This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft File: mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft (raw, json) Hash identifier: 9QCzlbc1GhmLr7qj7m2KxfeFCXqzHtLF+tgMpXzZ9+s= Subject key identifier: 64:C2:A3:0C:21:40:4E:A5:B1:27:B3:5B:59:BC:F6:4B:9B:33:83:19 Authority key identifier: 99:C1:3C:B5:8D:2F:D3:1E:12:C5:E1:46:CC:6B:4F:2C:74:78:16:F4 Certificate issuer: /CN=99c13cb58d2fd31e12c5e146cc6b4f2c747816f4 Certificate serial: 019C4322384CDFA8525E7C48609E0CC1A037 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft Manifest number: 0B3B Signing time: Mon 09 Feb 2026 16:00:41 +0000 Manifest this update: Mon 09 Feb 2026 16:00:41 +0000 Manifest next update: Tue 10 Feb 2026 16:00:41 +0000 Files and hashes: 1: mcE8tY0v0x4SxeFGzGtPLHR4FvQ.crl (hash: ECsUzps8eOqPSwxGSf51wB2k1471Ww7dOfvQHSnU4kQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.crl rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft rsync://rpki.ripe.net/repository/DEFAULT/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:38:4c:df:a8:52:5e:7c:48:60:9e:0c:c1:a0:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99c13cb58d2fd31e12c5e146cc6b4f2c747816f4 Validity Not Before: Feb 9 16:00:41 2026 GMT Not After : Feb 10 16:00:41 2026 GMT Subject: CN=64c2a30c21404ea5b127b35b59bcf64b9b338319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d0:f1:8a:fc:9a:74:7d:5b:9b:28:d0:ee:e1: 8c:8c:82:1b:e0:64:2a:f5:e6:75:d7:5c:07:31:33: d6:e3:a2:bb:22:7e:c5:10:42:c6:53:0e:02:40:bb: 3c:6d:84:3c:4b:47:28:52:14:21:2c:00:f5:fa:46: 71:13:75:48:96:3e:71:80:f4:28:8e:07:64:7b:81: a6:ad:53:2a:c0:73:a0:b9:42:6d:6c:47:77:e5:b3: a4:7e:89:f3:10:f5:56:cd:0c:ad:77:85:14:db:cc: 09:17:09:11:4e:62:58:43:90:4d:14:c7:70:6c:44: 5d:79:44:e2:65:5c:4a:0f:37:ad:7c:c7:75:bf:dd: fd:f6:cf:bf:6b:52:5c:f1:9a:82:f5:bd:bc:6b:1e: 1d:9c:14:8d:27:9d:0b:56:5f:30:bf:7b:8a:5a:a7: 31:52:2e:cc:35:22:30:15:ba:96:c4:e1:5a:42:1d: ba:7b:1d:8a:76:89:20:9d:ee:79:59:c5:79:2f:ae: d5:b8:08:ae:b6:51:ba:6c:35:84:35:48:9e:23:38: 7b:80:fe:ba:c5:0d:79:27:12:83:2d:3c:f5:52:05: f9:41:cd:ae:2e:91:cc:0c:85:ce:a5:5b:22:b2:b5: c1:15:9e:cb:c3:e7:2a:3f:b9:0d:db:b6:d1:04:f6: df:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C2:A3:0C:21:40:4E:A5:B1:27:B3:5B:59:BC:F6:4B:9B:33:83:19 X509v3 Authority Key Identifier: keyid:99:C1:3C:B5:8D:2F:D3:1E:12:C5:E1:46:CC:6B:4F:2C:74:78:16:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:9b:f3:ab:62:09:31:53:ab:09:2d:f2:93:1b:70:f7:7f:33: 5f:51:eb:de:66:b1:0c:5a:17:7f:f3:ee:26:32:98:d6:ae:36: 2f:ba:bd:5c:d4:d6:85:1c:40:67:96:b3:7a:01:8d:b3:69:6e: 7f:ff:26:c8:92:e3:0b:5a:b5:a9:c7:fb:6e:93:fb:5f:3e:b9: 9f:d8:b9:39:cb:22:a3:52:99:ca:a1:ae:c2:4f:b2:bb:1d:a3: 64:14:c6:80:4b:da:14:1a:cd:21:48:d4:0f:f3:53:bb:94:56: 22:ce:65:ee:b4:e5:c9:8a:7f:21:f3:0a:41:de:87:4a:3b:c1: 1f:71:fc:01:53:40:c7:86:b1:fa:7b:47:ed:c0:93:4c:7a:11: c8:21:59:0b:f4:54:f5:27:d1:3d:b8:72:3f:1b:e5:68:8d:95: 3b:61:65:ff:07:f4:43:06:c4:8e:1b:62:b4:43:43:0a:2d:75: 59:d1:1b:77:2a:3b:4a:23:4e:85:d4:ad:2d:c8:e2:9d:0a:4e: 56:9a:d4:3e:a3:d0:55:50:4d:8c:42:89:37:60:ef:50:a4:21: 3a:91:12:19:87:54:c8:02:b7:bb:bf:0a:e0:84:39:c0:d5:5c: 9c:77:9f:9e:a3:63:1f:e1:bd:93:e1:0d:ff:0d:a5:06:16:f2: 35:68:7e:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIjhM36hSXnxIYJ4MwaA3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5YzEzY2I1OGQyZmQzMWUxMmM1ZTE0NmNjNmI0ZjJjNzQ3 ODE2ZjQwHhcNMjYwMjA5MTYwMDQxWhcNMjYwMjEwMTYwMDQxWjAzMTEwLwYDVQQD Eyg2NGMyYTMwYzIxNDA0ZWE1YjEyN2IzNWI1OWJjZjY0YjliMzM4MzE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dDxivyadH1bmyjQ7uGMjIIb4GQq 9eZ111wHMTPW46K7In7FEELGUw4CQLs8bYQ8S0coUhQhLAD1+kZxE3VIlj5xgPQo jgdke4GmrVMqwHOguUJtbEd35bOkfonzEPVWzQytd4UU28wJFwkRTmJYQ5BNFMdw bERdeUTiZVxKDzetfMd1v9399s+/a1Jc8ZqC9b28ax4dnBSNJ50LVl8wv3uKWqcx Ui7MNSIwFbqWxOFaQh26ex2Kdokgne55WcV5L67VuAiutlG6bDWENUieIzh7gP66 xQ15JxKDLTz1UgX5Qc2uLpHMDIXOpVsisrXBFZ7Lw+cqP7kN27bRBPbfEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGTCowwhQE6lsSezW1m89kubM4MZMB8GA1UdIwQY MBaAFJnBPLWNL9MeEsXhRsxrTyx0eBb0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWNFOHRZMHYweDRTeGVGR3pHdFBMSFI0RnZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9iOTJiMzAtOGFkYS00NzVjLWFhMmEt NTY3ZGM5YTc5ZmRkLzEvbWNFOHRZMHYweDRTeGVGR3pHdFBMSFI0RnZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9iOTJiMzAtOGFkYS00NzVjLWFhMmEtNTY3ZGM5YTc5ZmRk LzEvbWNFOHRZMHYweDRTeGVGR3pHdFBMSFI0RnZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAspvzq2IJ MVOrCS3ykxtw938zX1Hr3maxDFoXf/PuJjKY1q42L7q9XNTWhRxAZ5azegGNs2lu f/8myJLjC1q1qcf7bpP7Xz65n9i5Ocsio1KZyqGuwk+yux2jZBTGgEvaFBrNIUjU D/NTu5RWIs5l7rTlyYp/IfMKQd6HSjvBH3H8AVNAx4ax+ntH7cCTTHoRyCFZC/RU 9SfRPbhyPxvlaI2VO2Fl/wf0QwbEjhtitENDCi11WdEbdyo7SiNOhdStLcjinQpO VprUPqPQVVBNjEKJN2DvUKQhOpESGYdUyAK3u78K4IQ5wNVcnHefnqNjH+G9k+EN /w2lBhbyNWh+4A== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:13 2026 by rpki-client