This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft File: R7lNsbPetIBa0mFVS65rpfp0CMs.mft (raw, json) Hash identifier: MH/su+GYgNftTHZR8ehzSQafsblnpQ7hxg8vJ98H88A= Subject key identifier: E9:AA:50:43:D2:93:A4:B3:B4:1E:E2:96:67:CB:3C:CC:9D:15:BF:73 Authority key identifier: 47:B9:4D:B1:B3:DE:B4:80:5A:D2:61:55:4B:AE:6B:A5:FA:74:08:CB Certificate issuer: /CN=47b94db1b3deb4805ad261554bae6ba5fa7408cb Certificate serial: 019C432288C7ABD7BC77456B9452485BDA50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 16:01:02 +0000 Manifest this update: Mon 09 Feb 2026 16:01:02 +0000 Manifest next update: Tue 10 Feb 2026 16:01:02 +0000 Files and hashes: 1: R7lNsbPetIBa0mFVS65rpfp0CMs.crl (hash: UTx9WdKfELmZTHvQW1qFiboWbshju9Jc8S/EXKKf540=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:88:c7:ab:d7:bc:77:45:6b:94:52:48:5b:da:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47b94db1b3deb4805ad261554bae6ba5fa7408cb Validity Not Before: Feb 9 16:01:02 2026 GMT Not After : Feb 10 16:01:02 2026 GMT Subject: CN=e9aa5043d293a4b3b41ee29667cb3ccc9d15bf73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7d:7c:93:31:20:33:e9:c8:c0:f8:90:9b:c2: 08:3e:fc:d7:ef:9c:90:bc:42:90:6b:33:75:01:7f: a3:01:ea:41:1e:6c:c2:c5:8c:cc:23:0f:96:e3:0e: 71:86:10:84:90:2b:df:29:6a:98:e6:f8:6a:54:1f: b8:da:6b:75:0b:82:24:e4:ae:ab:b2:1d:62:d1:87: a0:2a:eb:05:b1:93:9b:00:b1:31:59:c3:4a:a0:6d: b4:b1:c8:76:11:c6:ea:a8:fe:6a:5b:e2:94:d7:cf: 37:62:83:8b:13:a7:da:85:5a:1f:1b:55:d0:92:d7: 99:da:7f:05:e0:bf:d3:7b:81:e7:3b:16:b9:f7:bc: b0:08:ac:37:b1:f2:81:34:f3:2d:e1:27:9f:f2:73: 2c:37:ae:4d:b5:6a:fe:f6:7c:e2:bf:c5:ff:d7:1d: da:be:48:17:f5:b1:ec:5d:da:a7:0a:34:8d:79:ee: 57:4e:95:84:94:6f:30:1d:59:9f:59:97:52:ab:44: 2e:ae:d7:0b:11:a7:1b:69:7f:b6:e9:35:66:f3:cb: 52:15:81:36:d2:57:a2:de:f6:b3:0b:1b:6f:bd:d4: 69:64:f7:42:e0:ff:b8:bd:83:c5:66:e2:d5:68:3b: f2:3d:e5:6b:8d:e1:f3:d6:c5:94:cd:1e:07:4a:ff: ea:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:AA:50:43:D2:93:A4:B3:B4:1E:E2:96:67:CB:3C:CC:9D:15:BF:73 X509v3 Authority Key Identifier: keyid:47:B9:4D:B1:B3:DE:B4:80:5A:D2:61:55:4B:AE:6B:A5:FA:74:08:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:08:8b:79:3d:a4:f1:23:23:11:9c:c9:1d:f6:1b:53:c0:17: 12:20:5a:61:69:d9:59:2b:16:95:f8:0b:a4:42:06:06:7f:d7: ed:7e:bf:ed:c0:a6:64:a5:e8:4e:5b:37:39:c7:65:aa:25:6b: 99:0d:f6:e2:2b:ea:06:19:24:68:b4:ee:74:4a:4e:f9:37:e2: 5e:da:df:73:94:25:db:a8:ac:fb:c6:23:2b:74:77:1d:02:2b: 07:cd:c3:6f:48:a2:41:d8:94:09:ae:5b:5a:5a:af:8e:03:da: 1a:ef:55:50:c6:d7:4f:36:1e:3a:43:f2:f7:ec:bb:0d:38:fc: 37:6b:9d:66:ed:8c:d6:48:f3:3a:a6:cd:4b:ef:6e:76:2d:fb: dc:f2:54:89:37:56:af:b6:23:5a:27:bc:1a:e7:ad:53:e9:b2: 9e:2a:53:58:93:5b:a6:c2:79:f2:0f:0b:05:03:fe:51:04:f3: 99:bf:62:c0:18:a0:9e:42:d0:65:33:52:9b:b0:44:6a:bd:70: 2d:8f:cc:40:2f:af:dd:f7:5a:4c:60:5b:fa:7e:d4:36:15:f2: a4:15:be:c1:96:77:bf:bf:f9:28:b5:cc:f8:5b:e5:97:9e:de: e4:00:27:b2:cc:68:4a:e2:2d:66:f5:49:3b:a6:7d:1e:5d:bc: 0c:77:ed:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIojHq9e8d0VrlFJIW9pQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3Yjk0ZGIxYjNkZWI0ODA1YWQyNjE1NTRiYWU2YmE1ZmE3 NDA4Y2IwHhcNMjYwMjA5MTYwMTAyWhcNMjYwMjEwMTYwMTAyWjAzMTEwLwYDVQQD EyhlOWFhNTA0M2QyOTNhNGIzYjQxZWUyOTY2N2NiM2NjYzlkMTViZjczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0H18kzEgM+nIwPiQm8IIPvzX75yQ vEKQazN1AX+jAepBHmzCxYzMIw+W4w5xhhCEkCvfKWqY5vhqVB+42mt1C4Ik5K6r sh1i0YegKusFsZObALExWcNKoG20sch2EcbqqP5qW+KU1883YoOLE6fahVofG1XQ kteZ2n8F4L/Te4HnOxa597ywCKw3sfKBNPMt4Sef8nMsN65NtWr+9nziv8X/1x3a vkgX9bHsXdqnCjSNee5XTpWElG8wHVmfWZdSq0QurtcLEacbaX+26TVm88tSFYE2 0lei3vazCxtvvdRpZPdC4P+4vYPFZuLVaDvyPeVrjeHz1sWUzR4HSv/qIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOmqUEPSk6SztB7ilmfLPMydFb9zMB8GA1UdIwQY MBaAFEe5TbGz3rSAWtJhVUuua6X6dAjLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjdsTnNiUGV0SUJhMG1GVlM2NXJwZnAwQ01zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC84NzFmOGUtZTdjMC00MjY0LWJhZWEt MmMyOTRlYzgxMjk3LzEvUjdsTnNiUGV0SUJhMG1GVlM2NXJwZnAwQ01zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC84NzFmOGUtZTdjMC00MjY0LWJhZWEtMmMyOTRlYzgxMjk3 LzEvUjdsTnNiUGV0SUJhMG1GVlM2NXJwZnAwQ01zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmgiLeT2k 8SMjEZzJHfYbU8AXEiBaYWnZWSsWlfgLpEIGBn/X7X6/7cCmZKXoTls3OcdlqiVr mQ324ivqBhkkaLTudEpO+TfiXtrfc5Ql26is+8YjK3R3HQIrB83Db0iiQdiUCa5b WlqvjgPaGu9VUMbXTzYeOkPy9+y7DTj8N2udZu2M1kjzOqbNS+9udi373PJUiTdW r7YjWie8GuetU+mynipTWJNbpsJ58g8LBQP+UQTzmb9iwBignkLQZTNSm7BEar1w LY/MQC+v3fdaTGBb+n7UNhXypBW+wZZ3v7/5KLXM+Fvll57e5AAnssxoSuItZvVJ O6Z9Hl28DHftyg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:34 2026 by rpki-client