This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft File: s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft (raw, json) Hash identifier: QxsRZmkbBLWk9N5qqJDToFEDr1Iod6dFWZVcM0jxjso= Subject key identifier: 13:E1:2D:AF:62:C4:FA:68:8D:05:F0:27:9B:AD:2B:58:1A:72:90:C9 Authority key identifier: B3:B5:D2:B4:3A:CC:0D:9F:07:AA:00:AA:90:F0:25:C9:6D:5C:EC:25 Certificate issuer: /CN=b3b5d2b43acc0d9f07aa00aa90f025c96d5cec25 Certificate serial: 019C4359243E46A136FE6ADE2C0659F356C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft Manifest number: 0D69 Signing time: Mon 09 Feb 2026 17:00:41 +0000 Manifest this update: Mon 09 Feb 2026 17:00:41 +0000 Manifest next update: Tue 10 Feb 2026 17:00:41 +0000 Files and hashes: 1: h5TBAsD0PIrK8ZbXvXzmuZYvjfc.roa (hash: vh2mYfpn9jYyEFKZRDPA3enKaVdAJO56xPGBRHR7x4E=) 2: s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl (hash: xsJ3HDveeuD3bExX3zDLTkjvT2fIa/AM/NGpH/dVtnI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:24:3e:46:a1:36:fe:6a:de:2c:06:59:f3:56:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3b5d2b43acc0d9f07aa00aa90f025c96d5cec25 Validity Not Before: Feb 9 17:00:41 2026 GMT Not After : Feb 10 17:00:41 2026 GMT Subject: CN=13e12daf62c4fa688d05f0279bad2b581a7290c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:cd:ba:b2:16:d3:f1:cc:00:72:d5:36:ae:62: de:52:81:2c:9a:ee:e1:a0:1a:6e:06:22:9d:fc:b2: 36:94:b8:23:66:2e:27:09:1e:da:88:42:a8:fe:93: 11:36:c4:c2:6f:62:f7:8f:c7:30:bd:5c:ef:ee:f3: 0c:75:7b:51:45:d1:92:8b:0c:f0:c3:d4:d5:79:fc: 61:7d:30:45:c1:03:1c:ba:47:ef:7a:97:4b:15:27: 65:f7:93:86:f1:6e:93:e8:79:7a:ba:da:67:ec:a3: 9e:94:62:0b:c8:1b:a7:c7:91:06:5c:e7:cd:c0:33: e3:07:2c:47:24:7b:ea:bc:dd:93:e6:26:0a:fb:82: 26:96:ad:7b:b9:d1:1f:a4:aa:93:5d:4f:f1:db:82: 68:e0:96:6f:cd:09:6f:62:9a:5b:3e:5f:1e:63:e0: a8:8f:d6:ca:91:c1:44:34:53:7a:e1:04:f4:1e:ee: 13:3c:a1:cc:3c:0b:54:28:3d:28:c9:07:89:f2:30: 13:9d:e3:bd:c3:82:49:5b:36:98:c3:63:be:b3:71: 51:90:cb:c0:7c:85:3c:21:34:08:75:33:32:9b:6a: 2a:88:36:c7:ef:6f:40:f1:3e:15:9a:51:e5:66:3f: f5:c7:be:dd:36:1f:70:37:8a:5f:7d:c8:69:c2:9a: a9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E1:2D:AF:62:C4:FA:68:8D:05:F0:27:9B:AD:2B:58:1A:72:90:C9 X509v3 Authority Key Identifier: keyid:B3:B5:D2:B4:3A:CC:0D:9F:07:AA:00:AA:90:F0:25:C9:6D:5C:EC:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:e3:56:cd:c8:23:28:10:3f:e5:d8:f3:3e:b7:8f:f2:81:71: 2e:19:eb:36:d5:44:9f:98:40:d4:e0:18:a5:f8:30:35:3b:2d: b5:76:0e:8f:fe:b0:38:b0:43:9f:ff:c5:de:98:66:95:c3:41: 0c:0b:69:d8:c0:14:fb:3a:c6:08:64:ca:b3:ed:38:80:10:b1: ea:95:fb:ad:20:88:dd:77:e3:ba:00:23:0c:d7:b5:0e:cb:ab: b5:ce:6a:8e:c9:c3:c4:b6:85:c9:79:6c:66:5b:0e:74:2f:38: 21:90:b5:94:24:7f:94:c9:9f:1e:d3:da:ee:de:c6:c0:b1:31: 8b:32:16:6a:12:92:73:e5:12:0f:b7:bb:b5:d7:3c:67:58:ef: 78:fa:40:cf:3d:27:46:e2:13:2e:5c:aa:13:49:07:12:8e:11: 55:4f:16:82:5a:e6:33:05:78:32:4c:5a:b2:43:8b:41:8c:80: a5:34:b1:b8:68:f6:ff:bb:20:3f:16:71:79:6c:25:e0:7a:9f: 77:82:07:14:fb:11:34:5c:d0:b9:74:a4:a7:84:77:c5:82:32: 54:03:3b:42:9e:f7:01:55:65:d6:6d:0d:1d:e4:d0:2d:c1:65: 4d:9a:86:ad:be:ec:2f:67:4e:85:0f:1b:bb:b9:92:77:cd:1e: d9:92:8e:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWSQ+RqE2/mreLAZZ81bHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYjVkMmI0M2FjYzBkOWYwN2FhMDBhYTkwZjAyNWM5NmQ1 Y2VjMjUwHhcNMjYwMjA5MTcwMDQxWhcNMjYwMjEwMTcwMDQxWjAzMTEwLwYDVQQD EygxM2UxMmRhZjYyYzRmYTY4OGQwNWYwMjc5YmFkMmI1ODFhNzI5MGM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4M26shbT8cwActU2rmLeUoEsmu7h oBpuBiKd/LI2lLgjZi4nCR7aiEKo/pMRNsTCb2L3j8cwvVzv7vMMdXtRRdGSiwzw w9TVefxhfTBFwQMcukfvepdLFSdl95OG8W6T6Hl6utpn7KOelGILyBunx5EGXOfN wDPjByxHJHvqvN2T5iYK+4Imlq17udEfpKqTXU/x24Jo4JZvzQlvYppbPl8eY+Co j9bKkcFENFN64QT0Hu4TPKHMPAtUKD0oyQeJ8jATneO9w4JJWzaYw2O+s3FRkMvA fIU8ITQIdTMym2oqiDbH729A8T4VmlHlZj/1x77dNh9wN4pffchpwpqpFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBPhLa9ixPpojQXwJ5utK1gacpDJMB8GA1UdIwQY MBaAFLO10rQ6zA2fB6oAqpDwJcltXOwlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczdYU3REck1EWjhIcWdDcWtQQWx5VzFjN0NVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8wYTkyZGYtYzUwOS00ZTkyLThlMmIt MjRiOGMwMmZhODJhLzEvczdYU3REck1EWjhIcWdDcWtQQWx5VzFjN0NVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8wYTkyZGYtYzUwOS00ZTkyLThlMmItMjRiOGMwMmZhODJh LzEvczdYU3REck1EWjhIcWdDcWtQQWx5VzFjN0NVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADONWzcgj KBA/5djzPreP8oFxLhnrNtVEn5hA1OAYpfgwNTsttXYOj/6wOLBDn//F3phmlcNB DAtp2MAU+zrGCGTKs+04gBCx6pX7rSCI3XfjugAjDNe1Dsurtc5qjsnDxLaFyXls ZlsOdC84IZC1lCR/lMmfHtPa7t7GwLExizIWahKSc+USD7e7tdc8Z1jvePpAzz0n RuITLlyqE0kHEo4RVU8WglrmMwV4MkxaskOLQYyApTSxuGj2/7sgPxZxeWwl4Hqf d4IHFPsRNFzQuXSkp4R3xYIyVAM7Qp73AVVl1m0NHeTQLcFlTZqGrb7sL2dOhQ8b u7mSd80e2ZKOhQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:21 2026 by rpki-client