This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json) Hash identifier: 2T1tqHDRcD219OmE/YeDmVGK5YS0EGbxcHIQB3xly6M= Subject key identifier: B6:20:C9:7F:DB:8D:D3:B9:8C:E4:F7:27:5A:DF:F6:88:04:D4:CA:52 Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d Certificate serial: 019C42B438F1455638C0635CEB4009A1A0F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft Manifest number: 03B8 Signing time: Mon 09 Feb 2026 14:00:33 +0000 Manifest this update: Mon 09 Feb 2026 14:00:33 +0000 Manifest next update: Tue 10 Feb 2026 14:00:33 +0000 Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: 1RJrj1TzdxTIO4ZbWykTKLblGfnwm1p4LF6B6Zn+pr0=) 2: 6P5TrCrBMBOzWPp7NfkTPVfGFC0.roa (hash: sSdGu5Xuxs0f7WjvG48kyrMaNHwDQMDfZZyHNGWz4mk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:38:f1:45:56:38:c0:63:5c:eb:40:09:a1:a0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d Validity Not Before: Feb 9 14:00:33 2026 GMT Not After : Feb 10 14:00:33 2026 GMT Subject: CN=b620c97fdb8dd3b98ce4f7275adff68804d4ca52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:39:bf:06:96:e2:be:9f:cd:5a:95:f7:0f:cb: d7:1b:89:38:a9:62:8f:5f:53:dd:6d:81:e1:de:8c: 7e:11:07:6a:0e:27:11:de:b8:87:ec:ab:ec:bb:86: e3:c4:7c:a7:ce:d5:51:70:95:2d:fb:3e:46:67:2d: 83:71:87:6b:7c:93:37:2a:04:55:72:31:06:29:89: 22:c4:e8:29:9b:8c:6b:4d:30:f2:5a:0d:d1:43:e5: 3c:c9:26:e4:18:4e:c3:32:b8:0b:41:46:a0:0c:40: 2e:d2:1c:54:95:f7:aa:30:eb:a5:4a:35:bc:b8:eb: 44:c9:a6:34:ff:5a:9c:5e:29:94:7a:e7:14:e2:55: b2:90:32:08:ec:07:f5:5d:7f:69:75:60:80:e4:e5: 50:b6:2d:69:84:66:11:13:a9:36:03:75:da:20:21: 71:a6:13:d5:ee:8a:64:5b:41:03:15:de:4b:25:51: 5c:ff:59:b8:38:3f:24:fd:70:e7:d0:99:eb:c8:24: 86:e6:6c:bf:17:b8:a2:ae:08:cc:c5:66:8f:39:27: 98:f4:57:e2:c4:ba:d5:1e:a6:49:4c:c2:da:9a:a3: 04:06:0b:88:2a:e0:25:bc:c4:8f:58:f5:ca:ac:86: bf:a2:2a:40:57:99:49:80:7e:b6:41:a1:80:6e:b6: 63:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:20:C9:7F:DB:8D:D3:B9:8C:E4:F7:27:5A:DF:F6:88:04:D4:CA:52 X509v3 Authority Key Identifier: keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:69:b3:9f:b5:57:01:0a:57:09:be:7e:30:7d:15:cf:8f:d7: db:bf:a5:f7:75:28:d2:76:22:68:f6:66:f4:f5:8a:c0:6e:92: b9:31:80:3d:11:c1:a9:93:b8:ec:e8:91:7c:87:37:61:3e:fe: 17:36:80:aa:01:a8:4f:2c:6a:b7:17:be:10:58:c3:71:74:b8: c4:8d:d3:f3:ab:f1:09:6f:ef:c2:95:ff:7f:93:32:21:01:ee: 65:db:7c:0b:2f:06:b7:62:d7:2c:43:c1:e7:b5:8e:3f:76:82: 00:04:df:38:9c:09:7f:b0:41:15:a5:43:16:26:cc:55:16:d4: 83:62:05:65:96:26:44:b5:fe:7d:d7:01:64:fd:b2:ce:b1:7e: be:8d:62:5b:74:2e:17:ac:f3:dc:21:e9:02:ee:59:30:c0:74: 4f:02:a3:55:06:63:f3:c7:77:c8:0c:d7:b3:ac:22:c5:d6:87: 0f:fd:ba:be:73:55:e1:64:31:c5:24:50:68:29:e9:2b:fd:c3: f0:1f:f4:70:ac:80:78:cf:65:dc:c6:a2:8b:ed:d2:dc:97:3c: bf:1e:63:09:7d:86:a5:f9:2a:f1:26:e6:fe:45:24:51:ff:d0: a1:33:22:60:cc:f8:49:24:d4:d4:4d:ce:a9:1f:78:57:78:ae: 91:dd:9e:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtDjxRVY4wGNc60AJoaDzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzNDZlNWQ0NjI5MWY2YmM1M2I5NjU4NjUwNTFiYTM5OTc0 OWViMmQwHhcNMjYwMjA5MTQwMDMzWhcNMjYwMjEwMTQwMDMzWjAzMTEwLwYDVQQD EyhiNjIwYzk3ZmRiOGRkM2I5OGNlNGY3Mjc1YWRmZjY4ODA0ZDRjYTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jm/Bpbivp/NWpX3D8vXG4k4qWKP X1PdbYHh3ox+EQdqDicR3riH7Kvsu4bjxHynztVRcJUt+z5GZy2DcYdrfJM3KgRV cjEGKYkixOgpm4xrTTDyWg3RQ+U8ySbkGE7DMrgLQUagDEAu0hxUlfeqMOulSjW8 uOtEyaY0/1qcXimUeucU4lWykDII7Af1XX9pdWCA5OVQti1phGYRE6k2A3XaICFx phPV7opkW0EDFd5LJVFc/1m4OD8k/XDn0JnryCSG5my/F7iirgjMxWaPOSeY9Ffi xLrVHqZJTMLamqMEBguIKuAlvMSPWPXKrIa/oipAV5lJgH62QaGAbrZj7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLYgyX/bjdO5jOT3J1rf9ogE1MpSMB8GA1UdIwQY MBaAFNNG5dRikfa8U7llhlBRujmXSestMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDBibDFHS1I5cnhUdVdXR1VGRzZPWmRKNnkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC83YzhlOWMtZWM0OC00YTkwLTg2ZTUt M2U5NDNmOTdmZjMxLzEvMDBibDFHS1I5cnhUdVdXR1VGRzZPWmRKNnkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC83YzhlOWMtZWM0OC00YTkwLTg2ZTUtM2U5NDNmOTdmZjMx LzEvMDBibDFHS1I5cnhUdVdXR1VGRzZPWmRKNnkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHmmzn7VX AQpXCb5+MH0Vz4/X27+l93Uo0nYiaPZm9PWKwG6SuTGAPRHBqZO47OiRfIc3YT7+ FzaAqgGoTyxqtxe+EFjDcXS4xI3T86vxCW/vwpX/f5MyIQHuZdt8Cy8Gt2LXLEPB 57WOP3aCAATfOJwJf7BBFaVDFibMVRbUg2IFZZYmRLX+fdcBZP2yzrF+vo1iW3Qu F6zz3CHpAu5ZMMB0TwKjVQZj88d3yAzXs6wixdaHD/26vnNV4WQxxSRQaCnpK/3D 8B/0cKyAeM9l3Maii+3S3Jc8vx5jCX2Gpfkq8Sbm/kUkUf/QoTMiYMz4SSTU1E3O qR94V3iukd2eZw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:16 2026 by rpki-client