This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft File: bSsrfHiimiI-pZxnydqj3H7bHnQ.mft (raw, json) Hash identifier: DtnfXWEg7X09K6IVA6BheRn1CVLKPOJau4Cke0Le7DA= Subject key identifier: EB:7B:45:A8:DE:25:40:F7:69:C9:2E:A0:A3:00:61:66:8D:D9:A9:F3 Authority key identifier: 6D:2B:2B:7C:78:A2:9A:22:3E:A5:9C:67:C9:DA:A3:DC:7E:DB:1E:74 Certificate issuer: /CN=6d2b2b7c78a29a223ea59c67c9daa3dc7edb1e74 Certificate serial: 019C41D8C9C3BDBB6334AC02881E5BB1E1DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft Manifest number: 03D9 Signing time: Mon 09 Feb 2026 10:00:52 +0000 Manifest this update: Mon 09 Feb 2026 10:00:52 +0000 Manifest next update: Tue 10 Feb 2026 10:00:52 +0000 Files and hashes: 1: bSsrfHiimiI-pZxnydqj3H7bHnQ.crl (hash: 50hhwyubszwUu8lz2AQ1tw//tZ+1Rxwp40nZkhdYB4s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.crl rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:c9:c3:bd:bb:63:34:ac:02:88:1e:5b:b1:e1:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d2b2b7c78a29a223ea59c67c9daa3dc7edb1e74 Validity Not Before: Feb 9 10:00:52 2026 GMT Not After : Feb 10 10:00:52 2026 GMT Subject: CN=eb7b45a8de2540f769c92ea0a30061668dd9a9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:32:3e:eb:66:c5:a1:77:12:02:61:6b:f5:b5: 54:49:0f:b1:d9:78:7a:8c:51:8d:a9:c5:c8:50:c7: 75:d8:37:0d:3a:81:cd:21:59:a2:71:b0:47:c8:20: d3:24:aa:52:df:96:2e:6c:0d:04:86:74:88:56:45: f6:e3:6a:de:28:89:df:a0:53:0a:8e:44:da:3c:d0: f9:76:d3:75:2f:70:a1:20:95:d3:5d:b0:f6:6b:06: f5:2d:d7:fb:54:c6:4d:c0:ef:c3:54:89:3d:d5:44: 63:33:d8:53:cd:a0:70:65:8f:61:65:1a:53:1b:3d: 54:85:f5:80:d2:b2:fe:66:99:2c:91:5b:18:01:6b: 2e:c4:7e:e4:67:ca:3d:21:54:f8:cd:95:d8:cf:49: 5f:c3:96:3f:f9:ff:f9:95:72:79:2b:7a:d4:02:37: 54:02:37:60:60:cb:11:bb:c9:65:1d:8f:dc:08:6a: 75:37:59:cd:9f:4e:52:be:09:be:99:f1:e3:a3:4e: b7:16:24:72:99:5f:97:e9:26:6f:8a:40:d0:d2:e1: ec:ac:73:d2:fa:4f:30:30:f6:40:a2:ae:80:fb:07: d3:b8:95:84:1b:40:a0:60:86:2d:b8:98:58:25:37: 2f:55:ca:bb:26:fd:b2:1c:82:81:ee:db:72:f2:f0: 69:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:7B:45:A8:DE:25:40:F7:69:C9:2E:A0:A3:00:61:66:8D:D9:A9:F3 X509v3 Authority Key Identifier: keyid:6D:2B:2B:7C:78:A2:9A:22:3E:A5:9C:67:C9:DA:A3:DC:7E:DB:1E:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:31:d8:91:ec:ae:56:33:23:36:86:69:ba:12:12:47:d0:36: d8:04:b6:45:ee:a6:d0:73:24:b2:42:32:48:35:93:e0:61:e6: c2:de:3a:32:cb:4e:71:75:cf:14:92:38:bf:a7:9f:3c:54:c1: 21:45:1a:25:75:22:73:2e:d6:69:f4:e2:ba:e3:60:88:1a:74: 96:08:64:29:22:ef:90:b2:e8:13:83:64:09:6f:95:6b:0e:86: 42:3e:ea:20:2b:6d:43:98:81:19:76:21:13:46:b2:ad:f5:cc: 4c:fe:44:cf:b3:65:8c:3c:f8:20:a8:b3:47:96:bb:27:4b:93: 06:fb:42:b4:b9:2d:d3:c7:d7:2c:e5:11:26:d4:7a:6a:1f:6d: 2b:5d:b3:bb:85:53:53:88:1d:13:46:df:54:ee:c7:3e:2a:f3: 20:47:d8:5e:d1:fc:ad:77:44:ba:7c:89:06:58:ad:9a:df:7b: a2:e2:29:14:5f:20:c9:6e:37:6d:b2:b4:10:da:88:ec:f4:6b: 5a:b5:85:ae:4a:2b:3f:3f:d6:d7:49:dd:00:1e:ac:0b:7f:64: 6d:ad:14:8a:08:78:41:d1:10:67:e4:14:b8:34:3f:d6:8d:1a: 1e:41:b3:71:4e:f5:73:2a:49:e0:8a:c6:76:51:b6:5b:7a:c8: ef:3f:27:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2MnDvbtjNKwCiB5bseHbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMmIyYjdjNzhhMjlhMjIzZWE1OWM2N2M5ZGFhM2RjN2Vk YjFlNzQwHhcNMjYwMjA5MTAwMDUyWhcNMjYwMjEwMTAwMDUyWjAzMTEwLwYDVQQD EyhlYjdiNDVhOGRlMjU0MGY3NjljOTJlYTBhMzAwNjE2NjhkZDlhOWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzI+62bFoXcSAmFr9bVUSQ+x2Xh6 jFGNqcXIUMd12DcNOoHNIVmicbBHyCDTJKpS35YubA0EhnSIVkX242reKInfoFMK jkTaPND5dtN1L3ChIJXTXbD2awb1Ldf7VMZNwO/DVIk91URjM9hTzaBwZY9hZRpT Gz1UhfWA0rL+ZpkskVsYAWsuxH7kZ8o9IVT4zZXYz0lfw5Y/+f/5lXJ5K3rUAjdU AjdgYMsRu8llHY/cCGp1N1nNn05Svgm+mfHjo063FiRymV+X6SZvikDQ0uHsrHPS +k8wMPZAoq6A+wfTuJWEG0CgYIYtuJhYJTcvVcq7Jv2yHIKB7tty8vBpfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOt7RajeJUD3ackuoKMAYWaN2anzMB8GA1UdIwQY MBaAFG0rK3x4opoiPqWcZ8nao9x+2x50MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNzcmZIaWltaUktcFp4bnlkcWozSDdiSG5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9lOGEyZjYtNmMwZi00Mjc2LTg0OWUt MGM1MjU1NmU5ODY1LzEvYlNzcmZIaWltaUktcFp4bnlkcWozSDdiSG5RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9lOGEyZjYtNmMwZi00Mjc2LTg0OWUtMGM1MjU1NmU5ODY1 LzEvYlNzcmZIaWltaUktcFp4bnlkcWozSDdiSG5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeDHYkeyu VjMjNoZpuhISR9A22AS2Re6m0HMkskIySDWT4GHmwt46MstOcXXPFJI4v6efPFTB IUUaJXUicy7WafTiuuNgiBp0lghkKSLvkLLoE4NkCW+Vaw6GQj7qICttQ5iBGXYh E0ayrfXMTP5Ez7NljDz4IKizR5a7J0uTBvtCtLkt08fXLOURJtR6ah9tK12zu4VT U4gdE0bfVO7HPirzIEfYXtH8rXdEunyJBlitmt97ouIpFF8gyW43bbK0ENqI7PRr WrWFrkorPz/W10ndAB6sC39kba0Uigh4QdEQZ+QUuDQ/1o0aHkGzcU71cypJ4IrG dlG2W3rI7z8n/Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:01 2026 by rpki-client