1f86c Certificate serial: 019C424697D10EAF1DE545807ED547DA7C2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7dGbY6Sshx7GqE18w7-bnPh-Gw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft Manifest number: 0E2A Signing time: Mon 09 Feb 2026 12:00:48 +0000 Manifest this update: Mon 09 Feb 2026 12:00:48 +0000 Manifest next update: Tue 10 Feb 2026 12:00:48 +0000 Files and hashes: 1: X7dGbY6Sshx7GqE18w7-bnPh-Gw.crl (hash: tD18VhN0ooSenQuZxvUPMiftAY8QNnsBjalj3vj7dDY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.crl rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft rsync://rpki.ripe.net/repository/DEFAULT/X7dGbY6Sshx7GqE18w7-bnPh-Gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:97:d1:0e:af:1d:e5:45:80:7e:d5:47:da:7c:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5fb7466d8e92b21c7b1aa135f30efe6e73e1f86c Validity Not Before: Feb 9 12:00:48 2026 GMT Not After : Feb 10 12:00:48 2026 GMT Subject: CN=9994851094af5da06d658b31a6c036e0fca73d23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2d:ef:5b:87:ce:d7:cb:c9:a1:a9:1c:b2:fd: 6d:22:ad:a9:6d:78:c6:29:35:fb:f1:dd:09:d6:63: 46:a7:44:2a:f0:63:fd:a7:d9:b8:18:76:32:1c:9d: 8b:a3:d1:4b:be:a1:50:ae:c5:ba:ca:17:d7:c8:b9: 37:77:4d:42:63:4f:54:b5:f5:d4:ad:71:fd:82:1d: 09:e2:ea:1e:fb:3b:73:08:9a:af:6e:ea:81:d3:c6: d9:cb:50:52:e4:a4:82:a6:11:cc:d9:5f:a1:9a:1f: dc:c0:00:7d:ac:71:6c:3c:49:c2:81:b6:74:52:42: 4d:91:d9:6b:71:15:3b:fa:e4:03:24:36:c8:34:ad: a0:56:9e:dc:d9:3b:e4:08:11:ea:0b:7f:06:f5:80: 20:a3:74:38:a7:17:dd:e9:89:61:63:98:4b:ee:c2: 4f:48:39:8d:ae:08:64:19:a0:15:4b:c3:27:71:39: a7:c1:8e:47:7d:40:73:de:7f:2b:03:4e:a3:4a:c7: 56:53:e0:e5:54:db:4a:2d:2c:a8:de:0f:f8:d7:ff: 77:c1:2f:54:38:36:57:0b:24:fe:0a:cd:31:6e:cb: f5:a0:aa:ca:2e:0a:dc:3b:5e:47:08:de:1b:30:69: 57:a6:05:38:11:e2:0b:3d:96:76:56:ad:1e:49:1e: a9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:94:85:10:94:AF:5D:A0:6D:65:8B:31:A6:C0:36:E0:FC:A7:3D:23 X509v3 Authority Key Identifier: keyid:5F:B7:46:6D:8E:92:B2:1C:7B:1A:A1:35:F3:0E:FE:6E:73:E1:F8:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7dGbY6Sshx7GqE18w7-bnPh-Gw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ed289-d661-4343-a2e0-0b92679d3625/1/X7dGbY6Sshx7GqE18w7-bnPh-Gw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:be:67:06:d0:9c:f3:f9:26:f7:5f:32:36:ea:04:68:8b:7e: 26:d0:f3:ec:ee:69:06:ba:ad:31:0a:37:27:4b:ef:c8:d5:04: e9:f4:7e:34:b9:2b:da:90:32:e7:f3:3a:ca:f7:d1:0a:de:c9: 7e:95:ce:62:f5:24:94:2f:2d:25:3e:d7:f0:04:5e:56:10:bc: 17:d1:f8:4c:09:45:13:40:f5:c0:2b:e1:ce:af:dd:0f:21:d8: 0b:8c:2c:0a:57:ba:03:a4:7b:1f:e8:29:33:7d:88:a4:5c:c1: 15:6a:61:df:74:1a:3a:9a:ec:e9:6c:7b:f4:fa:88:6c:0f:5c: 57:ee:2a:df:4a:7d:16:19:28:7b:74:6a:bf:f3:8d:4c:5c:ab: ec:e6:20:14:54:5d:5f:8d:67:98:3b:b1:98:2f:4b:49:36:d4: f0:9f:88:c5:f2:ce:d5:1b:7e:13:8f:89:72:ea:86:d9:12:e9: 13:97:b4:41:a1:98:a7:fc:41:18:7c:bc:03:a2:98:fd:fa:d3: dd:b8:db:0c:4a:e7:88:99:b1:75:c6:83:55:84:4c:59:51:53: f2:cd:45:dc:c7:2d:e0:4c:06:3a:52:7e:97:2e:57:21:11:a2: 0a:db:f0:79:6f:d8:47:a2:2a:75:18:6b:8c:44:bc:5d:20:73: 2b:bb:89:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRpfRDq8d5UWAftVH2nwuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmYjc0NjZkOGU5MmIyMWM3YjFhYTEzNWYzMGVmZTZlNzNl MWY4NmMwHhcNMjYwMjA5MTIwMDQ4WhcNMjYwMjEwMTIwMDQ4WjAzMTEwLwYDVQQD Eyg5OTk0ODUxMDk0YWY1ZGEwNmQ2NThiMzFhNmMwMzZlMGZjYTczZDIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqC3vW4fO18vJoakcsv1tIq2pbXjG KTX78d0J1mNGp0Qq8GP9p9m4GHYyHJ2Lo9FLvqFQrsW6yhfXyLk3d01CY09UtfXU rXH9gh0J4uoe+ztzCJqvbuqB08bZy1BS5KSCphHM2V+hmh/cwAB9rHFsPEnCgbZ0 UkJNkdlrcRU7+uQDJDbINK2gVp7c2TvkCBHqC38G9YAgo3Q4pxfd6YlhY5hL7sJP SDmNrghkGaAVS8MncTmnwY5HfUBz3n8rA06jSsdWU+DlVNtKLSyo3g/41/93wS9U ODZXCyT+Cs0xbsv1oKrKLgrcO15HCN4bMGlXpgU4EeILPZZ2Vq0eSR6poQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJmUhRCUr12gbWWLMabANuD8pz0jMB8GA1UdIwQY MBaAFF+3Rm2OkrIcexqhNfMO/m5z4fhsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDdkR2JZNlNzaHg3R3FFMTh3Ny1iblBoLUd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83ZWQyODktZDY2MS00MzQzLWEyZTAt MGI5MjY3OWQzNjI1LzEvWDdkR2JZNlNzaHg3R3FFMTh3Ny1iblBoLUd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS83ZWQyODktZDY2MS00MzQzLWEyZTAtMGI5MjY3OWQzNjI1 LzEvWDdkR2JZNlNzaHg3R3FFMTh3Ny1iblBoLUd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxr5nBtCc 8/km918yNuoEaIt+JtDz7O5pBrqtMQo3J0vvyNUE6fR+NLkr2pAy5/M6yvfRCt7J fpXOYvUklC8tJT7X8AReVhC8F9H4TAlFE0D1wCvhzq/dDyHYC4wsCle6A6R7H+gp M32IpFzBFWph33QaOprs6Wx79PqIbA9cV+4q30p9Fhkoe3Rqv/ONTFyr7OYgFFRd X41nmDuxmC9LSTbU8J+IxfLO1Rt+E4+JcuqG2RLpE5e0QaGYp/xBGHy8A6KY/frT 3bjbDErniJmxdcaDVYRMWVFT8s1F3Mct4EwGOlJ+ly5XIRGiCtvweW/YR6IqdRhr jES8XSBzK7uJ+Q== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:27 2026 by rpki-client