This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.mft File: 7w8gUz3MeZWijPZ3Z6BBaYZnxM0.mft (raw, json) Hash identifier: YekPS52Ak3pBelGNHcdWvoMAmT2AlrZaaOvPcMUFZaI= Subject key identifier: 12:4D:86:D3:07:77:A9:CB:7D:66:18:F5:C5:7C:BF:F8:45:E5:EA:0A Authority key identifier: EF:0F:20:53:3D:CC:79:95:A2:8C:F6:77:67:A0:41:69:86:67:C4:CD Certificate issuer: /CN=ef0f20533dcc7995a28cf67767a041698667c4cd Certificate serial: 019C4322E7E4D0019C19B4BFBB05DEE4049E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.mft Manifest number: 0D57 Signing time: Mon 09 Feb 2026 16:01:26 +0000 Manifest this update: Mon 09 Feb 2026 16:01:26 +0000 Manifest next update: Tue 10 Feb 2026 16:01:26 +0000 Files and hashes: 1: 7w8gUz3MeZWijPZ3Z6BBaYZnxM0.crl (hash: zLmapqqrJ160+OGd0WYbaggGABcKddrdEkX0OhipBl8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.crl rsync://rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.mft rsync://rpki.ripe.net/repository/DEFAULT/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:e7:e4:d0:01:9c:19:b4:bf:bb:05:de:e4:04:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef0f20533dcc7995a28cf67767a041698667c4cd Validity Not Before: Feb 9 16:01:26 2026 GMT Not After : Feb 10 16:01:26 2026 GMT Subject: CN=124d86d30777a9cb7d6618f5c57cbff845e5ea0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a0:09:27:87:b9:ff:1c:d6:fc:b3:1a:29:a7: 47:fc:2d:8c:04:25:05:8e:e0:04:6e:36:cc:43:fc: 8b:5c:e3:12:c9:c1:ae:04:08:56:ab:81:a1:ca:40: d8:74:28:32:bd:38:36:8c:7a:b3:f2:81:b1:50:52: 37:ef:b2:b5:6e:f7:13:9a:18:ee:8f:b4:92:11:53: df:02:18:63:37:49:21:fa:da:c5:aa:7c:00:36:4b: 35:26:a0:0e:da:99:72:c8:e4:31:26:28:4c:9b:51: 70:1b:b7:a0:c0:0a:c7:b1:e7:6b:23:e0:72:d8:5e: 6f:4b:d4:06:69:ba:f3:cf:a1:22:17:ff:bd:ab:61: 0a:b8:7d:6d:e0:ac:74:d2:34:2b:12:f5:c5:0d:a1: c5:4b:0a:aa:5f:09:05:a3:b7:8c:1b:54:68:b3:c9: 5a:fc:27:71:b7:28:35:16:d3:12:1a:ec:20:b4:b3: a0:14:45:b5:e9:b8:7a:2c:c1:e1:99:d4:3b:9e:9a: 75:c0:b7:b2:c1:d0:a3:66:73:65:04:a8:7e:36:c0: 7e:a0:46:de:0a:22:13:13:bb:d2:15:79:49:35:ac: f8:b8:11:09:43:1a:9f:6c:83:8c:d0:5a:73:f0:cc: 76:10:42:62:1d:71:85:13:37:f7:5e:54:86:c5:09: 48:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4D:86:D3:07:77:A9:CB:7D:66:18:F5:C5:7C:BF:F8:45:E5:EA:0A X509v3 Authority Key Identifier: keyid:EF:0F:20:53:3D:CC:79:95:A2:8C:F6:77:67:A0:41:69:86:67:C4:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:2d:09:5a:51:ed:40:27:78:c3:f5:d3:86:83:a9:99:65:a8: 2d:7f:54:e7:b9:19:8d:ab:0c:c5:fe:6f:d3:6b:9c:2d:8f:91: 86:ec:dd:72:10:97:f4:87:4f:86:08:95:57:b2:e2:d5:6d:67: 3f:b5:18:1f:a8:3e:56:8b:9c:f2:47:43:f5:76:24:78:f9:4c: 0e:1c:81:81:01:c4:27:cf:cf:1a:1b:88:85:45:db:dc:da:26: 3f:20:49:d8:da:83:e5:f0:01:e9:0a:c2:b0:49:23:76:ab:d8: 96:54:f8:f2:cd:b2:aa:a8:5d:2f:a2:14:66:69:46:a5:cb:ca: 8a:65:72:16:9f:6e:26:2f:d9:6c:b1:e5:54:0a:71:15:97:d5: 08:f5:1d:1e:03:78:9a:d2:f3:d1:b3:6c:9a:2c:da:a1:cd:79: ff:d3:aa:67:dd:f9:b7:d3:63:d3:58:f5:3c:5f:c9:62:17:19: 1e:02:55:66:7d:27:08:07:d2:54:0b:f1:54:cc:a1:2d:a6:42: b1:57:51:62:df:b7:5f:04:39:44:d7:e7:bf:96:fd:e8:5c:09: 46:39:e6:12:f8:60:0d:98:24:ff:a7:c3:fa:32:e4:53:6b:67: 9c:8c:f5:56:c0:9d:c6:3d:f4:e1:e0:08:65:fe:0a:f3:4e:b0: 45:29:85:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIufk0AGcGbS/uwXe5ASeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmMGYyMDUzM2RjYzc5OTVhMjhjZjY3NzY3YTA0MTY5ODY2 N2M0Y2QwHhcNMjYwMjA5MTYwMTI2WhcNMjYwMjEwMTYwMTI2WjAzMTEwLwYDVQQD EygxMjRkODZkMzA3NzdhOWNiN2Q2NjE4ZjVjNTdjYmZmODQ1ZTVlYTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwqAJJ4e5/xzW/LMaKadH/C2MBCUF juAEbjbMQ/yLXOMSycGuBAhWq4GhykDYdCgyvTg2jHqz8oGxUFI377K1bvcTmhju j7SSEVPfAhhjN0kh+trFqnwANks1JqAO2plyyOQxJihMm1FwG7egwArHsedrI+By 2F5vS9QGabrzz6EiF/+9q2EKuH1t4Kx00jQrEvXFDaHFSwqqXwkFo7eMG1Ros8la /Cdxtyg1FtMSGuwgtLOgFEW16bh6LMHhmdQ7npp1wLeywdCjZnNlBKh+NsB+oEbe CiITE7vSFXlJNaz4uBEJQxqfbIOM0Fpz8Mx2EEJiHXGFEzf3XlSGxQlIUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBJNhtMHd6nLfWYY9cV8v/hF5eoKMB8GA1UdIwQY MBaAFO8PIFM9zHmVooz2d2egQWmGZ8TNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3c4Z1V6M01lWldpalBaM1o2QkJhWVpueE0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9hZDg4M2QtZDI0My00YjFlLWEzMmEt ZDE0OTQ2ZTRmNWNkLzEvN3c4Z1V6M01lWldpalBaM1o2QkJhWVpueE0wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9hZDg4M2QtZDI0My00YjFlLWEzMmEtZDE0OTQ2ZTRmNWNk LzEvN3c4Z1V6M01lWldpalBaM1o2QkJhWVpueE0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQS0JWlHt QCd4w/XThoOpmWWoLX9U57kZjasMxf5v02ucLY+RhuzdchCX9IdPhgiVV7Li1W1n P7UYH6g+Vouc8kdD9XYkePlMDhyBgQHEJ8/PGhuIhUXb3NomPyBJ2NqD5fAB6QrC sEkjdqvYllT48s2yqqhdL6IUZmlGpcvKimVyFp9uJi/ZbLHlVApxFZfVCPUdHgN4 mtLz0bNsmizaoc15/9OqZ935t9Nj01j1PF/JYhcZHgJVZn0nCAfSVAvxVMyhLaZC sVdRYt+3XwQ5RNfnv5b96FwJRjnmEvhgDZgk/6fD+jLkU2tnnIz1VsCdxj304eAI Zf4K806wRSmFXw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:00 2026 by rpki-client