This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.mft File: tQ7fyW0rYXiGiVMxQpaeZVZlEqo.mft (raw, json) Hash identifier: mIO4psfIID/1kKeR7dYlwXQe4gnAph+16rNe10LJ0Ik= Subject key identifier: 49:75:F4:5B:BC:E8:F3:AE:5D:8B:33:2B:47:C7:47:82:4C:3B:52:85 Authority key identifier: B5:0E:DF:C9:6D:2B:61:78:86:89:53:31:42:96:9E:65:56:65:12:AA Certificate issuer: /CN=b50edfc96d2b61788689533142969e65566512aa Certificate serial: 019C420FDECC892BE2B03FE67888A9E1A91B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.mft Manifest number: 1790 Signing time: Mon 09 Feb 2026 11:01:02 +0000 Manifest this update: Mon 09 Feb 2026 11:01:02 +0000 Manifest next update: Tue 10 Feb 2026 11:01:02 +0000 Files and hashes: 1: tQ7fyW0rYXiGiVMxQpaeZVZlEqo.crl (hash: S4Vh9ECb00YMbxjMw8JXWTNmA2saAJmrOu5A8Bka67s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.mft rsync://rpki.ripe.net/repository/DEFAULT/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:de:cc:89:2b:e2:b0:3f:e6:78:88:a9:e1:a9:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b50edfc96d2b61788689533142969e65566512aa Validity Not Before: Feb 9 11:01:02 2026 GMT Not After : Feb 10 11:01:02 2026 GMT Subject: CN=4975f45bbce8f3ae5d8b332b47c747824c3b5285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b0:97:4b:7b:d9:23:29:19:ab:ab:74:bf:10: 38:c9:2a:e7:7d:b2:68:da:93:a3:c7:7b:67:de:47: ff:8e:da:b6:42:7e:b9:bb:7c:41:2d:18:da:39:81: 10:f4:f5:b4:ea:59:89:3f:c5:19:e9:96:3b:3a:ac: 42:5b:3f:9a:a6:6e:70:17:96:82:56:f5:ae:fb:34: c7:96:ab:ff:f5:44:ec:99:9e:fd:18:5b:32:da:28: 8f:8b:73:97:a9:d8:28:27:ed:33:0d:f7:d6:e3:82: 44:55:dc:a1:53:1c:67:1e:85:1c:75:8d:a2:4a:b1: ad:43:0f:3b:53:54:56:05:ba:7f:0d:a8:6e:bd:cd: 10:6d:49:43:77:44:6f:24:27:67:4f:49:6c:e1:ab: cb:09:60:fa:35:fe:37:c6:03:c2:ff:fc:19:55:8a: 8c:cb:11:b7:d9:08:ce:c8:f4:eb:14:3e:c7:44:19: 98:be:24:37:a4:11:2f:b1:61:c6:1a:d0:fd:78:25: 40:1d:45:bf:bc:a5:15:45:44:fd:d6:c1:70:75:f7: 73:11:7f:27:37:61:33:c8:55:77:b9:bc:39:ee:62: e3:54:50:1c:4a:66:f6:39:1b:e4:42:cd:3f:5e:22: 52:4a:2e:e0:f9:4b:6f:b0:fa:b3:9a:6d:24:82:a1: ee:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:75:F4:5B:BC:E8:F3:AE:5D:8B:33:2B:47:C7:47:82:4C:3B:52:85 X509v3 Authority Key Identifier: keyid:B5:0E:DF:C9:6D:2B:61:78:86:89:53:31:42:96:9E:65:56:65:12:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:e3:b3:69:cf:39:a1:fd:66:ca:ad:7f:d6:4f:b6:31:30:06: ce:7f:7e:fb:89:6b:d5:e7:57:cf:7c:4a:f5:05:f9:3b:2f:f7: 42:ab:27:8d:21:c8:70:37:dd:9f:bd:39:b0:f4:b7:16:84:83: 38:43:8a:df:00:b5:c1:e9:ff:53:32:25:de:37:04:c8:5b:05: ea:f1:c7:5d:ff:3d:a6:55:4d:0f:9a:f5:9f:55:1b:05:ff:2c: c1:9d:cd:12:79:32:f1:f3:bd:3c:67:48:cd:2c:88:6b:b2:e6: 44:5f:27:dc:2b:e9:c1:68:e3:49:df:97:cb:9e:6a:60:0b:53: c8:3d:16:39:52:67:44:48:9c:f4:13:74:32:40:de:60:4c:74: 3d:66:6a:32:45:e0:b7:7d:20:dd:48:16:c8:f1:dc:75:2f:1a: 91:11:e0:25:41:ca:c8:71:95:28:a2:ba:1c:7f:7d:1f:56:44: 56:5e:d1:e3:d3:f1:c8:54:00:f0:66:1d:a9:81:30:53:32:19: 5d:ab:fb:95:8c:47:19:a0:49:09:86:f1:8d:bd:e6:17:50:d3: f3:60:f4:cd:40:66:17:47:f6:b3:85:70:c3:51:7e:9c:69:90: 99:1a:df:e1:2a:09:d4:3d:65:f3:a0:88:fd:50:4d:03:aa:b5: 1f:16:c5:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD97MiSvisD/meIip4akbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1MGVkZmM5NmQyYjYxNzg4Njg5NTMzMTQyOTY5ZTY1NTY2 NTEyYWEwHhcNMjYwMjA5MTEwMTAyWhcNMjYwMjEwMTEwMTAyWjAzMTEwLwYDVQQD Eyg0OTc1ZjQ1YmJjZThmM2FlNWQ4YjMzMmI0N2M3NDc4MjRjM2I1Mjg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLCXS3vZIykZq6t0vxA4ySrnfbJo 2pOjx3tn3kf/jtq2Qn65u3xBLRjaOYEQ9PW06lmJP8UZ6ZY7OqxCWz+apm5wF5aC VvWu+zTHlqv/9UTsmZ79GFsy2iiPi3OXqdgoJ+0zDffW44JEVdyhUxxnHoUcdY2i SrGtQw87U1RWBbp/Dahuvc0QbUlDd0RvJCdnT0ls4avLCWD6Nf43xgPC//wZVYqM yxG32QjOyPTrFD7HRBmYviQ3pBEvsWHGGtD9eCVAHUW/vKUVRUT91sFwdfdzEX8n N2EzyFV3ubw57mLjVFAcSmb2ORvkQs0/XiJSSi7g+UtvsPqzmm0kgqHubQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEl19Fu86POuXYszK0fHR4JMO1KFMB8GA1UdIwQY MBaAFLUO38ltK2F4holTMUKWnmVWZRKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFE3ZnlXMHJZWGlHaVZNeFFwYWVaVlpsRXFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC9kYzA5Y2YtNzcwYy00MTcyLWE2ZWUt YjYxMzg0ZmYwZWMyLzEvdFE3ZnlXMHJZWGlHaVZNeFFwYWVaVlpsRXFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC9kYzA5Y2YtNzcwYy00MTcyLWE2ZWUtYjYxMzg0ZmYwZWMy LzEvdFE3ZnlXMHJZWGlHaVZNeFFwYWVaVlpsRXFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh+Ozac85 of1myq1/1k+2MTAGzn9++4lr1edXz3xK9QX5Oy/3QqsnjSHIcDfdn705sPS3FoSD OEOK3wC1wen/UzIl3jcEyFsF6vHHXf89plVND5r1n1UbBf8swZ3NEnky8fO9PGdI zSyIa7LmRF8n3CvpwWjjSd+Xy55qYAtTyD0WOVJnREic9BN0MkDeYEx0PWZqMkXg t30g3UgWyPHcdS8akRHgJUHKyHGVKKK6HH99H1ZEVl7R49PxyFQA8GYdqYEwUzIZ Xav7lYxHGaBJCYbxjb3mF1DT82D0zUBmF0f2s4Vww1F+nGmQmRrf4SoJ1D1l86CI /VBNA6q1HxbF5Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:33 2026 by rpki-client