This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft File: erqgtAKPBzwFZKZYtPuIhsvI0-s.mft (raw, json) Hash identifier: y5gDI6KVeiFfVMyZw4PGI02zb1secCqQsK0YZ07Dbu4= Subject key identifier: 4E:E3:06:0E:D5:34:21:64:5A:A0:53:6C:1C:7D:6E:53:B2:97:9E:BD Authority key identifier: 7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB Certificate issuer: /CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb Certificate serial: 019C43FE9088D12ED9DD4827DFD464DDA85E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft Manifest number: 03EF Signing time: Mon 09 Feb 2026 20:01:22 +0000 Manifest this update: Mon 09 Feb 2026 20:01:22 +0000 Manifest next update: Tue 10 Feb 2026 20:01:22 +0000 Files and hashes: 1: 5kkE3XtE9ZnSspR1OcwpVp0TyV8.roa (hash: n0us7CHhoP1rKb4vN6/gR6gcwVv7Il8CmXn18T2tiXo=) 2: erqgtAKPBzwFZKZYtPuIhsvI0-s.crl (hash: AgycQIm3X3drVQNjVV3X/rqhjpU+ApkToeyDpiYXfhk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:90:88:d1:2e:d9:dd:48:27:df:d4:64:dd:a8:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7abaa0b4028f073c0564a658b4fb8886cbc8d3eb Validity Not Before: Feb 9 20:01:22 2026 GMT Not After : Feb 10 20:01:22 2026 GMT Subject: CN=4ee3060ed53421645aa0536c1c7d6e53b2979ebd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ab:ee:52:4a:38:53:25:2c:06:80:a2:fb:7d: ff:61:2e:21:bb:16:54:d0:66:76:34:71:69:82:ce: 74:9a:8b:63:8a:fa:c2:1d:ec:c8:59:3e:7b:97:40: 8a:fa:3c:30:a1:e3:ec:ea:0e:97:02:de:6b:90:0c: 68:e5:1a:8b:b1:c7:84:ab:11:9d:ac:4f:82:aa:db: 7f:1e:28:3c:b6:02:05:5a:8d:4b:74:04:07:e5:9a: 99:56:77:56:21:c8:cb:b5:36:e0:85:cd:ce:50:04: 1c:b3:bf:d9:73:70:bb:45:4c:4e:ae:8e:0e:d6:10: 6d:51:50:1f:03:d4:da:d4:aa:9a:9d:e6:3a:44:69: 7d:c1:85:5d:2f:4f:55:12:91:5f:d3:76:da:91:2f: 0d:17:21:1a:0a:1c:49:f0:1a:13:cb:2b:36:8f:45: a3:ee:4d:d5:4c:e0:37:21:70:8c:74:ee:f1:09:b5: 06:1a:a3:f8:51:e4:ab:7f:93:78:78:10:f7:8d:b3: 4b:37:99:54:0c:cc:ba:ba:36:26:21:49:db:e1:ae: 4e:59:67:a7:d8:26:3d:f7:fd:cc:00:20:6c:e0:e4: 5e:87:d7:a9:7c:f8:a5:83:e2:b4:fe:45:97:d2:ee: 22:33:11:ee:d9:93:3b:f9:50:59:0f:68:58:a4:82: 50:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E3:06:0E:D5:34:21:64:5A:A0:53:6C:1C:7D:6E:53:B2:97:9E:BD X509v3 Authority Key Identifier: keyid:7A:BA:A0:B4:02:8F:07:3C:05:64:A6:58:B4:FB:88:86:CB:C8:D3:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/erqgtAKPBzwFZKZYtPuIhsvI0-s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6df7ec-2afe-4532-b40a-baedc79ae7e1/1/erqgtAKPBzwFZKZYtPuIhsvI0-s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:95:99:1d:63:20:20:8c:3d:9e:05:5a:dd:24:00:4d:76:bb: 94:ab:4d:6c:ac:0b:3b:3d:06:60:51:bc:44:15:44:86:14:37: 80:b9:21:cf:cc:40:8e:7d:04:1c:af:90:16:e2:aa:e8:cf:a9: ed:61:5c:83:37:24:f9:be:8b:a4:77:c8:06:76:1c:ce:83:ed: ef:b0:21:ad:9d:58:a9:87:aa:f9:31:82:8d:a8:35:68:7e:06: 3a:cd:c3:c1:ed:4e:e7:ac:7e:33:7a:a8:8d:5f:1e:7b:2e:8f: 57:2c:bb:b8:6a:fb:55:c3:08:9c:cf:ff:38:ed:a3:44:d7:92: d7:96:ce:d5:96:79:28:07:07:6a:8c:6e:eb:b4:18:34:28:ae: fb:d4:89:fb:10:ab:56:0e:0c:81:0f:01:96:0f:bb:86:e8:f7: a7:41:65:34:b9:e4:6d:be:4e:bf:a5:69:f9:29:1c:a9:e1:88: 81:7b:0a:64:ea:0b:a0:d7:e0:a3:6e:69:87:18:c9:3d:bc:4f: 13:d1:39:b3:3e:61:cb:96:c5:91:08:ff:49:ff:92:ea:1c:dd: 2d:38:27:9a:57:00:65:d8:43:fb:d4:3c:d7:55:01:c6:f8:93: 61:bc:44:45:38:b1:c5:84:76:85:8c:26:8f:dd:32:6d:fb:10: 25:c4:3c:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/pCI0S7Z3Ugn39Rk3aheMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhYmFhMGI0MDI4ZjA3M2MwNTY0YTY1OGI0ZmI4ODg2Y2Jj OGQzZWIwHhcNMjYwMjA5MjAwMTIyWhcNMjYwMjEwMjAwMTIyWjAzMTEwLwYDVQQD Eyg0ZWUzMDYwZWQ1MzQyMTY0NWFhMDUzNmMxYzdkNmU1M2IyOTc5ZWJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6vuUko4UyUsBoCi+33/YS4huxZU 0GZ2NHFpgs50motjivrCHezIWT57l0CK+jwwoePs6g6XAt5rkAxo5RqLsceEqxGd rE+Cqtt/Hig8tgIFWo1LdAQH5ZqZVndWIcjLtTbghc3OUAQcs7/Zc3C7RUxOro4O 1hBtUVAfA9Ta1KqaneY6RGl9wYVdL09VEpFf03bakS8NFyEaChxJ8BoTyys2j0Wj 7k3VTOA3IXCMdO7xCbUGGqP4UeSrf5N4eBD3jbNLN5lUDMy6ujYmIUnb4a5OWWen 2CY99/3MACBs4OReh9epfPilg+K0/kWX0u4iMxHu2ZM7+VBZD2hYpIJQawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE7jBg7VNCFkWqBTbBx9blOyl569MB8GA1UdIwQY MBaAFHq6oLQCjwc8BWSmWLT7iIbLyNPrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZXJxZ3RBS1BCendGWktaWXRQdUloc3ZJMC1zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS82ZGY3ZWMtMmFmZS00NTMyLWI0MGEt YmFlZGM3OWFlN2UxLzEvZXJxZ3RBS1BCendGWktaWXRQdUloc3ZJMC1zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS82ZGY3ZWMtMmFmZS00NTMyLWI0MGEtYmFlZGM3OWFlN2Ux LzEvZXJxZ3RBS1BCendGWktaWXRQdUloc3ZJMC1zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoZWZHWMg IIw9ngVa3SQATXa7lKtNbKwLOz0GYFG8RBVEhhQ3gLkhz8xAjn0EHK+QFuKq6M+p 7WFcgzck+b6LpHfIBnYczoPt77AhrZ1YqYeq+TGCjag1aH4GOs3Dwe1O56x+M3qo jV8eey6PVyy7uGr7VcMInM//OO2jRNeS15bO1ZZ5KAcHaoxu67QYNCiu+9SJ+xCr Vg4MgQ8Blg+7huj3p0FlNLnkbb5Ov6Vp+SkcqeGIgXsKZOoLoNfgo25phxjJPbxP E9E5sz5hy5bFkQj/Sf+S6hzdLTgnmlcAZdhD+9Q811UBxviTYbxERTixxYR2hYwm j90ybfsQJcQ8Cg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:06 2026 by rpki-client