This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.mft File: geY5cEKnqWRfwS91nQJhldfL_Vg.mft (raw, json) Hash identifier: rExiHFwN7y33X/zQX/0N3bzlFX8DmtG6Wu9w21vLtps= Subject key identifier: 62:3A:71:D7:8F:5B:00:A5:AF:97:0F:D7:67:FB:F5:06:44:39:DE:3D Authority key identifier: 81:E6:39:70:42:A7:A9:64:5F:C1:2F:75:9D:02:61:95:D7:CB:FD:58 Certificate issuer: /CN=81e6397042a7a9645fc12f759d026195d7cbfd58 Certificate serial: 019C41A242A86D20367197FA44DE3ACD9372 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geY5cEKnqWRfwS91nQJhldfL_Vg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.mft Manifest number: 0F1A Signing time: Mon 09 Feb 2026 09:01:18 +0000 Manifest this update: Mon 09 Feb 2026 09:01:18 +0000 Manifest next update: Tue 10 Feb 2026 09:01:18 +0000 Files and hashes: 1: geY5cEKnqWRfwS91nQJhldfL_Vg.crl (hash: SeO7vVqjm8kyCVBbwwgFShMxPK74V4sKMmWLoZ412vA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.crl rsync://rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.mft rsync://rpki.ripe.net/repository/DEFAULT/geY5cEKnqWRfwS91nQJhldfL_Vg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:42:a8:6d:20:36:71:97:fa:44:de:3a:cd:93:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81e6397042a7a9645fc12f759d026195d7cbfd58 Validity Not Before: Feb 9 09:01:18 2026 GMT Not After : Feb 10 09:01:18 2026 GMT Subject: CN=623a71d78f5b00a5af970fd767fbf5064439de3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:30:0c:20:08:d0:1c:ad:bf:e3:9a:76:86:ba: 95:f6:51:93:22:82:f7:4e:7d:0c:73:01:43:b2:0c: f7:ea:43:b1:53:23:f5:2d:31:b4:a3:ad:94:88:8f: 7e:5f:b3:95:e0:e7:b2:d9:76:af:5d:de:7a:d9:25: a1:d9:2d:a0:90:86:c8:59:b2:52:f7:54:92:5a:26: d5:27:e4:a0:c4:b1:b7:ae:1c:d0:ad:a3:5a:41:8e: 85:ee:d1:af:3e:9b:fe:60:48:53:0b:4f:27:71:be: 9a:ab:cf:76:34:cc:66:e5:97:3f:ee:08:31:ba:11: 75:1f:8f:d5:3b:34:78:dd:70:fc:f8:86:04:00:98: 8d:a3:1f:42:f8:e9:7a:95:10:53:fd:76:4c:62:85: 3f:84:e5:3c:37:25:1c:93:f8:d6:cc:37:f2:9e:b7: 87:d6:49:33:68:10:57:9d:ee:4a:2e:03:99:15:af: 43:22:5a:ca:bd:17:3c:28:bb:c3:54:fd:60:dd:ed: 73:33:17:35:cf:c0:c7:2c:b7:7c:4b:8f:aa:e8:6b: bd:ab:42:7d:c5:14:27:fd:09:58:dd:3c:7c:54:fb: e6:90:de:4b:a9:36:bd:54:b6:86:16:95:62:c5:c7: 39:13:3f:eb:51:c3:19:a5:7e:eb:43:99:f8:e4:24: a8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:3A:71:D7:8F:5B:00:A5:AF:97:0F:D7:67:FB:F5:06:44:39:DE:3D X509v3 Authority Key Identifier: keyid:81:E6:39:70:42:A7:A9:64:5F:C1:2F:75:9D:02:61:95:D7:CB:FD:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geY5cEKnqWRfwS91nQJhldfL_Vg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:d8:f4:77:91:63:b5:34:8f:38:6d:a7:82:74:a6:fa:85:b5: b7:65:c5:af:93:5e:f1:b7:33:b6:72:85:66:3e:74:20:6d:d6: a1:4e:a5:48:19:77:fd:30:99:61:9e:e1:4f:45:d0:f9:29:bc: 81:34:de:08:8e:32:bd:e6:8c:94:73:99:8b:94:2a:34:ce:db: bd:52:b4:52:fb:a7:d0:8f:4d:5b:ee:bc:70:fa:df:82:c3:1b: 09:23:c7:75:51:ca:e7:f4:1f:93:86:89:ff:59:85:49:4a:65: 67:b5:99:b4:35:7c:bb:75:0d:61:fc:4f:d1:6b:1c:b5:84:2d: 30:a9:b1:b1:04:29:08:1a:03:c5:cc:c9:33:b1:38:19:ec:af: 97:1f:7b:98:3c:27:f3:9d:10:57:fc:dd:16:12:8b:8d:58:fa: 45:ea:f2:33:3a:94:af:5b:ae:5f:0d:11:1b:52:fe:fc:73:7c: 4b:6e:e2:ee:d5:25:77:da:3a:68:c7:fb:eb:d4:a4:91:84:5b: e2:e0:d5:72:a3:65:0b:c3:9d:14:16:4d:6e:d3:e2:78:1a:f3: 4f:3a:72:d6:6d:68:c5:4e:74:1f:d9:b8:69:24:b3:c3:59:17: 26:7f:a8:b0:14:15:75:73:83:f7:78:0c:64:26:e8:ef:5b:38: fa:77:1e:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBokKobSA2cZf6RN46zZNyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxZTYzOTcwNDJhN2E5NjQ1ZmMxMmY3NTlkMDI2MTk1ZDdj YmZkNTgwHhcNMjYwMjA5MDkwMTE4WhcNMjYwMjEwMDkwMTE4WjAzMTEwLwYDVQQD Eyg2MjNhNzFkNzhmNWIwMGE1YWY5NzBmZDc2N2ZiZjUwNjQ0MzlkZTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjAMIAjQHK2/45p2hrqV9lGTIoL3 Tn0McwFDsgz36kOxUyP1LTG0o62UiI9+X7OV4Oey2XavXd562SWh2S2gkIbIWbJS 91SSWibVJ+SgxLG3rhzQraNaQY6F7tGvPpv+YEhTC08ncb6aq892NMxm5Zc/7ggx uhF1H4/VOzR43XD8+IYEAJiNox9C+Ol6lRBT/XZMYoU/hOU8NyUck/jWzDfynreH 1kkzaBBXne5KLgOZFa9DIlrKvRc8KLvDVP1g3e1zMxc1z8DHLLd8S4+q6Gu9q0J9 xRQn/QlY3Tx8VPvmkN5LqTa9VLaGFpVixcc5Ez/rUcMZpX7rQ5n45CSorQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGI6cdePWwClr5cP12f79QZEOd49MB8GA1UdIwQY MBaAFIHmOXBCp6lkX8EvdZ0CYZXXy/1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2VZNWNFS25xV1Jmd1M5MW5RSmhsZGZMX1ZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjhmMWItZjNmMS00ZjFiLTlhYzQt NWNhNmE3YWQwNWZhLzEvZ2VZNWNFS25xV1Jmd1M5MW5RSmhsZGZMX1ZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS81ZjhmMWItZjNmMS00ZjFiLTlhYzQtNWNhNmE3YWQwNWZh LzEvZ2VZNWNFS25xV1Jmd1M5MW5RSmhsZGZMX1ZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZdj0d5Fj tTSPOG2ngnSm+oW1t2XFr5Ne8bcztnKFZj50IG3WoU6lSBl3/TCZYZ7hT0XQ+Sm8 gTTeCI4yveaMlHOZi5QqNM7bvVK0Uvun0I9NW+68cPrfgsMbCSPHdVHK5/Qfk4aJ /1mFSUplZ7WZtDV8u3UNYfxP0WsctYQtMKmxsQQpCBoDxczJM7E4Geyvlx97mDwn 850QV/zdFhKLjVj6ReryMzqUr1uuXw0RG1L+/HN8S27i7tUld9o6aMf769SkkYRb 4uDVcqNlC8OdFBZNbtPieBrzTzpy1m1oxU50H9m4aSSzw1kXJn+osBQVdXOD93gM ZCbo71s4+nceDw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:34:03 2026 by rpki-client