This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft File: l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft (raw, json) Hash identifier: 7MM3fdS9r02AsM+l7+SCKJKNVfOHX5amra9cGCdP+Ok= Subject key identifier: E6:82:CB:BB:3C:01:EA:9E:71:74:79:F6:CE:24:51:83:FD:DE:DE:83 Authority key identifier: 97:B6:CB:48:84:1C:E5:19:B2:83:59:CA:F1:BC:E3:40:E3:36:81:EF Certificate issuer: /CN=97b6cb48841ce519b28359caf1bce340e33681ef Certificate serial: 019C420F622535293F1285C58B988F66E3A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft Manifest number: 09BA Signing time: Mon 09 Feb 2026 11:00:30 +0000 Manifest this update: Mon 09 Feb 2026 11:00:30 +0000 Manifest next update: Tue 10 Feb 2026 11:00:30 +0000 Files and hashes: 1: l7bLSIQc5Rmyg1nK8bzjQOM2ge8.crl (hash: hbVCG7ZxzMhiNQR+4uZEAXxn1nme2unYEuqS179eSvc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.crl rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft rsync://rpki.ripe.net/repository/DEFAULT/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:62:25:35:29:3f:12:85:c5:8b:98:8f:66:e3:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97b6cb48841ce519b28359caf1bce340e33681ef Validity Not Before: Feb 9 11:00:30 2026 GMT Not After : Feb 10 11:00:30 2026 GMT Subject: CN=e682cbbb3c01ea9e717479f6ce245183fddede83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:14:f3:07:8a:e4:a0:4c:d5:bf:90:ef:8e:8f: a5:54:ed:e9:73:8b:8a:8b:1f:6f:5a:09:60:ed:7f: f1:ba:e8:b0:f7:06:90:84:7e:b5:5c:8d:af:4b:c5: 79:da:7d:c2:e0:ae:6c:a0:8d:13:b1:0d:8e:79:05: 92:65:7c:b3:8a:38:3a:2c:9d:d5:86:9e:10:78:70: 94:4b:65:1a:64:eb:bf:5f:0d:c9:18:01:d1:b6:ee: 26:be:90:33:b3:09:07:a5:d9:56:eb:bf:e3:44:9b: fa:a5:3c:27:da:d6:e9:4e:33:ed:29:0d:d2:ba:c9: d5:43:2d:21:14:63:99:ec:c8:91:1f:04:68:9a:82: 79:0a:5e:be:0f:0e:c3:7a:03:24:85:e2:bb:9c:fe: a8:ee:e5:6b:ac:1a:ea:b9:fb:96:5d:11:cb:a0:ef: 2a:28:c8:fe:cc:f3:39:0f:50:3a:a7:ff:01:30:05: 32:51:48:9c:bf:16:f9:e6:10:0e:39:e3:83:2c:64: 90:81:23:6f:a5:e4:02:5e:f5:88:cb:b7:64:15:f1: 16:c7:88:5f:bb:27:59:ee:12:64:28:5d:67:cb:cd: 40:c9:0d:d2:fc:1b:75:9e:3d:1a:21:a0:ec:d0:0c: 25:19:df:3b:32:97:cf:69:86:64:05:89:7b:fd:ea: bb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:82:CB:BB:3C:01:EA:9E:71:74:79:F6:CE:24:51:83:FD:DE:DE:83 X509v3 Authority Key Identifier: keyid:97:B6:CB:48:84:1C:E5:19:B2:83:59:CA:F1:BC:E3:40:E3:36:81:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:71:4d:69:c7:d8:e5:51:bd:71:55:93:ff:b3:3e:73:8c:1e: 5f:bf:6b:37:7d:ad:71:33:9f:00:f0:28:e6:aa:53:bd:30:b6: 63:80:9d:db:0a:82:82:38:80:b7:50:da:e5:a7:ea:ca:14:13: b0:41:2a:be:0d:0d:f1:bd:7a:8f:2c:e5:f7:7f:d3:d7:69:4d: 9d:3b:24:16:b0:c8:d5:bf:b0:7b:9f:ca:86:07:39:9a:53:6e: a4:57:56:53:88:87:ee:9c:2c:3b:60:65:c3:ff:fc:cf:99:ed: f4:22:b3:90:2c:97:5f:37:2a:b3:5c:eb:c4:36:34:e4:ea:53: 4c:f5:98:e6:60:a1:13:9e:de:68:5e:ff:32:a9:a1:d3:8a:08: d2:d5:7c:98:26:53:1f:ea:62:93:11:52:fd:7b:9d:ca:ce:83: a4:4e:3a:78:d9:a4:e8:4c:ab:57:63:5e:7a:97:16:37:29:79: 3d:67:1a:98:ed:1e:c2:23:e2:9d:5f:81:9d:56:dd:1c:8f:de: 25:e3:43:45:a3:70:c1:de:70:bb:e2:cd:f0:d0:0c:56:84:66: c5:4b:fc:44:fb:46:60:60:3c:51:a6:28:19:d7:a2:ce:dc:4a: 6d:a3:6d:a3:7d:59:80:0f:cf:a2:22:7e:08:63:f3:bd:b4:1f: a8:82:4b:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD2IlNSk/EoXFi5iPZuOmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3YjZjYjQ4ODQxY2U1MTliMjgzNTljYWYxYmNlMzQwZTMz NjgxZWYwHhcNMjYwMjA5MTEwMDMwWhcNMjYwMjEwMTEwMDMwWjAzMTEwLwYDVQQD EyhlNjgyY2JiYjNjMDFlYTllNzE3NDc5ZjZjZTI0NTE4M2ZkZGVkZTgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+hTzB4rkoEzVv5Dvjo+lVO3pc4uK ix9vWglg7X/xuuiw9waQhH61XI2vS8V52n3C4K5soI0TsQ2OeQWSZXyzijg6LJ3V hp4QeHCUS2UaZOu/Xw3JGAHRtu4mvpAzswkHpdlW67/jRJv6pTwn2tbpTjPtKQ3S usnVQy0hFGOZ7MiRHwRomoJ5Cl6+Dw7DegMkheK7nP6o7uVrrBrqufuWXRHLoO8q KMj+zPM5D1A6p/8BMAUyUUicvxb55hAOOeODLGSQgSNvpeQCXvWIy7dkFfEWx4hf uydZ7hJkKF1ny81AyQ3S/Bt1nj0aIaDs0AwlGd87MpfPaYZkBYl7/eq7bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOaCy7s8AeqecXR59s4kUYP93t6DMB8GA1UdIwQY MBaAFJe2y0iEHOUZsoNZyvG840DjNoHvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDdiTFNJUWM1Um15ZzFuSzhiempRT00yZ2U4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iZGQ5MmUtM2IxMS00MTZmLWFlOTMt NDZlYTY1NmJmMzg5LzEvbDdiTFNJUWM1Um15ZzFuSzhiempRT00yZ2U4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9iZGQ5MmUtM2IxMS00MTZmLWFlOTMtNDZlYTY1NmJmMzg5 LzEvbDdiTFNJUWM1Um15ZzFuSzhiempRT00yZ2U4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW3FNacfY 5VG9cVWT/7M+c4weX79rN32tcTOfAPAo5qpTvTC2Y4Cd2wqCgjiAt1Da5afqyhQT sEEqvg0N8b16jyzl93/T12lNnTskFrDI1b+we5/Khgc5mlNupFdWU4iH7pwsO2Bl w//8z5nt9CKzkCyXXzcqs1zrxDY05OpTTPWY5mChE57eaF7/Mqmh04oI0tV8mCZT H+pikxFS/Xudys6DpE46eNmk6EyrV2NeepcWNyl5PWcamO0ewiPinV+BnVbdHI/e JeNDRaNwwd5wu+LN8NAMVoRmxUv8RPtGYGA8UaYoGdeiztxKbaNto31ZgA/PoiJ+ CGPzvbQfqIJLUg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:04 2026 by rpki-client