This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.mft File: stNBgAdlZtcr7mHzoybFbgq7gEo.mft (raw, json) Hash identifier: E5IeH3L9XlB1znJzsJc+DGkgNNZuPww8o6yGqhs64yA= Subject key identifier: EC:7A:E9:F5:28:26:2F:E0:57:A6:DC:46:B4:B5:98:A5:8A:23:8B:62 Authority key identifier: B2:D3:41:80:07:65:66:D7:2B:EE:61:F3:A3:26:C5:6E:0A:BB:80:4A Certificate issuer: /CN=b2d34180076566d72bee61f3a326c56e0abb804a Certificate serial: 019C4133E4D4CBB4FC07064F55EE95CF228A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stNBgAdlZtcr7mHzoybFbgq7gEo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.mft Manifest number: 10E8 Signing time: Mon 09 Feb 2026 07:00:45 +0000 Manifest this update: Mon 09 Feb 2026 07:00:45 +0000 Manifest next update: Tue 10 Feb 2026 07:00:45 +0000 Files and hashes: 1: stNBgAdlZtcr7mHzoybFbgq7gEo.crl (hash: TPcw+S/yAXHNrl1ltzVfH3i6V50hWvK7pkdjtGKgbO8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.mft rsync://rpki.ripe.net/repository/DEFAULT/stNBgAdlZtcr7mHzoybFbgq7gEo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:e4:d4:cb:b4:fc:07:06:4f:55:ee:95:cf:22:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b2d34180076566d72bee61f3a326c56e0abb804a Validity Not Before: Feb 9 07:00:45 2026 GMT Not After : Feb 10 07:00:45 2026 GMT Subject: CN=ec7ae9f528262fe057a6dc46b4b598a58a238b62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:00:9d:78:c1:0f:16:1e:ca:17:0e:28:8c:60: e0:2c:57:44:54:39:cf:93:26:8d:3e:d1:9a:62:8e: cd:42:e2:53:5b:8e:71:37:7c:ca:79:f2:d2:8a:8d: 35:6e:71:cc:67:c1:78:99:00:75:45:d6:1c:61:75: c5:ed:79:56:83:2f:ea:4e:e1:89:34:81:2f:3c:6c: 5b:9e:8e:c2:5c:9e:6c:50:91:50:a0:9c:00:72:d6: c0:e9:97:34:c5:15:c0:68:6c:cd:56:c6:e6:47:34: 08:cc:14:be:82:f4:d7:32:26:bf:b3:5d:f9:23:fd: 88:8c:b7:c8:51:e4:a4:85:a2:3a:f0:2a:cf:b4:2e: e3:f7:53:4b:fc:48:f0:06:8f:07:b4:75:6b:3c:85: 74:37:bd:cf:07:34:92:97:53:4e:5a:4a:f0:09:1f: 67:7e:d5:72:7b:91:69:08:ff:c2:d3:47:96:e0:e9: b3:36:00:59:e8:ec:dc:ce:3d:d3:56:d6:dd:cb:97: 16:b9:d3:0f:d9:d4:26:c6:c8:bc:63:bc:9f:a5:40: 70:b3:dd:20:24:ac:42:97:84:9d:63:fe:72:15:e2: 99:7b:51:bf:07:d6:e2:4a:99:28:0a:7d:12:12:b2: 81:01:94:6c:2c:07:4a:61:e1:af:eb:da:3f:19:25: c0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7A:E9:F5:28:26:2F:E0:57:A6:DC:46:B4:B5:98:A5:8A:23:8B:62 X509v3 Authority Key Identifier: keyid:B2:D3:41:80:07:65:66:D7:2B:EE:61:F3:A3:26:C5:6E:0A:BB:80:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stNBgAdlZtcr7mHzoybFbgq7gEo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:56:5d:4a:da:9f:09:6a:11:cc:e4:45:e5:5e:88:9d:6f:fd: de:97:ca:07:5e:ba:5e:cf:7d:0d:26:69:02:fc:e3:8b:03:2f: b5:bc:d9:00:3f:b6:e5:23:30:34:ee:64:21:a0:48:49:e3:59: ac:78:d9:94:a4:ce:fa:b2:9e:8e:dd:50:b9:76:e5:42:91:cd: 25:e8:50:64:8c:03:06:e5:e7:d6:61:b0:2f:af:56:cc:16:f7: 95:4d:1f:88:1c:72:a2:ad:dc:27:82:2a:42:79:17:00:6f:fc: 76:e6:80:bf:1a:a5:3c:89:83:91:5f:eb:f4:93:c7:61:1b:89: 2a:a1:d7:de:7f:fa:1a:9a:e6:63:14:02:64:36:a3:98:fb:1e: 36:8a:1e:d3:83:08:02:65:78:ba:0f:85:be:68:6f:f5:98:dd: 48:59:0a:d0:f4:4d:01:96:eb:f9:39:8a:81:4f:cf:85:c8:fa: 1d:a9:46:93:91:f6:51:b0:fd:3a:96:c7:c6:58:4c:3c:43:4f: 4d:63:3a:fb:ef:fa:8d:e5:dc:b3:58:40:90:97:fc:5e:2e:11: f9:30:b9:b7:a4:2c:e0:5d:fb:d4:24:97:35:53:31:89:14:5c: 76:e7:46:37:1d:b0:b9:2e:de:f4:0d:99:c2:6a:b8:ea:61:ae: eb:f7:59:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM+TUy7T8BwZPVe6VzyKKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyZDM0MTgwMDc2NTY2ZDcyYmVlNjFmM2EzMjZjNTZlMGFi YjgwNGEwHhcNMjYwMjA5MDcwMDQ1WhcNMjYwMjEwMDcwMDQ1WjAzMTEwLwYDVQQD EyhlYzdhZTlmNTI4MjYyZmUwNTdhNmRjNDZiNGI1OThhNThhMjM4YjYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7QCdeMEPFh7KFw4ojGDgLFdEVDnP kyaNPtGaYo7NQuJTW45xN3zKefLSio01bnHMZ8F4mQB1RdYcYXXF7XlWgy/qTuGJ NIEvPGxbno7CXJ5sUJFQoJwActbA6Zc0xRXAaGzNVsbmRzQIzBS+gvTXMia/s135 I/2IjLfIUeSkhaI68CrPtC7j91NL/EjwBo8HtHVrPIV0N73PBzSSl1NOWkrwCR9n ftVye5FpCP/C00eW4OmzNgBZ6Ozczj3TVtbdy5cWudMP2dQmxsi8Y7yfpUBws90g JKxCl4SdY/5yFeKZe1G/B9biSpkoCn0SErKBAZRsLAdKYeGv69o/GSXA1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOx66fUoJi/gV6bcRrS1mKWKI4tiMB8GA1UdIwQY MBaAFLLTQYAHZWbXK+5h86MmxW4Ku4BKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3ROQmdBZGxadGNyN21Iem95YkZiZ3E3Z0VvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9iYmY3NzMtNjdmOS00YmU1LTk1Y2It NzBkN2Y4ZjQ5MjVhLzEvc3ROQmdBZGxadGNyN21Iem95YkZiZ3E3Z0VvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC9iYmY3NzMtNjdmOS00YmU1LTk1Y2ItNzBkN2Y4ZjQ5MjVh LzEvc3ROQmdBZGxadGNyN21Iem95YkZiZ3E3Z0VvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAplZdStqf CWoRzORF5V6InW/93pfKB166Xs99DSZpAvzjiwMvtbzZAD+25SMwNO5kIaBISeNZ rHjZlKTO+rKejt1QuXblQpHNJehQZIwDBuXn1mGwL69WzBb3lU0fiBxyoq3cJ4Iq QnkXAG/8duaAvxqlPImDkV/r9JPHYRuJKqHX3n/6GprmYxQCZDajmPseNooe04MI AmV4ug+Fvmhv9ZjdSFkK0PRNAZbr+TmKgU/Phcj6HalGk5H2UbD9OpbHxlhMPENP TWM6++/6jeXcs1hAkJf8Xi4R+TC5t6Qs4F371CSXNVMxiRRcdudGNx2wuS7e9A2Z wmq46mGu6/dZQQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:52 2026 by rpki-client