This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft File: gMez3pa5HtxunIXZ1aZoQZIDtfU.mft (raw, json) Hash identifier: KC/UjNKgx6cno7D9blTSa6vx8RD8ci+JS5HtuJgHV8M= Subject key identifier: 2E:9E:68:AC:37:1F:48:A1:9D:8B:16:1A:74:D6:B9:61:9E:B0:86:37 Authority key identifier: 80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5 Certificate issuer: /CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5 Certificate serial: 019C427DD576485F61C4EAA8545C5D0D260E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft Manifest number: 05EB Signing time: Mon 09 Feb 2026 13:01:08 +0000 Manifest this update: Mon 09 Feb 2026 13:01:08 +0000 Manifest next update: Tue 10 Feb 2026 13:01:08 +0000 Files and hashes: 1: gMez3pa5HtxunIXZ1aZoQZIDtfU.crl (hash: P0GRAp96wC0jZfzrMp45mFryXZFgqmzrFyqpiESyU3s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:d5:76:48:5f:61:c4:ea:a8:54:5c:5d:0d:26:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5 Validity Not Before: Feb 9 13:01:08 2026 GMT Not After : Feb 10 13:01:08 2026 GMT Subject: CN=2e9e68ac371f48a19d8b161a74d6b9619eb08637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5a:bc:ab:59:95:32:36:98:42:e0:e7:9a:4c: 2d:64:0c:d2:cd:03:fa:f9:96:fc:cd:59:4e:9e:0b: 98:d3:92:e6:a0:d2:67:61:4c:2b:87:39:c3:0f:2d: 3e:c3:60:bd:56:e0:fd:f6:a0:d6:3b:ee:82:96:04: 38:b6:e3:ab:09:3b:24:72:66:f6:40:e2:e3:cf:f9: 5f:08:38:09:5a:1d:ce:d4:14:8f:e9:4e:f7:e2:e1: ad:ac:39:6e:98:b9:dd:40:a1:48:9f:8f:ee:ba:a7: 39:1f:0e:6f:8b:6d:14:db:85:1d:34:02:74:bb:95: 46:ef:e6:f1:1b:46:f1:c4:16:b2:a3:af:8a:ea:37: 8f:c4:9c:b3:84:66:de:e2:4d:dc:97:f0:94:82:00: 1a:96:a8:ec:84:2e:7a:f4:52:85:0a:ca:a4:f0:8f: ea:d9:ec:ab:92:ee:26:d2:dd:6f:05:da:71:2e:1c: 43:bb:6c:70:3c:47:14:d0:66:1e:4c:fe:38:be:64: bf:14:d0:15:15:71:9a:4f:18:30:2d:06:44:35:3f: 88:75:fb:67:24:0d:92:06:a6:52:73:74:71:3d:3c: 0e:d3:6b:79:93:3d:3b:61:1d:4e:b7:a6:84:fa:e0: 0f:8e:85:b8:bf:95:81:84:6d:a3:d3:16:71:73:76: c8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:9E:68:AC:37:1F:48:A1:9D:8B:16:1A:74:D6:B9:61:9E:B0:86:37 X509v3 Authority Key Identifier: keyid:80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:07:3a:66:68:2d:44:0d:38:d3:23:07:87:13:2c:9e:76:ba: 1a:35:d2:f5:8b:2a:25:20:e7:b9:5a:71:0c:79:4b:b9:62:27: bd:4a:ea:6c:21:dc:fc:01:04:a0:3f:36:fd:04:2b:3b:d9:32: 33:76:7e:dd:5e:1e:1a:71:7f:14:01:32:8c:4f:2b:3f:a5:d9: 8d:51:d5:b9:37:21:b5:29:67:a9:72:d1:59:bf:ba:25:70:1f: 62:3b:40:d7:6c:85:10:93:da:b7:d4:0a:40:52:f9:f7:2d:2a: 4d:76:36:2b:55:ac:e5:2f:87:06:ab:d2:f5:99:f2:9b:32:01: 5d:55:07:ac:d7:a6:3e:ef:84:4e:59:0d:f6:5a:01:57:10:45: 98:b4:73:8f:27:66:8f:e0:2d:1a:ce:d5:55:a1:89:5f:d0:3f: af:39:e3:9b:ab:58:e9:32:83:94:b1:82:6c:d1:25:00:2f:07: 9c:06:e1:42:77:ba:59:db:b5:52:e4:53:f5:2d:de:bd:72:0f: af:5f:a8:d4:02:40:83:6e:2b:61:21:cc:7a:c3:09:03:64:0b: 42:42:cf:9f:df:4e:a2:43:78:5b:d6:3f:6c:42:28:d4:95:28: 16:79:45:36:59:01:4a:ab:db:c3:ec:cf:c9:08:6f:f8:85:8b: 9d:f8:80:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfdV2SF9hxOqoVFxdDSYOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwYzdiM2RlOTZiOTFlZGM2ZTljODVkOWQ1YTY2ODQxOTIw M2I1ZjUwHhcNMjYwMjA5MTMwMTA4WhcNMjYwMjEwMTMwMTA4WjAzMTEwLwYDVQQD EygyZTllNjhhYzM3MWY0OGExOWQ4YjE2MWE3NGQ2Yjk2MTllYjA4NjM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFq8q1mVMjaYQuDnmkwtZAzSzQP6 +Zb8zVlOnguY05LmoNJnYUwrhznDDy0+w2C9VuD99qDWO+6ClgQ4tuOrCTskcmb2 QOLjz/lfCDgJWh3O1BSP6U734uGtrDlumLndQKFIn4/uuqc5Hw5vi20U24UdNAJ0 u5VG7+bxG0bxxBayo6+K6jePxJyzhGbe4k3cl/CUggAalqjshC569FKFCsqk8I/q 2eyrku4m0t1vBdpxLhxDu2xwPEcU0GYeTP44vmS/FNAVFXGaTxgwLQZENT+Idftn JA2SBqZSc3RxPTwO02t5kz07YR1Ot6aE+uAPjoW4v5WBhG2j0xZxc3bIpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC6eaKw3H0ihnYsWGnTWuWGesIY3MB8GA1UdIwQY MBaAFIDHs96WuR7cbpyF2dWmaEGSA7X1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9jMzAxZmItMzE3NC00NWMzLWE0NDct YTdmY2ZiNTI5ZGM3LzEvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9jMzAxZmItMzE3NC00NWMzLWE0NDctYTdmY2ZiNTI5ZGM3 LzEvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAswc6Zmgt RA040yMHhxMsnna6GjXS9YsqJSDnuVpxDHlLuWInvUrqbCHc/AEEoD82/QQrO9ky M3Z+3V4eGnF/FAEyjE8rP6XZjVHVuTchtSlnqXLRWb+6JXAfYjtA12yFEJPat9QK QFL59y0qTXY2K1Ws5S+HBqvS9ZnymzIBXVUHrNemPu+ETlkN9loBVxBFmLRzjydm j+AtGs7VVaGJX9A/rznjm6tY6TKDlLGCbNElAC8HnAbhQne6Wdu1UuRT9S3evXIP r1+o1AJAg24rYSHMesMJA2QLQkLPn99OokN4W9Y/bEIo1JUoFnlFNlkBSqvbw+zP yQhv+IWLnfiA5w== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:19 2026 by rpki-client