This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft File: Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft (raw, json) Hash identifier: sZKK5fzzIstPo5+YjAhvg9BEON62WeNhhI7VSkeNIhg= Subject key identifier: 16:67:0B:29:2E:68:EC:00:16:AF:FD:84:31:07:20:3D:DC:DD:F3:7B Authority key identifier: 16:86:F7:BE:9B:A1:71:C3:27:46:AB:4E:D2:0B:E8:82:BD:30:43:56 Certificate issuer: /CN=1686f7be9ba171c32746ab4ed20be882bd304356 Certificate serial: 019C4246B4D50AD2538D6E3F34C5312F7502 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft Manifest number: 059F Signing time: Mon 09 Feb 2026 12:00:55 +0000 Manifest this update: Mon 09 Feb 2026 12:00:55 +0000 Manifest next update: Tue 10 Feb 2026 12:00:55 +0000 Files and hashes: 1: Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl (hash: t6Is4N99Yb5A9GU286yIYYfhH/9webzSwXfT/3ihBJA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:b4:d5:0a:d2:53:8d:6e:3f:34:c5:31:2f:75:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1686f7be9ba171c32746ab4ed20be882bd304356 Validity Not Before: Feb 9 12:00:55 2026 GMT Not After : Feb 10 12:00:55 2026 GMT Subject: CN=16670b292e68ec0016affd843107203ddcddf37b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:77:a0:cc:b0:fc:6f:6a:34:e8:af:a7:66:1c: cc:7d:10:fa:ce:cf:c7:58:ad:67:b1:50:d0:33:87: d7:8d:fc:3a:39:36:e2:5a:cd:04:8f:61:c1:41:b3: 0e:9a:b4:d0:e9:bf:3e:11:a4:c9:f4:0c:a7:32:32: c6:e5:57:0e:1d:03:d3:c7:5c:d7:a2:8f:a2:36:35: 74:8f:8d:02:77:b0:30:cb:11:51:0f:7f:ad:72:66: 0a:dc:19:c3:15:33:8d:44:4e:76:d8:55:66:78:7f: f5:da:f4:c0:63:b3:53:33:12:af:27:44:26:68:fb: 2b:3a:3b:ed:ce:22:87:bb:08:a6:ba:c4:c9:da:f2: 89:69:fe:f1:63:a0:d4:7e:ad:22:c2:f5:f5:0d:0d: 46:6a:47:c4:81:2b:1d:b9:d7:48:27:eb:9c:94:dd: 18:66:a0:25:5c:3d:cf:d0:0b:7c:ca:a6:cb:e6:18: 25:85:9f:ef:0f:54:f2:d5:8f:5e:1e:23:29:84:26: 88:97:89:fa:8f:23:00:dd:ba:34:88:5f:3b:00:60: 57:e0:cb:c1:54:f5:f2:46:9a:7f:ee:75:09:f7:3a: 2d:2a:fc:5d:77:08:53:87:ff:34:f1:5a:75:81:05: e3:e6:cf:7d:a3:72:6f:93:a3:75:75:05:e9:77:5b: b0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:67:0B:29:2E:68:EC:00:16:AF:FD:84:31:07:20:3D:DC:DD:F3:7B X509v3 Authority Key Identifier: keyid:16:86:F7:BE:9B:A1:71:C3:27:46:AB:4E:D2:0B:E8:82:BD:30:43:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:bc:93:a2:59:fe:eb:b2:bb:ac:2e:5b:d9:ed:be:97:b3:31: 4d:2c:4a:f6:2e:65:2a:a8:50:c0:8e:88:d4:e0:b3:f4:09:18: de:d0:3a:61:0d:16:7a:ec:49:6b:61:47:82:20:c3:ac:37:d6: a2:e6:68:0b:ec:c8:10:65:4e:5a:e3:42:f2:b1:33:fb:b6:f6: 16:8d:30:01:fb:ae:50:2a:98:f2:20:60:f9:37:43:8a:49:3e: 46:4c:e8:c9:b3:c6:5a:f8:13:40:4b:e4:ba:b7:fd:92:22:27: 12:ad:ac:0e:1e:01:d7:be:ff:c7:ac:98:ea:8a:2e:f1:8d:6b: 33:0b:ae:c8:5b:80:93:7a:c5:69:7f:16:a6:9f:33:d7:96:09: 95:7b:59:8a:c5:02:79:ef:9b:f0:2d:0c:81:38:34:40:99:ce: db:24:df:79:05:55:2e:8e:0e:38:d5:03:b2:6c:20:3a:ac:4c: 20:c6:26:09:a0:8b:6b:8f:a1:e9:64:a2:55:a0:f4:ab:de:13: bf:47:1f:31:9a:49:82:7a:02:0f:6c:94:b1:9f:68:cf:e1:24: cb:63:03:09:b4:6a:bf:90:58:dc:17:de:ef:f2:b9:30:f0:aa: 95:b8:98:9d:62:86:f6:e3:46:9b:2e:7d:b2:f6:06:fe:05:4c: 64:ea:e6:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRrTVCtJTjW4/NMUxL3UCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2ODZmN2JlOWJhMTcxYzMyNzQ2YWI0ZWQyMGJlODgyYmQz MDQzNTYwHhcNMjYwMjA5MTIwMDU1WhcNMjYwMjEwMTIwMDU1WjAzMTEwLwYDVQQD EygxNjY3MGIyOTJlNjhlYzAwMTZhZmZkODQzMTA3MjAzZGRjZGRmMzdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXegzLD8b2o06K+nZhzMfRD6zs/H WK1nsVDQM4fXjfw6OTbiWs0Ej2HBQbMOmrTQ6b8+EaTJ9AynMjLG5VcOHQPTx1zX oo+iNjV0j40Cd7AwyxFRD3+tcmYK3BnDFTONRE522FVmeH/12vTAY7NTMxKvJ0Qm aPsrOjvtziKHuwimusTJ2vKJaf7xY6DUfq0iwvX1DQ1GakfEgSsduddIJ+uclN0Y ZqAlXD3P0At8yqbL5hglhZ/vD1Ty1Y9eHiMphCaIl4n6jyMA3bo0iF87AGBX4MvB VPXyRpp/7nUJ9zotKvxddwhTh/808Vp1gQXj5s99o3Jvk6N1dQXpd1uwtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBZnCykuaOwAFq/9hDEHID3c3fN7MB8GA1UdIwQY MBaAFBaG976boXHDJ0arTtIL6IK9MENWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRm9iM3ZwdWhjY01uUnF0TzBndm9ncjB3UTFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy83Y2E4MDgtYzc5NS00MGVmLThhNDkt NzRhOThjYjY2ZmZmLzEvRm9iM3ZwdWhjY01uUnF0TzBndm9ncjB3UTFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy83Y2E4MDgtYzc5NS00MGVmLThhNDktNzRhOThjYjY2ZmZm LzEvRm9iM3ZwdWhjY01uUnF0TzBndm9ncjB3UTFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKbyToln+ 67K7rC5b2e2+l7MxTSxK9i5lKqhQwI6I1OCz9AkY3tA6YQ0WeuxJa2FHgiDDrDfW ouZoC+zIEGVOWuNC8rEz+7b2Fo0wAfuuUCqY8iBg+TdDikk+RkzoybPGWvgTQEvk urf9kiInEq2sDh4B177/x6yY6oou8Y1rMwuuyFuAk3rFaX8Wpp8z15YJlXtZisUC ee+b8C0MgTg0QJnO2yTfeQVVLo4OONUDsmwgOqxMIMYmCaCLa4+h6WSiVaD0q94T v0cfMZpJgnoCD2yUsZ9oz+Eky2MDCbRqv5BY3Bfe7/K5MPCqlbiYnWKG9uNGmy59 svYG/gVMZOrmDQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:25 2026 by rpki-client