This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft File: 2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft (raw, json) Hash identifier: 1x+py6ninXS/QdpIp6u2BaHmzWwvlTCNfJV3JhdBLgM= Subject key identifier: EA:3D:CA:33:6E:11:05:E8:95:A2:5E:85:82:0F:59:B2:F9:33:EF:47 Authority key identifier: DB:FE:F0:D0:E3:F3:A1:13:43:BB:91:7F:CB:79:33:F4:E9:DA:E4:AD Certificate issuer: /CN=dbfef0d0e3f3a11343bb917fcb7933f4e9dae4ad Certificate serial: 019C451122501E0AC13224DFF26FD72CFD47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft Manifest number: 0AF2 Signing time: Tue 10 Feb 2026 01:01:16 +0000 Manifest this update: Tue 10 Feb 2026 01:01:16 +0000 Manifest next update: Wed 11 Feb 2026 01:01:16 +0000 Files and hashes: 1: 2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl (hash: lCVy2FgfDOS85TAc0GfwJpYdigWaWWHi9HWPeZBl29M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:11:22:50:1e:0a:c1:32:24:df:f2:6f:d7:2c:fd:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbfef0d0e3f3a11343bb917fcb7933f4e9dae4ad Validity Not Before: Feb 10 01:01:16 2026 GMT Not After : Feb 11 01:01:16 2026 GMT Subject: CN=ea3dca336e1105e895a25e85820f59b2f933ef47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d7:d5:9b:5b:0b:75:51:df:8d:86:11:fe:0b: c9:19:72:d7:74:ae:d9:1c:31:0d:98:37:e0:da:d3: 36:07:0f:4d:66:41:34:d8:b3:81:84:c0:88:0b:64: ce:6b:45:69:63:db:ec:ce:86:12:42:1d:22:30:48: d2:a6:08:c8:61:bc:0b:76:e5:21:44:14:97:04:80: c0:db:2c:35:12:6c:e2:4a:40:76:0d:1f:27:af:72: 92:23:2c:1e:41:c0:47:ca:a7:21:5b:c6:24:28:9a: ad:17:37:cf:f0:cb:69:6c:a8:4e:91:d8:cf:03:d9: da:d2:7d:07:ee:22:f2:bc:4a:34:13:18:94:67:78: eb:d3:89:ad:26:67:6a:b1:b8:69:61:9d:53:3b:c4: 08:2f:13:95:2f:5a:1c:31:62:26:8a:93:02:e0:7d: f4:5b:6b:39:83:ed:78:3a:bc:17:d0:60:9b:48:3a: 02:ef:92:bd:79:2d:e7:c3:9f:7c:8c:ea:f5:fa:91: 5a:6d:27:5f:93:c9:46:e6:37:1b:4a:11:5a:24:f9: 44:d7:6d:12:ca:84:9a:5b:ff:ac:a4:99:ee:cf:90: 0a:29:9f:43:f0:0a:d4:bb:a5:64:07:d9:8d:73:67: 1a:f8:09:6a:f5:91:8f:c1:b8:24:0c:21:d1:f5:ca: b6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:3D:CA:33:6E:11:05:E8:95:A2:5E:85:82:0F:59:B2:F9:33:EF:47 X509v3 Authority Key Identifier: keyid:DB:FE:F0:D0:E3:F3:A1:13:43:BB:91:7F:CB:79:33:F4:E9:DA:E4:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:f0:f0:ae:41:c2:85:66:f3:ac:01:dd:79:1a:b9:7b:57:ca: dc:39:ff:15:3d:99:b5:55:98:1c:b6:92:04:31:a4:ae:fd:5f: 83:59:f7:ac:4a:e1:95:37:46:e9:79:1d:08:05:0a:2c:5c:80: bc:d6:0b:62:67:3d:87:10:e8:de:07:b6:e5:85:2d:92:6c:29: 0c:04:9d:05:ba:fe:d3:47:11:f5:69:e5:d9:57:ba:ed:58:dd: 02:a9:cf:cd:71:9c:71:fa:bb:68:e2:7b:63:bb:d6:20:82:b9: a8:bb:a3:01:04:9c:61:76:c7:5e:05:91:c0:2c:75:b8:00:8d: eb:12:a8:86:ed:89:02:79:48:88:9e:e6:b4:36:f6:0f:4f:fb: 12:39:fa:fb:cd:fb:2f:4b:e7:a5:c9:d4:53:ab:5e:52:0d:d9: da:29:23:ef:47:84:a5:91:65:62:93:2a:8b:f0:07:65:2c:56: 46:e0:18:26:b3:84:90:e0:03:0f:73:30:e6:9f:bc:74:d1:ff: a7:1d:94:e1:3e:90:9e:16:2d:49:7c:e3:08:b4:d8:e1:8e:5d: 3f:f4:3a:77:23:7f:2c:c5:6b:06:7a:d9:82:23:0a:6c:58:9f: cb:be:0d:9b:e1:88:e6:03:69:0f:db:53:2e:b7:5d:bf:5a:e7: 37:80:ff:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFESJQHgrBMiTf8m/XLP1HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZmVmMGQwZTNmM2ExMTM0M2JiOTE3ZmNiNzkzM2Y0ZTlk YWU0YWQwHhcNMjYwMjEwMDEwMTE2WhcNMjYwMjExMDEwMTE2WjAzMTEwLwYDVQQD EyhlYTNkY2EzMzZlMTEwNWU4OTVhMjVlODU4MjBmNTliMmY5MzNlZjQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdfVm1sLdVHfjYYR/gvJGXLXdK7Z HDENmDfg2tM2Bw9NZkE02LOBhMCIC2TOa0VpY9vszoYSQh0iMEjSpgjIYbwLduUh RBSXBIDA2yw1EmziSkB2DR8nr3KSIyweQcBHyqchW8YkKJqtFzfP8MtpbKhOkdjP A9na0n0H7iLyvEo0ExiUZ3jr04mtJmdqsbhpYZ1TO8QILxOVL1ocMWImipMC4H30 W2s5g+14OrwX0GCbSDoC75K9eS3nw598jOr1+pFabSdfk8lG5jcbShFaJPlE120S yoSaW/+spJnuz5AKKZ9D8ArUu6VkB9mNc2ca+Alq9ZGPwbgkDCHR9cq2ewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOo9yjNuEQXolaJehYIPWbL5M+9HMB8GA1UdIwQY MBaAFNv+8NDj86ETQ7uRf8t5M/Tp2uStMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMl83dzBPUHpvUk5EdTVGX3kza3o5T25hNUswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wYThlMjMtYjYzMS00NDQ0LTk2Mjkt ZTY0YzRlYzNjOTE5LzEvMl83dzBPUHpvUk5EdTVGX3kza3o5T25hNUswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy8wYThlMjMtYjYzMS00NDQ0LTk2MjktZTY0YzRlYzNjOTE5 LzEvMl83dzBPUHpvUk5EdTVGX3kza3o5T25hNUswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWPDwrkHC hWbzrAHdeRq5e1fK3Dn/FT2ZtVWYHLaSBDGkrv1fg1n3rErhlTdG6XkdCAUKLFyA vNYLYmc9hxDo3ge25YUtkmwpDASdBbr+00cR9Wnl2Ve67VjdAqnPzXGccfq7aOJ7 Y7vWIIK5qLujAQScYXbHXgWRwCx1uACN6xKohu2JAnlIiJ7mtDb2D0/7Ejn6+837 L0vnpcnUU6teUg3Z2ikj70eEpZFlYpMqi/AHZSxWRuAYJrOEkOADD3Mw5p+8dNH/ px2U4T6QnhYtSXzjCLTY4Y5dP/Q6dyN/LMVrBnrZgiMKbFify74Nm+GI5gNpD9tT Lrddv1rnN4D/Pw== -----END CERTIFICATE-----Generated at Tue Feb 10 03:15:51 2026 by rpki-client