This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json) Hash identifier: uG7diRHg3B2jaNaYxb4I8rbKtgU+jHiLguY3CVNFdhI= Subject key identifier: BF:61:7B:6F:73:C3:36:DC:32:F6:4A:01:CE:21:04:EA:E2:DF:2F:E3 Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad Certificate serial: 019C4210367AA8F49AA88DE88514F33ECAA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft Manifest number: 04D8 Signing time: Mon 09 Feb 2026 11:01:24 +0000 Manifest this update: Mon 09 Feb 2026 11:01:24 +0000 Manifest next update: Tue 10 Feb 2026 11:01:24 +0000 Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: kolDDD2GJ8vXliF/7eG02MuXmpL0QGlmZvnYSN/JCoo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:36:7a:a8:f4:9a:a8:8d:e8:85:14:f3:3e:ca:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad Validity Not Before: Feb 9 11:01:24 2026 GMT Not After : Feb 10 11:01:24 2026 GMT Subject: CN=bf617b6f73c336dc32f64a01ce2104eae2df2fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:72:f2:c3:70:82:59:0b:44:4e:ed:2b:61:79: 39:bc:18:9c:55:d5:08:a4:4f:c5:87:ad:0f:7c:b6: ad:e1:34:0f:40:3d:4f:39:b1:5a:ab:26:bb:0d:2d: 53:c7:b0:ec:2c:13:a7:a6:9b:7f:3b:18:b0:cf:ff: ef:92:19:ab:c8:f2:28:87:c3:73:ff:f2:57:23:47: d2:fd:52:d7:6e:93:d4:ff:a9:6f:a8:1f:b3:d7:40: d1:cb:e8:02:0e:10:07:33:83:98:a9:43:55:9d:47: df:04:36:45:55:ba:c5:55:39:ac:95:59:b0:36:87: 88:8f:78:3a:58:43:06:bb:ca:2e:6a:9d:05:1f:13: ce:93:f1:5f:7e:cd:2f:ba:34:db:69:fe:27:77:74: 8e:03:de:22:ec:fa:8c:95:7d:c9:ba:7a:d3:29:bb: 69:f7:58:6b:e3:9d:e4:d4:33:64:8a:28:22:64:f5: 90:1f:8a:81:c7:33:7e:d2:d9:d7:e0:ee:a1:19:57: 47:47:05:57:ce:94:5b:b0:96:dc:80:d0:71:d9:48: bd:16:66:a3:12:9e:0e:22:ed:02:49:e7:1b:1b:af: 87:b2:b6:81:bf:46:e0:54:20:20:1e:6c:ef:a7:44: 7f:f1:7c:99:48:bd:65:76:bf:a8:da:12:81:41:18: 55:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:61:7B:6F:73:C3:36:DC:32:F6:4A:01:CE:21:04:EA:E2:DF:2F:E3 X509v3 Authority Key Identifier: keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:1c:22:09:4a:45:b7:e5:45:eb:e9:5d:85:87:86:4e:32:d2: 8a:4a:13:0d:3d:d9:fb:16:26:33:d9:f1:9d:43:14:77:c1:49: 30:7d:72:e9:e0:cb:8d:78:62:1e:ed:79:49:4a:ad:fd:5b:19: bf:20:72:8f:cd:6a:39:73:91:47:1b:01:1a:98:8e:06:b0:56: d8:9a:21:a3:80:a4:86:8f:bb:b0:c2:44:3f:9b:37:f8:c8:e8: 1f:7f:d7:be:a0:04:c9:c0:2d:fa:7a:f1:1e:5c:16:90:24:22: 01:05:d6:3b:b4:4f:b8:27:b2:7d:59:87:6c:3d:36:cf:14:6f: da:18:79:f2:ae:c2:f4:95:70:f8:6c:a2:cd:8c:a1:c7:c3:f5: b2:b3:b6:2e:34:af:bc:2c:8c:00:70:65:f6:81:bb:70:07:85: ca:3f:4c:ab:09:46:46:fa:31:ae:26:18:60:6d:d3:b5:db:56: f0:01:62:ae:74:fc:b8:6e:be:34:67:be:6d:a0:81:31:de:7a: 54:7d:eb:b0:6c:49:26:7d:43:f1:49:a9:11:67:e5:fe:c4:22: ea:65:19:8d:b6:28:5a:dc:a4:d8:91:86:be:20:49:86:11:61: 14:73:49:6f:11:c1:07:b4:6f:4a:6f:6f:08:48:4e:13:88:31: d0:25:a2:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEDZ6qPSaqI3ohRTzPsqhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYmM4YTg2NjhmNTBmZGFmNDk0ZjUyOGEyY2FhZmQwMmI3 YzMxYWQwHhcNMjYwMjA5MTEwMTI0WhcNMjYwMjEwMTEwMTI0WjAzMTEwLwYDVQQD EyhiZjYxN2I2ZjczYzMzNmRjMzJmNjRhMDFjZTIxMDRlYWUyZGYyZmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5nLyw3CCWQtETu0rYXk5vBicVdUI pE/Fh60PfLat4TQPQD1PObFaqya7DS1Tx7DsLBOnppt/Oxiwz//vkhmryPIoh8Nz //JXI0fS/VLXbpPU/6lvqB+z10DRy+gCDhAHM4OYqUNVnUffBDZFVbrFVTmslVmw NoeIj3g6WEMGu8ouap0FHxPOk/Fffs0vujTbaf4nd3SOA94i7PqMlX3JunrTKbtp 91hr453k1DNkiigiZPWQH4qBxzN+0tnX4O6hGVdHRwVXzpRbsJbcgNBx2Ui9Fmaj Ep4OIu0CSecbG6+HsraBv0bgVCAgHmzvp0R/8XyZSL1ldr+o2hKBQRhVswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL9he29zwzbcMvZKAc4hBOri3y/jMB8GA1UdIwQY MBaAFL+8ioZo9Q/a9JT1KKLKr9ArfDGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjIt ZGE2MTk5YjgyZjExLzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjItZGE2MTk5YjgyZjEx LzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwxwiCUpF t+VF6+ldhYeGTjLSikoTDT3Z+xYmM9nxnUMUd8FJMH1y6eDLjXhiHu15SUqt/VsZ vyByj81qOXORRxsBGpiOBrBW2Joho4Ckho+7sMJEP5s3+MjoH3/XvqAEycAt+nrx HlwWkCQiAQXWO7RPuCeyfVmHbD02zxRv2hh58q7C9JVw+GyizYyhx8P1srO2LjSv vCyMAHBl9oG7cAeFyj9MqwlGRvoxriYYYG3TtdtW8AFirnT8uG6+NGe+baCBMd56 VH3rsGxJJn1D8UmpEWfl/sQi6mUZjbYoWtyk2JGGviBJhhFhFHNJbxHBB7RvSm9v CEhOE4gx0CWiKA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:57:11 2026 by rpki-client