This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json) Hash identifier: OvqG9AYmw/0qJR3WILi8A8mMGdABYDolncpJe5eay00= Subject key identifier: 79:3C:48:A7:6D:F2:C0:51:EF:EE:BF:1A:05:82:93:BD:35:F4:D1:22 Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1 Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1 Certificate serial: 019C424654EF756F490075BBFD3763E45B18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft Manifest number: 04B9 Signing time: Mon 09 Feb 2026 12:00:31 +0000 Manifest this update: Mon 09 Feb 2026 12:00:31 +0000 Manifest next update: Tue 10 Feb 2026 12:00:31 +0000 Files and hashes: 1: WmDNL-b0WkRscYpfEnZaGcaTcFM.roa (hash: vFHl+C0H692uAua09x2J70xulx0PssETV1wVHPp2xHA=) 2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: g5JMt/UQBCR0hEBzIQo7vnSh9OD4BF2oUiMf6a1kBlw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:54:ef:75:6f:49:00:75:bb:fd:37:63:e4:5b:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1 Validity Not Before: Feb 9 12:00:31 2026 GMT Not After : Feb 10 12:00:31 2026 GMT Subject: CN=793c48a76df2c051efeebf1a058293bd35f4d122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e0:b4:51:29:6f:84:07:fb:04:dd:f3:9c:54: 84:b7:d5:a8:6d:2b:84:58:a8:11:15:e8:1b:df:bc: c9:61:b9:03:d7:ed:8b:c4:58:97:fe:13:d1:c2:1b: a5:74:b0:07:3b:6f:84:bd:52:3e:63:c0:03:32:89: 7b:77:ed:0a:c1:c5:9b:2a:c2:f5:d6:17:1d:30:1f: 70:74:6a:90:69:e8:b5:b8:6d:34:49:c2:e4:a2:6f: 0c:9d:5c:82:fa:0f:6b:b7:b6:ae:25:b1:a5:f2:68: 87:e7:0d:46:30:f9:14:7a:f6:9a:36:30:bb:56:81: 3f:6e:df:bc:e2:99:fc:88:17:1c:83:da:73:de:da: 13:36:3a:65:1a:79:4d:4a:6b:7f:b9:cb:1c:b6:47: eb:85:4a:0d:36:94:ce:0a:f9:d0:77:d9:d8:a8:24: 7f:9b:2b:e9:75:0f:d3:08:75:ce:1f:0c:a5:4b:dd: ad:a8:6d:d7:b9:5f:92:a6:f2:bf:c5:f5:6b:72:53: 5c:64:38:80:6e:8b:40:19:69:f2:84:2f:cd:41:95: 4b:93:7a:14:02:04:6c:6c:12:10:29:b7:4e:be:b8: 9c:d0:54:e6:fa:65:13:0f:8e:ad:51:85:7c:4d:cf: c6:4c:f6:29:3b:7e:46:18:4b:bb:d6:e2:6d:a4:6f: 50:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:3C:48:A7:6D:F2:C0:51:EF:EE:BF:1A:05:82:93:BD:35:F4:D1:22 X509v3 Authority Key Identifier: keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:e8:86:8e:a3:5b:5f:cd:3f:28:bf:f0:51:59:7f:b7:22:ee: b3:72:46:52:72:70:8f:d8:c2:c3:67:b5:98:b9:17:ca:e9:73: 77:76:64:aa:b1:09:e6:af:03:07:f8:9a:80:38:e0:c7:5f:bf: bd:2e:81:fb:f4:66:be:7a:91:01:f0:6b:e6:cd:f4:0c:23:d4: d1:76:db:53:8c:22:e6:aa:16:1d:dc:89:c5:57:71:f1:fe:11: 31:0c:d5:4b:9f:64:c0:cb:73:f8:49:00:f7:00:1b:62:fc:35: f0:ad:83:0d:4f:33:9a:09:a4:9c:ae:10:c2:77:64:a6:7d:9a: 8c:db:74:bd:8f:57:0b:a5:84:55:3b:c0:7a:33:38:7f:d3:20: bf:78:9e:87:45:7b:08:cb:72:8e:68:a1:25:7a:ff:99:ae:59: 2d:77:ca:78:bb:3a:65:9b:c7:65:2f:1f:e6:26:e3:58:cb:7e: ee:d6:54:92:cc:4b:31:39:dd:2e:db:d1:8f:92:4f:01:aa:84: ab:8b:16:48:e5:fd:18:b9:91:bc:39:01:61:1b:df:b0:6f:d0: b3:80:05:d4:90:6f:5a:6a:a0:4d:3c:09:16:22:c9:a2:1e:4d: e7:39:dd:c4:cc:b1:9e:66:8a:a1:bd:f9:c5:a4:ea:02:7a:63: b0:e8:84:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRlTvdW9JAHW7/Tdj5FsYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyOGVmMWY0Zjg4Mjc4ZjRkZjE5ZTczZTMzODFjZWNkNzhl MDY5YzEwHhcNMjYwMjA5MTIwMDMxWhcNMjYwMjEwMTIwMDMxWjAzMTEwLwYDVQQD Eyg3OTNjNDhhNzZkZjJjMDUxZWZlZWJmMWEwNTgyOTNiZDM1ZjRkMTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+C0USlvhAf7BN3znFSEt9WobSuE WKgRFegb37zJYbkD1+2LxFiX/hPRwhuldLAHO2+EvVI+Y8ADMol7d+0KwcWbKsL1 1hcdMB9wdGqQaei1uG00ScLkom8MnVyC+g9rt7auJbGl8miH5w1GMPkUevaaNjC7 VoE/bt+84pn8iBccg9pz3toTNjplGnlNSmt/ucsctkfrhUoNNpTOCvnQd9nYqCR/ myvpdQ/TCHXOHwylS92tqG3XuV+SpvK/xfVrclNcZDiAbotAGWnyhC/NQZVLk3oU AgRsbBIQKbdOvric0FTm+mUTD46tUYV8Tc/GTPYpO35GGEu71uJtpG9QSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHk8SKdt8sBR7+6/GgWCk7019NEiMB8GA1UdIwQY MBaAFLKO8fT4gnj03xnnPjOBzs144GnBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8xZjA1MWItZTczNS00OWI4LWJjNmQt OWVmMGE1OTkyN2IxLzEvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS8xZjA1MWItZTczNS00OWI4LWJjNmQtOWVmMGE1OTkyN2Ix LzEvc283eDlQaUNlUFRmR2VjLU00SE96WGpnYWNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGOiGjqNb X80/KL/wUVl/tyLus3JGUnJwj9jCw2e1mLkXyulzd3ZkqrEJ5q8DB/iagDjgx1+/ vS6B+/RmvnqRAfBr5s30DCPU0XbbU4wi5qoWHdyJxVdx8f4RMQzVS59kwMtz+EkA 9wAbYvw18K2DDU8zmgmknK4Qwndkpn2ajNt0vY9XC6WEVTvAejM4f9Mgv3ieh0V7 CMtyjmihJXr/ma5ZLXfKeLs6ZZvHZS8f5ibjWMt+7tZUksxLMTndLtvRj5JPAaqE q4sWSOX9GLmRvDkBYRvfsG/Qs4AF1JBvWmqgTTwJFiLJoh5N5zndxMyxnmaKob35 xaTqAnpjsOiEuw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:43 2026 by rpki-client