This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft File: gErnaxl1-0qMurIgcYnu0gIy_18.mft (raw, json) Hash identifier: /GLe1C1XzmoolMggT5Pom6sbBdfEXOWnvqt+PZX8isw= Subject key identifier: 07:F4:18:4B:5B:F3:F2:E5:A8:00:37:BB:92:58:4B:78:9B:1A:63:E6 Authority key identifier: 80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F Certificate issuer: /CN=804ae76b1975fb4a8cbab2207189eed20232ff5f Certificate serial: 019C41A22BFD5A37A324139CDC5FE6EF5013 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft Manifest number: 0651 Signing time: Mon 09 Feb 2026 09:01:12 +0000 Manifest this update: Mon 09 Feb 2026 09:01:12 +0000 Manifest next update: Tue 10 Feb 2026 09:01:12 +0000 Files and hashes: 1: gErnaxl1-0qMurIgcYnu0gIy_18.crl (hash: jhf5U0v6myoq//j5gu5MCrX0KwFKgQC6BhAggzAaN3o=) 2: vyQcVp5C3AlRVA819dd3sJ607Q4.roa (hash: dbP286vqsPZG/vM7gj98tCGBen8qv4/fYnsiL/9MVjw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:2b:fd:5a:37:a3:24:13:9c:dc:5f:e6:ef:50:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=804ae76b1975fb4a8cbab2207189eed20232ff5f Validity Not Before: Feb 9 09:01:12 2026 GMT Not After : Feb 10 09:01:12 2026 GMT Subject: CN=07f4184b5bf3f2e5a80037bb92584b789b1a63e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:78:90:7d:7f:ce:89:32:b7:7a:b1:5f:8b:d6: 85:61:5a:a3:69:a2:62:3e:7b:19:1e:b9:89:d3:a9: f6:f4:d6:28:82:00:ee:50:c2:02:e1:a1:83:57:cf: 64:51:38:91:d5:1d:c8:9d:b7:7f:42:00:26:3c:66: d4:e3:47:5c:6c:e5:96:9b:70:d0:8c:ad:e4:05:de: 29:37:a4:ec:48:28:45:17:24:af:5b:c5:b2:88:96: 13:bd:7b:b6:ae:14:50:aa:21:e8:b2:d6:9e:a0:5d: c4:a4:85:37:fd:6a:4c:35:1b:22:60:9d:ac:e9:73: 2f:da:ef:b9:68:9e:d3:c2:2c:43:17:f9:0e:52:52: d7:f9:b9:e0:1a:86:a0:0b:0d:d3:31:45:bb:5e:13: 86:94:24:7d:17:9a:df:ea:a4:87:ee:ba:f5:b1:de: 5f:dd:10:e6:8e:b1:b1:48:81:5e:f8:cd:ca:38:2d: a9:d5:9b:5a:d9:36:97:de:b8:78:72:53:07:30:03: f8:52:6e:d9:33:b9:e7:9e:24:9c:07:9a:41:88:1a: 83:d0:66:35:44:40:15:b7:51:ef:04:08:fc:25:fc: 3d:85:be:c4:ff:41:00:76:4a:0e:0a:8c:b4:7a:45: 4b:7e:a1:fe:41:19:91:44:b8:a4:3b:e1:99:47:c8: 6e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F4:18:4B:5B:F3:F2:E5:A8:00:37:BB:92:58:4B:78:9B:1A:63:E6 X509v3 Authority Key Identifier: keyid:80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:00:01:fb:bc:a3:c0:28:8b:10:fe:21:b8:f5:ad:d5:19:8a: 7f:c9:8c:bb:ef:c5:03:45:1f:fa:89:af:a2:17:83:35:6c:01: 3d:8b:71:64:41:69:9c:6a:aa:e7:fa:4c:6e:45:df:5e:72:01: 24:05:48:4e:ba:31:22:41:8a:82:e5:30:1d:8c:8d:54:0a:07: 10:15:9a:d5:a2:94:96:46:81:b1:05:ad:fa:14:92:63:d0:ad: 44:e8:74:86:1f:e5:7d:56:38:09:6f:3f:ef:45:76:ae:b0:4a: 00:24:a1:72:f5:21:37:8f:08:4e:76:85:1d:39:84:b4:6a:b8: 35:d6:31:d9:15:c7:54:dd:72:db:c8:99:eb:d5:ea:25:d1:2f: 20:06:0d:66:9e:67:82:b6:b7:6a:ed:1c:5e:e3:a9:ed:52:99: 35:05:68:e1:8d:8d:d3:f0:e4:ea:95:c0:2f:03:d1:90:ce:ec: de:c3:ef:a4:bf:c9:4a:c8:4d:92:79:95:22:eb:8e:a5:9b:4b: 60:4b:21:9c:aa:67:03:d5:d6:3d:e8:f4:d9:04:12:a1:b6:b5: 3f:bc:ba:1b:4f:31:cb:63:16:b8:a6:64:a1:86:7a:11:88:a8: 54:1c:25:a2:9d:5d:b4:2c:62:8b:72:e9:a1:d6:31:eb:c1:9a: 27:fa:35:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoiv9WjejJBOc3F/m71ATMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwNGFlNzZiMTk3NWZiNGE4Y2JhYjIyMDcxODllZWQyMDIz MmZmNWYwHhcNMjYwMjA5MDkwMTEyWhcNMjYwMjEwMDkwMTEyWjAzMTEwLwYDVQQD EygwN2Y0MTg0YjViZjNmMmU1YTgwMDM3YmI5MjU4NGI3ODliMWE2M2U2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXiQfX/OiTK3erFfi9aFYVqjaaJi PnsZHrmJ06n29NYoggDuUMIC4aGDV89kUTiR1R3Inbd/QgAmPGbU40dcbOWWm3DQ jK3kBd4pN6TsSChFFySvW8WyiJYTvXu2rhRQqiHostaeoF3EpIU3/WpMNRsiYJ2s 6XMv2u+5aJ7TwixDF/kOUlLX+bngGoagCw3TMUW7XhOGlCR9F5rf6qSH7rr1sd5f 3RDmjrGxSIFe+M3KOC2p1Zta2TaX3rh4clMHMAP4Um7ZM7nnniScB5pBiBqD0GY1 REAVt1HvBAj8Jfw9hb7E/0EAdkoOCoy0ekVLfqH+QRmRRLikO+GZR8hucQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAf0GEtb8/LlqAA3u5JYS3ibGmPmMB8GA1UdIwQY MBaAFIBK52sZdftKjLqyIHGJ7tICMv9fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0VybmF4bDEtMHFNdXJJZ2NZbnUwZ0l5XzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82ODA5OTItMzhkYS00OThmLWEzNDkt OTQyMjcyOTNjODhlLzEvZ0VybmF4bDEtMHFNdXJJZ2NZbnUwZ0l5XzE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC82ODA5OTItMzhkYS00OThmLWEzNDktOTQyMjcyOTNjODhl LzEvZ0VybmF4bDEtMHFNdXJJZ2NZbnUwZ0l5XzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXQAB+7yj wCiLEP4huPWt1RmKf8mMu+/FA0Uf+omvoheDNWwBPYtxZEFpnGqq5/pMbkXfXnIB JAVITroxIkGKguUwHYyNVAoHEBWa1aKUlkaBsQWt+hSSY9CtROh0hh/lfVY4CW8/ 70V2rrBKACShcvUhN48ITnaFHTmEtGq4NdYx2RXHVN1y28iZ69XqJdEvIAYNZp5n gra3au0cXuOp7VKZNQVo4Y2N0/Dk6pXALwPRkM7s3sPvpL/JSshNknmVIuuOpZtL YEshnKpnA9XWPej02QQSoba1P7y6G08xy2MWuKZkoYZ6EYioVBwlop1dtCxii3Lp odYx68GaJ/o1Jw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:35 2026 by rpki-client