This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.mft File: ejiftI-wXUgfHyORlMU30Vs1cAk.mft (raw, json) Hash identifier: rUQsunBABDx5/DAehgVrRvxOpXRutL+lN76W1F2FFdY= Subject key identifier: C8:6F:BB:59:6A:83:F9:2B:09:2E:ED:00:85:80:1B:52:CD:52:95:1F Authority key identifier: 7A:38:9F:B4:8F:B0:5D:48:1F:1F:23:91:94:C5:37:D1:5B:35:70:09 Certificate issuer: /CN=7a389fb48fb05d481f1f239194c537d15b357009 Certificate serial: 019C43C73AF977871DFD0107EEDC9351158C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejiftI-wXUgfHyORlMU30Vs1cAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.mft Manifest number: 0EB3 Signing time: Mon 09 Feb 2026 19:00:56 +0000 Manifest this update: Mon 09 Feb 2026 19:00:56 +0000 Manifest next update: Tue 10 Feb 2026 19:00:56 +0000 Files and hashes: 1: ejiftI-wXUgfHyORlMU30Vs1cAk.crl (hash: 8rSy0Zid968qzguNnDNbyD0+ibw1NEQ7b5m9Pu6dUsw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.crl rsync://rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.mft rsync://rpki.ripe.net/repository/DEFAULT/ejiftI-wXUgfHyORlMU30Vs1cAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:3a:f9:77:87:1d:fd:01:07:ee:dc:93:51:15:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7a389fb48fb05d481f1f239194c537d15b357009 Validity Not Before: Feb 9 19:00:56 2026 GMT Not After : Feb 10 19:00:56 2026 GMT Subject: CN=c86fbb596a83f92b092eed0085801b52cd52951f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ee:e8:07:de:ee:fc:2f:2e:a1:fb:9b:82:5e: 5e:2b:d1:46:b0:37:52:48:31:99:b8:1f:45:1a:04: df:5b:cb:b8:90:dc:11:6a:58:a5:07:cd:61:9e:28: 7d:d2:78:46:63:dd:bd:95:07:2f:14:9e:5f:1f:44: 7b:64:14:03:25:f8:6c:90:33:4c:57:c3:32:27:a3: 40:37:87:44:ef:a4:55:d9:a1:b2:b9:b1:99:5d:d6: c4:f4:c0:fb:b2:83:96:6f:7d:e9:9a:53:40:e3:a0: 2b:da:cc:46:65:77:64:2e:56:01:a3:94:d5:14:2c: 23:a3:8c:df:5f:11:3a:40:e7:d8:ca:73:87:af:f2: f4:5b:df:c2:fc:6e:11:7b:08:4e:06:d7:d3:c8:5f: 3f:a8:d0:ce:cc:ab:6e:a2:c4:b8:1b:ba:32:85:84: 9c:cb:42:4c:a9:37:da:b0:2e:e7:9b:22:d0:a0:6f: ca:49:c1:f8:c2:f0:91:76:07:33:96:7d:ed:03:c8: 12:47:d0:3c:4c:f8:7d:82:22:64:10:d8:ed:a1:88: 74:7b:40:2e:94:37:2d:91:8c:db:63:55:61:51:d2: 6d:4d:56:68:31:f1:f2:d0:ca:c0:23:f6:1d:71:1b: 8b:bf:e3:25:38:2c:88:8d:6f:9c:64:37:f5:5e:d6: 4c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6F:BB:59:6A:83:F9:2B:09:2E:ED:00:85:80:1B:52:CD:52:95:1F X509v3 Authority Key Identifier: keyid:7A:38:9F:B4:8F:B0:5D:48:1F:1F:23:91:94:C5:37:D1:5B:35:70:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejiftI-wXUgfHyORlMU30Vs1cAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/eb1064-6d26-4555-9fa5-a1a08ebf4eea/1/ejiftI-wXUgfHyORlMU30Vs1cAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:a7:01:f9:2b:af:5f:38:60:1a:7f:15:5f:c5:10:ee:83:1f: cc:fd:12:b3:4a:23:2e:88:ee:cf:7d:14:e7:70:ea:9e:15:38: 95:c0:ba:a8:cf:37:be:14:61:da:c1:f3:fe:b6:ba:d7:35:31: 0f:0b:d9:5c:50:26:36:c1:6a:df:c9:3f:b1:41:ca:f2:33:ee: a7:f8:95:e1:51:9d:28:f8:5d:68:04:ee:a9:5e:4a:f9:5d:d9: 23:ad:3d:b9:b4:b0:d3:fd:b6:82:21:e1:f8:7b:9d:ca:82:12: bb:4e:89:fd:59:16:cc:24:31:14:05:5e:7f:c1:09:0e:a3:83: 0d:e6:5c:34:18:9c:5c:29:00:a1:68:a8:21:47:90:3e:88:b7: a9:67:4b:24:90:31:70:af:2f:f3:af:af:50:57:05:95:07:f3: 18:65:d2:ab:98:6d:93:f8:83:21:04:83:83:91:8d:7a:9d:52: 85:69:34:d5:6b:7b:c8:b5:d1:25:cd:bb:67:75:ae:af:02:76: 3c:be:85:5d:c7:fc:a1:da:07:d6:4c:5f:b6:45:1d:c7:75:d0: 1a:c3:71:58:6d:cc:80:83:4a:16:88:2c:e5:b5:3f:05:d7:f7: 26:45:80:01:c0:59:33:db:8c:53:8d:d4:36:30:0b:5e:a1:93: 33:cc:2c:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxzr5d4cd/QEH7tyTURWMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhMzg5ZmI0OGZiMDVkNDgxZjFmMjM5MTk0YzUzN2QxNWIz NTcwMDkwHhcNMjYwMjA5MTkwMDU2WhcNMjYwMjEwMTkwMDU2WjAzMTEwLwYDVQQD EyhjODZmYmI1OTZhODNmOTJiMDkyZWVkMDA4NTgwMWI1MmNkNTI5NTFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6+7oB97u/C8uofubgl5eK9FGsDdS SDGZuB9FGgTfW8u4kNwRalilB81hnih90nhGY929lQcvFJ5fH0R7ZBQDJfhskDNM V8MyJ6NAN4dE76RV2aGyubGZXdbE9MD7soOWb33pmlNA46Ar2sxGZXdkLlYBo5TV FCwjo4zfXxE6QOfYynOHr/L0W9/C/G4RewhOBtfTyF8/qNDOzKtuosS4G7oyhYSc y0JMqTfasC7nmyLQoG/KScH4wvCRdgczln3tA8gSR9A8TPh9giJkENjtoYh0e0Au lDctkYzbY1VhUdJtTVZoMfHy0MrAI/YdcRuLv+MlOCyIjW+cZDf1XtZM4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMhvu1lqg/krCS7tAIWAG1LNUpUfMB8GA1UdIwQY MBaAFHo4n7SPsF1IHx8jkZTFN9FbNXAJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWppZnRJLXdYVWdmSHlPUmxNVTMwVnMxY0FrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lYjEwNjQtNmQyNi00NTU1LTlmYTUt YTFhMDhlYmY0ZWVhLzEvZWppZnRJLXdYVWdmSHlPUmxNVTMwVnMxY0FrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lYjEwNjQtNmQyNi00NTU1LTlmYTUtYTFhMDhlYmY0ZWVh LzEvZWppZnRJLXdYVWdmSHlPUmxNVTMwVnMxY0FrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaKcB+Suv XzhgGn8VX8UQ7oMfzP0Ss0ojLojuz30U53DqnhU4lcC6qM83vhRh2sHz/ra61zUx DwvZXFAmNsFq38k/sUHK8jPup/iV4VGdKPhdaATuqV5K+V3ZI609ubSw0/22giHh +HudyoISu06J/VkWzCQxFAVef8EJDqODDeZcNBicXCkAoWioIUeQPoi3qWdLJJAx cK8v86+vUFcFlQfzGGXSq5htk/iDIQSDg5GNep1ShWk01Wt7yLXRJc27Z3WurwJ2 PL6FXcf8odoH1kxftkUdx3XQGsNxWG3MgINKFogs5bU/Bdf3JkWAAcBZM9uMU43U NjALXqGTM8wszg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:48 2026 by rpki-client