This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft File: ezR3xSqsENrC7dQXOrbZTV4k3vU.mft (raw, json) Hash identifier: 2xHL2NgU8ggpR5ZPBXRJV0lmqXgZGX3bt4rOxPS/6D4= Subject key identifier: DC:7B:11:D4:60:AA:60:92:66:5A:B3:39:C0:61:E7:36:07:3D:98:89 Authority key identifier: 7B:34:77:C5:2A:AC:10:DA:C2:ED:D4:17:3A:B6:D9:4D:5E:24:DE:F5 Certificate issuer: /CN=7b3477c52aac10dac2edd4173ab6d94d5e24def5 Certificate serial: 019C42100AB09D5835153AC96AC2DCEDEB1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ezR3xSqsENrC7dQXOrbZTV4k3vU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft Manifest number: 0830 Signing time: Mon 09 Feb 2026 11:01:13 +0000 Manifest this update: Mon 09 Feb 2026 11:01:13 +0000 Manifest next update: Tue 10 Feb 2026 11:01:13 +0000 Files and hashes: 1: ezR3xSqsENrC7dQXOrbZTV4k3vU.crl (hash: QuaRkRHRSA3kTVV6n3OGj/Vq43qCrc6wTYOyQJpfWbw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.crl rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft rsync://rpki.ripe.net/repository/DEFAULT/ezR3xSqsENrC7dQXOrbZTV4k3vU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:0a:b0:9d:58:35:15:3a:c9:6a:c2:dc:ed:eb:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b3477c52aac10dac2edd4173ab6d94d5e24def5 Validity Not Before: Feb 9 11:01:13 2026 GMT Not After : Feb 10 11:01:13 2026 GMT Subject: CN=dc7b11d460aa6092665ab339c061e736073d9889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ca:72:67:4d:6f:c6:cd:28:bb:4d:31:08:ab: 32:cd:63:25:b7:50:27:03:03:56:03:53:1c:be:fc: 30:f1:78:6d:87:23:a6:44:18:06:fe:d0:c3:de:d0: 97:0e:69:71:2a:47:ca:93:92:cf:31:f0:42:e0:fe: ae:5b:fe:8c:6b:d1:f9:98:4c:a6:ab:b4:04:02:87: e1:d7:68:da:40:c2:55:9d:8f:da:f4:78:af:4e:ed: 39:d4:25:44:72:6a:93:7b:d4:7f:9d:df:bb:71:46: f7:2a:da:87:a7:b0:e7:a5:12:5c:11:f1:a1:ad:40: 6c:a6:c0:3d:34:66:10:8e:59:73:33:30:50:79:64: 8e:a3:39:22:84:60:dd:0c:9b:17:a4:cd:ac:3d:c3: 73:27:a4:5b:8e:35:b8:ea:be:23:87:b3:b5:fb:4f: 04:3a:ce:c6:2a:ad:bf:00:ec:e6:42:72:26:4f:7b: 9e:26:ba:bf:b0:42:5b:d2:67:85:81:8b:03:94:d6: 3d:ec:5b:db:36:d6:85:87:f5:d8:36:8c:86:ed:3a: 1d:f1:88:cd:32:0c:07:91:a4:71:66:8b:3b:fc:58: 40:bd:b9:dc:69:bc:0f:6d:2d:75:81:f2:ac:5f:6d: 99:be:25:25:86:9c:39:82:eb:7c:48:15:ca:10:ed: 1d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7B:11:D4:60:AA:60:92:66:5A:B3:39:C0:61:E7:36:07:3D:98:89 X509v3 Authority Key Identifier: keyid:7B:34:77:C5:2A:AC:10:DA:C2:ED:D4:17:3A:B6:D9:4D:5E:24:DE:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ezR3xSqsENrC7dQXOrbZTV4k3vU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:fd:5f:31:3d:fc:11:b8:e5:49:07:99:d9:84:91:3f:99:53: 04:a8:ff:10:a5:9f:eb:94:a0:6d:fc:16:d2:46:d6:0b:5b:35: 99:3b:99:a4:c2:b1:54:99:94:92:60:24:61:26:a6:6d:8e:d0: 19:4f:57:6e:e1:aa:04:72:d8:d5:99:21:6a:8c:2f:6b:10:94: d0:21:93:c6:31:62:1c:2d:e0:03:b4:d0:b0:b0:2b:02:52:cb: 90:95:c8:4e:57:92:07:48:70:0a:f1:14:93:34:b3:e9:8d:f7: 84:d7:bf:9b:86:2c:47:62:20:fc:1e:a5:7a:03:e5:b6:c9:41: e1:8a:c7:29:ff:34:c9:d1:29:d7:f7:22:9c:94:b0:5f:68:38: 42:bc:8f:bf:d1:20:15:95:0d:a9:6b:9c:47:91:a9:99:0c:4e: 95:72:b6:e3:8b:f4:42:7a:83:39:f6:e7:03:b1:d9:ef:05:db: a2:a4:08:f4:3e:0a:79:7d:f3:28:cf:0d:5d:e6:6f:54:1e:78: 26:6b:b3:3c:cb:96:73:aa:5a:e2:d1:79:07:e8:8f:94:51:bd: 53:ce:31:e5:c1:fc:9e:42:47:22:e0:0d:66:10:ae:5a:92:04: 55:bd:11:3f:c3:46:38:94:e9:60:03:06:7a:ae:c7:44:64:65: bf:e5:9c:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEAqwnVg1FTrJasLc7esaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiMzQ3N2M1MmFhYzEwZGFjMmVkZDQxNzNhYjZkOTRkNWUy NGRlZjUwHhcNMjYwMjA5MTEwMTEzWhcNMjYwMjEwMTEwMTEzWjAzMTEwLwYDVQQD EyhkYzdiMTFkNDYwYWE2MDkyNjY1YWIzMzljMDYxZTczNjA3M2Q5ODg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8pyZ01vxs0ou00xCKsyzWMlt1An AwNWA1Mcvvww8XhthyOmRBgG/tDD3tCXDmlxKkfKk5LPMfBC4P6uW/6Ma9H5mEym q7QEAofh12jaQMJVnY/a9HivTu051CVEcmqTe9R/nd+7cUb3KtqHp7DnpRJcEfGh rUBspsA9NGYQjllzMzBQeWSOozkihGDdDJsXpM2sPcNzJ6RbjjW46r4jh7O1+08E Os7GKq2/AOzmQnImT3ueJrq/sEJb0meFgYsDlNY97FvbNtaFh/XYNoyG7Tod8YjN MgwHkaRxZos7/FhAvbncabwPbS11gfKsX22ZviUlhpw5gut8SBXKEO0dHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNx7EdRgqmCSZlqzOcBh5zYHPZiJMB8GA1UdIwQY MBaAFHs0d8UqrBDawu3UFzq22U1eJN71MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZXpSM3hTcXNFTnJDN2RRWE9yYlpUVjRrM3ZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9iY2EzNDctOTgzYS00YzFhLTg4Yjgt Y2M2OWEyMzg2ZWRjLzEvZXpSM3hTcXNFTnJDN2RRWE9yYlpUVjRrM3ZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny9iY2EzNDctOTgzYS00YzFhLTg4YjgtY2M2OWEyMzg2ZWRj LzEvZXpSM3hTcXNFTnJDN2RRWE9yYlpUVjRrM3ZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJv1fMT38 EbjlSQeZ2YSRP5lTBKj/EKWf65SgbfwW0kbWC1s1mTuZpMKxVJmUkmAkYSambY7Q GU9XbuGqBHLY1ZkhaowvaxCU0CGTxjFiHC3gA7TQsLArAlLLkJXITleSB0hwCvEU kzSz6Y33hNe/m4YsR2Ig/B6legPltslB4YrHKf80ydEp1/cinJSwX2g4QryPv9Eg FZUNqWucR5GpmQxOlXK244v0QnqDOfbnA7HZ7wXboqQI9D4KeX3zKM8NXeZvVB54 JmuzPMuWc6pa4tF5B+iPlFG9U84x5cH8nkJHIuANZhCuWpIEVb0RP8NGOJTpYAMG eq7HRGRlv+Wcrw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:47 2026 by rpki-client