This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft File: G7Qd9-pn1O3-D60S99XOzYPhjZo.mft (raw, json) Hash identifier: mF2UgRrYPqdjGNZzqbM89cPnEbWY49go5Ve5O2c3xmc= Subject key identifier: 75:29:76:CA:B4:68:78:49:FF:2F:86:4C:E0:82:59:B0:E5:46:27:C9 Authority key identifier: 1B:B4:1D:F7:EA:67:D4:ED:FE:0F:AD:12:F7:D5:CE:CD:83:E1:8D:9A Certificate issuer: /CN=1bb41df7ea67d4edfe0fad12f7d5cecd83e18d9a Certificate serial: 019C43597F0ABA427F1AE27703153BBEA297 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G7Qd9-pn1O3-D60S99XOzYPhjZo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft Manifest number: 05ED Signing time: Mon 09 Feb 2026 17:01:04 +0000 Manifest this update: Mon 09 Feb 2026 17:01:04 +0000 Manifest next update: Tue 10 Feb 2026 17:01:04 +0000 Files and hashes: 1: G7Qd9-pn1O3-D60S99XOzYPhjZo.crl (hash: McpbXMGzKeUBe2OO4fBt6UbRqdheHFIb1yg+GNlz5qs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft rsync://rpki.ripe.net/repository/DEFAULT/G7Qd9-pn1O3-D60S99XOzYPhjZo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:7f:0a:ba:42:7f:1a:e2:77:03:15:3b:be:a2:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bb41df7ea67d4edfe0fad12f7d5cecd83e18d9a Validity Not Before: Feb 9 17:01:04 2026 GMT Not After : Feb 10 17:01:04 2026 GMT Subject: CN=752976cab4687849ff2f864ce08259b0e54627c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:44:ad:98:05:ec:f6:a4:1e:e2:5a:a7:a3:3e: 92:81:c9:fe:57:3c:2a:83:43:6c:7b:bf:86:4f:08: 98:b1:47:93:6d:3d:ab:91:77:75:e4:cd:8c:8c:29: fb:40:6f:e5:65:50:fb:5d:6e:cd:e3:88:2b:bd:59: 04:d0:7f:ae:f3:24:20:16:35:08:6e:08:97:bb:56: 84:8b:28:0c:58:8c:a9:86:bf:71:a9:82:b8:9f:3a: f1:59:fc:a7:15:5d:df:89:03:65:5c:5a:6c:79:f8: 92:72:d3:cf:66:35:07:ec:8e:fe:cf:36:0b:95:59: 50:8a:e7:32:ca:cd:73:a6:7d:40:38:a1:46:2d:c1: 31:37:fe:9c:1f:29:d1:60:0b:34:2e:82:ac:8d:86: a6:1b:f7:0a:a0:d9:a9:74:aa:a1:ec:e2:a3:43:09: 60:9d:11:ff:c8:33:41:33:68:39:0b:52:de:9a:34: 8f:53:3d:f8:ac:6d:2e:cf:55:d8:99:60:da:9a:6d: 69:23:49:5b:92:14:ad:bc:0f:0e:f3:b8:07:87:3c: de:63:7e:af:83:29:fc:7f:65:a3:28:37:f1:87:c7: 3f:3c:34:4d:32:ad:9f:e4:54:6a:9e:12:a3:65:12: fc:3e:87:6f:2c:df:87:56:74:cc:e0:1a:b8:d8:f5: 2a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:29:76:CA:B4:68:78:49:FF:2F:86:4C:E0:82:59:B0:E5:46:27:C9 X509v3 Authority Key Identifier: keyid:1B:B4:1D:F7:EA:67:D4:ED:FE:0F:AD:12:F7:D5:CE:CD:83:E1:8D:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G7Qd9-pn1O3-D60S99XOzYPhjZo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:60:cf:0a:00:8a:1d:ac:61:e4:0a:9f:c2:17:32:1f:2e:eb: 74:84:ed:b6:d2:31:46:d7:4f:4f:db:02:a9:e5:c5:81:0a:a4: d7:ee:ae:1d:7a:64:13:d9:57:17:58:29:c1:9b:6a:ae:6d:70: 91:20:e9:3a:1b:7e:b0:cb:f0:f0:97:01:7a:a9:20:e7:07:6f: 5b:17:b7:71:e0:77:55:9d:7b:da:be:55:21:7b:96:7c:ee:68: cc:3c:3a:6c:83:2a:77:1b:bb:4c:ec:6a:fb:72:79:8b:d8:6c: a7:e1:88:14:02:d0:cf:06:81:bf:75:a6:0b:a7:c2:b7:59:0f: 15:87:53:31:e8:41:a0:e3:28:0b:3b:3e:f2:fc:4b:55:7c:28: 9b:0d:80:1d:b8:ef:62:c6:f1:98:5b:26:2b:ab:e3:88:e3:36: e2:a8:d6:4f:52:85:19:ce:8c:70:48:ac:72:cc:f1:72:46:b4: 22:f4:b1:0e:a1:6e:5d:9c:ca:da:2e:a0:d7:2a:9f:72:d9:3c: 8c:78:36:55:ed:c2:a1:d1:be:3f:e2:0d:75:ac:98:34:eb:58: 36:24:76:7b:21:73:7e:4a:7d:14:fc:4c:bd:60:db:31:44:c6: 94:7a:53:d3:c0:82:9a:4a:f5:f6:40:14:00:9f:41:b3:c9:cf: 05:d6:32:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWX8KukJ/GuJ3AxU7vqKXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiYjQxZGY3ZWE2N2Q0ZWRmZTBmYWQxMmY3ZDVjZWNkODNl MThkOWEwHhcNMjYwMjA5MTcwMTA0WhcNMjYwMjEwMTcwMTA0WjAzMTEwLwYDVQQD Eyg3NTI5NzZjYWI0Njg3ODQ5ZmYyZjg2NGNlMDgyNTliMGU1NDYyN2M5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEStmAXs9qQe4lqnoz6Sgcn+Vzwq g0Nse7+GTwiYsUeTbT2rkXd15M2MjCn7QG/lZVD7XW7N44grvVkE0H+u8yQgFjUI bgiXu1aEiygMWIyphr9xqYK4nzrxWfynFV3fiQNlXFpsefiSctPPZjUH7I7+zzYL lVlQiucyys1zpn1AOKFGLcExN/6cHynRYAs0LoKsjYamG/cKoNmpdKqh7OKjQwlg nRH/yDNBM2g5C1LemjSPUz34rG0uz1XYmWDamm1pI0lbkhStvA8O87gHhzzeY36v gyn8f2WjKDfxh8c/PDRNMq2f5FRqnhKjZRL8PodvLN+HVnTM4Bq42PUqAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHUpdsq0aHhJ/y+GTOCCWbDlRifJMB8GA1UdIwQY MBaAFBu0HffqZ9Tt/g+tEvfVzs2D4Y2aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzdRZDktcG4xTzMtRDYwUzk5WE96WVBoalpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy80NTkzOTYtZGU5MC00Y2M4LWE1NDIt M2U2ZTdjZGVmNzNlLzEvRzdRZDktcG4xTzMtRDYwUzk5WE96WVBoalpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy80NTkzOTYtZGU5MC00Y2M4LWE1NDItM2U2ZTdjZGVmNzNl LzEvRzdRZDktcG4xTzMtRDYwUzk5WE96WVBoalpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkWDPCgCK Haxh5AqfwhcyHy7rdITtttIxRtdPT9sCqeXFgQqk1+6uHXpkE9lXF1gpwZtqrm1w kSDpOht+sMvw8JcBeqkg5wdvWxe3ceB3VZ172r5VIXuWfO5ozDw6bIMqdxu7TOxq +3J5i9hsp+GIFALQzwaBv3WmC6fCt1kPFYdTMehBoOMoCzs+8vxLVXwomw2AHbjv YsbxmFsmK6vjiOM24qjWT1KFGc6McEiscszxcka0IvSxDqFuXZzK2i6g1yqfctk8 jHg2Ve3CodG+P+INdayYNOtYNiR2eyFzfkp9FPxMvWDbMUTGlHpT08CCmkr19kAU AJ9Bs8nPBdYynw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:06:39 2026 by rpki-client