This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ews7OUhl5LhbaGo59V7UvmU2pII.mft File: ews7OUhl5LhbaGo59V7UvmU2pII.mft (raw, json) Hash identifier: pSEiIv6Mvl7qWEYMZeWNoZwfbN17vc6dwEtY7FEuets= Subject key identifier: 8A:25:F0:F8:0C:04:FC:45:04:88:CD:27:AE:2A:B6:3E:BD:68:5A:25 Authority key identifier: 7B:0B:3B:39:48:65:E4:B8:5B:68:6A:39:F5:5E:D4:BE:65:36:A4:82 Certificate issuer: /CN=7b0b3b394865e4b85b686a39f55ed4be6536a482 Certificate serial: 019C4390486D56E92E5E3C3DB5185335BFA0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ews7OUhl5LhbaGo59V7UvmU2pII.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ews7OUhl5LhbaGo59V7UvmU2pII.mft Manifest number: 08F5 Signing time: Mon 09 Feb 2026 18:00:54 +0000 Manifest this update: Mon 09 Feb 2026 18:00:54 +0000 Manifest next update: Tue 10 Feb 2026 18:00:54 +0000 Files and hashes: 1: ews7OUhl5LhbaGo59V7UvmU2pII.crl (hash: RDwc83k6h8UjHEQxGdV3PuA6mGHKwR9ARZBCJBYQJEQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ews7OUhl5LhbaGo59V7UvmU2pII.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ews7OUhl5LhbaGo59V7UvmU2pII.mft rsync://rpki.ripe.net/repository/DEFAULT/ews7OUhl5LhbaGo59V7UvmU2pII.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:48:6d:56:e9:2e:5e:3c:3d:b5:18:53:35:bf:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b0b3b394865e4b85b686a39f55ed4be6536a482 Validity Not Before: Feb 9 18:00:54 2026 GMT Not After : Feb 10 18:00:54 2026 GMT Subject: CN=8a25f0f80c04fc450488cd27ae2ab63ebd685a25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fa:d2:2d:d6:24:f0:07:ee:a8:aa:6e:cb:aa: bc:10:e3:2c:2c:44:7e:a7:ab:a6:82:b5:a3:28:92: 77:f4:b8:28:6d:fc:fb:48:a6:a4:09:32:5f:b3:64: 87:2d:79:36:a2:ce:a9:a4:1e:95:b5:74:63:cd:3f: c5:a6:ee:b3:33:97:3d:8d:23:c4:df:da:74:25:2e: d6:69:cb:c5:bd:65:c7:7f:dd:b0:97:b3:53:99:e4: 8a:47:6f:4c:af:14:fc:81:aa:3a:8b:7b:0c:1f:65: 3f:08:ac:05:59:f5:d6:ce:52:82:dc:b2:4e:b8:ff: 56:27:8c:46:5e:61:1b:96:db:7d:0a:da:c2:5e:61: 42:fc:32:d7:b4:7d:81:96:37:f5:08:7b:51:ff:bd: a1:fc:35:c4:77:f2:70:2a:67:6c:e7:a2:9a:17:27: 99:7b:74:88:46:7d:a3:72:88:c3:24:08:59:52:ec: 02:6f:8c:c0:bd:cb:a5:7e:1d:c4:f7:69:b7:ff:4b: f3:13:b4:3e:c1:8f:97:30:08:36:bd:48:93:a6:cc: 2e:9e:d6:11:35:b7:e9:c2:2e:c2:48:39:0f:37:e6: d6:a2:b0:b4:71:49:b9:3c:a2:79:a8:39:a8:f8:74: 6c:72:bb:e6:f4:97:5a:00:93:99:b3:74:af:05:26: c2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:25:F0:F8:0C:04:FC:45:04:88:CD:27:AE:2A:B6:3E:BD:68:5A:25 X509v3 Authority Key Identifier: keyid:7B:0B:3B:39:48:65:E4:B8:5B:68:6A:39:F5:5E:D4:BE:65:36:A4:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ews7OUhl5LhbaGo59V7UvmU2pII.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ews7OUhl5LhbaGo59V7UvmU2pII.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/db38ab-c3cf-4622-87f6-2c8d0011e88a/1/ews7OUhl5LhbaGo59V7UvmU2pII.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:a3:c9:07:d6:78:48:2d:f3:41:2e:fc:39:8d:1f:a4:c0:94: b8:5f:42:46:ce:ae:b6:db:3a:ea:8d:98:7a:f6:e7:d1:a6:11: 45:0e:77:4f:76:93:93:24:89:78:47:e2:eb:cc:08:d1:21:ac: 1b:64:35:4d:a8:ff:c7:b5:80:6c:09:5c:13:7c:0c:a2:de:6d: 0e:04:e8:f8:73:86:cd:c0:19:01:26:4f:ae:25:f1:ab:50:50: fe:b0:02:56:59:5f:7a:21:17:2e:da:3c:92:a6:85:2e:60:f8: 5c:ef:76:86:26:0c:ae:d7:c6:f3:c4:a8:a5:9e:c5:89:36:b0: 62:a8:f5:27:42:d8:cb:76:f8:8b:e8:c8:f2:56:83:de:18:ad: f8:f6:36:70:60:00:14:e9:e6:d8:24:c6:ac:f3:1c:57:48:b0: c3:b2:78:80:a8:d1:8b:b8:86:69:63:15:10:ef:2f:5e:a8:24: 5d:67:c5:a6:c5:de:9d:25:4b:05:4d:42:95:c1:34:f7:86:27: 26:92:5d:5b:60:cb:cb:94:17:01:33:eb:31:b7:3b:a2:d0:f7: aa:ac:01:2b:3a:58:10:d8:ee:32:98:61:9a:04:1f:31:7e:de: 61:a2:66:8e:b8:4e:1a:9a:a7:4d:d7:8e:32:88:12:76:47:7f: 23:b4:97:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkEhtVukuXjw9tRhTNb+gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiMGIzYjM5NDg2NWU0Yjg1YjY4NmEzOWY1NWVkNGJlNjUz NmE0ODIwHhcNMjYwMjA5MTgwMDU0WhcNMjYwMjEwMTgwMDU0WjAzMTEwLwYDVQQD Eyg4YTI1ZjBmODBjMDRmYzQ1MDQ4OGNkMjdhZTJhYjYzZWJkNjg1YTI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvrSLdYk8AfuqKpuy6q8EOMsLER+ p6umgrWjKJJ39Lgobfz7SKakCTJfs2SHLXk2os6ppB6VtXRjzT/Fpu6zM5c9jSPE 39p0JS7WacvFvWXHf92wl7NTmeSKR29MrxT8gao6i3sMH2U/CKwFWfXWzlKC3LJO uP9WJ4xGXmEbltt9CtrCXmFC/DLXtH2Bljf1CHtR/72h/DXEd/JwKmds56KaFyeZ e3SIRn2jcojDJAhZUuwCb4zAvculfh3E92m3/0vzE7Q+wY+XMAg2vUiTpswuntYR Nbfpwi7CSDkPN+bWorC0cUm5PKJ5qDmo+HRscrvm9JdaAJOZs3SvBSbCXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIol8PgMBPxFBIjNJ64qtj69aFolMB8GA1UdIwQY MBaAFHsLOzlIZeS4W2hqOfVe1L5lNqSCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZXdzN09VaGw1TGhiYUdvNTlWN1V2bVUycElJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9kYjM4YWItYzNjZi00NjIyLTg3ZjYt MmM4ZDAwMTFlODhhLzEvZXdzN09VaGw1TGhiYUdvNTlWN1V2bVUycElJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9kYjM4YWItYzNjZi00NjIyLTg3ZjYtMmM4ZDAwMTFlODhh LzEvZXdzN09VaGw1TGhiYUdvNTlWN1V2bVUycElJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc6PJB9Z4 SC3zQS78OY0fpMCUuF9CRs6utts66o2Yevbn0aYRRQ53T3aTkySJeEfi68wI0SGs G2Q1Taj/x7WAbAlcE3wMot5tDgTo+HOGzcAZASZPriXxq1BQ/rACVllfeiEXLto8 kqaFLmD4XO92hiYMrtfG88SopZ7FiTawYqj1J0LYy3b4i+jI8laD3hit+PY2cGAA FOnm2CTGrPMcV0iww7J4gKjRi7iGaWMVEO8vXqgkXWfFpsXenSVLBU1ClcE094Yn JpJdW2DLy5QXATPrMbc7otD3qqwBKzpYENjuMphhmgQfMX7eYaJmjrhOGpqnTdeO MogSdkd/I7SX5Q== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:08 2026 by rpki-client