This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft File: 79XDTJ_TJEnLwIirENkbWkq1Nho.mft (raw, json) Hash identifier: tj9toXdM4XpDXsld2tPiWIDtDOb7GDHT2i0IU0H12ys= Subject key identifier: 86:23:03:0A:DE:BD:1B:C0:EC:D6:12:20:F2:ED:FA:F9:5B:87:02:D1 Authority key identifier: EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A Certificate issuer: /CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a Certificate serial: 019C4246951DF1A2D600C8FE3261E3AD3500 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft Manifest number: 07E7 Signing time: Mon 09 Feb 2026 12:00:47 +0000 Manifest this update: Mon 09 Feb 2026 12:00:47 +0000 Manifest next update: Tue 10 Feb 2026 12:00:47 +0000 Files and hashes: 1: 79XDTJ_TJEnLwIirENkbWkq1Nho.crl (hash: WtKIeT5+D+oBZ/XLzSuKhVYpUCC3OAsOO9x+6qI8PMU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:95:1d:f1:a2:d6:00:c8:fe:32:61:e3:ad:35:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a Validity Not Before: Feb 9 12:00:47 2026 GMT Not After : Feb 10 12:00:47 2026 GMT Subject: CN=8623030adebd1bc0ecd61220f2edfaf95b8702d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:16:60:46:66:f1:5d:c1:34:4b:65:bd:2d:e4: 3e:29:fe:6a:f2:59:49:f7:13:5f:e0:35:c5:28:87: 8e:3c:a9:de:fd:47:dc:14:0e:62:7f:c9:90:2d:cc: 91:6c:90:6c:1d:b4:79:16:80:07:60:59:ef:c3:a9: ab:fa:8b:e5:2b:f7:bb:87:4b:e1:89:98:7e:dd:0c: 11:86:11:f0:7e:3c:b5:6c:53:83:11:01:ea:71:5a: bd:4e:f8:7f:56:fb:a9:bc:7a:a2:bc:21:78:14:40: 28:25:98:94:bc:80:59:47:4b:f9:62:a6:ba:5d:ea: b2:21:c3:de:00:c0:2b:79:84:ab:65:28:70:79:cd: bc:ff:53:a8:7c:8a:b7:5c:60:ae:92:71:c8:82:9a: 53:58:1c:68:d3:4d:01:0a:16:79:7a:5c:12:55:07: be:2c:d0:b1:08:5a:61:f7:34:db:a5:30:e8:03:b6: 62:7c:3b:91:b2:cb:6d:b5:96:6b:57:eb:dd:68:ff: bf:60:bf:ba:37:40:73:db:0a:90:47:f2:f5:65:a5: 01:04:fd:90:50:29:e1:60:9a:50:d8:c0:2e:f3:db: 53:67:05:26:01:8e:fd:17:54:97:d4:85:44:09:cf: f0:b0:14:53:da:6c:c1:91:d6:36:d8:37:6e:2d:c9: f4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:23:03:0A:DE:BD:1B:C0:EC:D6:12:20:F2:ED:FA:F9:5B:87:02:D1 X509v3 Authority Key Identifier: keyid:EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:74:27:82:6a:17:0a:c0:6e:b1:82:c0:a6:c2:a7:a8:3d:f3: d5:b2:4f:03:cf:1c:85:97:65:84:23:5f:8d:66:3f:54:3b:30: 4d:c4:fd:5a:48:3d:8d:ae:21:cb:9e:fa:75:e8:29:71:99:e6: 68:17:0a:a3:22:f6:0b:4b:83:cc:09:5f:ce:6d:12:15:de:c0: 20:02:77:f3:df:d0:3a:84:b4:aa:95:3e:e2:bb:26:87:27:be: c7:20:d6:df:82:f0:5e:c1:30:cd:fc:2d:aa:cd:be:0f:ac:30: 3d:b5:d7:1e:8c:99:76:6b:e4:3d:ec:9f:26:bb:d2:66:2a:57: ec:ce:11:ad:5b:98:dd:2d:36:9a:27:e2:1f:34:bb:29:0b:4b: 0f:40:6c:c8:67:e6:34:0f:9d:f3:9c:e7:be:e3:59:f8:25:09: 79:1f:ca:d0:b6:33:f5:e7:10:26:55:93:81:db:22:f3:5e:45: 14:01:87:49:e8:77:b6:8c:5b:2d:68:91:75:da:8c:a8:a7:9e: e0:ef:32:d5:75:45:5a:e4:e7:51:5b:1f:fb:42:13:b2:7e:29: fb:2d:2c:47:e6:72:0b:a3:81:b7:2e:06:fe:9b:47:8d:ae:9d: 19:33:3a:cc:e3:d3:38:97:7c:d5:3a:2f:12:70:57:70:a7:ba: 46:31:fd:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRpUd8aLWAMj+MmHjrTUAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmZDVjMzRjOWZkMzI0NDljYmMwODhhYjEwZDkxYjVhNGFi NTM2MWEwHhcNMjYwMjA5MTIwMDQ3WhcNMjYwMjEwMTIwMDQ3WjAzMTEwLwYDVQQD Eyg4NjIzMDMwYWRlYmQxYmMwZWNkNjEyMjBmMmVkZmFmOTViODcwMmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhZgRmbxXcE0S2W9LeQ+Kf5q8llJ 9xNf4DXFKIeOPKne/UfcFA5if8mQLcyRbJBsHbR5FoAHYFnvw6mr+ovlK/e7h0vh iZh+3QwRhhHwfjy1bFODEQHqcVq9Tvh/VvupvHqivCF4FEAoJZiUvIBZR0v5Yqa6 XeqyIcPeAMAreYSrZShwec28/1OofIq3XGCuknHIgppTWBxo000BChZ5elwSVQe+ LNCxCFph9zTbpTDoA7ZifDuRsstttZZrV+vdaP+/YL+6N0Bz2wqQR/L1ZaUBBP2Q UCnhYJpQ2MAu89tTZwUmAY79F1SX1IVECc/wsBRT2mzBkdY22DduLcn0DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIYjAwrevRvA7NYSIPLt+vlbhwLRMB8GA1UdIwQY MBaAFO/Vw0yf0yRJy8CIqxDZG1pKtTYaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzlYRFRKX1RKRW5Md0lpckVOa2JXa3ExTmhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC8xNWEwNTctNDQyNy00YjlkLWFiNzUt NWI3YWJhMGYyNThjLzEvNzlYRFRKX1RKRW5Md0lpckVOa2JXa3ExTmhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC8xNWEwNTctNDQyNy00YjlkLWFiNzUtNWI3YWJhMGYyNThj LzEvNzlYRFRKX1RKRW5Md0lpckVOa2JXa3ExTmhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQXQngmoX CsBusYLApsKnqD3z1bJPA88chZdlhCNfjWY/VDswTcT9Wkg9ja4hy576degpcZnm aBcKoyL2C0uDzAlfzm0SFd7AIAJ389/QOoS0qpU+4rsmhye+xyDW34LwXsEwzfwt qs2+D6wwPbXXHoyZdmvkPeyfJrvSZipX7M4RrVuY3S02mifiHzS7KQtLD0BsyGfm NA+d85znvuNZ+CUJeR/K0LYz9ecQJlWTgdsi815FFAGHSeh3toxbLWiRddqMqKee 4O8y1XVFWuTnUVsf+0ITsn4p+y0sR+ZyC6OBty4G/ptHja6dGTM6zOPTOJd81Tov EnBXcKe6RjH9ww== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:40 2026 by rpki-client