This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft File: FW-pMchet5jGgtwy5CkJ1xySOyM.mft (raw, json) Hash identifier: 91rYHNcelsfBKHX8Cr7QMclthhSO3jyhr7HkKg1oS70= Subject key identifier: 18:E7:F6:8A:64:F6:FA:B7:1F:F3:AD:96:16:34:9A:3E:EE:F6:AC:A9 Authority key identifier: 15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23 Certificate issuer: /CN=156fa931c85eb798c682dc32e42909d71c923b23 Certificate serial: 019C4246B0EC978074A3915E2E3B59755652 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft Manifest number: 06F9 Signing time: Mon 09 Feb 2026 12:00:54 +0000 Manifest this update: Mon 09 Feb 2026 12:00:54 +0000 Manifest next update: Tue 10 Feb 2026 12:00:54 +0000 Files and hashes: 1: FW-pMchet5jGgtwy5CkJ1xySOyM.crl (hash: djX5kDQmE1L6nTbGvUF1WwHEq8eCcPh0f7tvvkTyk/M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:b0:ec:97:80:74:a3:91:5e:2e:3b:59:75:56:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=156fa931c85eb798c682dc32e42909d71c923b23 Validity Not Before: Feb 9 12:00:54 2026 GMT Not After : Feb 10 12:00:54 2026 GMT Subject: CN=18e7f68a64f6fab71ff3ad9616349a3eeef6aca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a1:0b:71:69:f1:dc:c8:06:d9:e1:0e:f9:bf: 0e:06:72:56:32:35:ed:14:bf:64:38:89:97:87:87: 49:dd:66:a7:8b:ff:22:2a:8e:16:3e:f6:17:db:d8: 53:da:a0:d7:3d:03:02:74:c1:c9:65:5e:df:8c:32: 07:8a:fe:f2:9c:53:40:e7:38:ea:bc:e0:ed:9d:59: a3:93:c3:a3:c5:e7:03:ef:a4:f2:23:7d:27:06:6c: c1:4f:28:36:a6:5f:86:05:09:bd:79:24:02:1f:b1: 33:61:fa:82:d0:06:7a:35:48:be:40:29:d8:f5:54: 93:ee:36:9c:38:3b:ce:02:98:59:81:47:7b:77:31: dc:5a:4c:e4:a9:3b:43:cc:5d:9d:0e:fb:b7:ab:7c: a2:36:aa:09:5b:3c:cd:70:e9:c6:27:f8:9b:b7:1d: 77:b3:2a:ce:a8:bb:3b:d1:b5:be:2f:d1:cd:fb:46: a7:3d:6f:72:3c:d8:e7:84:5d:87:ee:9e:8c:07:c4: e2:a2:54:5c:e9:8b:46:35:67:11:84:14:94:c3:46: cd:d9:f5:9f:ff:da:f1:a6:d1:6f:4d:88:ec:20:b5: 01:e9:f5:dd:25:ec:fe:90:a2:84:f6:99:61:aa:76: ec:3b:7b:cc:54:61:c4:53:ab:b9:33:0e:4f:ba:a0: 68:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E7:F6:8A:64:F6:FA:B7:1F:F3:AD:96:16:34:9A:3E:EE:F6:AC:A9 X509v3 Authority Key Identifier: keyid:15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:86:bd:cf:6e:8b:e4:63:e9:e0:45:f2:8b:1e:84:29:5d:5d: 50:ac:dd:58:d1:ad:e9:9e:e8:6d:7f:ec:25:dc:c5:f2:54:75: 85:c5:e7:eb:5d:47:94:0e:77:49:fe:bc:45:13:b0:e4:0f:e0: 63:d1:f1:8a:c2:21:47:76:d9:5b:50:e3:2e:cc:db:09:c9:4d: ca:7c:cc:78:81:e7:f1:48:de:21:e2:0b:c6:bf:c7:7c:27:23: 29:3c:8e:1e:7b:15:0e:b3:27:8c:5b:b0:18:4d:98:48:1e:61: 8f:a3:00:67:86:aa:1c:d0:97:0f:56:37:93:f6:77:53:98:7c: 71:eb:3b:19:1a:8c:97:1a:75:cd:d7:87:83:26:41:34:5d:41: 13:11:89:18:41:b2:02:3d:97:a5:ac:08:21:e3:a8:7d:07:ca: 5c:1a:6c:3a:88:37:9b:fa:fd:0a:3b:30:92:d6:76:47:f5:e5: dc:d3:52:cb:d9:93:9d:5c:14:b5:30:ab:a1:09:d7:ff:15:22: 1a:6f:25:8c:18:4a:fe:65:e7:46:57:7b:7a:d6:d6:2a:06:4b: 2c:83:b0:cb:a6:ea:f2:98:1c:47:f0:30:4c:ff:e3:91:34:6a: 07:67:b7:39:8b:c7:9e:6f:bc:ac:d3:6a:f2:31:1b:00:e3:ae: 53:7a:f9:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRrDsl4B0o5FeLjtZdVZSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE1NmZhOTMxYzg1ZWI3OThjNjgyZGMzMmU0MjkwOWQ3MWM5 MjNiMjMwHhcNMjYwMjA5MTIwMDU0WhcNMjYwMjEwMTIwMDU0WjAzMTEwLwYDVQQD EygxOGU3ZjY4YTY0ZjZmYWI3MWZmM2FkOTYxNjM0OWEzZWVlZjZhY2E5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6ELcWnx3MgG2eEO+b8OBnJWMjXt FL9kOImXh4dJ3Wani/8iKo4WPvYX29hT2qDXPQMCdMHJZV7fjDIHiv7ynFNA5zjq vODtnVmjk8OjxecD76TyI30nBmzBTyg2pl+GBQm9eSQCH7EzYfqC0AZ6NUi+QCnY 9VST7jacODvOAphZgUd7dzHcWkzkqTtDzF2dDvu3q3yiNqoJWzzNcOnGJ/ibtx13 syrOqLs70bW+L9HN+0anPW9yPNjnhF2H7p6MB8TiolRc6YtGNWcRhBSUw0bN2fWf /9rxptFvTYjsILUB6fXdJez+kKKE9plhqnbsO3vMVGHEU6u5Mw5PuqBoxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBjn9opk9vq3H/OtlhY0mj7u9qypMB8GA1UdIwQY MBaAFBVvqTHIXreYxoLcMuQpCdcckjsjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlctcE1jaGV0NWpHZ3R3eTVDa0oxeHlTT3lNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lYzZhODMtYmJhNi00NWNiLTkwZWMt NGVhODA2ZmYyOGNkLzEvRlctcE1jaGV0NWpHZ3R3eTVDa0oxeHlTT3lNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9lYzZhODMtYmJhNi00NWNiLTkwZWMtNGVhODA2ZmYyOGNk LzEvRlctcE1jaGV0NWpHZ3R3eTVDa0oxeHlTT3lNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR4a9z26L 5GPp4EXyix6EKV1dUKzdWNGt6Z7obX/sJdzF8lR1hcXn611HlA53Sf68RROw5A/g Y9HxisIhR3bZW1DjLszbCclNynzMeIHn8UjeIeILxr/HfCcjKTyOHnsVDrMnjFuw GE2YSB5hj6MAZ4aqHNCXD1Y3k/Z3U5h8ces7GRqMlxp1zdeHgyZBNF1BExGJGEGy Aj2XpawIIeOofQfKXBpsOog3m/r9CjswktZ2R/Xl3NNSy9mTnVwUtTCroQnX/xUi Gm8ljBhK/mXnRld7etbWKgZLLIOwy6bq8pgcR/AwTP/jkTRqB2e3OYvHnm+8rNNq 8jEbAOOuU3r5bg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:54 2026 by rpki-client