This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft File: ba7zApYp3gKduYq3tOm9IhwomRw.mft (raw, json) Hash identifier: xB7oW2/edrn8ELKdNZ/Muy5LBVjOq4fR5wgIVxCvAZQ= Subject key identifier: 12:2A:7A:8A:65:E5:C8:08:E2:B6:79:C8:4D:A4:D4:13:F3:AE:A5:6C Authority key identifier: 6D:AE:F3:02:96:29:DE:02:9D:B9:8A:B7:B4:E9:BD:22:1C:28:99:1C Certificate issuer: /CN=6daef3029629de029db98ab7b4e9bd221c28991c Certificate serial: 019C4134836026D1DB868F3036083551A89B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ba7zApYp3gKduYq3tOm9IhwomRw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft Manifest number: 0DF8 Signing time: Mon 09 Feb 2026 07:01:26 +0000 Manifest this update: Mon 09 Feb 2026 07:01:26 +0000 Manifest next update: Tue 10 Feb 2026 07:01:26 +0000 Files and hashes: 1: ba7zApYp3gKduYq3tOm9IhwomRw.crl (hash: VBd7ak1zF/9RuG4xcRBqw35Ja3TvHft+q2wxUHAC0v0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.crl rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft rsync://rpki.ripe.net/repository/DEFAULT/ba7zApYp3gKduYq3tOm9IhwomRw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:83:60:26:d1:db:86:8f:30:36:08:35:51:a8:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6daef3029629de029db98ab7b4e9bd221c28991c Validity Not Before: Feb 9 07:01:26 2026 GMT Not After : Feb 10 07:01:26 2026 GMT Subject: CN=122a7a8a65e5c808e2b679c84da4d413f3aea56c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b8:7d:37:90:0d:08:b3:a0:6a:85:43:e2:ad: 56:72:c0:2d:d1:3a:3b:6a:ea:8b:e0:33:1f:18:bb: b5:ba:a4:46:dd:bd:61:91:54:b8:62:13:95:c3:3d: 0d:9d:b3:54:d7:35:14:15:ed:e3:65:cf:2b:50:62: 0e:cb:50:5a:60:1a:aa:5a:ce:2f:bb:e3:f3:99:32: 38:9f:a1:83:a3:cf:d4:13:37:4e:bc:50:73:1f:08: e5:d3:e3:e2:80:02:bc:f8:6f:e5:74:7a:54:b6:4c: e7:d6:b7:0f:0e:a2:68:e9:e2:72:94:d2:0f:8f:8b: 7e:f8:ac:11:27:95:8a:5c:ba:0a:68:06:6f:89:7a: 51:fd:75:07:a7:64:31:36:64:d7:e8:9d:5f:ee:96: 08:3e:8c:29:c9:7a:4a:18:5f:88:95:dc:5b:c0:ee: d9:2e:23:25:49:19:71:6a:41:9f:0f:6c:75:75:c2: c8:e4:db:22:a9:d9:1b:8a:b1:df:cf:5e:15:1a:c5: b4:ef:c0:b7:23:ec:4c:a1:de:3e:df:de:d2:26:c1: bb:21:a5:07:44:31:05:b8:99:6b:bf:ae:43:e3:b7: ce:76:28:dc:eb:cb:87:da:b2:4d:34:be:ef:3c:b7: 82:b6:f0:18:5f:15:98:a4:aa:3f:7a:e6:89:26:b1: 14:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:2A:7A:8A:65:E5:C8:08:E2:B6:79:C8:4D:A4:D4:13:F3:AE:A5:6C X509v3 Authority Key Identifier: keyid:6D:AE:F3:02:96:29:DE:02:9D:B9:8A:B7:B4:E9:BD:22:1C:28:99:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba7zApYp3gKduYq3tOm9IhwomRw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:17:92:fc:57:83:20:42:95:b1:db:0c:a7:80:68:0e:f6:5d: 0e:37:f6:81:72:94:fd:bd:d6:3e:24:8c:b1:cc:e7:d7:85:4e: 9f:79:f7:cb:09:14:db:f9:a3:19:4c:8e:11:04:04:2b:68:9e: 80:f5:ea:e6:d8:54:c0:c1:a1:26:df:25:78:62:ca:ad:7a:5b: 81:2f:73:22:74:a3:1e:55:76:50:45:34:ad:88:9f:d3:2f:fb: fc:7b:6c:53:41:ff:4b:7a:2f:dc:ee:75:f2:ca:ef:b8:51:08: ac:21:c5:c3:28:77:f7:c5:14:c3:98:56:28:68:53:4c:b5:5e: 79:ae:18:06:c3:98:5c:11:4d:f0:09:5c:77:17:81:60:dc:f5: d5:cb:a1:03:a7:37:63:a3:44:9b:09:54:6a:fb:39:01:1e:3e: 7d:d6:40:b9:5e:ed:49:14:5f:18:28:e7:c8:0e:0d:4b:05:1c: 6d:b8:26:62:8d:99:65:68:33:69:48:02:1e:fa:74:37:aa:85: 3a:f8:6b:e5:d0:51:ce:d4:a4:cc:3b:14:9b:2c:73:af:12:dd: 89:9a:1a:44:54:92:8a:45:16:c1:5e:f6:37:d8:c2:d8:17:31: ae:7d:42:33:3e:39:1a:46:11:66:8b:06:2a:ca:e7:ac:9a:0a: 05:bd:5f:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNINgJtHbho8wNgg1UaibMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkYWVmMzAyOTYyOWRlMDI5ZGI5OGFiN2I0ZTliZDIyMWMy ODk5MWMwHhcNMjYwMjA5MDcwMTI2WhcNMjYwMjEwMDcwMTI2WjAzMTEwLwYDVQQD EygxMjJhN2E4YTY1ZTVjODA4ZTJiNjc5Yzg0ZGE0ZDQxM2YzYWVhNTZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2bh9N5ANCLOgaoVD4q1WcsAt0To7 auqL4DMfGLu1uqRG3b1hkVS4YhOVwz0NnbNU1zUUFe3jZc8rUGIOy1BaYBqqWs4v u+PzmTI4n6GDo8/UEzdOvFBzHwjl0+PigAK8+G/ldHpUtkzn1rcPDqJo6eJylNIP j4t++KwRJ5WKXLoKaAZviXpR/XUHp2QxNmTX6J1f7pYIPowpyXpKGF+IldxbwO7Z LiMlSRlxakGfD2x1dcLI5NsiqdkbirHfz14VGsW078C3I+xMod4+397SJsG7IaUH RDEFuJlrv65D47fOdijc68uH2rJNNL7vPLeCtvAYXxWYpKo/euaJJrEU4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBIqeopl5cgI4rZ5yE2k1BPzrqVsMB8GA1UdIwQY MBaAFG2u8wKWKd4CnbmKt7TpvSIcKJkcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmE3ekFwWXAzZ0tkdVlxM3RPbTlJaHdvbVJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iNzM0MTEtY2Y0ZS00OTk5LTlmNDIt Y2RlNDA0ODA1YjEwLzEvYmE3ekFwWXAzZ0tkdVlxM3RPbTlJaHdvbVJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9iNzM0MTEtY2Y0ZS00OTk5LTlmNDItY2RlNDA0ODA1YjEw LzEvYmE3ekFwWXAzZ0tkdVlxM3RPbTlJaHdvbVJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYReS/FeD IEKVsdsMp4BoDvZdDjf2gXKU/b3WPiSMsczn14VOn3n3ywkU2/mjGUyOEQQEK2ie gPXq5thUwMGhJt8leGLKrXpbgS9zInSjHlV2UEU0rYif0y/7/HtsU0H/S3ov3O51 8srvuFEIrCHFwyh398UUw5hWKGhTTLVeea4YBsOYXBFN8AlcdxeBYNz11cuhA6c3 Y6NEmwlUavs5AR4+fdZAuV7tSRRfGCjnyA4NSwUcbbgmYo2ZZWgzaUgCHvp0N6qF Ovhr5dBRztSkzDsUmyxzrxLdiZoaRFSSikUWwV72N9jC2Bcxrn1CMz45GkYRZosG KsrnrJoKBb1ftw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:40 2026 by rpki-client