This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/aaacf7-bfda-403e-bf62-a1a46a80c1da/1/7gPfgpr9ah8lkOQkRSLhs2wIapQ.mft File: 7gPfgpr9ah8lkOQkRSLhs2wIapQ.mft (raw, json) Hash identifier: Lj6KfiIVeJP/L+JIUAK+dttR6An25EkAGAtkLqKW+RQ= Subject key identifier: ED:B1:09:2F:6C:48:DE:2C:05:64:81:29:71:B4:D6:A8:94:2D:71:06 Authority key identifier: EE:03:DF:82:9A:FD:6A:1F:25:90:E4:24:45:22:E1:B3:6C:08:6A:94 Certificate issuer: /CN=ee03df829afd6a1f2590e4244522e1b36c086a94 Certificate serial: 019C43FDDE28BBC7954FC73E561EAAC0380D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7gPfgpr9ah8lkOQkRSLhs2wIapQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/aaacf7-bfda-403e-bf62-a1a46a80c1da/1/7gPfgpr9ah8lkOQkRSLhs2wIapQ.mft Manifest number: 0EF0 Signing time: Mon 09 Feb 2026 20:00:36 +0000 Manifest this update: Mon 09 Feb 2026 20:00:36 +0000 Manifest next update: Tue 10 Feb 2026 20:00:36 +0000 Files and hashes: 1: 7gPfgpr9ah8lkOQkRSLhs2wIapQ.crl (hash: hc7ogB6lF6dtvvbkthv7H93aT84qb2Ks1BrzybdhCn0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/aaacf7-bfda-403e-bf62-a1a46a80c1da/1/7gPfgpr9ah8lkOQkRSLhs2wIapQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/aaacf7-bfda-403e-bf62-a1a46a80c1da/1/7gPfgpr9ah8lkOQkRSLhs2wIapQ.mft rsync://rpki.ripe.net/repository/DEFAULT/7gPfgpr9ah8lkOQkRSLhs2wIapQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:de:28:bb:c7:95:4f:c7:3e:56:1e:aa:c0:38:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee03df829afd6a1f2590e4244522e1b36c086a94 Validity Not Before: Feb 9 20:00:36 2026 GMT Not After : Feb 10 20:00:36 2026 GMT Subject: CN=edb1092f6c48de2c0564812971b4d6a8942d7106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5c:35:d6:f5:a1:5b:57:4f:d2:af:45:24:95: a7:ae:00:59:f3:c8:7d:7b:07:9b:4e:19:c6:7e:e2: 48:b9:83:df:ea:0e:c9:fc:92:c5:0d:42:c2:09:32: f2:c0:d1:da:45:11:9b:8d:22:01:d6:d3:02:99:cb: ea:fa:f7:7f:5b:c0:1f:c6:9f:46:00:28:96:97:89: aa:1b:dd:9f:3e:ed:31:42:45:f2:9c:61:5c:50:29: 22:11:11:1e:52:fc:2f:1f:50:c3:62:19:1e:8d:30: 93:81:28:66:9c:1b:8d:9e:fb:55:75:48:d4:51:b3: d1:4d:c9:c9:d0:0b:15:1b:7a:7f:84:8f:4a:0d:31: a9:0e:b0:4f:c9:a4:79:98:9c:df:fb:94:e1:7a:57: 80:3d:cd:da:83:64:ab:7c:79:c5:ff:27:cf:62:3a: e3:60:e5:2e:90:ab:fb:b4:7e:06:88:a7:a9:6c:9c: d9:ff:17:e6:c3:e0:b8:b5:4c:53:f4:69:5e:66:b5: 81:3d:97:de:a6:be:ec:8e:76:d6:8e:cc:e4:b3:07: 9d:5e:52:b2:32:ea:3d:ab:69:7b:f2:58:cc:ec:17: a3:a0:e2:1d:04:88:13:e8:1a:ad:8b:0d:d9:73:ac: 3f:a9:1b:2b:da:98:d3:0b:c4:98:69:2e:1a:2e:d2: 2c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B1:09:2F:6C:48:DE:2C:05:64:81:29:71:B4:D6:A8:94:2D:71:06 X509v3 Authority Key Identifier: keyid:EE:03:DF:82:9A:FD:6A:1F:25:90:E4:24:45:22:E1:B3:6C:08:6A:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7gPfgpr9ah8lkOQkRSLhs2wIapQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/aaacf7-bfda-403e-bf62-a1a46a80c1da/1/7gPfgpr9ah8lkOQkRSLhs2wIapQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/aaacf7-bfda-403e-bf62-a1a46a80c1da/1/7gPfgpr9ah8lkOQkRSLhs2wIapQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:de:8a:ca:91:ff:82:7c:e7:bd:91:98:77:02:4c:b1:2e:f9: 93:b1:97:9d:4c:3a:1a:59:16:98:00:13:c8:57:25:dc:bb:55: c0:44:c8:a8:30:07:c1:0a:3f:58:8b:10:74:52:24:cc:e8:e1: 9d:88:4d:14:7a:4a:66:4c:2d:84:f0:fa:4e:be:ab:18:7e:3f: b9:b2:da:f4:21:90:de:c8:95:f6:d7:a5:f7:b4:29:78:ec:32: c1:68:33:34:6c:61:70:56:0e:48:95:6f:e3:8f:f0:1e:ea:0f: 12:9c:d2:b7:33:1d:6d:3d:fa:43:68:3e:60:b8:b3:12:9b:75: 76:c8:d8:6d:61:0d:e8:39:2f:87:f8:dd:b6:1e:e6:3b:21:06: 43:75:a0:ca:ac:aa:46:57:02:22:1e:bc:c9:2f:80:f3:ed:72: 23:fa:f2:22:40:00:ca:72:31:30:24:ac:c1:bf:9e:b3:bd:cc: 6a:28:d5:7f:56:92:3c:c1:2c:ef:5b:16:eb:28:8f:ad:1d:23: 20:93:6e:6e:c3:61:56:66:c3:00:e0:b8:59:cc:f4:1d:fe:af: 00:cd:75:c1:12:63:4e:3f:2a:4d:dd:54:03:b5:99:f3:ab:23: 18:75:70:e4:14:92:b4:5a:d2:19:d3:05:57:27:4f:c3:46:76: 58:37:e2:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/d4ou8eVT8c+Vh6qwDgNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlMDNkZjgyOWFmZDZhMWYyNTkwZTQyNDQ1MjJlMWIzNmMw ODZhOTQwHhcNMjYwMjA5MjAwMDM2WhcNMjYwMjEwMjAwMDM2WjAzMTEwLwYDVQQD EyhlZGIxMDkyZjZjNDhkZTJjMDU2NDgxMjk3MWI0ZDZhODk0MmQ3MTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFw11vWhW1dP0q9FJJWnrgBZ88h9 ewebThnGfuJIuYPf6g7J/JLFDULCCTLywNHaRRGbjSIB1tMCmcvq+vd/W8Afxp9G ACiWl4mqG92fPu0xQkXynGFcUCkiEREeUvwvH1DDYhkejTCTgShmnBuNnvtVdUjU UbPRTcnJ0AsVG3p/hI9KDTGpDrBPyaR5mJzf+5TheleAPc3ag2SrfHnF/yfPYjrj YOUukKv7tH4GiKepbJzZ/xfmw+C4tUxT9GleZrWBPZfepr7sjnbWjszkswedXlKy Muo9q2l78ljM7BejoOIdBIgT6Bqtiw3Zc6w/qRsr2pjTC8SYaS4aLtIsawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO2xCS9sSN4sBWSBKXG01qiULXEGMB8GA1UdIwQY MBaAFO4D34Ka/WofJZDkJEUi4bNsCGqUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2dQZmdwcjlhaDhsa09Ra1JTTGhzMndJYXBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9hYWFjZjctYmZkYS00MDNlLWJmNjIt YTFhNDZhODBjMWRhLzEvN2dQZmdwcjlhaDhsa09Ra1JTTGhzMndJYXBRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9hYWFjZjctYmZkYS00MDNlLWJmNjItYTFhNDZhODBjMWRh LzEvN2dQZmdwcjlhaDhsa09Ra1JTTGhzMndJYXBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf96KypH/ gnznvZGYdwJMsS75k7GXnUw6GlkWmAATyFcl3LtVwETIqDAHwQo/WIsQdFIkzOjh nYhNFHpKZkwthPD6Tr6rGH4/ubLa9CGQ3siV9tel97QpeOwywWgzNGxhcFYOSJVv 44/wHuoPEpzStzMdbT36Q2g+YLizEpt1dsjYbWEN6Dkvh/jdth7mOyEGQ3Wgyqyq RlcCIh68yS+A8+1yI/ryIkAAynIxMCSswb+es73MaijVf1aSPMEs71sW6yiPrR0j IJNubsNhVmbDAOC4Wcz0Hf6vAM11wRJjTj8qTd1UA7WZ86sjGHVw5BSStFrSGdMF VydPw0Z2WDfisA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:34:17 2026 by rpki-client