This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft
File:                     s8l-xqz0xTcKU8r4I5YxblbkhsY.mft (raw, json)
Hash identifier:          MdDyYDWl/NIdGpBGEfcG3QnqqXBlPOia6IBiufOZ6Ow=
Subject key identifier:   CD:21:38:46:C9:7B:ED:7F:A2:FC:5D:66:25:34:52:FD:53:0C:EC:6B
Authority key identifier: B3:C9:7E:C6:AC:F4:C5:37:0A:53:CA:F8:23:96:31:6E:56:E4:86:C6
Certificate issuer:       /CN=b3c97ec6acf4c5370a53caf82396316e56e486c6
Certificate serial:       019C42EAD8A1A5DD886CD712EA19543CD878
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft
Manifest number:          07DA
Signing time:             Mon 09 Feb 2026 15:00:12 +0000
Manifest this update:     Mon 09 Feb 2026 15:00:12 +0000
Manifest next update:     Tue 10 Feb 2026 15:00:12 +0000
Files and hashes:         1: s8l-xqz0xTcKU8r4I5YxblbkhsY.crl (hash: GVxyEfYfcgGMYX892ivEYTpmO2e+o5f7iCFlnOlHn0E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Feb 2026 15:00:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:42:ea:d8:a1:a5:dd:88:6c:d7:12:ea:19:54:3c:d8:78
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b3c97ec6acf4c5370a53caf82396316e56e486c6
        Validity
            Not Before: Feb  9 15:00:12 2026 GMT
            Not After : Feb 10 15:00:12 2026 GMT
        Subject: CN=cd213846c97bed7fa2fc5d66253452fd530cec6b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:e1:6a:13:15:a1:e2:eb:96:76:58:51:f6:d9:
                    51:7c:9b:0c:c8:28:c8:6e:c3:62:95:ca:90:bb:f4:
                    fe:4d:47:b7:bd:b6:ba:65:cf:2d:0c:5f:c9:f9:40:
                    b3:92:68:42:db:a5:14:49:4c:aa:ce:c4:da:9e:15:
                    98:c2:bb:88:a5:cf:2f:1f:d7:49:fb:c3:15:bd:a1:
                    7c:f7:12:39:04:5d:c3:26:e0:2f:a3:61:bd:3b:97:
                    5f:73:20:de:79:58:25:70:80:a6:2c:0e:70:95:9f:
                    33:3f:3b:61:68:9f:ca:f4:37:3f:88:6e:a0:24:33:
                    25:18:1b:dc:36:e8:b6:ca:73:6f:60:cd:75:f4:e7:
                    87:c7:a8:e3:38:1c:60:be:83:de:aa:1c:b0:4d:2d:
                    5c:94:e2:18:a6:9c:d2:17:26:6a:fb:98:ea:0a:93:
                    2d:20:79:73:f3:94:59:42:51:a8:1e:f7:6c:c2:0e:
                    32:e4:22:0c:b0:a6:a0:94:7c:a5:fa:1b:01:8e:fd:
                    ed:4b:a2:94:b1:7c:48:b5:c9:94:c0:53:4e:91:6e:
                    d8:c0:d4:2f:71:fa:4d:b3:34:3a:c6:10:03:a2:de:
                    de:2c:41:6f:ea:e7:e5:4c:8d:18:c7:57:7c:86:61:
                    73:09:ed:e1:e3:52:5f:7f:e3:2a:3c:d3:8d:69:9c:
                    2a:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:21:38:46:C9:7B:ED:7F:A2:FC:5D:66:25:34:52:FD:53:0C:EC:6B
            X509v3 Authority Key Identifier:
                keyid:B3:C9:7E:C6:AC:F4:C5:37:0A:53:CA:F8:23:96:31:6E:56:E4:86:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:84:a7:fe:09:c4:e1:44:a5:5f:a4:47:a3:78:8f:87:94:49:
         a6:ca:9c:95:56:d0:e7:96:3b:d4:77:cb:59:c1:ab:6d:a5:90:
         15:5d:14:0c:98:04:f5:5c:54:1b:4b:4b:c6:df:cd:37:a2:1e:
         a0:c6:92:95:f6:78:c0:c2:2a:e5:12:6d:73:9b:8b:e7:f3:15:
         3e:ca:c2:f4:31:9c:a2:e2:fb:a2:40:c7:37:c7:82:55:86:69:
         fe:0b:d7:25:c2:8d:5d:cf:6e:76:98:60:06:6f:3f:f5:6f:c9:
         ad:f1:cb:c7:4c:f2:65:c6:ec:22:59:d0:01:26:2d:9c:72:14:
         6d:ba:78:29:79:b1:c2:e5:95:94:34:9e:ef:75:1f:d2:29:8a:
         1c:2b:8a:87:40:b2:57:7e:c7:85:bf:65:a4:52:59:0a:0b:f6:
         5a:bd:b2:d0:40:2f:58:6f:d1:94:21:2e:91:24:2a:62:5c:9e:
         81:3f:18:00:6e:fd:d9:39:44:8c:83:11:2e:7f:55:e9:32:d6:
         80:19:f8:3a:7c:22:9b:fd:d5:85:ad:2a:c1:80:0f:cb:19:13:
         eb:a3:6e:6d:47:f0:51:83:e3:89:d2:9f:4d:7f:6b:26:e2:ea:
         41:30:9d:2c:24:74:52:f8:29:b1:cd:f5:f7:9b:17:1f:cb:0b:
         af:83:2a:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 9 22:41:50 2026 by rpki-client