This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft File: s8l-xqz0xTcKU8r4I5YxblbkhsY.mft (raw, json) Hash identifier: zuGaPXrTbfP/878m1MxfNISYWBzPVBjo+61cl2yQ1ps= Subject key identifier: D7:24:38:53:E6:78:C6:A1:29:0E:F4:08:23:0E:6C:53:1E:AC:66:DD Authority key identifier: B3:C9:7E:C6:AC:F4:C5:37:0A:53:CA:F8:23:96:31:6E:56:E4:86:C6 Certificate issuer: /CN=b3c97ec6acf4c5370a53caf82396316e56e486c6 Certificate serial: 019C44D97D8309CE10B8B407A62E8AA5E982 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft Manifest number: 07DB Signing time: Tue 10 Feb 2026 00:00:29 +0000 Manifest this update: Tue 10 Feb 2026 00:00:29 +0000 Manifest next update: Wed 11 Feb 2026 00:00:29 +0000 Files and hashes: 1: s8l-xqz0xTcKU8r4I5YxblbkhsY.crl (hash: 3iZgNbFLgxYtaZiIJe+CPRFZNIdc2QWUDUgYL0AXoMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.crl rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:7d:83:09:ce:10:b8:b4:07:a6:2e:8a:a5:e9:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3c97ec6acf4c5370a53caf82396316e56e486c6 Validity Not Before: Feb 10 00:00:29 2026 GMT Not After : Feb 11 00:00:29 2026 GMT Subject: CN=d7243853e678c6a1290ef408230e6c531eac66dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b3:1d:ec:95:ed:c8:98:28:03:d4:09:8b:03: 17:a4:0b:3b:33:1b:78:f3:18:3f:5b:7e:43:d4:9a: b7:6b:d5:68:2c:7e:54:d0:de:9d:bb:35:ab:00:06: 30:3d:a1:c0:4f:83:33:77:66:49:fb:98:4b:66:ec: e6:79:d2:2a:a1:c2:d8:0e:c5:2c:d2:f3:27:25:6f: e4:a4:d4:14:b6:f9:48:66:25:b1:a0:0e:fd:f3:e9: fc:36:66:c0:c3:17:26:ca:68:fa:da:fb:06:15:3a: 1e:9c:90:fc:f6:f1:30:66:bb:7d:fb:e0:49:4a:b1: d1:b8:ed:1f:43:2b:a5:fa:a9:4a:7e:79:3e:19:0d: 66:a3:de:4f:0a:5d:7a:2f:f7:d3:18:7e:c6:26:03: 42:d3:77:11:38:65:f5:ef:db:8d:af:01:d1:24:46: 77:15:21:04:be:2f:d8:bd:a0:b7:85:d5:c5:d7:57: 90:2b:0a:48:04:3b:88:4e:ab:dc:cf:89:3d:23:b1: 59:eb:96:ed:2a:57:58:b4:43:30:f6:e1:a3:e9:dc: 34:60:6d:37:63:ad:a4:14:03:35:cd:8c:b6:31:35: 53:39:3e:19:3a:2f:bf:2f:a0:39:27:8b:07:56:df: b6:08:a9:74:93:ad:d3:03:cc:b3:9d:60:b9:51:0a: 6f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:24:38:53:E6:78:C6:A1:29:0E:F4:08:23:0E:6C:53:1E:AC:66:DD X509v3 Authority Key Identifier: keyid:B3:C9:7E:C6:AC:F4:C5:37:0A:53:CA:F8:23:96:31:6E:56:E4:86:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:d3:40:14:f3:68:b1:9b:c4:4a:61:03:f6:06:93:7b:6f:5a: b9:5f:91:f9:b6:14:19:8f:28:19:b5:70:ae:bf:9a:a5:49:3e: 96:e4:76:c0:50:cf:33:2d:4c:9f:fa:55:a3:0a:56:2c:48:99: d6:a7:42:e5:ef:2d:95:9d:b3:e9:e0:18:fd:93:06:b0:43:b2: 1e:a0:83:95:f5:36:8e:0a:5c:06:7b:cc:39:9b:6e:17:b6:03: f2:27:a0:85:e3:b2:f5:f3:3e:fb:77:ef:5d:ca:7d:26:7e:b8: dc:28:ff:df:4a:a5:ff:1b:26:93:53:7a:4b:75:bc:3b:ed:fd: 0c:8f:78:b0:05:bc:d7:56:15:57:63:2f:e1:3c:f1:f9:63:ba: 1f:9f:1b:1e:1c:50:25:05:ff:a9:12:5b:f3:72:89:5f:55:c8: c0:d4:af:90:4d:2b:46:86:8d:a2:c8:92:ba:17:da:f0:de:f7: cf:04:fe:5e:df:30:f5:8d:82:a2:73:dc:db:fb:a8:32:c5:12: 5a:55:ff:84:33:f7:34:ec:e0:c1:9e:61:09:d5:75:42:c7:c4: 45:2d:2b:25:0a:75:3e:a3:e0:19:6a:06:2e:d1:3f:04:19:ee: 4a:9a:cf:29:0f:c3:f6:61:0b:6c:a8:e7:b0:5c:9d:f4:30:c8: 78:7a:cd:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2X2DCc4QuLQHpi6KpemCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYzk3ZWM2YWNmNGM1MzcwYTUzY2FmODIzOTYzMTZlNTZl NDg2YzYwHhcNMjYwMjEwMDAwMDI5WhcNMjYwMjExMDAwMDI5WjAzMTEwLwYDVQQD EyhkNzI0Mzg1M2U2NzhjNmExMjkwZWY0MDgyMzBlNmM1MzFlYWM2NmRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLMd7JXtyJgoA9QJiwMXpAs7Mxt4 8xg/W35D1Jq3a9VoLH5U0N6duzWrAAYwPaHAT4Mzd2ZJ+5hLZuzmedIqocLYDsUs 0vMnJW/kpNQUtvlIZiWxoA798+n8NmbAwxcmymj62vsGFToenJD89vEwZrt9++BJ SrHRuO0fQyul+qlKfnk+GQ1mo95PCl16L/fTGH7GJgNC03cROGX179uNrwHRJEZ3 FSEEvi/YvaC3hdXF11eQKwpIBDuITqvcz4k9I7FZ65btKldYtEMw9uGj6dw0YG03 Y62kFAM1zYy2MTVTOT4ZOi+/L6A5J4sHVt+2CKl0k63TA8yznWC5UQpvcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNckOFPmeMahKQ70CCMObFMerGbdMB8GA1UdIwQY MBaAFLPJfsas9MU3ClPK+COWMW5W5IbGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczhsLXhxejB4VGNLVThyNEk1WXhibGJraHNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni83MmYzMjgtY2U1Zi00MDRhLTlkNGMt ZDNjMTk1OThhMGU2LzEvczhsLXhxejB4VGNLVThyNEk1WXhibGJraHNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni83MmYzMjgtY2U1Zi00MDRhLTlkNGMtZDNjMTk1OThhMGU2 LzEvczhsLXhxejB4VGNLVThyNEk1WXhibGJraHNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl9NAFPNo sZvESmED9gaTe29auV+R+bYUGY8oGbVwrr+apUk+luR2wFDPMy1Mn/pVowpWLEiZ 1qdC5e8tlZ2z6eAY/ZMGsEOyHqCDlfU2jgpcBnvMOZtuF7YD8iegheOy9fM++3fv Xcp9Jn643Cj/30ql/xsmk1N6S3W8O+39DI94sAW811YVV2Mv4Tzx+WO6H58bHhxQ JQX/qRJb83KJX1XIwNSvkE0rRoaNosiSuhfa8N73zwT+Xt8w9Y2ConPc2/uoMsUS WlX/hDP3NOzgwZ5hCdV1QsfERS0rJQp1PqPgGWoGLtE/BBnuSprPKQ/D9mELbKjn sFyd9DDIeHrNaQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:22:10 2026 by rpki-client