This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft File: gbv0m8K-YG6m9Ivb-WJX3natfMA.mft (raw, json) Hash identifier: P3H7JnWHOvZ26ogTgcchTdq8WBQeZpevf29xANB7sCo= Subject key identifier: 0D:CD:7A:A2:C3:A5:5F:74:4B:DF:2F:D9:50:41:3B:3D:E9:7E:4D:F4 Authority key identifier: 81:BB:F4:9B:C2:BE:60:6E:A6:F4:8B:DB:F9:62:57:DE:76:AD:7C:C0 Certificate issuer: /CN=81bbf49bc2be606ea6f48bdbf96257de76ad7cc0 Certificate serial: 019C4133C414E6C3699877DDBE612673C75C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 07:00:37 +0000 Manifest this update: Mon 09 Feb 2026 07:00:37 +0000 Manifest next update: Tue 10 Feb 2026 07:00:37 +0000 Files and hashes: 1: gbv0m8K-YG6m9Ivb-WJX3natfMA.crl (hash: iwL7/wonbSd2WII6OfEJZsFHOSlyjnQrg8JvqMDxeVo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:c4:14:e6:c3:69:98:77:dd:be:61:26:73:c7:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81bbf49bc2be606ea6f48bdbf96257de76ad7cc0 Validity Not Before: Feb 9 07:00:37 2026 GMT Not After : Feb 10 07:00:37 2026 GMT Subject: CN=0dcd7aa2c3a55f744bdf2fd950413b3de97e4df4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:46:98:c7:91:a5:ec:91:aa:d3:b8:d9:f3:03: ad:02:e7:d7:bc:68:39:30:ca:37:6b:7a:41:c1:26: da:d6:71:f5:bb:29:35:e6:9d:a8:f5:c0:52:a0:9f: 86:59:c6:05:e4:90:22:01:10:95:4c:06:0b:e5:a0: 29:0d:2e:ad:1a:28:2e:21:4b:6e:39:6b:79:4b:98: 0c:eb:1d:20:40:51:67:c8:08:62:41:06:a2:b2:87: 3c:7c:16:19:9d:91:1b:5b:07:a0:a1:3f:73:01:89: 4a:74:0d:cd:ca:ff:2c:2d:0e:94:2b:e6:31:7e:e1: e2:0a:5b:8f:75:b5:71:96:1d:78:a1:9d:8f:8b:25: 21:99:16:12:fe:c4:ea:be:51:73:22:a3:82:07:36: 32:bc:5e:ef:29:b2:74:63:c4:17:5e:84:28:b0:68: 74:39:54:aa:d5:84:7e:2f:e8:c9:44:ba:6b:53:a6: 64:02:a2:0f:c4:dd:0a:bb:31:29:54:15:0a:ba:28: 30:6f:31:c5:10:42:9d:b0:04:e6:18:f7:17:81:d0: bc:3b:23:79:a8:b5:cd:68:4e:a5:fa:b8:01:2d:fd: fd:44:00:52:46:d8:69:26:23:53:35:0b:b8:ad:ae: f2:d7:cc:be:29:3d:ca:35:88:cc:ca:d9:b7:74:1f: 2e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:CD:7A:A2:C3:A5:5F:74:4B:DF:2F:D9:50:41:3B:3D:E9:7E:4D:F4 X509v3 Authority Key Identifier: keyid:81:BB:F4:9B:C2:BE:60:6E:A6:F4:8B:DB:F9:62:57:DE:76:AD:7C:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:4f:79:e5:dd:df:57:6a:a0:3e:51:0e:ff:09:ae:93:d2:ee: 83:be:6f:33:f0:09:3e:44:dc:50:9d:d8:e6:6b:bb:bc:07:c8: c6:84:20:d1:9a:42:55:08:9d:ef:5a:47:78:a9:ca:0e:a9:55: 59:b1:1e:c9:2e:50:e9:9a:86:70:cf:41:65:fb:b6:06:e6:bf: 7c:24:e5:61:0c:96:ab:7e:0e:2c:a2:a1:10:6c:6d:49:7a:95: d1:a6:55:8a:05:e2:98:c4:d7:a3:53:49:fd:5f:7f:c3:99:8f: 0a:6e:8e:8a:60:3f:20:2c:1e:7f:7d:d0:29:bf:16:67:cf:98: 26:55:4b:f0:2c:0c:9c:ed:e4:a4:b5:4b:54:44:65:b6:93:91: d8:1e:69:80:e7:1d:4f:94:d9:8c:8b:bc:3b:76:99:59:b7:02: c0:9c:bf:73:df:2b:df:7c:51:ce:8f:42:91:5b:b7:89:4e:4e: 2d:88:b6:f6:73:10:23:65:a6:5c:57:e6:e0:13:a1:db:8f:bd: b9:d4:11:5d:9d:53:77:bf:74:c6:d0:82:8d:ab:a2:09:5f:46: 46:6e:c5:85:fc:6a:b6:2d:ce:36:51:79:cb:7d:75:5f:a7:49: 2e:47:1e:a6:94:46:c8:f9:c1:1f:8a:14:e0:69:a8:54:8a:30: 66:7f:e9:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM8QU5sNpmHfdvmEmc8dcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxYmJmNDliYzJiZTYwNmVhNmY0OGJkYmY5NjI1N2RlNzZh ZDdjYzAwHhcNMjYwMjA5MDcwMDM3WhcNMjYwMjEwMDcwMDM3WjAzMTEwLwYDVQQD EygwZGNkN2FhMmMzYTU1Zjc0NGJkZjJmZDk1MDQxM2IzZGU5N2U0ZGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAykaYx5Gl7JGq07jZ8wOtAufXvGg5 MMo3a3pBwSba1nH1uyk15p2o9cBSoJ+GWcYF5JAiARCVTAYL5aApDS6tGiguIUtu OWt5S5gM6x0gQFFnyAhiQQaisoc8fBYZnZEbWwegoT9zAYlKdA3Nyv8sLQ6UK+Yx fuHiCluPdbVxlh14oZ2PiyUhmRYS/sTqvlFzIqOCBzYyvF7vKbJ0Y8QXXoQosGh0 OVSq1YR+L+jJRLprU6ZkAqIPxN0KuzEpVBUKuigwbzHFEEKdsATmGPcXgdC8OyN5 qLXNaE6l+rgBLf39RABSRthpJiNTNQu4ra7y18y+KT3KNYjMytm3dB8uYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA3NeqLDpV90S98v2VBBOz3pfk30MB8GA1UdIwQY MBaAFIG79JvCvmBupvSL2/liV952rXzAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2J2MG04Sy1ZRzZtOUl2Yi1XSlgzbmF0Zk1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS84NjNlZWUtNzcxNC00YmM0LTkyNjgt NDE2OTQyMDJkZTY4LzEvZ2J2MG04Sy1ZRzZtOUl2Yi1XSlgzbmF0Zk1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS84NjNlZWUtNzcxNC00YmM0LTkyNjgtNDE2OTQyMDJkZTY4 LzEvZ2J2MG04Sy1ZRzZtOUl2Yi1XSlgzbmF0Zk1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxU955d3f V2qgPlEO/wmuk9Lug75vM/AJPkTcUJ3Y5mu7vAfIxoQg0ZpCVQid71pHeKnKDqlV WbEeyS5Q6ZqGcM9BZfu2Bua/fCTlYQyWq34OLKKhEGxtSXqV0aZVigXimMTXo1NJ /V9/w5mPCm6OimA/ICwef33QKb8WZ8+YJlVL8CwMnO3kpLVLVERltpOR2B5pgOcd T5TZjIu8O3aZWbcCwJy/c98r33xRzo9CkVu3iU5OLYi29nMQI2WmXFfm4BOh24+9 udQRXZ1Td790xtCCjauiCV9GRm7Fhfxqti3ONlF5y311X6dJLkceppRGyPnBH4oU 4GmoVIowZn/pAQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:57 2026 by rpki-client