This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft File: p7He9pWIXq3lzMi0vioCuxYHnpw.mft (raw, json) Hash identifier: 9LowrCOOd2ar7Yhnt+zUOqZMeL1xSirP/nnZ//FaeHI= Subject key identifier: 83:83:2E:BB:73:D6:23:F8:88:7A:C2:E8:FE:E7:D3:8C:4D:E8:2E:DA Authority key identifier: A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C Certificate issuer: /CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c Certificate serial: 019C42EB83A5C66B4C2917EDAEEAC2CA3A1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft Manifest number: 0A61 Signing time: Mon 09 Feb 2026 15:00:56 +0000 Manifest this update: Mon 09 Feb 2026 15:00:56 +0000 Manifest next update: Tue 10 Feb 2026 15:00:56 +0000 Files and hashes: 1: Gq2VB9PjY2d42VE1l06FJT2-xes.roa (hash: idiOLZ8yC3ZWBi2Z9igfWCRSUat/SpYrqd26vqS32rI=) 2: p7He9pWIXq3lzMi0vioCuxYHnpw.crl (hash: /Ma1dFZLrLr/7E2orjH1nkadEqCrgm3ElfH05LFemgk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:83:a5:c6:6b:4c:29:17:ed:ae:ea:c2:ca:3a:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7b1def695885eade5ccc8b4be2a02bb16079e9c Validity Not Before: Feb 9 15:00:56 2026 GMT Not After : Feb 10 15:00:56 2026 GMT Subject: CN=83832ebb73d623f8887ac2e8fee7d38c4de82eda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1b:ce:2f:a3:da:2f:31:1d:53:5f:6f:eb:5a: cb:28:b5:ed:7c:99:45:89:69:fc:59:6b:93:e9:c1: 99:a7:6c:4c:54:8b:dc:28:86:0b:0c:28:e1:12:12: dc:89:1c:a2:3e:de:b1:b7:76:3a:2f:91:b4:e5:4f: 2a:12:fe:f5:1e:b9:e1:cb:40:6c:b1:ae:7f:bd:71: 54:98:83:3c:61:b8:8e:fe:22:62:9a:83:17:1f:9b: 1d:7a:09:15:42:f3:06:a6:72:af:57:55:4e:7b:00: 1d:7b:df:0c:89:3e:75:eb:c1:73:db:ca:d5:5f:5d: f2:18:30:50:c0:01:cf:84:7d:b0:0f:3f:98:ec:38: 07:6c:1a:a7:d7:5c:62:47:e2:f1:4e:58:8b:af:b4: 03:90:d5:bc:0a:77:53:4a:2b:47:a3:7b:37:ff:17: 18:a4:8d:e8:a9:05:9b:96:c1:e4:16:ab:28:81:35: df:93:97:50:ac:e1:5c:2e:54:bb:61:0e:7a:38:73: cd:ba:dc:a9:ad:4c:2e:d4:a9:f8:d2:84:d7:22:95: b8:4e:d8:de:2a:67:b2:5c:20:00:38:55:37:40:5b: 8b:98:9d:20:3e:71:03:62:3b:e1:f1:46:48:5f:3c: bb:a2:06:1d:34:ec:08:10:7a:b8:5d:b9:c0:32:1a: 50:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:83:2E:BB:73:D6:23:F8:88:7A:C2:E8:FE:E7:D3:8C:4D:E8:2E:DA X509v3 Authority Key Identifier: keyid:A7:B1:DE:F6:95:88:5E:AD:E5:CC:C8:B4:BE:2A:02:BB:16:07:9E:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p7He9pWIXq3lzMi0vioCuxYHnpw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/688cae-5f96-4875-8701-944ecec7a423/1/p7He9pWIXq3lzMi0vioCuxYHnpw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:95:55:3d:07:60:e0:75:f5:e6:45:3b:22:b0:40:b8:78:27: 04:b7:0f:df:57:9d:d8:88:dc:19:b4:22:3f:70:0b:e6:63:ed: ff:7f:be:51:35:07:ac:a2:37:12:44:fb:b5:22:be:90:22:2c: 21:aa:7c:dd:a3:0a:b1:ef:47:7d:0a:bf:60:c4:d6:1a:09:0b: 99:b0:1d:81:86:d5:e3:8b:8d:4c:1c:08:73:41:67:56:20:ce: dd:cd:22:3b:50:ad:c8:3c:b2:38:ec:fe:ed:5e:48:6c:8d:4c: 81:4b:d8:a4:b8:d7:11:a5:bc:23:18:dd:c7:d3:15:bf:f3:5d: c7:42:51:f7:f3:28:ca:96:47:ef:ae:c4:52:e2:e8:c9:1d:73: ef:73:5b:7d:c9:6b:a1:0a:6c:87:bc:fc:2b:d0:73:0d:ad:5c: bb:8d:1a:ee:ae:c7:1b:c3:0b:a6:3a:b7:94:ce:9a:13:b2:08: d6:10:69:de:24:74:e9:eb:73:bb:28:e8:08:45:ce:a9:96:a1: 22:fb:b6:c8:e4:2d:98:87:72:5b:54:d2:e1:f9:7f:ee:f7:50: 8e:c0:97:46:e5:e7:81:78:cf:1d:33:c0:62:d4:1f:db:5b:04: fd:eb:cb:9e:86:8f:0b:83:45:7f:e6:af:26:ae:c8:b2:c3:10: 27:f2:2e:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC64OlxmtMKRftrurCyjoaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3YjFkZWY2OTU4ODVlYWRlNWNjYzhiNGJlMmEwMmJiMTYw NzllOWMwHhcNMjYwMjA5MTUwMDU2WhcNMjYwMjEwMTUwMDU2WjAzMTEwLwYDVQQD Eyg4MzgzMmViYjczZDYyM2Y4ODg3YWMyZThmZWU3ZDM4YzRkZTgyZWRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBvOL6PaLzEdU19v61rLKLXtfJlF iWn8WWuT6cGZp2xMVIvcKIYLDCjhEhLciRyiPt6xt3Y6L5G05U8qEv71Hrnhy0Bs sa5/vXFUmIM8YbiO/iJimoMXH5sdegkVQvMGpnKvV1VOewAde98MiT5168Fz28rV X13yGDBQwAHPhH2wDz+Y7DgHbBqn11xiR+LxTliLr7QDkNW8CndTSitHo3s3/xcY pI3oqQWblsHkFqsogTXfk5dQrOFcLlS7YQ56OHPNutyprUwu1Kn40oTXIpW4Ttje KmeyXCAAOFU3QFuLmJ0gPnEDYjvh8UZIXzy7ogYdNOwIEHq4XbnAMhpQYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIODLrtz1iP4iHrC6P7n04xN6C7aMB8GA1UdIwQY MBaAFKex3vaViF6t5czItL4qArsWB56cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDdIZTlwV0lYcTNsek1pMHZpb0N1eFlIbnB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC82ODhjYWUtNWY5Ni00ODc1LTg3MDEt OTQ0ZWNlYzdhNDIzLzEvcDdIZTlwV0lYcTNsek1pMHZpb0N1eFlIbnB3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC82ODhjYWUtNWY5Ni00ODc1LTg3MDEtOTQ0ZWNlYzdhNDIz LzEvcDdIZTlwV0lYcTNsek1pMHZpb0N1eFlIbnB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHpVVPQdg 4HX15kU7IrBAuHgnBLcP31ed2IjcGbQiP3AL5mPt/3++UTUHrKI3EkT7tSK+kCIs Iap83aMKse9HfQq/YMTWGgkLmbAdgYbV44uNTBwIc0FnViDO3c0iO1CtyDyyOOz+ 7V5IbI1MgUvYpLjXEaW8Ixjdx9MVv/Ndx0JR9/MoypZH767EUuLoyR1z73Nbfclr oQpsh7z8K9BzDa1cu40a7q7HG8MLpjq3lM6aE7II1hBp3iR06etzuyjoCEXOqZah Ivu2yOQtmIdyW1TS4fl/7vdQjsCXRuXngXjPHTPAYtQf21sE/evLnoaPC4NFf+av Jq7IssMQJ/IuDw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:15 2026 by rpki-client