This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft File: gSdW6ySj41K9bonR9aoISIlhpnQ.mft (raw, json) Hash identifier: WRbBBOcTzdW+X1q2+jhYQCvWwFug1HnybIyKF6vsQDc= Subject key identifier: 0B:28:2D:E1:27:4B:14:78:7F:50:E3:B0:1F:8E:34:67:8E:CD:E0:41 Authority key identifier: 81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74 Certificate issuer: /CN=812756eb24a3e352bd6e89d1f5aa08488961a674 Certificate serial: 019C43229027B0E333C167504446EA646945 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft Manifest number: 0B27 Signing time: Mon 09 Feb 2026 16:01:04 +0000 Manifest this update: Mon 09 Feb 2026 16:01:04 +0000 Manifest next update: Tue 10 Feb 2026 16:01:04 +0000 Files and hashes: 1: gSdW6ySj41K9bonR9aoISIlhpnQ.crl (hash: ZwuvVIV4QEooFipS7jMuac6gzkl2+VGXKGZKuNAnIJM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:90:27:b0:e3:33:c1:67:50:44:46:ea:64:69:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=812756eb24a3e352bd6e89d1f5aa08488961a674 Validity Not Before: Feb 9 16:01:04 2026 GMT Not After : Feb 10 16:01:04 2026 GMT Subject: CN=0b282de1274b14787f50e3b01f8e34678ecde041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ba:6e:d9:93:5d:7b:15:4d:c8:7d:64:96:25: 69:b2:6b:40:dd:87:54:a6:76:41:22:5e:6d:47:3f: 57:d4:09:79:32:7c:b8:49:70:6f:4c:38:b8:e4:ce: 02:0b:63:89:c5:84:ac:b6:c4:cb:30:22:09:86:c2: 34:0b:b5:8a:cb:5b:5f:d4:44:a0:97:a2:5e:e7:f6: 26:e2:df:b3:f5:d6:19:cc:64:17:e5:ef:81:a3:dc: ef:2b:25:54:62:4a:29:4d:11:f4:f2:d4:42:b4:6b: 0e:ea:77:47:d2:92:f7:9c:94:d0:9d:00:ac:f7:a5: 1a:f8:cb:d5:74:a4:1f:7c:e3:9a:32:dc:d4:7a:a6: 3b:92:c6:5d:64:f8:e6:06:47:30:6e:3a:4c:3e:5d: 23:fb:ce:d3:ea:72:17:17:2e:be:33:b4:af:ef:55: 53:fc:5f:c7:32:3f:55:8b:ba:be:47:10:58:c6:7d: b2:1b:43:15:69:32:fb:b6:2f:bb:0b:fb:90:7e:d4: 3a:0a:62:4c:a0:6c:1e:31:a0:66:cd:74:32:b5:d5: 88:d9:7a:b4:a1:24:8a:b6:e2:43:3f:01:63:be:83: e7:9e:6c:ab:83:ba:0a:70:b8:e4:3f:96:b7:73:15: d9:80:a8:88:e4:01:92:09:6b:1f:85:47:82:8d:ac: 98:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:28:2D:E1:27:4B:14:78:7F:50:E3:B0:1F:8E:34:67:8E:CD:E0:41 X509v3 Authority Key Identifier: keyid:81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:25:38:35:e5:e0:b8:0e:8e:81:76:4b:04:50:ec:7d:7d:48: df:a0:e0:dd:c8:72:2f:c1:02:08:06:b2:7d:a0:60:22:46:9b: d4:61:fb:c6:4c:62:04:5e:05:c0:91:bb:a5:ae:92:c8:e2:9c: 6e:38:7d:28:65:02:77:6c:51:12:be:7a:ec:d1:48:61:1c:56: 1f:0b:c5:87:f8:eb:17:86:f1:16:ce:b7:f5:e5:be:f7:25:52: 27:39:db:ca:5d:ac:f1:a2:49:40:b6:09:61:3a:e4:72:99:85: 8e:c3:6d:0b:78:27:a3:c1:7a:da:14:25:6e:64:3c:7d:e5:8a: 19:7f:c7:55:0a:5c:95:3f:ef:12:dc:19:da:d4:73:2b:e0:8c: 3d:af:85:7c:f2:77:63:e3:ec:3d:50:97:b2:9c:e7:7e:15:57: a2:ea:52:27:a0:d4:6d:76:95:ff:43:10:73:fc:c2:c2:b5:51: 85:f4:d2:a7:a5:6c:65:43:15:72:6a:a0:3c:46:10:6c:e1:11: b1:11:58:a8:39:52:8f:7e:ad:4f:75:1c:bd:c2:6c:e5:3e:ac: 38:d4:10:33:77:07:9e:1d:11:c6:be:0b:ba:36:96:a1:3b:5b: 6f:b3:f4:12:4e:5c:0f:77:80:e1:79:fd:36:46:92:8e:08:d6: 3e:bf:5f:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpAnsOMzwWdQREbqZGlFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxMjc1NmViMjRhM2UzNTJiZDZlODlkMWY1YWEwODQ4ODk2 MWE2NzQwHhcNMjYwMjA5MTYwMTA0WhcNMjYwMjEwMTYwMTA0WjAzMTEwLwYDVQQD EygwYjI4MmRlMTI3NGIxNDc4N2Y1MGUzYjAxZjhlMzQ2NzhlY2RlMDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbpu2ZNdexVNyH1kliVpsmtA3YdU pnZBIl5tRz9X1Al5Mny4SXBvTDi45M4CC2OJxYSstsTLMCIJhsI0C7WKy1tf1ESg l6Je5/Ym4t+z9dYZzGQX5e+Bo9zvKyVUYkopTRH08tRCtGsO6ndH0pL3nJTQnQCs 96Ua+MvVdKQffOOaMtzUeqY7ksZdZPjmBkcwbjpMPl0j+87T6nIXFy6+M7Sv71VT /F/HMj9Vi7q+RxBYxn2yG0MVaTL7ti+7C/uQftQ6CmJMoGweMaBmzXQytdWI2Xq0 oSSKtuJDPwFjvoPnnmyrg7oKcLjkP5a3cxXZgKiI5AGSCWsfhUeCjayYSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAsoLeEnSxR4f1DjsB+ONGeOzeBBMB8GA1UdIwQY MBaAFIEnVusko+NSvW6J0fWqCEiJYaZ0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1NkVzZ5U2o0MUs5Ym9uUjlhb0lTSWxocG5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9iYTY2MzQtZTkxNS00MDM2LWE5OTct NmQ1MjFiYzQ3NGY0LzEvZ1NkVzZ5U2o0MUs5Ym9uUjlhb0lTSWxocG5RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9iYTY2MzQtZTkxNS00MDM2LWE5OTctNmQ1MjFiYzQ3NGY0 LzEvZ1NkVzZ5U2o0MUs5Ym9uUjlhb0lTSWxocG5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALyU4NeXg uA6OgXZLBFDsfX1I36Dg3chyL8ECCAayfaBgIkab1GH7xkxiBF4FwJG7pa6SyOKc bjh9KGUCd2xREr567NFIYRxWHwvFh/jrF4bxFs639eW+9yVSJznbyl2s8aJJQLYJ YTrkcpmFjsNtC3gno8F62hQlbmQ8feWKGX/HVQpclT/vEtwZ2tRzK+CMPa+FfPJ3 Y+PsPVCXspznfhVXoupSJ6DUbXaV/0MQc/zCwrVRhfTSp6VsZUMVcmqgPEYQbOER sRFYqDlSj36tT3UcvcJs5T6sONQQM3cHnh0Rxr4LujaWoTtbb7P0Ek5cD3eA4Xn9 NkaSjgjWPr9f3g== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:43 2026 by rpki-client