This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft File: md6y4fhaF9okDPyBbZcsheQR5iQ.mft (raw, json) Hash identifier: MtxXeSXCp9KXWlazwEzCkF5ggJo/KMes+9VyEDwK9/U= Subject key identifier: 96:A0:B2:8B:97:93:64:A4:90:5C:D3:B4:65:74:18:A1:89:F4:5F:EC Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24 Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624 Certificate serial: 019C43C6B4B6AAC3CD75689B4B71E1538548 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 19:00:21 +0000 Manifest this update: Mon 09 Feb 2026 19:00:21 +0000 Manifest next update: Tue 10 Feb 2026 19:00:21 +0000 Files and hashes: 1: j5iTBfQexadasqTPZf3BdqF-LoM.roa (hash: cKixD027h0pGrgVj07zhaZHgaHhvJuIsf5swfvNOu00=) 2: md6y4fhaF9okDPyBbZcsheQR5iQ.crl (hash: YtWjGbue8Aesyep6662vRTlPg8gED42CYVD/vjDL2s0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:b4:b6:aa:c3:cd:75:68:9b:4b:71:e1:53:85:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624 Validity Not Before: Feb 9 19:00:21 2026 GMT Not After : Feb 10 19:00:21 2026 GMT Subject: CN=96a0b28b979364a4905cd3b4657418a189f45fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:60:44:f4:28:0a:f0:71:3f:78:fc:26:33:aa: 65:84:9b:aa:80:e0:37:84:7e:b9:87:6d:6b:65:47: 9d:f9:c0:31:d3:f6:a1:15:bd:22:ba:de:fa:10:3f: 28:21:aa:2c:44:6c:e6:f2:25:27:73:1d:3e:64:9a: 0d:c8:d5:4a:bb:9f:a8:f2:cd:79:cf:7d:d8:5b:ac: 97:5e:c7:30:b7:17:2f:49:96:65:de:3a:df:72:3d: b7:d6:47:8d:21:c3:39:04:f7:e9:cb:cb:bf:20:ad: f3:b7:4a:a1:e6:11:79:20:15:9e:8b:34:35:49:b0: 83:9b:d4:bd:fa:0d:40:89:4e:41:db:19:4d:ea:a3: 45:58:ae:89:da:10:6d:31:af:c0:86:d9:a3:cb:98: c3:f4:16:d8:62:b4:ea:46:f9:82:b8:1d:72:91:fe: 0e:2a:74:f7:b3:97:47:23:a3:06:6c:26:ce:d5:49: 89:9e:d8:6d:bf:cb:b8:9b:05:43:a1:10:f3:35:d7: 04:22:2a:08:dd:90:2c:5d:6b:80:5f:4e:c5:97:f7: 2a:f5:08:1c:72:ee:94:6e:dd:5c:bc:e2:3f:2d:47: 46:25:87:85:4e:e2:ac:05:62:a8:30:01:c4:6c:43: fb:81:9f:9a:bb:da:2f:ed:45:dc:09:7b:55:01:07: 0e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A0:B2:8B:97:93:64:A4:90:5C:D3:B4:65:74:18:A1:89:F4:5F:EC X509v3 Authority Key Identifier: keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:70:97:9a:6f:c1:ec:f4:b2:53:ce:8a:02:74:cd:17:74:60: ee:d0:ba:8b:1f:45:4e:58:1e:f3:12:e7:92:6a:72:5a:78:b7: fe:5f:bc:b5:56:e6:9d:89:01:b4:bc:ca:17:1e:23:c1:63:70: b6:2f:d8:6b:a2:dc:d4:7e:96:a7:7d:0b:f3:fa:43:1b:f1:c7: a1:ab:5f:71:a8:fb:7d:ac:c9:eb:9d:6d:33:9b:af:38:6d:52: ac:f6:61:25:5f:bf:f7:64:b9:82:1c:0d:3d:e6:3c:92:9a:b1: 45:99:2f:c5:8d:40:58:fe:62:0e:87:f5:b3:f9:7a:f8:9c:28: 55:fd:49:60:e2:af:ea:36:6c:a2:ee:18:da:2c:99:c6:b3:a7: 3b:7a:79:b3:97:d6:b9:64:6d:00:df:49:b7:e2:5e:c2:b5:6f: 8c:b2:52:6a:b3:38:0e:81:cd:30:a4:0c:2c:44:1d:46:dd:1f: fb:49:0b:10:ea:b4:d0:35:28:c9:f2:30:fe:c3:90:f5:10:aa: 1d:0d:7b:aa:10:96:12:53:23:4d:a6:58:60:85:7d:65:26:41: c8:89:91:fd:c1:35:88:d8:21:37:25:e8:d2:1a:84:0c:7a:0b: 5e:58:27:bf:79:0f:37:49:35:b4:3e:15:ce:e4:f7:73:f9:05: a2:d4:49:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxrS2qsPNdWibS3HhU4VIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5ZGViMmUxZjg1YTE3ZGEyNDBjZmM4MTZkOTcyYzg1ZTQx MWU2MjQwHhcNMjYwMjA5MTkwMDIxWhcNMjYwMjEwMTkwMDIxWjAzMTEwLwYDVQQD Eyg5NmEwYjI4Yjk3OTM2NGE0OTA1Y2QzYjQ2NTc0MThhMTg5ZjQ1ZmVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmBE9CgK8HE/ePwmM6plhJuqgOA3 hH65h21rZUed+cAx0/ahFb0iut76ED8oIaosRGzm8iUncx0+ZJoNyNVKu5+o8s15 z33YW6yXXscwtxcvSZZl3jrfcj231keNIcM5BPfpy8u/IK3zt0qh5hF5IBWeizQ1 SbCDm9S9+g1AiU5B2xlN6qNFWK6J2hBtMa/Ahtmjy5jD9BbYYrTqRvmCuB1ykf4O KnT3s5dHI6MGbCbO1UmJnthtv8u4mwVDoRDzNdcEIioI3ZAsXWuAX07Fl/cq9Qgc cu6Ubt1cvOI/LUdGJYeFTuKsBWKoMAHEbEP7gZ+au9ov7UXcCXtVAQcOywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJagsouXk2SkkFzTtGV0GKGJ9F/sMB8GA1UdIwQY MBaAFJnesuH4WhfaJAz8gW2XLIXkEeYkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWQ2eTRmaGFGOW9rRFB5QmJaY3NoZVFSNWlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy83YzkxY2EtNTVmNy00M2E0LWI5NTAt OGRjOTRlODliZjAzLzEvbWQ2eTRmaGFGOW9rRFB5QmJaY3NoZVFSNWlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy83YzkxY2EtNTVmNy00M2E0LWI5NTAtOGRjOTRlODliZjAz LzEvbWQ2eTRmaGFGOW9rRFB5QmJaY3NoZVFSNWlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg3CXmm/B 7PSyU86KAnTNF3Rg7tC6ix9FTlge8xLnkmpyWni3/l+8tVbmnYkBtLzKFx4jwWNw ti/Ya6Lc1H6Wp30L8/pDG/HHoatfcaj7fazJ651tM5uvOG1SrPZhJV+/92S5ghwN PeY8kpqxRZkvxY1AWP5iDof1s/l6+JwoVf1JYOKv6jZsou4Y2iyZxrOnO3p5s5fW uWRtAN9Jt+JewrVvjLJSarM4DoHNMKQMLEQdRt0f+0kLEOq00DUoyfIw/sOQ9RCq HQ17qhCWElMjTaZYYIV9ZSZByImR/cE1iNghNyXo0hqEDHoLXlgnv3kPN0k1tD4V zuT3c/kFotRJfg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:28 2026 by rpki-client