This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft File: r7oQsKZ20-H6tWUoQw-siRoINlI.mft (raw, json) Hash identifier: YZ5ov5oAnUbCCXYSNWRZLvXH09KkT2kfJn4qgJeslYI= Subject key identifier: 57:9A:6F:E9:71:41:81:12:40:64:51:83:54:72:CA:0F:97:D3:65:FC Authority key identifier: AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52 Certificate issuer: /CN=afba10b0a676d3e1fab56528430fac891a083652 Certificate serial: 019C420F7BD5BF2C6F0EDDC4DB256160543F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 11:00:36 +0000 Manifest this update: Mon 09 Feb 2026 11:00:36 +0000 Manifest next update: Tue 10 Feb 2026 11:00:36 +0000 Files and hashes: 1: WMBlv5TYOFhb5nmDTbMHQgVvFpc.roa (hash: aKDzW6jTAaiYbIZ5LNCccfbLrCredMGyDoJe0MXZVlA=) 2: r7oQsKZ20-H6tWUoQw-siRoINlI.crl (hash: HEqu/9oMle77AA+MZTBhnGyN9+8NLzH855eVXiND44g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:7b:d5:bf:2c:6f:0e:dd:c4:db:25:61:60:54:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=afba10b0a676d3e1fab56528430fac891a083652 Validity Not Before: Feb 9 11:00:36 2026 GMT Not After : Feb 10 11:00:36 2026 GMT Subject: CN=579a6fe971418112406451835472ca0f97d365fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c8:8d:a4:1c:e6:ad:b7:b7:4b:b6:20:00:28: f8:04:92:b7:1c:cf:3c:63:ec:f3:b1:d5:49:92:b4: 15:79:62:9e:63:39:0d:08:07:d8:b4:2d:93:ad:3a: 53:5e:68:e5:d6:e0:71:9e:2d:a4:6e:37:c7:8b:39: fd:e9:0f:e2:19:66:5c:7e:1c:1f:46:b2:d4:04:a7: 0c:09:66:75:8c:7e:a9:3d:e9:b7:47:b6:6a:26:c9: 1b:b7:a5:7c:da:f0:e4:47:7d:23:2b:10:86:4d:59: 64:50:ff:06:54:00:32:bb:5c:55:1d:e6:65:17:63: 07:49:f3:2e:5e:6a:c7:cc:e9:00:99:cf:3d:95:c9: 00:ea:ad:c9:f6:ed:47:4e:10:cd:b0:35:9e:37:fd: ba:8e:c9:94:32:a6:74:17:35:cd:3b:d1:c2:35:c1: 0c:74:67:1f:5d:b4:e6:c6:93:aa:60:ed:39:e6:e7: 8f:52:b8:cc:03:75:81:8c:d9:70:ed:62:eb:43:88: fd:9e:02:68:01:22:32:25:ea:16:bd:5e:71:b3:98: 69:b9:b1:d6:f0:fe:bc:37:ab:9c:34:f3:d2:fa:7f: 4e:a6:fb:16:d9:45:08:48:61:ee:ab:13:56:39:f2: f9:f3:68:bc:1c:cb:d6:cf:be:3c:95:b2:b5:93:7d: a4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:9A:6F:E9:71:41:81:12:40:64:51:83:54:72:CA:0F:97:D3:65:FC X509v3 Authority Key Identifier: keyid:AF:BA:10:B0:A6:76:D3:E1:FA:B5:65:28:43:0F:AC:89:1A:08:36:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7oQsKZ20-H6tWUoQw-siRoINlI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1a9c9f-0c07-4776-ae65-e027dcb1d186/1/r7oQsKZ20-H6tWUoQw-siRoINlI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:1d:ac:76:87:ca:fe:89:8d:75:39:06:e9:a7:84:ae:23:85: 52:03:15:ae:be:e8:76:33:64:52:a7:d2:29:fc:75:df:65:0d: c0:24:b3:75:c7:f9:b7:5e:22:81:29:39:f7:cb:13:67:39:3a: 9e:0f:09:51:f7:f7:a6:19:fa:aa:e8:bd:f5:c6:9a:92:79:a3: 42:20:95:e1:e2:be:31:93:44:ce:5b:fe:77:cc:2f:7c:a2:b2: 21:7d:91:f0:8e:4e:88:41:c5:4b:f1:ed:1e:35:94:38:2e:22: f3:81:11:36:7d:69:d0:cf:0a:3e:56:28:b2:de:eb:27:ba:a7: a8:bd:90:dd:60:6a:52:9d:4c:3a:cc:05:3c:8c:7d:34:50:ab: b0:b6:ba:03:29:ad:55:c7:f7:b7:1a:90:be:92:23:95:b8:6e: 38:cc:8d:98:e3:45:b8:3e:40:8a:3d:c1:90:f5:ad:fe:da:78: aa:8e:4e:10:2a:4b:dd:88:73:5b:6c:0f:34:1b:14:ef:16:4d: 40:00:43:65:fe:c7:00:56:6d:29:80:b6:cc:a9:c3:eb:53:d2: 83:6e:a5:3a:e1:56:8d:7e:8d:53:7f:03:13:c8:1a:ab:47:94: 6a:61:95:3f:5d:89:f9:c2:5d:9e:b8:86:11:de:ad:79:46:91: 1a:bb:5f:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD3vVvyxvDt3E2yVhYFQ/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmYmExMGIwYTY3NmQzZTFmYWI1NjUyODQzMGZhYzg5MWEw ODM2NTIwHhcNMjYwMjA5MTEwMDM2WhcNMjYwMjEwMTEwMDM2WjAzMTEwLwYDVQQD Eyg1NzlhNmZlOTcxNDE4MTEyNDA2NDUxODM1NDcyY2EwZjk3ZDM2NWZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzsiNpBzmrbe3S7YgACj4BJK3HM88 Y+zzsdVJkrQVeWKeYzkNCAfYtC2TrTpTXmjl1uBxni2kbjfHizn96Q/iGWZcfhwf RrLUBKcMCWZ1jH6pPem3R7ZqJskbt6V82vDkR30jKxCGTVlkUP8GVAAyu1xVHeZl F2MHSfMuXmrHzOkAmc89lckA6q3J9u1HThDNsDWeN/26jsmUMqZ0FzXNO9HCNcEM dGcfXbTmxpOqYO055uePUrjMA3WBjNlw7WLrQ4j9ngJoASIyJeoWvV5xs5hpubHW 8P68N6ucNPPS+n9OpvsW2UUISGHuqxNWOfL582i8HMvWz748lbK1k32kSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFeab+lxQYESQGRRg1Ryyg+X02X8MB8GA1UdIwQY MBaAFK+6ELCmdtPh+rVlKEMPrIkaCDZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xYTljOWYtMGMwNy00Nzc2LWFlNjUt ZTAyN2RjYjFkMTg2LzEvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8xYTljOWYtMGMwNy00Nzc2LWFlNjUtZTAyN2RjYjFkMTg2 LzEvcjdvUXNLWjIwLUg2dFdVb1F3LXNpUm9JTmxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhh2sdofK /omNdTkG6aeEriOFUgMVrr7odjNkUqfSKfx132UNwCSzdcf5t14igSk598sTZzk6 ng8JUff3phn6qui99caaknmjQiCV4eK+MZNEzlv+d8wvfKKyIX2R8I5OiEHFS/Ht HjWUOC4i84ERNn1p0M8KPlYost7rJ7qnqL2Q3WBqUp1MOswFPIx9NFCrsLa6Aymt Vcf3txqQvpIjlbhuOMyNmONFuD5Aij3BkPWt/tp4qo5OECpL3YhzW2wPNBsU7xZN QABDZf7HAFZtKYC2zKnD61PSg26lOuFWjX6NU38DE8gaq0eUamGVP12J+cJdnriG Ed6teUaRGrtfZA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:29 2026 by rpki-client