This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft File: ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft (raw, json) Hash identifier: XyRv6ncXmyKSVzp8LH6TJoKNEWcx5gXnURhxmZ8zZNU= Subject key identifier: FD:7E:D5:0F:7C:29:88:FA:C6:16:C5:28:6E:F4:D3:D4:02:70:3E:70 Authority key identifier: 11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54 Certificate issuer: /CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754 Certificate serial: 019C42EB6C6787B5AE573973AF59CBBFA6EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft Manifest number: 06E8 Signing time: Mon 09 Feb 2026 15:00:50 +0000 Manifest this update: Mon 09 Feb 2026 15:00:50 +0000 Manifest next update: Tue 10 Feb 2026 15:00:50 +0000 Files and hashes: 1: ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl (hash: KcEFAM9U6iBlUAIvtGpxNtGn/jFAxV6iLT+cmrC4HPQ=) 2: stYBdowOVPO4I6l2lk6N70Rzn-E.roa (hash: YY8VJy7fjrv/nyUerV6XVPDCUnj9z+ve+4ysfFvneOU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:6c:67:87:b5:ae:57:39:73:af:59:cb:bf:a6:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754 Validity Not Before: Feb 9 15:00:50 2026 GMT Not After : Feb 10 15:00:50 2026 GMT Subject: CN=fd7ed50f7c2988fac616c5286ef4d3d402703e70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:77:50:ba:35:19:54:0b:ea:7c:42:58:28:40: 34:26:f3:1a:b8:22:a9:b8:13:fe:07:b3:39:03:3b: b8:80:bb:65:4c:b3:bc:12:a5:58:60:d9:ca:cd:63: 35:1b:54:3f:00:4d:ca:a0:8a:a6:88:48:09:07:5e: 54:59:b5:a0:ff:09:59:f7:aa:dc:de:1d:28:ac:9e: 28:66:2b:0e:af:9b:e1:eb:1c:30:7f:b3:9b:20:b3: 75:39:b1:53:d1:80:87:05:31:c7:e8:ac:45:c7:03: f8:e6:5c:92:07:f8:bd:9c:02:68:4d:74:c1:43:21: db:d1:93:ad:c9:30:c6:01:c1:f2:41:df:0a:67:b4: b6:51:c2:a9:9a:e7:6b:63:e1:1e:d7:85:4b:f0:96: 4d:5e:9c:2d:6c:79:c7:96:a9:30:2f:3c:73:ee:a5: b4:8a:50:77:fc:c9:22:99:cd:fc:6c:39:65:60:35: 0d:da:a3:89:88:a7:5f:71:f9:11:53:87:2f:86:86: 68:e7:27:f3:09:dd:19:45:8f:23:83:cd:63:b3:1a: 22:4e:77:48:98:16:a4:a4:b3:94:55:0d:74:c0:cc: ea:e0:49:01:3f:89:97:a3:07:b9:a7:1a:72:f6:7f: 3f:ba:11:b0:93:1f:a5:be:15:5e:fc:e5:f1:ed:3f: a5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:7E:D5:0F:7C:29:88:FA:C6:16:C5:28:6E:F4:D3:D4:02:70:3E:70 X509v3 Authority Key Identifier: keyid:11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:6c:a4:51:28:14:40:1a:4c:80:61:4e:28:80:ed:b7:f4:e4: 9c:59:20:05:28:59:57:5e:8e:7a:12:a9:65:38:73:9d:b4:9a: 5b:ec:6e:4d:7f:76:57:2f:23:ab:89:e9:c1:1f:03:78:8c:63: 8a:86:ae:0f:fa:85:f3:65:1e:cc:80:6e:48:6a:e9:0d:a1:ef: 23:cb:77:8e:99:86:68:21:85:f5:e5:fe:6b:d3:9d:d5:1d:9a: 0e:36:51:8d:1c:1a:69:a6:05:d1:54:f4:7b:b5:51:4b:80:76: e7:4d:8e:52:38:7d:41:89:26:01:ff:83:3f:10:0c:e8:44:4f: dc:98:9c:42:d0:73:07:bc:09:25:29:68:ea:ce:52:d9:e9:dd: 0d:7b:e7:72:cb:e9:c5:f8:29:60:02:fa:3e:f8:24:64:14:6a: 77:79:9a:83:4c:ce:8e:f9:5a:b5:42:a4:41:1a:bb:bd:d6:31: 32:70:ad:f1:28:00:c7:cd:46:32:62:7e:a3:0b:5c:e0:2d:c7: a3:e4:40:39:16:ed:b1:a4:a3:02:80:d6:04:fa:52:48:a2:3e: 6a:8e:67:84:e6:69:f1:46:40:00:fe:c8:9a:c6:d6:04:7d:c8: 7e:73:e0:48:26:ce:7f:e5:ce:32:57:22:c2:f5:fa:02:bc:c0: 34:38:bc:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC62xnh7WuVzlzr1nLv6bqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMmE2YTI2MGQxZTY3ZTBhN2I0ZTZkY2Y0MDNmZDM5ZjZk ZTk3NTQwHhcNMjYwMjA5MTUwMDUwWhcNMjYwMjEwMTUwMDUwWjAzMTEwLwYDVQQD EyhmZDdlZDUwZjdjMjk4OGZhYzYxNmM1Mjg2ZWY0ZDNkNDAyNzAzZTcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoHdQujUZVAvqfEJYKEA0JvMauCKp uBP+B7M5Azu4gLtlTLO8EqVYYNnKzWM1G1Q/AE3KoIqmiEgJB15UWbWg/wlZ96rc 3h0orJ4oZisOr5vh6xwwf7ObILN1ObFT0YCHBTHH6KxFxwP45lySB/i9nAJoTXTB QyHb0ZOtyTDGAcHyQd8KZ7S2UcKpmudrY+Ee14VL8JZNXpwtbHnHlqkwLzxz7qW0 ilB3/Mkimc38bDllYDUN2qOJiKdfcfkRU4cvhoZo5yfzCd0ZRY8jg81jsxoiTndI mBakpLOUVQ10wMzq4EkBP4mXowe5pxpy9n8/uhGwkx+lvhVe/OXx7T+lJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP1+1Q98KYj6xhbFKG7009QCcD5wMB8GA1UdIwQY MBaAFBEqaiYNHmfgp7Tm3PQD/Tn23pdUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVNwcUpnMGVaLUNudE9iYzlBUDlPZmJlbDFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi84NGZhZWQtMGNiNS00Nzk5LTk0NDct YTM5ODhmYzkwZDYwLzEvRVNwcUpnMGVaLUNudE9iYzlBUDlPZmJlbDFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi84NGZhZWQtMGNiNS00Nzk5LTk0NDctYTM5ODhmYzkwZDYw LzEvRVNwcUpnMGVaLUNudE9iYzlBUDlPZmJlbDFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkmykUSgU QBpMgGFOKIDtt/TknFkgBShZV16OehKpZThznbSaW+xuTX92Vy8jq4npwR8DeIxj ioauD/qF82UezIBuSGrpDaHvI8t3jpmGaCGF9eX+a9Od1R2aDjZRjRwaaaYF0VT0 e7VRS4B2502OUjh9QYkmAf+DPxAM6ERP3JicQtBzB7wJJSlo6s5S2endDXvncsvp xfgpYAL6PvgkZBRqd3mag0zOjvlatUKkQRq7vdYxMnCt8SgAx81GMmJ+owtc4C3H o+RAORbtsaSjAoDWBPpSSKI+ao5nhOZp8UZAAP7ImsbWBH3IfnPgSCbOf+XOMlci wvX6ArzANDi8yg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:46 2026 by rpki-client