This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.mft File: f35evW-kacXjcL_BBsTUqtHh25Q.mft (raw, json) Hash identifier: 5Ym8Lka0z/sjaLBuUjNf3NNSFbHlGviZi++ggEWkTRQ= Subject key identifier: D7:99:93:F0:5D:2F:FF:03:B8:49:60:2A:6C:0F:BC:5D:11:08:24:D2 Authority key identifier: 7F:7E:5E:BD:6F:A4:69:C5:E3:70:BF:C1:06:C4:D4:AA:D1:E1:DB:94 Certificate issuer: /CN=7f7e5ebd6fa469c5e370bfc106c4d4aad1e1db94 Certificate serial: 019C439060B6EE8878EC8FFF5F0E93FCEE2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f35evW-kacXjcL_BBsTUqtHh25Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.mft Manifest number: 1078 Signing time: Mon 09 Feb 2026 18:01:01 +0000 Manifest this update: Mon 09 Feb 2026 18:01:01 +0000 Manifest next update: Tue 10 Feb 2026 18:01:01 +0000 Files and hashes: 1: f35evW-kacXjcL_BBsTUqtHh25Q.crl (hash: E78fRed4hZX9Gh1qvzJgQUlJtEtJh09/itBzugTwbwQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.crl rsync://rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.mft rsync://rpki.ripe.net/repository/DEFAULT/f35evW-kacXjcL_BBsTUqtHh25Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:60:b6:ee:88:78:ec:8f:ff:5f:0e:93:fc:ee:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f7e5ebd6fa469c5e370bfc106c4d4aad1e1db94 Validity Not Before: Feb 9 18:01:01 2026 GMT Not After : Feb 10 18:01:01 2026 GMT Subject: CN=d79993f05d2fff03b849602a6c0fbc5d110824d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d5:64:60:59:f6:ce:81:e3:79:5e:0d:3e:bd: ff:92:bc:78:ae:ed:b9:82:d7:c6:3e:b8:78:53:80: 75:95:fc:9e:73:33:7b:02:89:f4:06:5b:98:39:21: f5:83:a1:3a:3a:b5:12:32:42:2a:62:4a:dc:ec:28: c7:c3:a7:53:b6:1b:1d:4c:d8:a8:ff:a0:0a:6c:fc: 6a:5f:2c:44:75:cb:73:30:ca:0c:27:17:d5:9c:3c: 76:c0:58:a2:16:bf:79:05:8d:53:84:f1:e5:40:d0: dd:84:ce:ea:da:3c:37:68:b8:81:9e:58:23:4a:8d: f8:da:2f:eb:8d:a4:db:3a:b4:70:c6:ad:08:5c:f7: b3:c2:e1:77:f1:5a:0d:fa:0e:35:6f:73:78:9b:1b: 7a:d1:78:25:e7:b9:aa:6a:a3:60:ea:e3:13:ad:b7: 25:04:c2:7a:8c:82:8d:8c:c5:a4:de:8c:4e:26:09: 7b:6e:bc:58:c5:3f:31:92:49:1d:00:9e:6d:f1:eb: b3:e9:2b:35:b4:b7:2a:dd:bd:a5:84:7d:30:4f:90: 4b:6b:7a:7a:cd:3f:61:b4:f6:21:7c:68:a0:04:03: 8e:32:f1:38:c1:5d:57:ea:b7:1d:04:4d:46:e2:b5: 27:66:a5:49:0a:ad:89:00:e4:0f:26:1d:7e:c3:53: 44:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:99:93:F0:5D:2F:FF:03:B8:49:60:2A:6C:0F:BC:5D:11:08:24:D2 X509v3 Authority Key Identifier: keyid:7F:7E:5E:BD:6F:A4:69:C5:E3:70:BF:C1:06:C4:D4:AA:D1:E1:DB:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f35evW-kacXjcL_BBsTUqtHh25Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/c3e8ed-597a-485a-94a3-982cfb359aee/1/f35evW-kacXjcL_BBsTUqtHh25Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:6b:ec:b9:aa:57:56:f6:a8:bc:fa:fe:f9:9d:4a:f4:ac:f3: a6:fb:9d:c9:69:d9:c7:2b:2b:40:f1:dc:39:60:21:69:82:48: 35:ec:18:9d:cf:d0:cf:75:45:e0:a7:4f:ed:fb:70:56:e2:d7: ca:f5:c2:77:c3:75:99:0b:2e:de:37:3b:d5:58:5f:07:ff:3a: 4c:02:09:72:1b:8a:66:32:35:97:c6:13:be:a5:96:0b:d0:ca: a9:26:51:db:e1:4d:02:6e:d9:e0:aa:ec:6f:46:f7:e1:52:a4: 40:7a:ec:d4:b2:8a:98:cc:16:d5:1c:f2:6e:f6:fe:55:d4:60: b9:af:97:29:24:81:79:da:bd:b8:35:71:e7:34:75:d4:c8:40: 23:9c:11:17:87:e8:47:cb:0d:ac:db:ab:6a:db:53:da:a7:f7: e8:df:63:bd:2a:b9:80:9d:36:31:c8:9c:48:21:4f:9a:07:21: 8d:53:01:37:ec:97:ed:6a:31:05:a9:bd:39:35:05:ce:b0:66: 1e:08:94:91:29:26:b7:c1:c9:ed:02:ca:e7:6d:43:be:ea:d1: a0:b9:5a:f3:74:3f:67:d3:40:57:3c:a3:3c:f0:ca:e2:d2:27: 9b:f1:7a:fe:8c:6b:d2:d4:37:e7:27:70:ed:d1:bf:d1:c9:b2: b4:f8:62:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkGC27oh47I//Xw6T/O4uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmN2U1ZWJkNmZhNDY5YzVlMzcwYmZjMTA2YzRkNGFhZDFl MWRiOTQwHhcNMjYwMjA5MTgwMTAxWhcNMjYwMjEwMTgwMTAxWjAzMTEwLwYDVQQD EyhkNzk5OTNmMDVkMmZmZjAzYjg0OTYwMmE2YzBmYmM1ZDExMDgyNGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA39VkYFn2zoHjeV4NPr3/krx4ru25 gtfGPrh4U4B1lfyeczN7Aon0BluYOSH1g6E6OrUSMkIqYkrc7CjHw6dTthsdTNio /6AKbPxqXyxEdctzMMoMJxfVnDx2wFiiFr95BY1ThPHlQNDdhM7q2jw3aLiBnlgj So342i/rjaTbOrRwxq0IXPezwuF38VoN+g41b3N4mxt60Xgl57mqaqNg6uMTrbcl BMJ6jIKNjMWk3oxOJgl7brxYxT8xkkkdAJ5t8euz6Ss1tLcq3b2lhH0wT5BLa3p6 zT9htPYhfGigBAOOMvE4wV1X6rcdBE1G4rUnZqVJCq2JAOQPJh1+w1NE6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNeZk/BdL/8DuElgKmwPvF0RCCTSMB8GA1UdIwQY MBaAFH9+Xr1vpGnF43C/wQbE1KrR4duUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZjM1ZXZXLWthY1hqY0xfQkJzVFVxdEhoMjVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9jM2U4ZWQtNTk3YS00ODVhLTk0YTMt OTgyY2ZiMzU5YWVlLzEvZjM1ZXZXLWthY1hqY0xfQkJzVFVxdEhoMjVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy9jM2U4ZWQtNTk3YS00ODVhLTk0YTMtOTgyY2ZiMzU5YWVl LzEvZjM1ZXZXLWthY1hqY0xfQkJzVFVxdEhoMjVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQGvsuapX VvaovPr++Z1K9KzzpvudyWnZxysrQPHcOWAhaYJINewYnc/Qz3VF4KdP7ftwVuLX yvXCd8N1mQsu3jc71VhfB/86TAIJchuKZjI1l8YTvqWWC9DKqSZR2+FNAm7Z4Krs b0b34VKkQHrs1LKKmMwW1Rzybvb+VdRgua+XKSSBedq9uDVx5zR11MhAI5wRF4fo R8sNrNurattT2qf36N9jvSq5gJ02McicSCFPmgchjVMBN+yX7WoxBam9OTUFzrBm HgiUkSkmt8HJ7QLK521DvurRoLla83Q/Z9NAVzyjPPDK4tInm/F6/oxr0tQ35ydw 7dG/0cmytPhi6Q== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:38 2026 by rpki-client