This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft File: 8VzG8-5-0llTHW0Izp4JNztxYGI.mft (raw, json) Hash identifier: XbHtIAj4o5VP7LC0yyF6eAcTo+Mxt4KcaIR+gWXXp1M= Subject key identifier: EE:AD:92:52:DC:02:95:C9:A1:D0:41:88:0F:AF:5B:28:46:D2:9C:95 Authority key identifier: F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62 Certificate issuer: /CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062 Certificate serial: 019C43C6DAE03828BF4D51DAAC9467A2D783 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft Manifest number: 05AD Signing time: Mon 09 Feb 2026 19:00:31 +0000 Manifest this update: Mon 09 Feb 2026 19:00:31 +0000 Manifest next update: Tue 10 Feb 2026 19:00:31 +0000 Files and hashes: 1: 8VzG8-5-0llTHW0Izp4JNztxYGI.crl (hash: BvRNK9ggLfJ5sBSANyqVx2fUGIi/Wh4VZdzd+Y0y0GI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:da:e0:38:28:bf:4d:51:da:ac:94:67:a2:d7:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062 Validity Not Before: Feb 9 19:00:31 2026 GMT Not After : Feb 10 19:00:31 2026 GMT Subject: CN=eead9252dc0295c9a1d041880faf5b2846d29c95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:80:c6:f7:7a:35:6e:4c:c7:08:b8:ee:68:ca: 6c:1c:ae:90:b1:81:56:d9:b4:e0:78:c8:55:d0:74: ca:65:22:99:30:ac:7c:d2:8f:6e:c5:41:a0:d6:5a: 5c:18:4e:bb:12:c3:ee:c0:c4:de:ae:77:bb:b6:5f: fb:b9:4e:33:03:3d:98:b5:76:1a:32:e6:8a:87:9b: 30:e8:f2:22:ca:dd:ff:d1:49:5a:91:aa:72:00:dc: 00:25:e7:05:ba:ac:a2:6c:b6:0f:1a:da:b1:10:b8: c5:06:da:da:8e:19:09:b9:8f:31:2c:b8:c4:72:02: 47:a2:33:73:52:c8:45:2f:2f:e2:64:65:cf:ae:38: 68:d9:46:2c:92:f6:d4:f4:2a:e5:a3:b1:cd:90:4c: 1e:d7:6c:81:68:2d:f2:b8:85:6a:71:4c:98:86:34: de:2e:b3:e4:6d:9c:9e:13:a5:23:b0:af:ca:f1:08: d2:79:6c:dd:66:fe:25:58:2d:69:1c:9a:db:be:ba: c7:f2:5c:b5:83:d7:1c:57:0f:55:32:8c:da:53:a2: fc:8f:1e:1b:55:73:08:b5:33:d4:54:11:9b:2a:a5: 33:1e:99:bf:27:0e:83:e0:66:23:e6:a3:23:5e:8a: b3:12:d1:ae:29:04:7e:df:f6:a1:8f:25:b9:9e:04: 79:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:AD:92:52:DC:02:95:C9:A1:D0:41:88:0F:AF:5B:28:46:D2:9C:95 X509v3 Authority Key Identifier: keyid:F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:f8:84:8e:38:98:96:55:de:3d:96:27:1c:a7:f2:d2:68:b1: 7a:4d:4f:23:8a:c8:c9:62:a5:4d:64:ba:4c:a9:f2:fe:2e:b8: 0d:ab:38:5d:68:b0:25:02:05:fc:92:58:18:84:7b:2f:72:dc: dc:40:22:8c:e8:4e:18:ce:4b:f6:bd:39:c6:68:a1:07:c3:d3: c1:38:26:cc:d4:52:7b:ce:00:06:e5:3f:8f:6b:58:bb:0b:f2: dc:d3:a7:e2:51:bc:61:0c:ee:86:83:08:24:2f:86:71:97:da: 8f:8b:8e:08:e4:c3:98:0b:b7:ab:30:3b:8b:9d:17:b1:93:f9: 68:b6:bb:13:4b:5e:50:fc:c3:f1:71:fa:65:e6:00:40:24:62: eb:15:80:77:be:0c:72:1a:95:e8:21:65:46:ab:2b:fe:ab:a8: f3:98:24:e5:75:1b:d8:0c:13:e6:51:92:0b:42:f8:9c:99:13: b6:25:b9:ae:75:d5:4e:f9:a4:0e:29:4b:b9:13:1a:86:d3:88: f2:5c:f3:1c:67:ea:a3:78:32:36:9d:21:dc:97:d0:e1:a2:30: d1:c4:f7:8d:8c:55:fb:bf:2b:49:9c:af:e2:1e:05:95:11:84: 3a:2f:f9:2b:f6:2c:f1:90:48:00:38:c1:05:59:71:d5:9a:dd: 9f:0a:1e:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxtrgOCi/TVHarJRnoteDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxNWNjNmYzZWU3ZWQyNTk1MzFkNmQwOGNlOWUwOTM3M2I3 MTYwNjIwHhcNMjYwMjA5MTkwMDMxWhcNMjYwMjEwMTkwMDMxWjAzMTEwLwYDVQQD EyhlZWFkOTI1MmRjMDI5NWM5YTFkMDQxODgwZmFmNWIyODQ2ZDI5Yzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2IDG93o1bkzHCLjuaMpsHK6QsYFW 2bTgeMhV0HTKZSKZMKx80o9uxUGg1lpcGE67EsPuwMTerne7tl/7uU4zAz2YtXYa MuaKh5sw6PIiyt3/0UlakapyANwAJecFuqyibLYPGtqxELjFBtrajhkJuY8xLLjE cgJHojNzUshFLy/iZGXPrjho2UYskvbU9Crlo7HNkEwe12yBaC3yuIVqcUyYhjTe LrPkbZyeE6UjsK/K8QjSeWzdZv4lWC1pHJrbvrrH8ly1g9ccVw9VMozaU6L8jx4b VXMItTPUVBGbKqUzHpm/Jw6D4GYj5qMjXoqzEtGuKQR+3/ahjyW5ngR5TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO6tklLcApXJodBBiA+vWyhG0pyVMB8GA1UdIwQY MBaAFPFcxvPuftJZUx1tCM6eCTc7cWBiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFZ6RzgtNS0wbGxUSFcwSXpwNEpOenR4WUdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi84N2U5YjctZWFkNC00YjViLWJjODgt NjkxZWU0MWE2MDE0LzEvOFZ6RzgtNS0wbGxUSFcwSXpwNEpOenR4WUdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi84N2U5YjctZWFkNC00YjViLWJjODgtNjkxZWU0MWE2MDE0 LzEvOFZ6RzgtNS0wbGxUSFcwSXpwNEpOenR4WUdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMviEjjiY llXePZYnHKfy0mixek1PI4rIyWKlTWS6TKny/i64Das4XWiwJQIF/JJYGIR7L3Lc 3EAijOhOGM5L9r05xmihB8PTwTgmzNRSe84ABuU/j2tYuwvy3NOn4lG8YQzuhoMI JC+GcZfaj4uOCOTDmAu3qzA7i50XsZP5aLa7E0teUPzD8XH6ZeYAQCRi6xWAd74M chqV6CFlRqsr/quo85gk5XUb2AwT5lGSC0L4nJkTtiW5rnXVTvmkDilLuRMahtOI 8lzzHGfqo3gyNp0h3JfQ4aIw0cT3jYxV+78rSZyv4h4FlRGEOi/5K/Ys8ZBIADjB BVlx1Zrdnwoenw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:31:36 2026 by rpki-client