This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json) Hash identifier: 7hWZqlVC76Y0PUAy8J1r6YvwmCE6slvC34JTEIuagwM= Subject key identifier: 99:83:E8:28:06:75:E1:E4:6F:EB:E5:64:72:DE:FC:D2:BA:37:E1:C1 Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40 Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840 Certificate serial: 019C41A1AE5E81C78F0D5ADE83379C9F5697 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 09:00:40 +0000 Manifest this update: Mon 09 Feb 2026 09:00:40 +0000 Manifest next update: Tue 10 Feb 2026 09:00:40 +0000 Files and hashes: 1: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: OKYZDOuO8gTZNrPcsE2rU3WL+OIDvioP/QWHdLhThXA=) 2: tfKI27h4y6Yqd_bp6Jq3Mvuha5U.roa (hash: nvsIEu3C8vbMw8Dq30qS8gfgwYf/q4CpFRCeTjasyyY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:ae:5e:81:c7:8f:0d:5a:de:83:37:9c:9f:56:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=827313247c486fe434833c09087a00a900301840 Validity Not Before: Feb 9 09:00:40 2026 GMT Not After : Feb 10 09:00:40 2026 GMT Subject: CN=9983e8280675e1e46febe56472defcd2ba37e1c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:96:f5:7e:3e:c8:d6:87:4a:f8:da:64:27:4c: 1d:60:93:f4:e3:0f:7c:79:42:fa:1f:87:67:0c:af: 66:d9:81:f5:41:fd:f9:b8:75:43:b6:75:7a:fe:ea: 04:d9:ae:92:48:eb:9e:c0:e3:70:08:58:f7:4c:99: 34:e7:50:9b:4a:56:8c:c2:63:7a:77:ed:5b:bb:d3: 46:ff:c3:56:16:d3:74:3a:c9:31:fa:80:fa:05:e7: 65:6f:33:0d:a1:c3:5a:56:23:f3:01:a6:94:99:bd: 91:6e:b8:9c:c2:c8:cc:f7:5d:55:61:8c:ca:c8:63: e8:46:85:d8:31:a7:78:21:54:42:f7:c9:41:8c:ad: 91:82:9e:92:96:db:1b:49:2b:dc:6f:8f:17:00:cc: 5e:0b:18:fc:a0:e4:b6:8c:1b:82:e2:75:8e:19:da: 8d:eb:f1:96:f7:48:7b:50:5f:f0:4b:33:9c:b9:37: 86:08:74:cb:1b:6b:8b:c0:d4:61:ec:8a:03:bf:75: 39:77:63:5e:b7:78:23:8d:5a:d8:fe:43:0e:0c:da: 6a:e4:f5:f5:1d:f1:57:14:6c:16:22:1f:ee:60:fc: 49:8a:1b:db:11:5a:38:d6:4d:cd:4a:f9:c1:b6:27: 4b:20:a9:8a:cc:06:fa:d2:c7:43:15:ea:b0:c1:49: 3d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:83:E8:28:06:75:E1:E4:6F:EB:E5:64:72:DE:FC:D2:BA:37:E1:C1 X509v3 Authority Key Identifier: keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:b1:ce:8d:01:42:00:5b:a5:9a:28:64:72:83:e8:dd:83:19: 55:12:7e:37:65:b2:4a:83:a6:e3:db:01:6c:2a:d5:1d:9f:b7: 9a:e4:b1:17:70:a2:51:a4:2f:a1:a9:88:74:96:d7:7a:72:7d: 5e:4d:2f:de:4c:8b:68:9d:42:bc:1e:d4:de:3d:30:11:56:9b: d1:32:14:c2:cf:24:23:c5:c6:7f:7f:ac:5f:7f:12:dd:8d:20: 24:0e:e3:68:10:a8:17:b4:7b:1c:9b:28:14:75:6f:cb:20:e4: bf:68:1d:98:0a:51:0f:58:cf:81:24:6b:ca:b9:03:3f:24:e2: 3f:37:fb:a3:31:95:fb:24:80:5e:41:b9:f0:4b:38:3b:46:c2: c8:92:ef:1c:a1:31:e7:0d:64:b7:c6:53:a0:24:60:62:94:f9: 84:f3:87:22:e6:2b:20:e7:fb:97:e0:a7:f1:07:9d:58:ba:24: 5e:67:9f:1c:13:5e:d5:d6:a8:d5:2b:15:2d:03:40:cd:19:ef: fd:83:4c:a4:39:a6:a4:ae:76:49:61:3f:8f:2e:e8:4a:c4:d4: f1:28:60:6f:e9:40:d6:24:a8:83:50:5b:07:29:c9:5b:cc:ae: 5d:be:00:f1:98:48:59:26:af:6e:44:c6:05:10:c5:f3:b4:33: 19:ab:e1:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoa5egcePDVregzecn1aXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyNzMxMzI0N2M0ODZmZTQzNDgzM2MwOTA4N2EwMGE5MDAz MDE4NDAwHhcNMjYwMjA5MDkwMDQwWhcNMjYwMjEwMDkwMDQwWjAzMTEwLwYDVQQD Eyg5OTgzZTgyODA2NzVlMWU0NmZlYmU1NjQ3MmRlZmNkMmJhMzdlMWMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Jb1fj7I1odK+NpkJ0wdYJP04w98 eUL6H4dnDK9m2YH1Qf35uHVDtnV6/uoE2a6SSOuewONwCFj3TJk051CbSlaMwmN6 d+1bu9NG/8NWFtN0Oskx+oD6BedlbzMNocNaViPzAaaUmb2RbricwsjM911VYYzK yGPoRoXYMad4IVRC98lBjK2Rgp6SltsbSSvcb48XAMxeCxj8oOS2jBuC4nWOGdqN 6/GW90h7UF/wSzOcuTeGCHTLG2uLwNRh7IoDv3U5d2Net3gjjVrY/kMODNpq5PX1 HfFXFGwWIh/uYPxJihvbEVo41k3NSvnBtidLIKmKzAb60sdDFeqwwUk9kwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJmD6CgGdeHkb+vlZHLe/NK6N+HBMB8GA1UdIwQY MBaAFIJzEyR8SG/kNIM8CQh6AKkAMBhAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC84NWIwNDMtMzZkOC00MTM2LTk4MzUt OGQ0NzcyNTk4MzliLzEvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC84NWIwNDMtMzZkOC00MTM2LTk4MzUtOGQ0NzcyNTk4Mzli LzEvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh7HOjQFC AFulmihkcoPo3YMZVRJ+N2WySoOm49sBbCrVHZ+3muSxF3CiUaQvoamIdJbXenJ9 Xk0v3kyLaJ1CvB7U3j0wEVab0TIUws8kI8XGf3+sX38S3Y0gJA7jaBCoF7R7HJso FHVvyyDkv2gdmApRD1jPgSRryrkDPyTiPzf7ozGV+ySAXkG58Es4O0bCyJLvHKEx 5w1kt8ZToCRgYpT5hPOHIuYrIOf7l+Cn8QedWLokXmefHBNe1dao1SsVLQNAzRnv /YNMpDmmpK52SWE/jy7oSsTU8Shgb+lA1iSog1BbBynJW8yuXb4A8ZhIWSavbkTG BRDF87QzGavhXQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:20 2026 by rpki-client