This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft File: s7a21-XdDDKPbOr36enA0cuMHSI.mft (raw, json) Hash identifier: v21oJ3zsjLXIebjRwA8S+BgccvLmpkHpPxYhCzGLncQ= Subject key identifier: EF:70:BA:4E:64:41:3F:01:23:3E:AC:01:1F:05:49:85:C5:29:AE:2A Authority key identifier: B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22 Certificate issuer: /CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22 Certificate serial: 019C420F708CCCA4EE45B572C3AF58AFCECB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft Manifest number: 15D3 Signing time: Mon 09 Feb 2026 11:00:33 +0000 Manifest this update: Mon 09 Feb 2026 11:00:33 +0000 Manifest next update: Tue 10 Feb 2026 11:00:33 +0000 Files and hashes: 1: 8vMvZJ6S4wIvSeidLWIqXdB2xEU.roa (hash: YSfZ6yHjbJE8NoHQ6iqadOGUmWSZLkJjEKtjGtKNsbU=) 2: s7a21-XdDDKPbOr36enA0cuMHSI.crl (hash: fTkqXcxJ/7A0+RftSMZxmJXyF1Mye8H/CFvnqswzoPI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:70:8c:cc:a4:ee:45:b5:72:c3:af:58:af:ce:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22 Validity Not Before: Feb 9 11:00:33 2026 GMT Not After : Feb 10 11:00:33 2026 GMT Subject: CN=ef70ba4e64413f01233eac011f054985c529ae2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:38:41:d3:c1:9c:2e:39:4b:f7:b6:79:f5:d5: 7f:8b:63:13:aa:6f:b4:c6:14:13:74:06:f8:51:21: df:65:26:9b:72:35:65:73:23:c6:2f:d4:07:67:c7: ba:c7:66:81:45:bc:c4:89:29:d3:25:fe:14:7c:f5: 1c:e4:cf:82:ca:0d:8b:3c:3d:e2:34:ae:6d:46:b9: 28:25:50:8f:ca:1d:61:ae:1d:78:ca:6c:d5:00:7b: bd:cd:0b:af:0f:4d:ee:bc:f3:07:f7:f9:1b:51:08: 33:50:31:cb:75:24:52:bc:0c:6f:3d:93:ca:bd:ca: 30:3d:9c:f9:35:5c:e3:51:7f:69:01:46:e9:28:37: 2a:b7:5d:2e:45:2b:37:e1:43:e0:92:bb:68:3d:0e: ec:87:02:54:64:7f:a8:f4:ed:63:08:13:9b:07:64: 5d:80:bb:d2:85:b9:25:d7:08:0c:c0:c3:f8:99:6e: 88:e1:f3:92:bf:c3:c3:b5:f7:f3:27:c2:4f:c0:ee: 31:43:8b:7e:c1:48:c3:fa:c0:27:55:dc:61:f8:84: 26:61:d2:aa:92:72:53:34:47:ad:c6:6f:9a:c1:8a: ca:26:5c:09:a2:6c:ad:76:d2:21:06:c8:ee:64:7a: 27:a7:87:47:6b:9c:d6:05:47:39:81:40:8b:27:f3: 19:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:70:BA:4E:64:41:3F:01:23:3E:AC:01:1F:05:49:85:C5:29:AE:2A X509v3 Authority Key Identifier: keyid:B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:5a:2a:26:75:2a:ba:7a:ea:a1:9c:39:8a:63:ec:4f:a6:68: 56:87:88:17:3b:75:3b:9d:b4:06:a7:6d:08:c4:1d:56:38:18: 9e:ce:db:a3:33:76:04:17:42:09:59:1d:a9:bf:cf:ac:21:e6: 79:3c:4c:d8:eb:15:1a:f9:58:5c:ff:17:4b:5f:f6:4d:12:34: df:9f:54:49:7c:66:d7:9b:ba:e2:c4:49:43:ad:50:62:92:d3: 87:d9:e2:a3:55:01:9c:37:1d:76:a9:2b:c0:1a:ee:75:c2:85: c4:38:47:22:12:bd:8a:a9:f3:3f:59:20:97:24:f3:b1:3d:66: 84:75:79:10:c2:01:3a:ae:6b:3f:fb:3b:71:c5:ef:30:d9:19: 34:f9:ff:18:f9:e4:04:27:6d:fe:11:ea:ad:71:b8:8d:2d:fc: a6:b1:1e:8c:a2:65:4d:3a:b1:b1:45:dd:27:bb:1f:9d:af:d0: 8d:fa:cc:10:55:13:8f:78:91:d2:fc:52:62:36:2d:4c:88:f2: a9:21:23:1e:ba:2f:8d:62:98:93:d8:3f:d0:f1:10:80:60:5d: 60:d7:a5:91:a6:50:75:36:42:6a:0a:0c:89:21:c7:e6:00:94: ee:d3:c4:2b:06:6a:8d:e2:93:c8:fa:2c:e4:41:58:31:b1:86: 06:18:27:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD3CMzKTuRbVyw69Yr87LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYjZiNmQ3ZTVkZDBjMzI4ZjZjZWFmN2U5ZTljMGQxY2I4 YzFkMjIwHhcNMjYwMjA5MTEwMDMzWhcNMjYwMjEwMTEwMDMzWjAzMTEwLwYDVQQD EyhlZjcwYmE0ZTY0NDEzZjAxMjMzZWFjMDExZjA1NDk4NWM1MjlhZTJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojhB08GcLjlL97Z59dV/i2MTqm+0 xhQTdAb4USHfZSabcjVlcyPGL9QHZ8e6x2aBRbzEiSnTJf4UfPUc5M+Cyg2LPD3i NK5tRrkoJVCPyh1hrh14ymzVAHu9zQuvD03uvPMH9/kbUQgzUDHLdSRSvAxvPZPK vcowPZz5NVzjUX9pAUbpKDcqt10uRSs34UPgkrtoPQ7shwJUZH+o9O1jCBObB2Rd gLvShbkl1wgMwMP4mW6I4fOSv8PDtffzJ8JPwO4xQ4t+wUjD+sAnVdxh+IQmYdKq knJTNEetxm+awYrKJlwJomytdtIhBsjuZHonp4dHa5zWBUc5gUCLJ/MZdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO9wuk5kQT8BIz6sAR8FSYXFKa4qMB8GA1UdIwQY MBaAFLO2ttfl3Qwyj2zq9+npwNHLjB0iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczdhMjEtWGREREtQYk9yMzZlbkEwY3VNSFNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yZDc5NDYtZGI4Yi00YTU3LWE3MGIt MjA3MTU0NmI3MGY5LzEvczdhMjEtWGREREtQYk9yMzZlbkEwY3VNSFNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS8yZDc5NDYtZGI4Yi00YTU3LWE3MGItMjA3MTU0NmI3MGY5 LzEvczdhMjEtWGREREtQYk9yMzZlbkEwY3VNSFNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX1oqJnUq unrqoZw5imPsT6ZoVoeIFzt1O520BqdtCMQdVjgYns7bozN2BBdCCVkdqb/PrCHm eTxM2OsVGvlYXP8XS1/2TRI0359USXxm15u64sRJQ61QYpLTh9nio1UBnDcddqkr wBrudcKFxDhHIhK9iqnzP1kglyTzsT1mhHV5EMIBOq5rP/s7ccXvMNkZNPn/GPnk BCdt/hHqrXG4jS38prEejKJlTTqxsUXdJ7sfna/QjfrMEFUTj3iR0vxSYjYtTIjy qSEjHrovjWKYk9g/0PEQgGBdYNelkaZQdTZCagoMiSHH5gCU7tPEKwZqjeKTyPos 5EFYMbGGBhgnDw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:38 2026 by rpki-client