This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft File: 97KiPZsF9XV53i8CRJtmYD4-Vzo.mft (raw, json) Hash identifier: g2w8IU9eumTclSe9TnnMgTGncaANj/2ZFDszxncj/Bg= Subject key identifier: ED:3F:05:8F:0D:67:32:EF:AA:FE:D9:00:BF:AF:47:1D:A7:B9:BB:63 Authority key identifier: F7:B2:A2:3D:9B:05:F5:75:79:DE:2F:02:44:9B:66:60:3E:3E:57:3A Certificate issuer: /CN=f7b2a23d9b05f57579de2f02449b66603e3e573a Certificate serial: 019C446BA02FD3A0D6FF128025BE1B3D40DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97KiPZsF9XV53i8CRJtmYD4-Vzo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft Manifest number: 13C4 Signing time: Mon 09 Feb 2026 22:00:29 +0000 Manifest this update: Mon 09 Feb 2026 22:00:29 +0000 Manifest next update: Tue 10 Feb 2026 22:00:29 +0000 Files and hashes: 1: 97KiPZsF9XV53i8CRJtmYD4-Vzo.crl (hash: wjxucfZtJlgyuodtsn2JwdRfpx8g1UBsyHurLIkPYA0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.crl rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft rsync://rpki.ripe.net/repository/DEFAULT/97KiPZsF9XV53i8CRJtmYD4-Vzo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:a0:2f:d3:a0:d6:ff:12:80:25:be:1b:3d:40:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7b2a23d9b05f57579de2f02449b66603e3e573a Validity Not Before: Feb 9 22:00:29 2026 GMT Not After : Feb 10 22:00:29 2026 GMT Subject: CN=ed3f058f0d6732efaafed900bfaf471da7b9bb63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c6:f2:83:8c:a6:ae:85:f7:92:4f:8f:29:b8: 0c:ea:eb:91:ca:2f:3d:55:07:f3:19:1b:ca:27:59: 16:96:2b:35:e0:45:26:d8:1b:4f:73:4b:f8:2a:b3: 0d:f8:a8:1c:03:e6:de:90:1c:d9:f2:8f:ed:9d:ac: 0e:5e:0f:ce:08:63:dc:20:5b:4c:74:6f:40:68:55: 2c:6e:e8:d9:cf:2f:1e:7d:94:e5:c6:12:1c:1c:3b: af:9e:90:23:20:98:13:e3:e1:8b:2e:e7:dd:6f:bf: e3:0e:6c:40:8d:0d:1e:18:79:7a:93:94:84:c1:a4: e0:ba:e0:d2:ad:ce:dc:20:17:1c:15:9b:39:07:e9: 43:15:17:36:4a:91:86:e6:3c:67:15:ba:c4:3a:c3: eb:a8:5c:64:bc:02:74:8f:14:ae:cb:15:bd:47:19: b4:6d:af:20:9d:b4:18:13:52:98:0b:9f:28:94:60: 94:b3:c3:91:b2:6a:30:80:e0:9f:f0:a1:29:27:84: 39:35:39:a1:7f:e9:7d:c6:94:48:cb:1b:bc:11:a0: 16:37:b9:df:b6:ca:0c:02:bb:68:53:6b:72:56:7f: 5b:c6:85:31:63:a3:dc:33:9f:d7:db:6e:fd:4b:d4: 88:b7:38:7c:1c:42:44:ec:b9:ef:9c:73:16:c0:e8: 7c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:3F:05:8F:0D:67:32:EF:AA:FE:D9:00:BF:AF:47:1D:A7:B9:BB:63 X509v3 Authority Key Identifier: keyid:F7:B2:A2:3D:9B:05:F5:75:79:DE:2F:02:44:9B:66:60:3E:3E:57:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97KiPZsF9XV53i8CRJtmYD4-Vzo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:78:bc:93:04:7d:21:20:96:f5:09:83:d4:0a:6c:90:df:0a: 71:c4:14:fa:06:9b:4b:70:88:4e:63:f7:90:39:fb:d0:27:ad: 39:95:e9:84:64:44:b0:54:f9:f1:1e:d6:66:07:73:d0:a9:a9: 9b:90:ee:55:02:32:35:0d:da:cb:0c:13:67:e9:ba:6e:08:dc: 4a:9c:86:e0:16:f9:89:be:c1:85:5f:a6:21:cd:d1:d9:6c:5c: 5a:c2:52:e0:7c:af:80:c0:cc:52:41:0f:9b:a7:9f:06:c1:57: db:c3:10:0b:37:04:d2:30:a6:e4:8e:d5:21:78:4a:36:f9:94: 9d:d0:4f:00:62:7e:1b:6e:3a:ad:52:4c:73:ac:8f:af:ed:5e: 42:ae:4e:19:a4:70:39:33:e1:d6:10:fa:5c:d8:72:27:d5:a5: 5d:18:99:a7:99:2d:fa:91:4d:dd:9b:de:d5:53:aa:11:5e:e8: 55:a2:e3:88:c5:70:1b:ed:12:d2:8b:db:bd:d0:d6:59:6d:1e: 8a:97:9e:57:9d:19:e7:43:3b:b8:19:11:c8:99:f8:c7:29:9b: 23:67:e7:b0:47:eb:e0:a0:fc:25:2b:9a:a3:dc:f8:c5:29:7d: 05:c9:ab:73:b9:02:90:51:b7:ea:1d:dd:19:90:85:be:18:48: 5c:c5:a8:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa6Av06DW/xKAJb4bPUDdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3YjJhMjNkOWIwNWY1NzU3OWRlMmYwMjQ0OWI2NjYwM2Uz ZTU3M2EwHhcNMjYwMjA5MjIwMDI5WhcNMjYwMjEwMjIwMDI5WjAzMTEwLwYDVQQD EyhlZDNmMDU4ZjBkNjczMmVmYWFmZWQ5MDBiZmFmNDcxZGE3YjliYjYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Mbyg4ymroX3kk+PKbgM6uuRyi89 VQfzGRvKJ1kWlis14EUm2BtPc0v4KrMN+KgcA+bekBzZ8o/tnawOXg/OCGPcIFtM dG9AaFUsbujZzy8efZTlxhIcHDuvnpAjIJgT4+GLLufdb7/jDmxAjQ0eGHl6k5SE waTguuDSrc7cIBccFZs5B+lDFRc2SpGG5jxnFbrEOsPrqFxkvAJ0jxSuyxW9Rxm0 ba8gnbQYE1KYC58olGCUs8ORsmowgOCf8KEpJ4Q5NTmhf+l9xpRIyxu8EaAWN7nf tsoMArtoU2tyVn9bxoUxY6PcM5/X2279S9SItzh8HEJE7LnvnHMWwOh8nQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO0/BY8NZzLvqv7ZAL+vRx2nubtjMB8GA1UdIwQY MBaAFPeyoj2bBfV1ed4vAkSbZmA+Plc6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTdLaVBac0Y5WFY1M2k4Q1JKdG1ZRDQtVnpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8wYTFiN2YtZGZkMi00NmY5LTgzMTMt NWJlNmE3NTlmMzE4LzEvOTdLaVBac0Y5WFY1M2k4Q1JKdG1ZRDQtVnpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC8wYTFiN2YtZGZkMi00NmY5LTgzMTMtNWJlNmE3NTlmMzE4 LzEvOTdLaVBac0Y5WFY1M2k4Q1JKdG1ZRDQtVnpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcni8kwR9 ISCW9QmD1ApskN8KccQU+gabS3CITmP3kDn70CetOZXphGREsFT58R7WZgdz0Kmp m5DuVQIyNQ3aywwTZ+m6bgjcSpyG4Bb5ib7BhV+mIc3R2WxcWsJS4HyvgMDMUkEP m6efBsFX28MQCzcE0jCm5I7VIXhKNvmUndBPAGJ+G246rVJMc6yPr+1eQq5OGaRw OTPh1hD6XNhyJ9WlXRiZp5kt+pFN3Zve1VOqEV7oVaLjiMVwG+0S0ovbvdDWWW0e ipeeV50Z50M7uBkRyJn4xymbI2fnsEfr4KD8JSuao9z4xSl9Bcmrc7kCkFG36h3d GZCFvhhIXMWoQA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:56 2026 by rpki-client