This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.mft File: R7cYcu1kXJZm1VEavHjwfE06uKw.mft (raw, json) Hash identifier: o2CrU3Ai5s3kEnr0l6vwwPuDlDSX59/O6+5t6RLO0BY= Subject key identifier: D6:BA:E0:67:48:7C:5B:23:41:03:37:1B:5A:57:C9:56:B8:D5:AB:68 Authority key identifier: 47:B7:18:72:ED:64:5C:96:66:D5:51:1A:BC:78:F0:7C:4D:3A:B8:AC Certificate issuer: /CN=47b71872ed645c9666d5511abc78f07c4d3ab8ac Certificate serial: 019C44A2E9E10681BEABE6420011600C5A07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R7cYcu1kXJZm1VEavHjwfE06uKw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.mft Manifest number: 04B5 Signing time: Mon 09 Feb 2026 23:00:53 +0000 Manifest this update: Mon 09 Feb 2026 23:00:53 +0000 Manifest next update: Tue 10 Feb 2026 23:00:53 +0000 Files and hashes: 1: R7cYcu1kXJZm1VEavHjwfE06uKw.crl (hash: O1cjIcwE0Yca0+2ngLJwRAhOOxUf4KDvsXCuy0UtasA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.mft rsync://rpki.ripe.net/repository/DEFAULT/R7cYcu1kXJZm1VEavHjwfE06uKw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:e9:e1:06:81:be:ab:e6:42:00:11:60:0c:5a:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47b71872ed645c9666d5511abc78f07c4d3ab8ac Validity Not Before: Feb 9 23:00:53 2026 GMT Not After : Feb 10 23:00:53 2026 GMT Subject: CN=d6bae067487c5b234103371b5a57c956b8d5ab68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4e:54:a1:bc:50:53:1e:ab:bf:8b:68:be:0b: 1b:6b:30:08:88:f0:76:67:9e:2e:78:ae:7e:c8:cf: b9:2a:cb:23:b4:a6:78:17:2c:50:be:22:f6:51:a3: 21:bf:bc:ae:84:e0:5d:e1:a2:a3:91:d9:e8:df:de: 9c:31:f6:c9:54:3c:e8:2b:d1:c3:d9:b7:67:3f:0c: 79:d1:77:b8:20:03:a9:d0:6d:82:6e:09:75:c5:c1: e9:fc:b9:49:ae:ba:ac:92:0d:ff:2f:0c:ff:8a:87: eb:e5:13:20:cc:60:d7:13:32:a4:3b:57:3f:0a:1c: bd:b0:a6:e5:6d:e7:0e:ba:a5:9f:c8:34:05:3a:3a: f6:9b:55:a8:29:dd:20:e5:45:6f:ff:57:ff:a7:9f: 78:d5:ca:ad:51:aa:54:03:b7:f2:7f:d3:d0:33:bc: 45:e9:c8:03:ca:d4:a4:b1:bb:26:0b:72:d7:8d:ef: b0:36:97:90:85:1f:99:51:62:40:7b:b2:3f:3e:b7: ef:e8:6c:1b:6d:63:11:7e:00:ec:7a:b4:62:01:d6: eb:44:56:da:d9:56:b5:0d:7b:b1:fa:1f:f8:a4:cd: 81:4e:de:34:63:81:90:a9:4d:88:4e:d5:62:fc:e4: 1a:e4:62:6d:0d:03:3b:3c:f1:85:9e:6d:45:70:81: 71:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:BA:E0:67:48:7C:5B:23:41:03:37:1B:5A:57:C9:56:B8:D5:AB:68 X509v3 Authority Key Identifier: keyid:47:B7:18:72:ED:64:5C:96:66:D5:51:1A:BC:78:F0:7C:4D:3A:B8:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R7cYcu1kXJZm1VEavHjwfE06uKw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/909b7b-d413-42e1-a60a-ec84dd5c69bf/1/R7cYcu1kXJZm1VEavHjwfE06uKw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:f9:9a:ab:34:0c:29:08:c4:f7:c4:e0:5d:5b:4e:22:80:e8: 90:05:bc:1b:69:8c:3c:b7:bf:e5:22:e5:13:78:d5:7d:76:33: 6a:5a:01:cb:a7:ad:92:c5:38:4a:f5:83:c4:3a:9f:c2:b8:bf: f2:ed:40:94:29:f6:e1:14:e5:c3:17:c2:8e:2a:15:50:88:98: 83:44:10:ac:07:83:b2:b4:8c:7e:f2:f7:b2:50:3b:41:3a:d6: de:39:a8:22:92:9d:17:e6:06:dc:5d:65:50:ce:c4:12:a5:58: 33:a1:96:92:6d:36:c1:10:a7:81:ac:08:ab:a3:82:81:4d:b8: c9:44:75:5f:51:ad:e8:4d:70:c4:de:74:a1:a7:4c:83:03:fb: 94:ec:04:53:6c:0b:70:8b:f4:e2:f2:9b:40:1a:a3:dd:45:44: 73:f3:b0:87:88:e1:ef:e2:c2:d7:bb:5c:21:00:bd:17:c4:d1: 2c:d2:85:b0:2e:46:76:15:af:19:37:1e:c3:18:7e:16:36:9f: 51:47:a8:f0:60:4c:1b:aa:e0:9b:b9:41:27:f2:10:4f:53:9a: cf:7e:61:bc:02:e2:58:54:14:d5:2d:a5:6a:a9:17:95:2d:c8: bb:4d:d5:79:c7:bf:61:fa:a9:71:8d:9d:d3:75:f1:2b:24:d8: 7b:b3:91:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEounhBoG+q+ZCABFgDFoHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3YjcxODcyZWQ2NDVjOTY2NmQ1NTExYWJjNzhmMDdjNGQz YWI4YWMwHhcNMjYwMjA5MjMwMDUzWhcNMjYwMjEwMjMwMDUzWjAzMTEwLwYDVQQD EyhkNmJhZTA2NzQ4N2M1YjIzNDEwMzM3MWI1YTU3Yzk1NmI4ZDVhYjY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArU5UobxQUx6rv4tovgsbazAIiPB2 Z54ueK5+yM+5KssjtKZ4FyxQviL2UaMhv7yuhOBd4aKjkdno396cMfbJVDzoK9HD 2bdnPwx50Xe4IAOp0G2Cbgl1xcHp/LlJrrqskg3/Lwz/iofr5RMgzGDXEzKkO1c/ Chy9sKblbecOuqWfyDQFOjr2m1WoKd0g5UVv/1f/p5941cqtUapUA7fyf9PQM7xF 6cgDytSksbsmC3LXje+wNpeQhR+ZUWJAe7I/Prfv6GwbbWMRfgDserRiAdbrRFba 2Va1DXux+h/4pM2BTt40Y4GQqU2ITtVi/OQa5GJtDQM7PPGFnm1FcIFxEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNa64GdIfFsjQQM3G1pXyVa41atoMB8GA1UdIwQY MBaAFEe3GHLtZFyWZtVRGrx48HxNOrisMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjdjWWN1MWtYSlptMVZFYXZIandmRTA2dUt3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85MDliN2ItZDQxMy00MmUxLWE2MGEt ZWM4NGRkNWM2OWJmLzEvUjdjWWN1MWtYSlptMVZFYXZIandmRTA2dUt3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS85MDliN2ItZDQxMy00MmUxLWE2MGEtZWM4NGRkNWM2OWJm LzEvUjdjWWN1MWtYSlptMVZFYXZIandmRTA2dUt3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgvmaqzQM KQjE98TgXVtOIoDokAW8G2mMPLe/5SLlE3jVfXYzaloBy6etksU4SvWDxDqfwri/ 8u1AlCn24RTlwxfCjioVUIiYg0QQrAeDsrSMfvL3slA7QTrW3jmoIpKdF+YG3F1l UM7EEqVYM6GWkm02wRCngawIq6OCgU24yUR1X1Gt6E1wxN50oadMgwP7lOwEU2wL cIv04vKbQBqj3UVEc/Owh4jh7+LC17tcIQC9F8TRLNKFsC5GdhWvGTcewxh+Fjaf UUeo8GBMG6rgm7lBJ/IQT1Oaz35hvALiWFQU1S2laqkXlS3Iu03Vece/YfqpcY2d 03XxKyTYe7ORIw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:45:36 2026 by rpki-client