This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft File: gU3w5sDcpazuCDqMcwTUXz0z1W0.mft (raw, json) Hash identifier: EGOcltmIIZCUiMT3RgBFwvDvxf+eElkQ79q5bGfFbPQ= Subject key identifier: 29:72:7D:78:D6:04:9E:F8:89:E3:B5:03:49:98:12:B4:55:D8:62:28 Authority key identifier: 81:4D:F0:E6:C0:DC:A5:AC:EE:08:3A:8C:73:04:D4:5F:3D:33:D5:6D Certificate issuer: /CN=814df0e6c0dca5acee083a8c7304d45f3d33d56d Certificate serial: 019C4133EA981BB850B5DA1E8EFCE67193A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft Manifest number: 0EEF Signing time: Mon 09 Feb 2026 07:00:47 +0000 Manifest this update: Mon 09 Feb 2026 07:00:47 +0000 Manifest next update: Tue 10 Feb 2026 07:00:47 +0000 Files and hashes: 1: gU3w5sDcpazuCDqMcwTUXz0z1W0.crl (hash: FptIh8DLCWmX+1EABKBkq5XQ8oL7zRIAThbIMp2sHNQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:ea:98:1b:b8:50:b5:da:1e:8e:fc:e6:71:93:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=814df0e6c0dca5acee083a8c7304d45f3d33d56d Validity Not Before: Feb 9 07:00:47 2026 GMT Not After : Feb 10 07:00:47 2026 GMT Subject: CN=29727d78d6049ef889e3b503499812b455d86228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e9:59:c9:20:11:a5:fb:ac:4a:dc:df:3d:de: aa:58:6b:8e:c3:ce:60:69:40:64:aa:3b:45:10:5c: 6e:49:a5:59:61:08:67:c8:6c:be:3d:d0:6a:74:1b: 7c:17:83:f7:bb:a5:a7:32:67:a5:16:cd:9a:7b:65: f7:19:fb:e1:be:77:a9:e8:82:e4:c4:fc:83:3e:5c: 81:0f:dc:5e:42:da:75:a3:c0:b9:b1:97:fb:e2:2c: 72:44:35:b8:41:a0:a0:f0:23:33:c1:78:fa:e4:ec: 26:60:b4:7a:32:bf:dd:d7:6a:ba:61:e8:7a:9c:76: 29:e0:ab:fe:b3:96:f5:98:1e:92:81:f3:df:1e:1c: 91:6e:7c:e9:cf:1d:a8:68:da:7a:89:2b:0e:85:58: c1:78:70:c2:78:25:3c:19:5c:64:5d:30:32:bd:8e: d2:8a:b9:26:db:65:ed:a7:86:0a:73:73:f2:33:6c: 61:04:10:4b:60:70:c5:29:ef:e1:86:41:47:41:fc: 62:8a:8f:21:30:26:19:09:ae:f5:e3:7f:08:b6:f8: 65:51:52:e9:ea:41:ef:6d:d1:0d:aa:1a:85:b6:83: 1f:a7:31:18:63:15:c1:6c:cc:a8:ed:c0:5b:0a:24: 3f:13:76:2b:09:88:d0:04:f9:24:14:32:02:25:3d: e0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:72:7D:78:D6:04:9E:F8:89:E3:B5:03:49:98:12:B4:55:D8:62:28 X509v3 Authority Key Identifier: keyid:81:4D:F0:E6:C0:DC:A5:AC:EE:08:3A:8C:73:04:D4:5F:3D:33:D5:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:a1:c3:60:63:64:93:c4:ce:94:e8:a2:2d:e5:0f:2f:de:63: 64:8e:3c:6b:0f:7b:56:60:d3:55:c6:d4:ca:c4:db:d9:88:37: 20:26:86:32:1e:91:71:fe:1c:c9:96:50:fa:df:43:a9:7a:79: e1:54:04:e5:0e:7c:5e:c5:12:7b:7b:6b:b3:13:3f:69:21:22: 1d:83:09:4d:a3:05:83:b1:de:df:83:76:b5:98:b6:32:60:da: c0:19:90:f9:c3:93:95:88:2a:ed:85:84:34:1f:a0:7a:f4:dd: 8d:c9:5a:1c:66:be:f5:7e:49:af:fd:13:4e:33:df:94:26:98: 1d:ef:37:c7:8e:bb:25:13:5c:22:f7:ae:a2:6c:93:42:1d:f3: e4:cd:c5:59:47:fd:67:89:82:cc:c2:53:b5:4c:2c:73:d6:d1: 99:39:70:d9:16:9b:76:fa:40:29:1c:2d:8e:00:42:58:46:ef: ab:a0:48:64:97:c8:96:35:52:18:da:3e:cd:3e:91:d6:fe:2b: 11:d6:ec:e7:66:a0:31:a2:ae:40:6d:55:87:36:52:d4:dd:2b: a6:91:0d:80:b7:30:88:5e:96:b6:6d:cc:90:07:f0:a0:67:74: 3b:b7:90:ba:f3:b3:f4:a4:19:45:26:39:dd:58:e8:12:0e:68: 11:80:b1:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM+qYG7hQtdoejvzmcZOpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxNGRmMGU2YzBkY2E1YWNlZTA4M2E4YzczMDRkNDVmM2Qz M2Q1NmQwHhcNMjYwMjA5MDcwMDQ3WhcNMjYwMjEwMDcwMDQ3WjAzMTEwLwYDVQQD EygyOTcyN2Q3OGQ2MDQ5ZWY4ODllM2I1MDM0OTk4MTJiNDU1ZDg2MjI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0elZySARpfusStzfPd6qWGuOw85g aUBkqjtFEFxuSaVZYQhnyGy+PdBqdBt8F4P3u6WnMmelFs2ae2X3Gfvhvnep6ILk xPyDPlyBD9xeQtp1o8C5sZf74ixyRDW4QaCg8CMzwXj65OwmYLR6Mr/d12q6Yeh6 nHYp4Kv+s5b1mB6SgfPfHhyRbnzpzx2oaNp6iSsOhVjBeHDCeCU8GVxkXTAyvY7S irkm22Xtp4YKc3PyM2xhBBBLYHDFKe/hhkFHQfxiio8hMCYZCa71438ItvhlUVLp 6kHvbdENqhqFtoMfpzEYYxXBbMyo7cBbCiQ/E3YrCYjQBPkkFDICJT3ggQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFClyfXjWBJ74ieO1A0mYErRV2GIoMB8GA1UdIwQY MBaAFIFN8ObA3KWs7gg6jHME1F89M9VtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1UzdzVzRGNwYXp1Q0RxTWN3VFVYejB6MVcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi81MTQwZWUtNmZlZi00NmFjLWJlMzIt ZDBkMmYyY2E4Y2JjLzEvZ1UzdzVzRGNwYXp1Q0RxTWN3VFVYejB6MVcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi81MTQwZWUtNmZlZi00NmFjLWJlMzItZDBkMmYyY2E4Y2Jj LzEvZ1UzdzVzRGNwYXp1Q0RxTWN3VFVYejB6MVcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd6HDYGNk k8TOlOiiLeUPL95jZI48aw97VmDTVcbUysTb2Yg3ICaGMh6Rcf4cyZZQ+t9DqXp5 4VQE5Q58XsUSe3trsxM/aSEiHYMJTaMFg7He34N2tZi2MmDawBmQ+cOTlYgq7YWE NB+gevTdjclaHGa+9X5Jr/0TTjPflCaYHe83x467JRNcIveuomyTQh3z5M3FWUf9 Z4mCzMJTtUwsc9bRmTlw2RabdvpAKRwtjgBCWEbvq6BIZJfIljVSGNo+zT6R1v4r Edbs52agMaKuQG1VhzZS1N0rppENgLcwiF6Wtm3MkAfwoGd0O7eQuvOz9KQZRSY5 3VjoEg5oEYCxxA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:29 2026 by rpki-client