This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft File: 7pzNOKXWSWiAvAlHBuaPoE-izZY.mft (raw, json) Hash identifier: u/Hv5zbu8tsgv9KO6YZmCu4dqG+51GSuEu+ihjofOC4= Subject key identifier: 88:90:55:25:3A:A8:01:E8:25:4E:FD:09:5D:79:01:0F:83:00:49:36 Authority key identifier: EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96 Certificate issuer: /CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96 Certificate serial: 019C40FCAEE0088C93A5B5D14887B2896059 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft Manifest number: 03CB Signing time: Mon 09 Feb 2026 06:00:27 +0000 Manifest this update: Mon 09 Feb 2026 06:00:27 +0000 Manifest next update: Tue 10 Feb 2026 06:00:27 +0000 Files and hashes: 1: 7pzNOKXWSWiAvAlHBuaPoE-izZY.crl (hash: w5Ojg8yt2rJJGM2ngXDKXpkcIq6qldxM2u6lB+XbYMc=) 2: KnWPKh7vBsCWw3P3QjUnnKOMfRQ.roa (hash: S6KoJEkh3kj6VhNs+5jJEnoThmoK6o74Ufogas8E/6E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fc:ae:e0:08:8c:93:a5:b5:d1:48:87:b2:89:60:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96 Validity Not Before: Feb 9 06:00:27 2026 GMT Not After : Feb 10 06:00:27 2026 GMT Subject: CN=889055253aa801e8254efd095d79010f83004936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:22:c8:49:bc:fa:3a:07:8c:eb:9a:00:6b:52: d5:50:8a:87:bc:90:38:87:8d:67:0e:0b:9a:0a:d6: d3:01:1f:dc:8d:6c:80:64:43:4f:e8:a5:8a:c9:79: 43:01:1b:a7:2a:0f:8f:46:f0:2d:d3:03:3c:bd:8d: 2d:e6:13:06:93:52:de:96:8a:98:a5:b8:3c:29:3f: 63:c8:59:a7:e7:89:6f:4c:ea:19:85:8b:fa:04:5e: 1d:23:c7:b6:15:c6:2c:7e:76:8e:30:64:e9:40:80: 61:9b:23:dc:cd:e3:05:c2:65:df:00:0b:a0:1d:d9: 1e:b3:5f:6c:47:a8:b5:27:0c:61:5e:f2:c3:24:bf: fd:de:48:c9:5d:81:57:ff:68:af:d7:36:66:9e:4a: 75:14:2d:6a:52:bf:71:be:ce:61:13:a0:b2:a0:8f: 24:be:46:58:91:9c:0f:48:eb:0a:60:dd:28:04:33: 61:fd:08:c9:fe:5a:ca:a2:45:50:69:e7:7c:88:c1: 47:ad:16:00:b0:f9:4e:76:e9:0a:82:a4:b3:70:c7: 70:d6:30:c8:df:2d:e7:b4:45:3b:ed:7a:7a:6d:0d: ac:eb:8c:49:de:66:99:0c:a9:d9:b8:c4:2c:06:2b: d3:9c:be:3b:5a:e8:3e:d8:ee:45:c7:e7:f4:57:ca: 2e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:90:55:25:3A:A8:01:E8:25:4E:FD:09:5D:79:01:0F:83:00:49:36 X509v3 Authority Key Identifier: keyid:EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:d2:00:a4:78:81:97:90:4b:06:81:1f:2f:c5:08:6c:77:83: 33:7a:11:6e:e8:31:65:f7:65:02:78:04:e3:f0:12:94:cf:83: b2:0e:ed:56:77:03:15:f9:22:76:2f:c7:e1:3e:c7:60:ee:c4: 71:76:c2:a7:cd:ee:3f:4b:7f:e4:b2:39:35:b6:a9:64:17:d5: 57:a7:7b:ee:4b:ba:86:a1:4b:74:4b:b2:13:90:90:5c:89:69: 5e:af:40:c1:b8:40:03:39:8c:37:ca:3b:b0:57:44:40:d6:7c: d2:bd:46:0b:36:10:e9:ec:d6:9a:5c:b5:a9:6a:0b:ee:b1:c3: 2a:d6:08:a0:ec:07:65:d8:91:9c:85:b2:06:a9:45:7e:c1:73: 57:33:32:5a:a9:a9:27:94:82:75:c0:f1:2d:27:97:99:d5:1f: 31:09:7a:84:a5:a2:2f:df:9a:e2:1d:f4:aa:a4:76:d9:1d:98: da:50:16:d4:e6:b5:61:c2:ba:3c:63:a0:bd:9e:5f:04:2d:8b: 83:aa:a0:57:f6:f1:b0:be:6f:98:64:f7:98:cd:2b:d7:8e:21: 79:09:e6:28:50:c1:4d:3b:9b:ab:86:15:30:d2:60:76:44:ed: 52:1c:fd:42:cf:33:5c:7b:32:e8:63:b7:04:0f:56:1e:c0:04: 73:9d:34:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/K7gCIyTpbXRSIeyiWBZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlOWNjZDM4YTVkNjQ5Njg4MGJjMDk0NzA2ZTY4ZmEwNGZh MmNkOTYwHhcNMjYwMjA5MDYwMDI3WhcNMjYwMjEwMDYwMDI3WjAzMTEwLwYDVQQD Eyg4ODkwNTUyNTNhYTgwMWU4MjU0ZWZkMDk1ZDc5MDEwZjgzMDA0OTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSLISbz6OgeM65oAa1LVUIqHvJA4 h41nDguaCtbTAR/cjWyAZENP6KWKyXlDARunKg+PRvAt0wM8vY0t5hMGk1LeloqY pbg8KT9jyFmn54lvTOoZhYv6BF4dI8e2FcYsfnaOMGTpQIBhmyPczeMFwmXfAAug Hdkes19sR6i1JwxhXvLDJL/93kjJXYFX/2iv1zZmnkp1FC1qUr9xvs5hE6CyoI8k vkZYkZwPSOsKYN0oBDNh/QjJ/lrKokVQaed8iMFHrRYAsPlOdukKgqSzcMdw1jDI 3y3ntEU77Xp6bQ2s64xJ3maZDKnZuMQsBivTnL47Wug+2O5Fx+f0V8oulwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIiQVSU6qAHoJU79CV15AQ+DAEk2MB8GA1UdIwQY MBaAFO6czTil1klogLwJRwbmj6BPos2WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3B6Tk9LWFdTV2lBdkFsSEJ1YVBvRS1pelpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8xNWY5NWMtYjBiNi00NTIyLThlYTAt NTViZWFmYTRiYjI5LzEvN3B6Tk9LWFdTV2lBdkFsSEJ1YVBvRS1pelpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8xNWY5NWMtYjBiNi00NTIyLThlYTAtNTViZWFmYTRiYjI5 LzEvN3B6Tk9LWFdTV2lBdkFsSEJ1YVBvRS1pelpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbNIApHiB l5BLBoEfL8UIbHeDM3oRbugxZfdlAngE4/ASlM+Dsg7tVncDFfkidi/H4T7HYO7E cXbCp83uP0t/5LI5NbapZBfVV6d77ku6hqFLdEuyE5CQXIlpXq9AwbhAAzmMN8o7 sFdEQNZ80r1GCzYQ6ezWmly1qWoL7rHDKtYIoOwHZdiRnIWyBqlFfsFzVzMyWqmp J5SCdcDxLSeXmdUfMQl6hKWiL9+a4h30qqR22R2Y2lAW1Oa1YcK6PGOgvZ5fBC2L g6qgV/bxsL5vmGT3mM0r144heQnmKFDBTTubq4YVMNJgdkTtUhz9Qs8zXHsy6GO3 BA9WHsAEc500Fw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:19 2026 by rpki-client