This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft File: gswXHj3IRnEeBW4uNiQdrJlKYA0.mft (raw, json) Hash identifier: YAUqr2JU3CYW5Fmt1TT9LJ1acAkY8s7NCauF/rqxezI= Subject key identifier: 73:2B:0D:96:44:7C:5F:B0:3B:36:97:29:E1:C7:1B:49:B8:1E:68:49 Authority key identifier: 82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D Certificate issuer: /CN=82cc171e3dc846711e056e2e36241dac994a600d Certificate serial: 019C435931756105CC1A89C530F9BD154215 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 17:00:44 +0000 Manifest this update: Mon 09 Feb 2026 17:00:44 +0000 Manifest next update: Tue 10 Feb 2026 17:00:44 +0000 Files and hashes: 1: gswXHj3IRnEeBW4uNiQdrJlKYA0.crl (hash: Lk1pYHUCK2dU9tR8ACHnvuaLwKdnskZuE73kkFVA1pI=) 2: oE95njlQkWBSsnH1Yv9Om16L1QQ.roa (hash: 9ZO1XVhjSwITS249EhJW2diCc6ZjgTy8NQDIzTk8aNo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:31:75:61:05:cc:1a:89:c5:30:f9:bd:15:42:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82cc171e3dc846711e056e2e36241dac994a600d Validity Not Before: Feb 9 17:00:44 2026 GMT Not After : Feb 10 17:00:44 2026 GMT Subject: CN=732b0d96447c5fb03b369729e1c71b49b81e6849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:96:a1:b8:bb:02:b0:b5:f4:6e:f3:cf:c3:20: 58:9c:92:a9:6d:a2:9a:46:87:91:b3:06:06:54:c4: 41:5b:e7:61:e6:34:02:96:08:7e:58:69:8b:64:1f: 63:1c:85:38:a3:5a:f4:f4:0d:dc:1f:08:97:ae:6f: 24:29:7a:9d:1c:1b:9f:98:d8:5f:be:c0:52:57:32: af:73:c4:f5:85:de:ae:6a:5a:b3:d4:e9:66:80:e0: 14:8f:3a:73:2c:00:1f:33:3f:b9:b4:c0:5c:7b:d0: 65:a5:08:05:df:24:f5:fe:52:a9:f3:66:0e:2c:f6: 9a:58:e9:e1:ef:47:6d:88:e2:4a:a3:9b:55:6c:fb: 90:20:b4:ff:bf:64:86:b2:b2:44:93:17:62:d8:ec: 0e:9f:48:37:4f:07:a9:01:d6:51:74:2c:3e:fd:6d: b9:69:8f:82:c6:b3:c1:11:d7:64:23:b9:28:0e:89: 56:35:ee:af:ba:86:fc:7d:8a:b2:cd:bc:76:81:13: 32:7a:db:5e:87:0d:75:0c:be:9e:77:95:ba:97:84: 69:6d:2f:7d:8b:d1:85:e0:e4:96:48:7f:6f:10:60: 2e:27:3b:a0:55:7a:f4:ba:ba:46:99:40:73:41:8f: 59:20:92:51:b9:a4:51:8f:b0:af:94:b3:32:ec:f9: 9e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:2B:0D:96:44:7C:5F:B0:3B:36:97:29:E1:C7:1B:49:B8:1E:68:49 X509v3 Authority Key Identifier: keyid:82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:e7:60:24:d2:29:3f:5d:c4:f8:57:00:85:5c:c6:8c:c5:e7: 71:53:93:77:79:e9:e9:b7:a3:9e:71:ee:2f:df:5c:2e:37:cd: 72:45:ad:dc:00:ba:57:53:f3:de:bf:1f:d6:e1:b4:26:64:18: 30:ad:7b:38:75:47:a9:3f:ce:b8:61:ed:4a:a8:ad:dd:a1:1b: 1c:b9:ec:94:01:48:42:05:f6:f7:88:bb:7e:75:9c:06:29:8e: 0a:a5:ce:7e:42:d4:3d:21:77:fa:19:38:fb:c9:0e:ad:8c:e1: 72:59:37:60:a1:b0:67:4f:f3:0e:65:b4:dc:36:93:39:b8:6a: 76:b5:99:87:2b:1e:c7:eb:b2:f3:8c:01:f3:1c:5c:fb:97:f7: 79:4d:0b:2f:1d:7f:32:e0:8d:c0:98:89:63:71:fa:8d:90:c1: e3:9a:a2:0d:32:34:89:62:a5:74:28:a6:31:b1:3c:97:62:5b: 4d:01:31:0c:9a:c7:72:c7:88:fe:49:c0:c5:ea:f0:fa:fd:4b: c7:af:ff:94:ce:24:08:a0:27:ec:6a:38:10:b0:b4:36:98:bf: 44:d8:d3:5d:e9:03:f9:be:71:bd:42:9c:8f:cb:ba:53:ee:43: af:5c:20:d3:8a:00:23:42:25:9b:bc:d8:9e:9b:80:9b:8d:8d: ae:1e:1e:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWTF1YQXMGonFMPm9FUIVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyY2MxNzFlM2RjODQ2NzExZTA1NmUyZTM2MjQxZGFjOTk0 YTYwMGQwHhcNMjYwMjA5MTcwMDQ0WhcNMjYwMjEwMTcwMDQ0WjAzMTEwLwYDVQQD Eyg3MzJiMGQ5NjQ0N2M1ZmIwM2IzNjk3MjllMWM3MWI0OWI4MWU2ODQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpahuLsCsLX0bvPPwyBYnJKpbaKa RoeRswYGVMRBW+dh5jQClgh+WGmLZB9jHIU4o1r09A3cHwiXrm8kKXqdHBufmNhf vsBSVzKvc8T1hd6ualqz1OlmgOAUjzpzLAAfMz+5tMBce9BlpQgF3yT1/lKp82YO LPaaWOnh70dtiOJKo5tVbPuQILT/v2SGsrJEkxdi2OwOn0g3TwepAdZRdCw+/W25 aY+CxrPBEddkI7koDolWNe6vuob8fYqyzbx2gRMyettehw11DL6ed5W6l4RpbS99 i9GF4OSWSH9vEGAuJzugVXr0urpGmUBzQY9ZIJJRuaRRj7CvlLMy7PmeGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHMrDZZEfF+wOzaXKeHHG0m4HmhJMB8GA1UdIwQY MBaAFILMFx49yEZxHgVuLjYkHayZSmANMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3N3WEhqM0lSbkVlQlc0dU5pUWRySmxLWUEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yMjEwYzctOTk1OS00NGY3LWFkYTYt ZWZkM2FlOTg1ZWU0LzEvZ3N3WEhqM0lSbkVlQlc0dU5pUWRySmxLWUEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yMjEwYzctOTk1OS00NGY3LWFkYTYtZWZkM2FlOTg1ZWU0 LzEvZ3N3WEhqM0lSbkVlQlc0dU5pUWRySmxLWUEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ+dgJNIp P13E+FcAhVzGjMXncVOTd3np6bejnnHuL99cLjfNckWt3AC6V1Pz3r8f1uG0JmQY MK17OHVHqT/OuGHtSqit3aEbHLnslAFIQgX294i7fnWcBimOCqXOfkLUPSF3+hk4 +8kOrYzhclk3YKGwZ0/zDmW03DaTObhqdrWZhysex+uy84wB8xxc+5f3eU0LLx1/ MuCNwJiJY3H6jZDB45qiDTI0iWKldCimMbE8l2JbTQExDJrHcseI/knAxerw+v1L x6//lM4kCKAn7Go4ELC0Npi/RNjTXekD+b5xvUKcj8u6U+5Dr1wg04oAI0Ilm7zY npuAm42Nrh4eBQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:37:01 2026 by rpki-client