This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft File: q7lESdTSRidxdzvAimJFB9pRKw0.mft (raw, json) Hash identifier: 17hirDy7buA4tnUJdTDFOegIBRkorVvQB2DQnX9NWKU= Subject key identifier: E2:FD:71:5D:CB:42:8F:E5:FE:0A:91:C0:5B:93:9C:12:1D:7C:EA:98 Authority key identifier: AB:B9:44:49:D4:D2:46:27:71:77:3B:C0:8A:62:45:07:DA:51:2B:0D Certificate issuer: /CN=abb94449d4d2462771773bc08a624507da512b0d Certificate serial: 019C420FAEF97C0072DC9B6553A5D715C4E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q7lESdTSRidxdzvAimJFB9pRKw0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft Manifest number: 08F4 Signing time: Mon 09 Feb 2026 11:00:49 +0000 Manifest this update: Mon 09 Feb 2026 11:00:49 +0000 Manifest next update: Tue 10 Feb 2026 11:00:49 +0000 Files and hashes: 1: q7lESdTSRidxdzvAimJFB9pRKw0.crl (hash: J6Hmbn6776qlqFi2aspNP0b/8W95mEh7L7txI4huSfU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft rsync://rpki.ripe.net/repository/DEFAULT/q7lESdTSRidxdzvAimJFB9pRKw0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:ae:f9:7c:00:72:dc:9b:65:53:a5:d7:15:c4:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=abb94449d4d2462771773bc08a624507da512b0d Validity Not Before: Feb 9 11:00:49 2026 GMT Not After : Feb 10 11:00:49 2026 GMT Subject: CN=e2fd715dcb428fe5fe0a91c05b939c121d7cea98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ee:51:76:36:ae:2c:e6:8c:41:af:cd:1e:be: 53:6e:90:b4:a7:45:ca:2b:ee:e6:77:f2:2d:e4:57: 6a:60:ca:ef:65:2c:40:92:f2:9e:8a:aa:94:12:e6: 57:f6:7b:4f:2e:cb:6b:95:85:7a:c6:39:d6:b3:10: 6e:e6:f9:da:10:f0:9d:61:73:72:5d:d2:0b:d1:fe: 90:89:94:b0:3d:02:95:31:d7:0a:0a:02:20:42:48: df:bb:55:80:69:91:f4:a3:8a:7f:a0:be:f1:ad:a2: 2a:8d:6f:f4:08:a4:67:79:3b:aa:e6:9a:15:65:cb: 3c:f5:d4:14:3e:02:a5:51:4b:f9:46:d7:58:ae:c0: fd:02:b5:78:72:31:9a:ad:75:55:4b:21:ba:d6:a4: b0:1a:6e:f9:13:f3:4a:f9:4f:c1:18:0f:59:41:b4: 99:bd:77:9e:34:1b:ec:fd:37:cb:ab:03:d8:0b:5b: b1:e8:d5:94:e6:b7:d4:85:00:8e:b1:f1:3d:68:bd: ed:58:0e:e6:b0:ca:3f:eb:93:75:54:e2:c8:9e:aa: 66:fb:3d:70:27:32:c2:6b:25:bb:20:70:d1:50:50: ee:16:c0:58:74:ab:69:8f:9a:9b:36:ea:ad:5b:05: b7:ca:15:72:a7:c2:bb:38:7a:8f:f1:79:bb:b6:81: c5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:FD:71:5D:CB:42:8F:E5:FE:0A:91:C0:5B:93:9C:12:1D:7C:EA:98 X509v3 Authority Key Identifier: keyid:AB:B9:44:49:D4:D2:46:27:71:77:3B:C0:8A:62:45:07:DA:51:2B:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q7lESdTSRidxdzvAimJFB9pRKw0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:06:e3:1f:3e:f2:9f:36:4e:7e:ee:b5:2e:5f:15:51:c0:ca: ad:80:65:ef:03:25:20:eb:00:73:60:26:33:76:47:04:71:5d: 39:45:f6:b9:8d:d9:72:58:ca:18:ef:18:ed:51:2c:3b:6e:d2: 15:3a:f4:ea:8b:57:83:92:1b:1e:53:6b:c2:da:87:8d:1f:e5: 25:a2:11:e1:29:fc:03:b7:ca:2c:3c:7d:cb:a8:7b:2d:a5:9d: 50:2a:2d:85:47:35:14:b8:ec:5a:46:18:99:09:f6:04:07:df: 9a:c9:0a:01:36:3c:99:30:d1:a2:25:c0:71:4b:1f:a3:b7:69: 78:2d:71:66:c8:fe:1c:98:f6:cb:2a:34:51:a6:8e:2c:3a:7a: e4:64:cf:a2:d2:3b:03:1a:a7:9a:60:68:f5:4f:71:04:99:1f: d1:f8:88:1d:5e:a1:b1:08:0f:5f:64:42:09:d0:52:fb:af:cd: 87:02:3f:1b:b1:8c:29:ed:ba:ea:ca:84:fc:f9:28:87:17:3f: b2:82:83:bc:91:e8:9e:88:52:06:49:cc:b7:d6:34:66:b5:6c: e6:66:0c:9c:8a:63:c7:ad:72:9a:6f:77:7c:f2:cc:45:60:34: 30:2b:2c:3d:3d:af:ad:59:e0:9b:32:ad:49:07:0f:b8:42:61: d8:81:09:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD675fABy3JtlU6XXFcTkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiYjk0NDQ5ZDRkMjQ2Mjc3MTc3M2JjMDhhNjI0NTA3ZGE1 MTJiMGQwHhcNMjYwMjA5MTEwMDQ5WhcNMjYwMjEwMTEwMDQ5WjAzMTEwLwYDVQQD EyhlMmZkNzE1ZGNiNDI4ZmU1ZmUwYTkxYzA1YjkzOWMxMjFkN2NlYTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqO5RdjauLOaMQa/NHr5TbpC0p0XK K+7md/It5FdqYMrvZSxAkvKeiqqUEuZX9ntPLstrlYV6xjnWsxBu5vnaEPCdYXNy XdIL0f6QiZSwPQKVMdcKCgIgQkjfu1WAaZH0o4p/oL7xraIqjW/0CKRneTuq5poV Zcs89dQUPgKlUUv5RtdYrsD9ArV4cjGarXVVSyG61qSwGm75E/NK+U/BGA9ZQbSZ vXeeNBvs/TfLqwPYC1ux6NWU5rfUhQCOsfE9aL3tWA7msMo/65N1VOLInqpm+z1w JzLCayW7IHDRUFDuFsBYdKtpj5qbNuqtWwW3yhVyp8K7OHqP8Xm7toHFXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOL9cV3LQo/l/gqRwFuTnBIdfOqYMB8GA1UdIwQY MBaAFKu5REnU0kYncXc7wIpiRQfaUSsNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTdsRVNkVFNSaWR4ZHp2QWltSkZCOXBSS3cwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS82MjVkNzgtMDE5Yy00MzAxLWJhNzgt NzBjMGMxNWJjODBhLzEvcTdsRVNkVFNSaWR4ZHp2QWltSkZCOXBSS3cwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS82MjVkNzgtMDE5Yy00MzAxLWJhNzgtNzBjMGMxNWJjODBh LzEvcTdsRVNkVFNSaWR4ZHp2QWltSkZCOXBSS3cwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArQbjHz7y nzZOfu61Ll8VUcDKrYBl7wMlIOsAc2AmM3ZHBHFdOUX2uY3ZcljKGO8Y7VEsO27S FTr06otXg5IbHlNrwtqHjR/lJaIR4Sn8A7fKLDx9y6h7LaWdUCothUc1FLjsWkYY mQn2BAffmskKATY8mTDRoiXAcUsfo7dpeC1xZsj+HJj2yyo0UaaOLDp65GTPotI7 AxqnmmBo9U9xBJkf0fiIHV6hsQgPX2RCCdBS+6/NhwI/G7GMKe266sqE/Pkohxc/ soKDvJHonohSBknMt9Y0ZrVs5mYMnIpjx61ymm93fPLMRWA0MCssPT2vrVngmzKt SQcPuEJh2IEJKg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:53 2026 by rpki-client