This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft File: spuNaKggdWqqP4l5UdWv1n_bPbs.mft (raw, json) Hash identifier: ECZ0fj+a/Fg+/B6P5MajzAAo2hxGA/dKIgQn5yskaHw= Subject key identifier: 50:82:2D:D7:83:30:50:2A:DB:E7:94:E3:5D:5F:33:14:E8:40:45:39 Authority key identifier: B2:9B:8D:68:A8:20:75:6A:AA:3F:89:79:51:D5:AF:D6:7F:DB:3D:BB Certificate issuer: /CN=b29b8d68a820756aaa3f897951d5afd67fdb3dbb Certificate serial: 019C41344B5BA7724182F6459C1CC84C40AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 07:01:12 +0000 Manifest this update: Mon 09 Feb 2026 07:01:12 +0000 Manifest next update: Tue 10 Feb 2026 07:01:12 +0000 Files and hashes: 1: spuNaKggdWqqP4l5UdWv1n_bPbs.crl (hash: zXZcFmvRG1roVTz6J7f/WMjawl8l24u15vX/lEDh8ss=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:4b:5b:a7:72:41:82:f6:45:9c:1c:c8:4c:40:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b29b8d68a820756aaa3f897951d5afd67fdb3dbb Validity Not Before: Feb 9 07:01:12 2026 GMT Not After : Feb 10 07:01:12 2026 GMT Subject: CN=50822dd78330502adbe794e35d5f3314e8404539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:67:53:37:92:4c:8d:80:aa:89:08:aa:25:70: e8:b0:ca:8c:b1:a8:22:78:88:77:5f:07:cc:0e:f5: b3:8b:11:c5:fe:71:c6:22:7f:ae:5f:c6:50:0d:5b: be:c1:73:fd:e7:e1:1b:76:3f:2e:67:2c:a7:39:b8: 24:51:16:3e:d7:13:8b:f1:8f:4a:41:e6:85:db:d6: 7c:6d:8f:e8:e9:af:25:a0:19:b0:d8:2e:02:33:a8: 24:1f:12:8b:a9:d5:ae:5d:ac:45:4b:12:c9:45:ff: e7:f1:82:c6:f4:d8:b0:2d:c7:94:7a:ab:a9:98:b6: bf:da:05:f6:a3:af:f8:43:33:61:76:d8:cb:bd:65: 92:87:6b:69:1f:e5:37:ad:80:f6:50:cf:60:b8:86: 1b:f9:54:eb:64:fd:ed:05:31:f2:ab:36:be:99:ea: 8e:35:da:74:e9:cb:e3:65:d5:9e:5c:e8:6a:da:ac: de:25:d8:c0:05:5b:af:a5:4c:cf:c5:40:78:1b:2d: a3:93:b8:05:c0:e1:bb:29:28:4d:59:4d:85:b3:46: 24:e8:2c:41:04:f2:57:d6:ff:34:fd:7a:c1:15:43: e1:b5:c1:c8:34:d8:6f:0e:9f:39:8e:80:2d:63:0a: f5:1d:06:35:15:01:6b:40:30:db:c9:ff:7b:95:b7: f8:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:82:2D:D7:83:30:50:2A:DB:E7:94:E3:5D:5F:33:14:E8:40:45:39 X509v3 Authority Key Identifier: keyid:B2:9B:8D:68:A8:20:75:6A:AA:3F:89:79:51:D5:AF:D6:7F:DB:3D:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:5e:34:fd:79:1e:dd:3f:08:f7:85:0a:b9:25:22:60:6d:92: 6d:34:0a:94:97:26:72:da:1c:82:19:70:f9:26:d8:7d:dc:74: ef:0b:1f:d3:13:1c:ec:12:91:5d:f6:bd:95:fd:60:3a:6d:ca: d1:51:e8:a0:20:e8:d7:07:17:25:c8:9d:05:b0:cd:74:e3:64: 27:e9:9f:55:a0:f7:54:ca:38:5e:3b:71:60:fe:33:0e:25:d1: fe:9a:f7:33:a4:69:e4:5c:08:f8:0a:d3:89:c7:55:61:18:fe: 84:fb:57:2c:cb:44:79:1f:9e:dc:47:5a:a2:5b:ac:de:d9:45: f9:8a:2b:03:02:67:8a:c6:58:c0:0d:2f:c8:0c:49:80:e5:8a: 8d:6b:bb:00:81:e3:34:98:5d:d9:c9:30:28:d7:4f:52:ba:c4: 51:cb:cf:af:af:9d:af:de:77:e2:8f:94:9d:bb:29:75:82:6a: f2:41:4f:cf:54:eb:48:62:97:f1:52:2f:0e:99:fe:ad:5f:9a: 9a:82:53:73:d6:50:85:35:d6:3e:f0:6d:76:d9:72:29:a2:14: 13:09:67:09:39:c0:08:e9:23:86:18:be:ea:ab:71:9b:92:27: 2c:d8:2a:03:07:2d:79:6b:ff:a9:1f:18:de:72:2d:eb:7d:b4: 12:90:5e:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNEtbp3JBgvZFnBzITECtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyOWI4ZDY4YTgyMDc1NmFhYTNmODk3OTUxZDVhZmQ2N2Zk YjNkYmIwHhcNMjYwMjA5MDcwMTEyWhcNMjYwMjEwMDcwMTEyWjAzMTEwLwYDVQQD Eyg1MDgyMmRkNzgzMzA1MDJhZGJlNzk0ZTM1ZDVmMzMxNGU4NDA0NTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmdTN5JMjYCqiQiqJXDosMqMsagi eIh3XwfMDvWzixHF/nHGIn+uX8ZQDVu+wXP95+Ebdj8uZyynObgkURY+1xOL8Y9K QeaF29Z8bY/o6a8loBmw2C4CM6gkHxKLqdWuXaxFSxLJRf/n8YLG9NiwLceUequp mLa/2gX2o6/4QzNhdtjLvWWSh2tpH+U3rYD2UM9guIYb+VTrZP3tBTHyqza+meqO Ndp06cvjZdWeXOhq2qzeJdjABVuvpUzPxUB4Gy2jk7gFwOG7KShNWU2Fs0Yk6CxB BPJX1v80/XrBFUPhtcHINNhvDp85joAtYwr1HQY1FQFrQDDbyf97lbf40wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFCCLdeDMFAq2+eU411fMxToQEU5MB8GA1UdIwQY MBaAFLKbjWioIHVqqj+JeVHVr9Z/2z27MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3B1TmFLZ2dkV3FxUDRsNVVkV3Yxbl9iUGJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9jOTdiMTctNjcxYi00MTAyLTkyNDEt MWMxZWIxNThiMDJkLzEvc3B1TmFLZ2dkV3FxUDRsNVVkV3Yxbl9iUGJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9jOTdiMTctNjcxYi00MTAyLTkyNDEtMWMxZWIxNThiMDJk LzEvc3B1TmFLZ2dkV3FxUDRsNVVkV3Yxbl9iUGJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApl40/Xke 3T8I94UKuSUiYG2SbTQKlJcmctocghlw+SbYfdx07wsf0xMc7BKRXfa9lf1gOm3K 0VHooCDo1wcXJcidBbDNdONkJ+mfVaD3VMo4XjtxYP4zDiXR/pr3M6Rp5FwI+ArT icdVYRj+hPtXLMtEeR+e3Edaolus3tlF+YorAwJnisZYwA0vyAxJgOWKjWu7AIHj NJhd2ckwKNdPUrrEUcvPr6+dr9534o+UnbspdYJq8kFPz1TrSGKX8VIvDpn+rV+a moJTc9ZQhTXWPvBtdtlyKaIUEwlnCTnACOkjhhi+6qtxm5InLNgqAwcteWv/qR8Y 3nIt6320EpBeGA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:30 2026 by rpki-client