This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft File: gEFPcG9s0sh68PYGstE3a4a1-mY.mft (raw, json) Hash identifier: lyCFpXrl/HGstckm1e0s94FEkfTMmFUL0o5n9qOqF4w= Subject key identifier: 29:B7:8D:47:61:43:6C:39:70:87:C7:91:E6:C3:BC:41:0F:1D:04:3F Authority key identifier: 80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66 Certificate issuer: /CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66 Certificate serial: 019C413482AF46EB7CF743AF9C4FEF39B810 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 07:01:26 +0000 Manifest this update: Mon 09 Feb 2026 07:01:26 +0000 Manifest next update: Tue 10 Feb 2026 07:01:26 +0000 Files and hashes: 1: gEFPcG9s0sh68PYGstE3a4a1-mY.crl (hash: EzQrKB2TJfOx0n6Eg9PzSuHUXa8dJKHENXpbXo2T/4I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:82:af:46:eb:7c:f7:43:af:9c:4f:ef:39:b8:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66 Validity Not Before: Feb 9 07:01:26 2026 GMT Not After : Feb 10 07:01:26 2026 GMT Subject: CN=29b78d4761436c397087c791e6c3bc410f1d043f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7f:dd:8c:a9:79:6a:a8:6b:e1:c3:bc:0d:0b: f2:5f:02:9e:6a:02:1e:51:f0:20:59:c5:10:52:a5: de:d7:e0:2e:7e:5d:67:e6:99:43:fe:1d:50:a2:ed: 7b:a1:84:14:13:03:2c:8d:15:d2:17:42:68:c7:e2: 82:14:b6:0d:30:de:0d:44:31:fb:05:94:b3:17:ec: 50:24:e6:1f:e9:d6:17:7c:4d:87:d8:78:34:1d:fa: d1:c3:89:81:c5:10:23:9b:ec:8c:bc:b9:44:9b:32: 2a:b7:fa:9b:50:f3:9f:1e:3d:8b:6e:99:8d:2a:4e: ac:56:ad:a6:1a:5c:dd:78:98:43:5d:0d:3b:ef:68: 13:93:e7:63:47:1d:7f:14:e0:01:44:28:4d:35:b8: a7:70:15:8a:a8:d9:16:97:e4:8c:1c:c0:3f:88:7c: f5:60:78:9b:55:69:4e:86:87:bb:30:ee:a1:d1:30: d9:09:1d:3b:4a:3d:33:fd:f1:58:db:85:95:0e:39: 69:c7:28:a6:15:c1:83:b2:64:06:d4:3b:c8:09:b0: 9e:84:84:b7:5f:c7:86:7a:46:fb:af:c4:82:6c:e8: 5b:f7:a0:cd:84:f0:ee:e0:aa:0b:40:3c:15:3b:53: 19:9f:90:cc:51:c8:7b:9a:d1:d1:06:ac:4d:ef:db: 02:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B7:8D:47:61:43:6C:39:70:87:C7:91:E6:C3:BC:41:0F:1D:04:3F X509v3 Authority Key Identifier: keyid:80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:3d:70:33:f4:24:48:7d:45:f9:4b:ae:61:c3:06:62:16:ae: 5a:4c:2d:3b:29:58:16:82:06:ec:8c:1d:06:fd:a3:60:a2:78: f6:ff:4a:14:1c:b8:13:ef:b5:83:f9:ef:fd:f0:5d:1c:71:9a: 45:80:da:3a:6e:a8:65:a5:8f:5e:50:e1:8a:61:4c:94:d9:42: f7:37:87:a3:fd:26:28:1a:a0:b0:b1:10:a1:3f:5e:63:bf:1a: 13:e5:1d:0d:0c:b4:b1:46:93:10:61:b1:2f:45:e0:66:d1:dc: e1:92:f5:fc:a8:18:7a:14:13:5e:c4:39:f5:11:eb:36:7c:b4: c6:6c:7f:f2:fd:2f:be:4c:2d:1a:b9:f3:c3:de:99:d9:59:8b: 57:06:52:20:1a:b1:19:ad:11:58:63:d8:45:f4:74:b2:6b:69: 4f:51:f3:c6:c6:bd:30:8a:20:6e:00:74:05:52:3a:00:4d:20: 8f:1c:9c:5f:29:13:70:db:c1:70:90:a6:dd:4f:9d:e7:b5:e1: 75:9e:63:aa:73:37:28:f8:8c:e9:b3:0e:1b:2c:80:a1:fb:b7: 7f:da:e0:3c:97:6c:68:83:04:2d:ce:20:fa:c8:a6:50:74:52: 7d:ad:29:82:1c:2e:1a:e4:81:fa:d6:f1:40:9c:72:06:ed:49: 58:97:ce:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNIKvRut890OvnE/vObgQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwNDE0ZjcwNmY2Y2QyYzg3YWYwZjYwNmIyZDEzNzZiODZi NWZhNjYwHhcNMjYwMjA5MDcwMTI2WhcNMjYwMjEwMDcwMTI2WjAzMTEwLwYDVQQD EygyOWI3OGQ0NzYxNDM2YzM5NzA4N2M3OTFlNmMzYmM0MTBmMWQwNDNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2X/djKl5aqhr4cO8DQvyXwKeagIe UfAgWcUQUqXe1+Aufl1n5plD/h1Qou17oYQUEwMsjRXSF0Jox+KCFLYNMN4NRDH7 BZSzF+xQJOYf6dYXfE2H2Hg0HfrRw4mBxRAjm+yMvLlEmzIqt/qbUPOfHj2LbpmN Kk6sVq2mGlzdeJhDXQ0772gTk+djRx1/FOABRChNNbincBWKqNkWl+SMHMA/iHz1 YHibVWlOhoe7MO6h0TDZCR07Sj0z/fFY24WVDjlpxyimFcGDsmQG1DvICbCehIS3 X8eGekb7r8SCbOhb96DNhPDu4KoLQDwVO1MZn5DMUch7mtHRBqxN79sCBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCm3jUdhQ2w5cIfHkebDvEEPHQQ/MB8GA1UdIwQY MBaAFIBBT3BvbNLIevD2BrLRN2uGtfpmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0VGUGNHOXMwc2g2OFBZR3N0RTNhNGExLW1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy84MWU1YmQtZjdhYi00Mjg3LWJiYjUt NmQ4NTZmODRhODEzLzEvZ0VGUGNHOXMwc2g2OFBZR3N0RTNhNGExLW1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy84MWU1YmQtZjdhYi00Mjg3LWJiYjUtNmQ4NTZmODRhODEz LzEvZ0VGUGNHOXMwc2g2OFBZR3N0RTNhNGExLW1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdD1wM/Qk SH1F+UuuYcMGYhauWkwtOylYFoIG7IwdBv2jYKJ49v9KFBy4E++1g/nv/fBdHHGa RYDaOm6oZaWPXlDhimFMlNlC9zeHo/0mKBqgsLEQoT9eY78aE+UdDQy0sUaTEGGx L0XgZtHc4ZL1/KgYehQTXsQ59RHrNny0xmx/8v0vvkwtGrnzw96Z2VmLVwZSIBqx Ga0RWGPYRfR0smtpT1Hzxsa9MIogbgB0BVI6AE0gjxycXykTcNvBcJCm3U+d57Xh dZ5jqnM3KPiM6bMOGyyAofu3f9rgPJdsaIMELc4g+simUHRSfa0pghwuGuSB+tbx QJxyBu1JWJfOhQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:26 2026 by rpki-client