This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft File: 7bKno-y66qV0GCMdsLYkq797pkU.mft (raw, json) Hash identifier: PIFML1by6AcxNY8iIcvYDTVNs4u+Razw6023GaVnfKo= Subject key identifier: D0:F4:16:81:D6:B1:56:15:F6:F5:0C:2A:30:98:BC:C4:F0:33:66:35 Authority key identifier: ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45 Certificate issuer: /CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645 Certificate serial: 019C41A196CA3523902A540B640FB34E8B81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 09:00:34 +0000 Manifest this update: Mon 09 Feb 2026 09:00:34 +0000 Manifest next update: Tue 10 Feb 2026 09:00:34 +0000 Files and hashes: 1: 7bKno-y66qV0GCMdsLYkq797pkU.crl (hash: TIV0hsmClkgvMf6UolR8Bc9L+s5vlwZdqsY3GCWLXoo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:96:ca:35:23:90:2a:54:0b:64:0f:b3:4e:8b:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645 Validity Not Before: Feb 9 09:00:34 2026 GMT Not After : Feb 10 09:00:34 2026 GMT Subject: CN=d0f41681d6b15615f6f50c2a3098bcc4f0336635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:ea:ec:cf:31:ee:2b:98:8e:19:9c:fd:a0:80: ea:56:ae:7a:67:6a:ee:6e:a6:8d:7d:e2:97:60:cb: 5a:b3:22:47:b0:ca:bf:31:3f:25:fb:45:77:fa:66: 7c:20:6e:26:cf:69:c3:bb:5c:a6:c0:bf:bd:3d:3a: f1:25:5e:47:8f:f3:50:c5:5b:6e:ce:1d:3e:8c:6b: 4d:75:29:7d:e2:73:5f:0a:a9:b4:67:d1:27:09:36: 9c:cc:ad:92:54:03:df:4f:0a:37:99:0d:f7:8f:c3: af:a2:db:98:40:95:db:20:df:53:03:b1:af:ee:28: db:27:46:07:56:3e:d1:a6:f0:1e:a0:4c:bf:94:a2: 4b:65:26:05:f6:4f:e4:45:20:e8:3f:16:0f:b6:e5: 9c:cb:78:93:37:dd:6e:30:dd:bf:cd:bb:35:cb:85: 66:04:b8:45:7c:ab:91:86:38:63:3c:83:f8:b2:30: ea:7f:bc:12:22:08:1d:52:20:62:06:a2:6b:05:b1: 20:0d:a8:e7:ef:12:f7:58:0f:39:82:7f:d7:73:0e: a1:30:af:b0:7d:1f:1b:99:84:5c:83:b2:d5:64:1d: 0a:fd:a5:3f:9d:d7:f9:35:f2:65:97:ff:b8:01:c3: 84:b9:46:35:c4:23:a7:bf:46:5e:33:2a:37:d9:77: f3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F4:16:81:D6:B1:56:15:F6:F5:0C:2A:30:98:BC:C4:F0:33:66:35 X509v3 Authority Key Identifier: keyid:ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:f5:c6:9d:d5:80:42:63:e8:c5:5e:df:db:95:31:3d:a0:e7: dc:f6:c9:56:52:78:29:72:da:2a:ec:82:50:a2:d0:a0:69:08: 11:99:0a:fd:5a:55:91:a2:69:f2:cd:7a:74:34:1d:69:b7:95: 76:e6:ac:ce:50:0f:9f:90:27:c3:9a:3c:47:09:5f:4f:fc:ff: f1:96:1e:2b:97:5e:59:70:9e:f6:ed:98:7f:65:77:1e:ee:01: 4e:89:77:65:b0:aa:f4:14:95:08:ae:bb:15:0f:97:f0:dd:1b: 5e:83:d8:91:d5:3d:c6:0e:26:b2:ba:34:37:e4:79:41:04:4e: 14:2b:1a:66:49:d9:ac:f8:81:27:34:41:c5:eb:4b:b7:14:92: 9b:43:47:fd:4e:cc:06:ec:0a:e4:56:63:2c:ce:00:eb:b4:11: 12:bf:85:58:cf:07:b5:e4:37:d1:e7:63:32:9e:0f:ed:bc:90: 18:a4:ed:45:ce:bc:44:9e:7d:1f:0f:12:a4:55:a0:07:ed:b6: 8e:f9:13:98:2f:48:31:fd:a4:5a:1c:52:01:cd:f3:52:50:df: 67:f2:28:64:27:73:ef:c9:e5:53:df:fc:b5:7d:49:fd:e8:dd: 42:e8:32:70:74:93:38:b8:84:e9:7b:1b:8e:0a:20:48:dd:50: 99:8f:e7:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoZbKNSOQKlQLZA+zTouBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVkYjJhN2EzZWNiYWVhYTU3NDE4MjMxZGIwYjYyNGFiYmY3 YmE2NDUwHhcNMjYwMjA5MDkwMDM0WhcNMjYwMjEwMDkwMDM0WjAzMTEwLwYDVQQD EyhkMGY0MTY4MWQ2YjE1NjE1ZjZmNTBjMmEzMDk4YmNjNGYwMzM2NjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOrszzHuK5iOGZz9oIDqVq56Z2ru bqaNfeKXYMtasyJHsMq/MT8l+0V3+mZ8IG4mz2nDu1ymwL+9PTrxJV5Hj/NQxVtu zh0+jGtNdSl94nNfCqm0Z9EnCTaczK2SVAPfTwo3mQ33j8OvotuYQJXbIN9TA7Gv 7ijbJ0YHVj7RpvAeoEy/lKJLZSYF9k/kRSDoPxYPtuWcy3iTN91uMN2/zbs1y4Vm BLhFfKuRhjhjPIP4sjDqf7wSIggdUiBiBqJrBbEgDajn7xL3WA85gn/Xcw6hMK+w fR8bmYRcg7LVZB0K/aU/ndf5NfJll/+4AcOEuUY1xCOnv0ZeMyo32XfzTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFND0FoHWsVYV9vUMKjCYvMTwM2Y1MB8GA1UdIwQY MBaAFO2yp6PsuuqldBgjHbC2JKu/e6ZFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS80M2VkMWMtZmY1MC00MmUwLWI3ZDQt YWYyNTRjZTNmZTY5LzEvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS80M2VkMWMtZmY1MC00MmUwLWI3ZDQtYWYyNTRjZTNmZTY5 LzEvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFPXGndWA QmPoxV7f25UxPaDn3PbJVlJ4KXLaKuyCUKLQoGkIEZkK/VpVkaJp8s16dDQdabeV duaszlAPn5Anw5o8RwlfT/z/8ZYeK5deWXCe9u2Yf2V3Hu4BTol3ZbCq9BSVCK67 FQ+X8N0bXoPYkdU9xg4msro0N+R5QQROFCsaZknZrPiBJzRBxetLtxSSm0NH/U7M BuwK5FZjLM4A67QREr+FWM8HteQ30edjMp4P7byQGKTtRc68RJ59Hw8SpFWgB+22 jvkTmC9IMf2kWhxSAc3zUlDfZ/IoZCdz78nlU9/8tX1J/ejdQugycHSTOLiE6Xsb jgogSN1QmY/npQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:40:41 2026 by rpki-client