This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft File: gAVnqlixEmbTjGRvpkc_VEk3fE0.mft (raw, json) Hash identifier: zDO8+jFH2/Pw2unLjTqfBTGEvLEjYq1oRQppWMPhsSI= Subject key identifier: F3:A9:0B:42:E3:4E:71:0E:3C:58:88:14:3E:82:D8:C7:06:6E:EA:B9 Authority key identifier: 80:05:67:AA:58:B1:12:66:D3:8C:64:6F:A6:47:3F:54:49:37:7C:4D Certificate issuer: /CN=800567aa58b11266d38c646fa6473f5449377c4d Certificate serial: 019C42463FD28F8AE15B667371EDE795E1CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gAVnqlixEmbTjGRvpkc_VEk3fE0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft Manifest number: 02C7 Signing time: Mon 09 Feb 2026 12:00:25 +0000 Manifest this update: Mon 09 Feb 2026 12:00:25 +0000 Manifest next update: Tue 10 Feb 2026 12:00:25 +0000 Files and hashes: 1: gAVnqlixEmbTjGRvpkc_VEk3fE0.crl (hash: Z22OyQbx89zZYNahxAjPryWtS7p3Ju9aiJo5iZb5k38=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft rsync://rpki.ripe.net/repository/DEFAULT/gAVnqlixEmbTjGRvpkc_VEk3fE0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:3f:d2:8f:8a:e1:5b:66:73:71:ed:e7:95:e1:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=800567aa58b11266d38c646fa6473f5449377c4d Validity Not Before: Feb 9 12:00:25 2026 GMT Not After : Feb 10 12:00:25 2026 GMT Subject: CN=f3a90b42e34e710e3c5888143e82d8c7066eeab9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c0:a5:6c:88:86:17:75:fb:9f:92:8a:2f:a5: 5d:1a:b3:d6:3b:5d:68:6a:3d:1c:7e:22:44:d1:e5: ee:fc:d4:c4:ee:bb:9b:c1:c3:be:aa:1e:3f:05:94: 4e:8a:d1:b2:d6:e1:44:c8:a5:f8:5c:e5:93:bf:ee: eb:ea:ed:ad:fa:8d:43:b0:07:80:43:fe:be:6f:a3: 77:48:57:75:40:8d:4f:51:65:0d:27:58:af:4e:c1: 2e:bf:9c:8e:75:96:53:60:d3:ff:62:5d:35:a2:f0: ae:69:cd:12:82:3a:46:b5:67:30:12:e0:a8:f5:b0: 5b:c7:e3:6f:53:ba:61:0b:6c:aa:05:eb:b9:03:ac: f7:60:9c:2a:5b:6d:5a:94:ce:04:5f:ab:0e:ce:2f: a7:1c:3a:aa:f9:54:0a:86:2b:c7:00:fb:68:ef:3e: 67:4a:27:72:2f:ce:b6:a8:d2:6d:92:4a:b2:21:0e: 38:ab:b7:7d:1a:84:b3:d4:57:0a:fe:49:3b:9e:bc: 2d:df:01:cd:f6:e6:aa:0f:ba:02:63:ea:f2:01:53: 8b:d9:e2:2c:28:5e:7e:26:c2:ba:55:ba:8c:eb:de: 01:00:0d:d6:e5:e1:38:87:19:cf:69:55:5f:fe:b0: 4a:2d:e4:53:9a:7b:e2:bd:cd:dd:5c:4f:12:2b:ed: 6f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A9:0B:42:E3:4E:71:0E:3C:58:88:14:3E:82:D8:C7:06:6E:EA:B9 X509v3 Authority Key Identifier: keyid:80:05:67:AA:58:B1:12:66:D3:8C:64:6F:A6:47:3F:54:49:37:7C:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gAVnqlixEmbTjGRvpkc_VEk3fE0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:f6:15:69:36:63:bb:22:7e:15:a2:f2:68:3d:cb:67:29:10: 2e:43:13:40:e8:b3:e9:f6:f1:75:82:8c:31:83:46:9e:1a:ae: bd:e5:5e:df:85:8c:19:6f:c2:af:5f:f2:ac:4d:4b:ee:9e:44: 3c:19:44:f1:40:b9:cd:21:a6:d3:b4:06:ac:40:f5:46:b9:1a: 96:0f:7f:0c:9b:10:fb:cd:bc:b5:9d:09:37:05:5c:1d:3d:95: 50:4e:ae:35:01:1c:e0:1c:68:73:fe:dc:71:78:a5:6f:07:24: d5:cf:41:3b:9a:b1:62:39:93:4e:cf:d4:6b:02:a2:08:45:56: 80:c8:b2:a6:ed:35:50:e6:74:76:60:8c:bc:8a:44:ba:b0:0d: 1d:79:c6:97:25:77:55:b9:db:ee:ca:df:1a:0a:3a:90:83:38: 83:ff:75:f3:36:dd:5a:ee:a9:8b:c2:c3:49:23:cc:81:17:56: 4c:5d:fc:96:e7:0d:f5:f4:57:d6:5f:f9:d0:f3:cd:50:2b:9a: 19:ca:38:af:98:f0:0e:4e:1d:e8:9b:a4:ee:bc:32:ba:c5:8b: 2c:df:96:50:bb:de:a7:bf:51:2a:18:47:f7:6c:21:82:7d:69: a9:f9:da:4c:dc:3b:19:71:8d:85:54:5e:ad:4a:45:cf:82:ed: 3b:e3:c8:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRj/Sj4rhW2Zzce3nleHNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwMDU2N2FhNThiMTEyNjZkMzhjNjQ2ZmE2NDczZjU0NDkz NzdjNGQwHhcNMjYwMjA5MTIwMDI1WhcNMjYwMjEwMTIwMDI1WjAzMTEwLwYDVQQD EyhmM2E5MGI0MmUzNGU3MTBlM2M1ODg4MTQzZTgyZDhjNzA2NmVlYWI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysClbIiGF3X7n5KKL6VdGrPWO11o aj0cfiJE0eXu/NTE7rubwcO+qh4/BZROitGy1uFEyKX4XOWTv+7r6u2t+o1DsAeA Q/6+b6N3SFd1QI1PUWUNJ1ivTsEuv5yOdZZTYNP/Yl01ovCuac0SgjpGtWcwEuCo 9bBbx+NvU7phC2yqBeu5A6z3YJwqW21alM4EX6sOzi+nHDqq+VQKhivHAPto7z5n SidyL862qNJtkkqyIQ44q7d9GoSz1FcK/kk7nrwt3wHN9uaqD7oCY+ryAVOL2eIs KF5+JsK6VbqM694BAA3W5eE4hxnPaVVf/rBKLeRTmnvivc3dXE8SK+1v+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPOpC0LjTnEOPFiIFD6C2McGbuq5MB8GA1UdIwQY MBaAFIAFZ6pYsRJm04xkb6ZHP1RJN3xNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0FWbnFsaXhFbWJUakdSdnBrY19WRWszZkUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8yYzc0ZDktYzNlMC00OTZiLWE0YmUt OGRkNDVkMmJjYTdhLzEvZ0FWbnFsaXhFbWJUakdSdnBrY19WRWszZkUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS8yYzc0ZDktYzNlMC00OTZiLWE0YmUtOGRkNDVkMmJjYTdh LzEvZ0FWbnFsaXhFbWJUakdSdnBrY19WRWszZkUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuvYVaTZj uyJ+FaLyaD3LZykQLkMTQOiz6fbxdYKMMYNGnhquveVe34WMGW/Cr1/yrE1L7p5E PBlE8UC5zSGm07QGrED1Rrkalg9/DJsQ+828tZ0JNwVcHT2VUE6uNQEc4Bxoc/7c cXilbwck1c9BO5qxYjmTTs/UawKiCEVWgMiypu01UOZ0dmCMvIpEurANHXnGlyV3 Vbnb7srfGgo6kIM4g/918zbdWu6pi8LDSSPMgRdWTF38lucN9fRX1l/50PPNUCua Gco4r5jwDk4d6Juk7rwyusWLLN+WULvep79RKhhH92whgn1pqfnaTNw7GXGNhVRe rUpFz4LtO+PIGg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:52:59 2026 by rpki-client