This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft File: sYxKQwCDfE6hetHjghoJrVN2QIc.mft (raw, json) Hash identifier: zPFBmhhLWFewsfnbaXCEugdA7bVco3AbF5R4PZeqRr8= Subject key identifier: 96:DE:82:57:22:E8:CD:4C:00:E3:8A:60:2C:5B:3F:F3:AD:BF:62:CC Authority key identifier: B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87 Certificate issuer: /CN=b18c4a4300837c4ea17ad1e3821a09ad53764087 Certificate serial: 019C424634EECA1CB0BED1AB8C134A341B13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft Manifest number: 10A8 Signing time: Mon 09 Feb 2026 12:00:23 +0000 Manifest this update: Mon 09 Feb 2026 12:00:23 +0000 Manifest next update: Tue 10 Feb 2026 12:00:23 +0000 Files and hashes: 1: OztHm958aRJRxZODVtzftmoIutM.roa (hash: LyCjNgF1WRtdSw3T7qrOJsi3Hm2+foAc8JYBqHMHMdE=) 2: sYxKQwCDfE6hetHjghoJrVN2QIc.crl (hash: 3LS3ZygHGuO0PRwF0VTQZdbrzIQi3n36svzoQiAuVIg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:34:ee:ca:1c:b0:be:d1:ab:8c:13:4a:34:1b:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b18c4a4300837c4ea17ad1e3821a09ad53764087 Validity Not Before: Feb 9 12:00:23 2026 GMT Not After : Feb 10 12:00:23 2026 GMT Subject: CN=96de825722e8cd4c00e38a602c5b3ff3adbf62cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e7:68:d8:f0:cb:58:1a:bf:b2:b0:73:c7:e6: 66:80:52:60:e1:9a:78:a4:11:e0:cd:c9:3a:e4:71: 70:4a:59:20:6b:79:1c:4f:29:61:e6:6a:4c:84:37: 54:2d:34:3a:f7:df:50:13:77:88:09:17:b1:00:ad: a0:40:b8:0b:99:40:10:2a:19:c7:33:5b:cb:f7:31: 4c:34:e2:26:17:32:d9:8a:3b:86:d0:41:1d:61:f9: 2c:f1:2b:ba:2a:fb:29:3b:2f:86:c3:7d:5e:6a:82: 1c:70:c2:7b:ef:bb:43:5c:63:f4:56:a9:67:91:24: db:3b:0d:7f:d5:2f:1b:4d:19:5e:f9:2b:84:13:bf: 4c:61:e9:a9:2f:a5:d1:be:d8:3e:92:23:e2:9a:1b: 1b:f1:6e:cb:eb:08:41:8e:fe:86:c4:dd:bb:14:23: df:93:45:d0:ed:59:0e:59:8b:b6:78:eb:1b:ca:5e: d7:ff:1e:a2:81:a9:be:3a:68:c2:1d:42:b1:73:14: 2e:43:6e:63:21:70:ca:d4:8d:f4:88:47:fb:3e:d2: 79:9a:78:23:1e:1a:46:6b:ee:8d:77:06:2f:5b:d0: a5:8a:0f:70:0f:68:be:cc:2a:ca:81:c2:e6:d9:bf: 61:8a:e0:13:3e:b8:ea:56:a8:b6:a0:ec:fc:e7:a6: 35:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:DE:82:57:22:E8:CD:4C:00:E3:8A:60:2C:5B:3F:F3:AD:BF:62:CC X509v3 Authority Key Identifier: keyid:B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:56:99:46:17:4d:03:56:b4:93:fb:43:fa:f0:94:7c:bb:9b: ba:85:91:a9:2e:12:0f:ec:9a:49:24:a1:eb:4c:60:9e:d5:23: 90:dd:c4:53:44:28:63:50:a6:2f:da:ef:19:dc:44:42:72:26: e9:5a:45:bb:2f:f5:b7:c1:89:db:da:1f:e5:44:8a:94:6e:40: 65:95:3a:bb:e2:99:95:90:25:01:c1:4e:19:c3:00:43:e3:a7: 8c:97:39:95:f5:a5:8e:91:9c:24:78:23:1b:2d:53:21:a4:2b: e6:1c:9b:d4:ca:ea:59:68:54:68:92:35:80:40:e8:f2:da:5c: 4a:8e:6a:fb:9a:a5:b6:dd:71:6a:6a:39:23:3d:76:b4:44:bd: 29:97:ca:4d:3b:da:43:e2:3c:bd:6e:1b:fd:23:1a:3f:e2:9f: 87:bf:53:f4:86:a4:26:25:66:b9:27:0c:0f:90:f4:6f:53:3f: 74:ff:f4:5e:67:16:8a:33:f4:fe:cf:35:b6:dc:44:86:86:a7: 5d:58:fe:92:7a:02:e6:03:62:fa:8e:e4:95:8a:88:78:af:95: 2f:cd:ef:72:97:29:ca:de:f5:ee:fb:55:fd:e9:ca:6f:d1:f7: 97:31:1c:b1:d8:67:23:24:95:53:64:e9:3f:e5:3b:f7:3c:09: ca:06:5b:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRjTuyhywvtGrjBNKNBsTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxOGM0YTQzMDA4MzdjNGVhMTdhZDFlMzgyMWEwOWFkNTM3 NjQwODcwHhcNMjYwMjA5MTIwMDIzWhcNMjYwMjEwMTIwMDIzWjAzMTEwLwYDVQQD Eyg5NmRlODI1NzIyZThjZDRjMDBlMzhhNjAyYzViM2ZmM2FkYmY2MmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2edo2PDLWBq/srBzx+ZmgFJg4Zp4 pBHgzck65HFwSlkga3kcTylh5mpMhDdULTQ6999QE3eICRexAK2gQLgLmUAQKhnH M1vL9zFMNOImFzLZijuG0EEdYfks8Su6KvspOy+Gw31eaoIccMJ777tDXGP0Vqln kSTbOw1/1S8bTRle+SuEE79MYempL6XRvtg+kiPimhsb8W7L6whBjv6GxN27FCPf k0XQ7VkOWYu2eOsbyl7X/x6igam+OmjCHUKxcxQuQ25jIXDK1I30iEf7PtJ5mngj HhpGa+6NdwYvW9Clig9wD2i+zCrKgcLm2b9hiuATPrjqVqi2oOz856Y1XwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJbeglci6M1MAOOKYCxbP/Otv2LMMB8GA1UdIwQY MBaAFLGMSkMAg3xOoXrR44IaCa1TdkCHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1l4S1F3Q0RmRTZoZXRIamdob0pyVk4yUUljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9hZjRlNGItMjAyNi00YmJiLTk2Mjgt ZjA4YTBhZTkyYjhkLzEvc1l4S1F3Q0RmRTZoZXRIamdob0pyVk4yUUljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9hZjRlNGItMjAyNi00YmJiLTk2MjgtZjA4YTBhZTkyYjhk LzEvc1l4S1F3Q0RmRTZoZXRIamdob0pyVk4yUUljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUVaZRhdN A1a0k/tD+vCUfLubuoWRqS4SD+yaSSSh60xgntUjkN3EU0QoY1CmL9rvGdxEQnIm 6VpFuy/1t8GJ29of5USKlG5AZZU6u+KZlZAlAcFOGcMAQ+OnjJc5lfWljpGcJHgj Gy1TIaQr5hyb1MrqWWhUaJI1gEDo8tpcSo5q+5qltt1xamo5Iz12tES9KZfKTTva Q+I8vW4b/SMaP+Kfh79T9IakJiVmuScMD5D0b1M/dP/0XmcWijP0/s81ttxEhoan XVj+knoC5gNi+o7klYqIeK+VL83vcpcpyt717vtV/enKb9H3lzEcsdhnIySVU2Tp P+U79zwJygZbzw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:56 2026 by rpki-client