This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft File: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft (raw, json) Hash identifier: 922yMxnLhktpIj35o88iaEZXtwfhewIiWTD9hAZphic= Subject key identifier: 28:2D:ED:F3:BC:38:85:AE:BE:F7:52:C3:9A:94:99:06:FE:3E:87:60 Authority key identifier: AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D Certificate issuer: /CN=ae7f187c12782fc4d844762235993329c4563a0d Certificate serial: 019C427DAB6DBD6DBA7EB9CBB393C9B5F41E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft Manifest number: 0E2D Signing time: Mon 09 Feb 2026 13:00:57 +0000 Manifest this update: Mon 09 Feb 2026 13:00:57 +0000 Manifest next update: Tue 10 Feb 2026 13:00:57 +0000 Files and hashes: 1: p8Q1T6owao0UtFaI0uzL9fVOIDk.roa (hash: ETVPkMleWg5Tmk9ZZqBQNGmyAM72infgVzIH2DgSiBI=) 2: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl (hash: VG9imZvlT4b6rLB7/WDWWEKMp8IQ29G046r2qmmEm+E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:ab:6d:bd:6d:ba:7e:b9:cb:b3:93:c9:b5:f4:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae7f187c12782fc4d844762235993329c4563a0d Validity Not Before: Feb 9 13:00:57 2026 GMT Not After : Feb 10 13:00:57 2026 GMT Subject: CN=282dedf3bc3885aebef752c39a949906fe3e8760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:55:3f:46:50:cf:11:93:b7:2d:9a:da:9d:ac: 34:5f:d1:75:74:ff:90:85:68:5c:5c:d1:fc:9e:c3: e4:42:b0:fb:5e:5b:ca:c9:00:84:7f:56:4e:fc:16: 4b:1b:8d:02:d9:39:e8:31:72:6c:0c:d0:1c:10:ef: 60:39:3a:09:51:0a:e6:58:11:46:31:79:d7:5f:02: 20:3e:34:1d:52:d4:b4:dd:d0:b7:27:37:37:8a:57: 66:ff:88:7c:ce:ba:7f:c9:d8:00:a1:2d:b6:4a:f6: b2:78:b2:94:df:5e:13:59:bf:a1:9a:86:61:9a:bf: 84:64:12:4d:6a:49:3f:ff:e3:bc:ee:53:03:79:68: 44:0f:e6:5f:cb:10:57:48:d9:a4:33:42:76:00:da: 71:a5:16:7c:3b:ca:31:fc:1c:e9:3e:7a:be:67:04: 2c:f2:41:25:77:e8:8c:9a:e4:ac:d6:26:eb:91:fa: f1:d9:f0:e3:05:2b:47:f2:7e:7e:1e:a3:0f:8e:bb: 79:f3:ba:0d:ed:6a:ef:44:7b:98:d5:c2:59:60:4a: 5e:e6:63:3b:5d:b9:31:b1:80:14:23:fc:f8:4c:38: 59:e1:f9:9c:8a:a4:0b:56:43:9a:68:63:9b:fc:73: e9:98:11:da:cc:d3:ad:96:be:91:50:4e:68:e7:6a: 30:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:2D:ED:F3:BC:38:85:AE:BE:F7:52:C3:9A:94:99:06:FE:3E:87:60 X509v3 Authority Key Identifier: keyid:AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:16:21:6e:d7:99:8a:42:cf:41:fe:da:08:b9:c8:51:33:34: eb:10:b0:70:80:f6:75:a9:9a:ea:7f:7a:de:e9:e3:4d:73:af: 8e:61:53:a4:2b:cd:2d:e1:42:7f:d5:75:30:09:06:61:24:ed: ac:3e:e1:fe:94:52:9b:af:6c:b6:e7:da:97:0c:54:1c:0f:19: 69:34:b0:15:07:c4:08:dc:d5:88:15:be:1a:f3:e4:b6:37:6c: 6b:f6:03:22:b5:01:f0:fc:47:08:8f:ac:ab:98:d5:d4:aa:2a: 8a:1c:81:43:cb:9b:a1:d1:c6:4c:7d:8b:05:c3:0e:75:89:cb: ec:d9:7b:da:2c:d5:14:16:37:90:51:2b:ee:9a:cb:de:2a:8d: a1:6c:34:3b:31:7e:d1:8a:8c:25:40:38:fa:00:4f:af:7f:32: 35:b4:dd:cf:24:d7:7f:36:d8:ad:b5:57:12:7a:e4:4e:95:dc: bf:9c:c3:ad:81:1a:42:64:ee:4f:fc:19:f4:4b:e5:3d:14:19: bc:31:cd:6e:e1:0e:2d:a7:e4:79:6e:67:54:79:7f:d0:b6:e0: fc:29:48:12:91:be:59:cc:67:32:03:98:19:0b:1d:2b:c0:77: 7d:ab:2c:f3:c8:8b:64:6a:c0:a3:3f:0c:de:26:31:cc:d0:22: 9e:1c:2e:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfattvW26frnLs5PJtfQeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlN2YxODdjMTI3ODJmYzRkODQ0NzYyMjM1OTkzMzI5YzQ1 NjNhMGQwHhcNMjYwMjA5MTMwMDU3WhcNMjYwMjEwMTMwMDU3WjAzMTEwLwYDVQQD EygyODJkZWRmM2JjMzg4NWFlYmVmNzUyYzM5YTk0OTkwNmZlM2U4NzYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1U/RlDPEZO3LZranaw0X9F1dP+Q hWhcXNH8nsPkQrD7XlvKyQCEf1ZO/BZLG40C2TnoMXJsDNAcEO9gOToJUQrmWBFG MXnXXwIgPjQdUtS03dC3Jzc3ildm/4h8zrp/ydgAoS22SvayeLKU314TWb+hmoZh mr+EZBJNakk//+O87lMDeWhED+ZfyxBXSNmkM0J2ANpxpRZ8O8ox/BzpPnq+ZwQs 8kEld+iMmuSs1ibrkfrx2fDjBStH8n5+HqMPjrt587oN7WrvRHuY1cJZYEpe5mM7 XbkxsYAUI/z4TDhZ4fmciqQLVkOaaGOb/HPpmBHazNOtlr6RUE5o52owjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCgt7fO8OIWuvvdSw5qUmQb+PodgMB8GA1UdIwQY MBaAFK5/GHwSeC/E2ER2IjWZMynEVjoNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9jOGY2NDctZWQ3OS00MmQ5LThkZjYt MDU4Nzc2MDRhMDFkLzEvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9jOGY2NDctZWQ3OS00MmQ5LThkZjYtMDU4Nzc2MDRhMDFk LzEvcm44WWZCSjRMOFRZUkhZaU5aa3pLY1JXT2cwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWRYhbteZ ikLPQf7aCLnIUTM06xCwcID2dama6n963unjTXOvjmFTpCvNLeFCf9V1MAkGYSTt rD7h/pRSm69stufalwxUHA8ZaTSwFQfECNzViBW+GvPktjdsa/YDIrUB8PxHCI+s q5jV1KoqihyBQ8ubodHGTH2LBcMOdYnL7Nl72izVFBY3kFEr7prL3iqNoWw0OzF+ 0YqMJUA4+gBPr38yNbTdzyTXfzbYrbVXEnrkTpXcv5zDrYEaQmTuT/wZ9EvlPRQZ vDHNbuEOLafkeW5nVHl/0Lbg/ClIEpG+WcxnMgOYGQsdK8B3fass88iLZGrAoz8M 3iYxzNAinhwuSw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:29 2026 by rpki-client