This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.mft File: grQaKruE3kSzFPizq8zqGKSIFyc.mft (raw, json) Hash identifier: WI5jywiF1GcG/zDcrgx+N7VmsZASOR/hdYGFk8/memg= Subject key identifier: BC:32:E3:63:23:8A:65:FA:DA:7A:EA:AA:E6:BB:47:76:CD:02:38:75 Authority key identifier: 82:B4:1A:2A:BB:84:DE:44:B3:14:F8:B3:AB:CC:EA:18:A4:88:17:27 Certificate issuer: /CN=82b41a2abb84de44b314f8b3abccea18a4881727 Certificate serial: 019C44D98B799B9B9E264E6AD76782DC3E9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grQaKruE3kSzFPizq8zqGKSIFyc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.mft Manifest number: 01A7 Signing time: Tue 10 Feb 2026 00:00:33 +0000 Manifest this update: Tue 10 Feb 2026 00:00:33 +0000 Manifest next update: Wed 11 Feb 2026 00:00:33 +0000 Files and hashes: 1: grQaKruE3kSzFPizq8zqGKSIFyc.crl (hash: rMe8XviD33aylbOeYsXvAHwSNsK6uJOU16xuTIIFkqc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.crl rsync://rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.mft rsync://rpki.ripe.net/repository/DEFAULT/grQaKruE3kSzFPizq8zqGKSIFyc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:8b:79:9b:9b:9e:26:4e:6a:d7:67:82:dc:3e:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82b41a2abb84de44b314f8b3abccea18a4881727 Validity Not Before: Feb 10 00:00:33 2026 GMT Not After : Feb 11 00:00:33 2026 GMT Subject: CN=bc32e363238a65fada7aeaaae6bb4776cd023875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:19:a2:cd:0b:46:5c:1d:c8:77:05:b8:ff:9e: ab:d5:98:78:78:a7:50:88:bc:2b:cd:e0:7c:fe:98: 83:40:a3:a4:2b:27:0e:44:74:e3:ca:8b:57:95:dd: eb:a4:6a:a9:54:9d:22:22:1e:44:6c:ce:f2:a0:fe: 4c:3b:1a:76:2c:04:ac:81:f7:bf:0c:1d:b7:b9:89: 2a:1d:af:38:c9:dc:2e:54:35:58:d4:a1:e7:61:2e: 22:5d:54:50:0a:18:29:65:af:60:67:b1:38:46:14: 9f:c0:37:29:79:d2:ae:8e:21:75:7d:9a:e0:65:33: f4:37:8a:e1:d6:7c:12:a7:3d:aa:8f:ca:13:43:7e: da:5b:2f:4f:40:1b:d9:97:d0:72:b3:65:1d:42:9a: bf:58:ce:14:9b:42:3f:c4:75:95:93:12:17:d4:d8: 11:49:27:55:f8:d3:39:f6:de:c4:19:bb:38:ef:51: 88:59:e7:c3:f5:61:37:92:bf:2d:a3:d8:99:a9:cd: f3:1b:10:20:e5:ab:b3:2b:9a:cb:03:1c:ac:38:b0: 61:93:18:5e:cf:c4:01:49:eb:ee:e0:1b:84:f8:ee: 26:e6:a6:87:b6:92:df:17:27:73:f2:c5:10:f4:6f: 47:d9:d7:63:eb:e8:bd:fb:4e:1e:96:24:20:55:90: b8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:32:E3:63:23:8A:65:FA:DA:7A:EA:AA:E6:BB:47:76:CD:02:38:75 X509v3 Authority Key Identifier: keyid:82:B4:1A:2A:BB:84:DE:44:B3:14:F8:B3:AB:CC:EA:18:A4:88:17:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grQaKruE3kSzFPizq8zqGKSIFyc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/690f87-28c9-4482-85f2-989671001e91/1/grQaKruE3kSzFPizq8zqGKSIFyc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:d5:b1:bb:d3:c7:15:9d:8b:1c:b1:bd:9f:cf:33:b5:78:ad: c9:9f:d5:7f:6a:56:45:9f:28:55:41:26:bb:71:34:26:9f:9b: 3a:84:87:93:45:56:14:2c:17:af:ca:f0:29:1c:e6:ac:ef:bd: 42:21:80:3d:24:41:85:90:2d:50:43:3c:06:e7:a4:e9:7a:af: 88:e2:a8:61:f2:e5:dc:02:ad:b5:ae:b2:54:be:fe:14:f4:70: 4c:32:d5:88:da:6c:3b:9c:8d:41:09:a0:f9:f1:82:00:3e:26: f5:36:83:ad:50:d1:0a:ed:9b:64:a3:82:b5:b0:aa:13:45:b2: 02:d7:cc:8f:6b:97:ad:7b:5b:79:01:08:81:01:a9:90:73:49: 5a:a5:70:59:06:00:14:88:02:7c:08:4a:b4:36:c1:86:e7:13: c3:26:70:1b:62:e6:1a:9f:45:bd:b6:46:ae:e3:fc:75:9a:c6: 52:64:0d:b3:f7:d8:a3:ba:35:34:4a:7d:9e:af:a7:90:54:ca: 47:21:28:97:4d:5f:21:16:dc:a3:5e:cf:a2:ee:ef:d7:cc:5c: ea:35:fc:5b:39:f5:68:97:b6:34:af:a1:a6:72:69:0e:7c:04: 80:12:f5:25:e5:04:84:05:e5:04:1d:bb:0c:be:de:bf:0c:75: 0a:ee:7c:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2Yt5m5ueJk5q12eC3D6cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyYjQxYTJhYmI4NGRlNDRiMzE0ZjhiM2FiY2NlYTE4YTQ4 ODE3MjcwHhcNMjYwMjEwMDAwMDMzWhcNMjYwMjExMDAwMDMzWjAzMTEwLwYDVQQD EyhiYzMyZTM2MzIzOGE2NWZhZGE3YWVhYWFlNmJiNDc3NmNkMDIzODc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRmizQtGXB3IdwW4/56r1Zh4eKdQ iLwrzeB8/piDQKOkKycORHTjyotXld3rpGqpVJ0iIh5EbM7yoP5MOxp2LASsgfe/ DB23uYkqHa84ydwuVDVY1KHnYS4iXVRQChgpZa9gZ7E4RhSfwDcpedKujiF1fZrg ZTP0N4rh1nwSpz2qj8oTQ37aWy9PQBvZl9Bys2UdQpq/WM4Um0I/xHWVkxIX1NgR SSdV+NM59t7EGbs471GIWefD9WE3kr8to9iZqc3zGxAg5auzK5rLAxysOLBhkxhe z8QBSevu4BuE+O4m5qaHtpLfFydz8sUQ9G9H2ddj6+i9+04eliQgVZC4zQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLwy42MjimX62nrqqua7R3bNAjh1MB8GA1UdIwQY MBaAFIK0Giq7hN5EsxT4s6vM6hikiBcnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3JRYUtydUUza1N6RlBpenE4enFHS1NJRnljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC82OTBmODctMjhjOS00NDgyLTg1ZjIt OTg5NjcxMDAxZTkxLzEvZ3JRYUtydUUza1N6RlBpenE4enFHS1NJRnljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC82OTBmODctMjhjOS00NDgyLTg1ZjItOTg5NjcxMDAxZTkx LzEvZ3JRYUtydUUza1N6RlBpenE4enFHS1NJRnljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcNWxu9PH FZ2LHLG9n88ztXityZ/Vf2pWRZ8oVUEmu3E0Jp+bOoSHk0VWFCwXr8rwKRzmrO+9 QiGAPSRBhZAtUEM8Buek6XqviOKoYfLl3AKtta6yVL7+FPRwTDLViNpsO5yNQQmg +fGCAD4m9TaDrVDRCu2bZKOCtbCqE0WyAtfMj2uXrXtbeQEIgQGpkHNJWqVwWQYA FIgCfAhKtDbBhucTwyZwG2LmGp9FvbZGruP8dZrGUmQNs/fYo7o1NEp9nq+nkFTK RyEol01fIRbco17Pou7v18xc6jX8Wzn1aJe2NK+hpnJpDnwEgBL1JeUEhAXlBB27 DL7evwx1Cu58Ow== -----END CERTIFICATE-----Generated at Tue Feb 10 01:38:53 2026 by rpki-client