This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft File: Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft (raw, json) Hash identifier: 1iSmj8m+0R2qaLoRtZUCxlfCk1uNEBPMrn4QH/7rIPw= Subject key identifier: 59:76:CD:FF:7C:90:5F:C4:FC:CE:5A:86:A2:ED:CA:07:FF:A5:7B:C7 Authority key identifier: 46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75 Certificate issuer: /CN=468ecba10e7599a030aa613088688a6c26d62d75 Certificate serial: 019C427DEE1B273E4B73BBDB707009214B4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft Manifest number: 14A0 Signing time: Mon 09 Feb 2026 13:01:14 +0000 Manifest this update: Mon 09 Feb 2026 13:01:14 +0000 Manifest next update: Tue 10 Feb 2026 13:01:14 +0000 Files and hashes: 1: Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl (hash: vweZX3isAyNKsOsSmP2T261+9FIsmq+JVrtGMPh1zk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:ee:1b:27:3e:4b:73:bb:db:70:70:09:21:4b:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=468ecba10e7599a030aa613088688a6c26d62d75 Validity Not Before: Feb 9 13:01:14 2026 GMT Not After : Feb 10 13:01:14 2026 GMT Subject: CN=5976cdff7c905fc4fcce5a86a2edca07ffa57bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:19:69:32:db:23:4a:46:b6:7e:7e:90:89:33: 47:82:68:67:35:40:97:be:7e:bd:ed:04:64:08:1e: e2:bb:85:d9:75:6f:b7:47:3a:ae:8d:6e:4f:b8:81: 9e:5a:93:0e:57:7e:26:80:11:ff:c3:19:14:75:41: 36:b4:11:7e:a2:e9:c2:20:60:20:8f:00:56:67:3a: 4c:7f:5b:7e:a0:9a:f7:c7:97:bf:56:90:49:cb:61: be:e8:41:6a:55:4e:07:0a:1f:3b:b4:68:ae:23:1b: 16:93:33:6d:c5:a0:62:38:6a:34:eb:15:88:1d:39: c0:b9:fe:02:02:5c:3b:60:ee:6e:9e:c8:84:dc:6b: 27:eb:e1:18:ca:6c:63:e3:2a:63:c2:b7:14:12:26: e3:50:fa:32:2c:17:55:3e:9f:41:62:62:e8:6b:43: 88:55:d1:b1:0a:17:44:8d:ab:a4:ff:a9:5e:91:f2: 03:10:aa:ec:63:5a:c8:30:5f:9c:ac:a3:6f:be:d0: e1:64:8b:d8:5a:a5:29:42:6a:48:14:6f:8f:b8:da: fa:b5:5d:1b:6e:8d:6a:c2:b5:93:dc:07:38:f4:5e: f2:af:35:06:92:91:da:ca:a6:92:d7:1b:82:2e:3b: 09:39:7d:c8:5d:3a:26:d2:e8:c7:cb:fb:f8:8f:0e: 25:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:76:CD:FF:7C:90:5F:C4:FC:CE:5A:86:A2:ED:CA:07:FF:A5:7B:C7 X509v3 Authority Key Identifier: keyid:46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cd:3b:49:cf:28:0d:30:11:79:4a:da:65:69:71:1c:a1:f6:e0: c5:a6:a9:b4:35:9f:08:90:ef:e6:67:1c:dc:f0:73:bd:5c:c2: f7:5d:de:8c:c4:22:f7:74:ef:6a:64:d7:e8:71:e8:76:67:63: 2f:22:2f:5e:74:f7:89:68:c3:c6:03:9e:d4:7e:9d:d5:a4:37: 8c:bf:d4:b8:49:97:26:fb:7b:3c:77:8b:e5:37:cc:02:cd:e3: 38:8e:31:e6:bc:85:83:5f:ae:cf:5e:ac:33:16:00:e4:d7:55: 29:c3:00:2d:fa:78:ab:08:b2:4d:2e:a3:3d:8d:57:3b:23:dc: 03:c1:67:8c:ca:b9:01:01:b1:ab:73:eb:e4:7e:20:34:a0:1f: 1a:9a:90:b4:0a:eb:fe:cf:ea:c8:12:61:1a:9a:5c:8c:34:e5: 67:9d:92:39:ec:37:e3:a2:44:1c:aa:e2:b3:62:78:c5:ed:84: aa:98:9a:31:68:d5:96:66:0f:08:c2:5b:3b:d9:34:8b:54:4f: e2:45:41:86:24:6f:95:22:5b:25:49:d7:da:89:04:bc:c7:ab: 32:3f:fc:b9:ae:5a:f2:92:f2:7f:82:c9:48:58:f9:4a:22:a6: e3:ee:24:00:77:cf:d6:9b:e3:ce:30:0a:fe:0c:3f:67:dc:44: 3c:52:26:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfe4bJz5Lc7vbcHAJIUtLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2OGVjYmExMGU3NTk5YTAzMGFhNjEzMDg4Njg4YTZjMjZk NjJkNzUwHhcNMjYwMjA5MTMwMTE0WhcNMjYwMjEwMTMwMTE0WjAzMTEwLwYDVQQD Eyg1OTc2Y2RmZjdjOTA1ZmM0ZmNjZTVhODZhMmVkY2EwN2ZmYTU3YmM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2RlpMtsjSka2fn6QiTNHgmhnNUCX vn697QRkCB7iu4XZdW+3RzqujW5PuIGeWpMOV34mgBH/wxkUdUE2tBF+ounCIGAg jwBWZzpMf1t+oJr3x5e/VpBJy2G+6EFqVU4HCh87tGiuIxsWkzNtxaBiOGo06xWI HTnAuf4CAlw7YO5unsiE3Gsn6+EYymxj4ypjwrcUEibjUPoyLBdVPp9BYmLoa0OI VdGxChdEjauk/6lekfIDEKrsY1rIMF+crKNvvtDhZIvYWqUpQmpIFG+PuNr6tV0b bo1qwrWT3Ac49F7yrzUGkpHayqaS1xuCLjsJOX3IXTom0ujHy/v4jw4l8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFl2zf98kF/E/M5ahqLtygf/pXvHMB8GA1UdIwQY MBaAFEaOy6EOdZmgMKphMIhoimwm1i11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9mMWVhNTAtNGUwNS00YWJkLTg5Mjct ZGY3ZTBiZDZmODE2LzEvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9mMWVhNTAtNGUwNS00YWJkLTg5MjctZGY3ZTBiZDZmODE2 LzEvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzTtJzygN MBF5StplaXEcofbgxaaptDWfCJDv5mcc3PBzvVzC913ejMQi93TvamTX6HHodmdj LyIvXnT3iWjDxgOe1H6d1aQ3jL/UuEmXJvt7PHeL5TfMAs3jOI4x5ryFg1+uz16s MxYA5NdVKcMALfp4qwiyTS6jPY1XOyPcA8FnjMq5AQGxq3Pr5H4gNKAfGpqQtArr /s/qyBJhGppcjDTlZ52SOew346JEHKris2J4xe2EqpiaMWjVlmYPCMJbO9k0i1RP 4kVBhiRvlSJbJUnX2okEvMerMj/8ua5a8pLyf4LJSFj5SiKm4+4kAHfP1pvjzjAK /gw/Z9xEPFImnQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:29 2026 by rpki-client