This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json) Hash identifier: 4aXsAC9GbAtf0+BePowFdaBR8VMKm6aFIWEnDFJ9Xyo= Subject key identifier: E2:C9:40:92:8B:5B:B0:FC:09:25:57:5A:7B:D5:89:28:B9:40:C1:29 Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe Certificate serial: 019C4246B833D5127043A967B5D671BA79E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 12:00:56 +0000 Manifest this update: Mon 09 Feb 2026 12:00:56 +0000 Manifest next update: Tue 10 Feb 2026 12:00:56 +0000 Files and hashes: 1: B923TTC0Df04C2WKB5eoCgT73fQ.roa (hash: u8SWrYqzCDPEqqAsY+pz5LjUeslP1zMGGkEQ+CEEG6g=) 2: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: w2zpgCuYWUTNw5u4yPsuKxwOA9rNjhc39HDFBBsESSo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:b8:33:d5:12:70:43:a9:67:b5:d6:71:ba:79:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe Validity Not Before: Feb 9 12:00:56 2026 GMT Not After : Feb 10 12:00:56 2026 GMT Subject: CN=e2c940928b5bb0fc0925575a7bd58928b940c129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3e:62:91:b3:da:6f:0b:1d:db:73:91:10:15: 67:66:88:00:75:7d:44:cf:f4:54:aa:b4:f1:47:08: ec:00:f1:fb:82:9d:a2:c2:03:92:60:37:a5:66:6e: 79:69:b9:4a:98:c3:fa:29:c9:14:9a:64:67:b0:b4: 78:df:f9:30:d4:2f:28:76:5a:2e:fd:b3:1a:b7:94: 44:0b:4e:a9:a5:40:73:74:f5:cb:be:c8:ef:df:b4: 76:61:47:2c:07:76:83:1a:16:04:76:d2:c8:7e:c7: fd:f2:bc:bd:cd:34:83:3f:9f:b7:1a:32:9e:45:a1: 35:42:4b:e6:da:2d:7e:26:2a:ac:d1:65:0c:0a:43: 3b:91:ca:0d:4d:bb:98:b7:89:67:03:9f:c9:87:9a: b3:bb:b0:60:ae:b2:5f:c9:41:7a:7a:a6:97:73:9b: f9:ae:55:a8:33:d0:3d:51:7d:8f:40:0d:9a:24:5f: 18:8e:d1:3f:61:38:1a:94:2e:86:73:6b:d3:a7:d4: 14:25:86:fb:8a:76:e6:66:ee:8a:92:89:38:bd:e4: c8:14:51:36:b5:87:cd:1a:c7:ea:1a:a5:4b:d1:b4: d2:62:a7:53:f2:56:f6:ae:9c:7b:29:fd:82:fd:e4: d3:92:49:6d:15:95:67:87:0f:80:1e:20:39:86:55: a8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C9:40:92:8B:5B:B0:FC:09:25:57:5A:7B:D5:89:28:B9:40:C1:29 X509v3 Authority Key Identifier: keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:87:77:f0:b9:19:71:fe:27:b8:06:0e:36:9a:8f:5b:91:7d: 9f:36:a3:26:fb:87:1d:bd:f5:5a:5e:b9:e4:91:5d:48:8d:dd: 44:d6:84:cd:f8:d5:de:a3:74:c3:ed:cb:de:c2:d6:9d:fd:9e: df:f6:9c:e4:51:54:81:fc:4c:29:b8:da:22:5c:2c:96:2c:e2: 23:19:45:83:29:6c:70:b8:5b:fe:f3:7d:48:6c:dd:11:f0:dc: 37:36:1c:e8:8a:4b:76:10:c9:2a:a1:5a:4d:81:b9:3b:e9:bf: 8c:ae:fe:17:8d:3f:e7:d6:ee:26:b9:0d:bb:81:85:52:06:77: e7:61:6c:31:8d:a1:e2:8a:8b:7e:7b:6b:0c:58:d6:8f:f5:4a: 20:e7:2c:e1:62:c8:ba:16:27:7f:a1:2b:6b:50:b0:0b:f2:d8: b6:50:47:3c:8d:3c:92:28:04:5a:b6:53:13:bc:cf:09:d2:db: 9a:b5:08:10:e7:c4:75:7f:4f:57:04:3d:d7:1b:8d:f6:c5:b1: ec:a6:31:f3:6b:a6:94:32:61:43:b2:4d:6f:c9:91:04:18:00: 04:23:8e:5d:d9:b1:bd:f4:36:2b:88:af:1f:31:ea:fc:93:e2: a3:5f:22:8e:6d:de:92:87:74:98:66:1c:00:68:fe:c0:64:e4: 55:83:85:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRrgz1RJwQ6lntdZxunngMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2YjdlZGVmNjE4NTg3MjNjNGFkZWJlM2VlNWE4OWY3MDA1 OGQ1ZmUwHhcNMjYwMjA5MTIwMDU2WhcNMjYwMjEwMTIwMDU2WjAzMTEwLwYDVQQD EyhlMmM5NDA5MjhiNWJiMGZjMDkyNTU3NWE3YmQ1ODkyOGI5NDBjMTI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuT5ikbPabwsd23OREBVnZogAdX1E z/RUqrTxRwjsAPH7gp2iwgOSYDelZm55ablKmMP6KckUmmRnsLR43/kw1C8odlou /bMat5REC06ppUBzdPXLvsjv37R2YUcsB3aDGhYEdtLIfsf98ry9zTSDP5+3GjKe RaE1Qkvm2i1+Jiqs0WUMCkM7kcoNTbuYt4lnA5/Jh5qzu7BgrrJfyUF6eqaXc5v5 rlWoM9A9UX2PQA2aJF8YjtE/YTgalC6Gc2vTp9QUJYb7inbmZu6Kkok4veTIFFE2 tYfNGsfqGqVL0bTSYqdT8lb2rpx7Kf2C/eTTkkltFZVnhw+AHiA5hlWofwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOLJQJKLW7D8CSVXWnvViSi5QMEpMB8GA1UdIwQY MBaAFAa37e9hhYcjxK3r4+5aifcAWNX+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUt ODk1NTFlOGNjZTEyLzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUtODk1NTFlOGNjZTEy LzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgId38LkZ cf4nuAYONpqPW5F9nzajJvuHHb31Wl655JFdSI3dRNaEzfjV3qN0w+3L3sLWnf2e 3/ac5FFUgfxMKbjaIlwsliziIxlFgylscLhb/vN9SGzdEfDcNzYc6IpLdhDJKqFa TYG5O+m/jK7+F40/59buJrkNu4GFUgZ352FsMY2h4oqLfntrDFjWj/VKIOcs4WLI uhYnf6Era1CwC/LYtlBHPI08kigEWrZTE7zPCdLbmrUIEOfEdX9PVwQ91xuN9sWx 7KYx82umlDJhQ7JNb8mRBBgABCOOXdmxvfQ2K4ivHzHq/JPio18ijm3ekod0mGYc AGj+wGTkVYOF1g== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:31 2026 by rpki-client