This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft File: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft (raw, json) Hash identifier: kgF2g5dGbOTAQmzzTcyJzq2zjkNQlzSWNhFRO6oRjLM= Subject key identifier: 94:69:DB:12:61:17:C6:97:F1:70:D3:AF:DC:47:FD:A8:0F:41:5D:2F Authority key identifier: 83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6 Certificate issuer: /CN=83c8d01caf2b0751d035c537566f45627925e4f6 Certificate serial: 019C42B4218D078D956D3319D6597B3DB316 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft Manifest number: 1355 Signing time: Mon 09 Feb 2026 14:00:27 +0000 Manifest this update: Mon 09 Feb 2026 14:00:27 +0000 Manifest next update: Tue 10 Feb 2026 14:00:27 +0000 Files and hashes: 1: g2p638fZZwCrnvRFqg9eTRpbiw4.roa (hash: qSK6pl1sLuO5L8q2M8N4Ull7ELILSQAIXlEcO8nJrKo=) 2: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl (hash: zlCHY59E1tHLxjmzN3c6F9LbLiSS4fdFhqf181Y6xdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:21:8d:07:8d:95:6d:33:19:d6:59:7b:3d:b3:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83c8d01caf2b0751d035c537566f45627925e4f6 Validity Not Before: Feb 9 14:00:27 2026 GMT Not After : Feb 10 14:00:27 2026 GMT Subject: CN=9469db126117c697f170d3afdc47fda80f415d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:bf:ad:fa:68:9a:b7:9f:75:85:f5:05:f6:8e: f9:93:84:1c:8f:fc:51:58:39:a4:a5:b6:3d:bd:e3: f7:ad:fe:bc:16:8d:f7:67:18:04:6f:0f:33:0f:85: 65:89:f2:e3:c6:7f:35:c0:16:d3:f0:00:df:96:dd: 37:88:97:26:08:b9:53:66:1d:44:e4:2d:95:6b:fa: f8:bb:45:98:a8:c1:92:4e:27:23:65:97:6c:68:a2: e1:e8:f2:ae:c9:4f:56:6b:5f:ed:e1:f3:c1:40:f1: a8:2c:02:30:17:b0:d0:e5:2d:a7:09:59:70:fd:fb: 9e:96:b9:51:82:31:5c:22:64:8e:b7:d3:02:f0:06: 4d:14:f4:ec:98:c3:05:49:9a:67:b9:66:15:fd:f9: d3:39:79:c2:2b:25:dc:ee:4c:b3:f5:85:05:d1:52: 8e:b7:f5:33:fb:a3:81:2b:47:ef:e8:f4:7c:1f:29: be:da:e6:ca:a1:b2:f2:62:b2:a5:93:14:35:86:ab: 2d:db:3c:42:c0:47:8f:37:28:73:ab:4f:90:49:9d: d4:1b:5c:00:75:bd:bc:12:49:74:b6:53:c8:61:ec: 67:89:78:87:aa:0d:e9:68:61:96:9b:81:75:a9:91: a8:48:56:df:46:aa:03:19:e2:84:33:12:e7:8b:56: ea:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:69:DB:12:61:17:C6:97:F1:70:D3:AF:DC:47:FD:A8:0F:41:5D:2F X509v3 Authority Key Identifier: keyid:83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:f4:da:19:7a:e9:21:ea:68:4d:aa:e5:f8:90:ba:79:e6:fe: 0c:b1:0b:36:46:a3:36:69:5e:3f:0e:8f:f2:8b:9d:5b:34:94: 52:ff:8b:18:bf:30:a0:43:60:70:cd:9a:15:86:b7:77:ef:7b: 37:f5:24:bb:6e:25:d1:3c:27:3d:b1:45:39:65:1a:27:e2:84: 88:86:4a:08:aa:61:3e:f0:62:b0:fb:d5:2d:96:88:38:31:8b: 81:a6:ad:bc:b0:5c:b7:98:0c:d9:5e:4c:57:e6:1c:4d:7b:42: ff:ea:00:22:cb:2e:73:fa:77:fe:57:f4:18:d3:db:6d:c1:d7: bc:d5:ef:f9:b2:c9:13:57:5a:50:78:e3:ea:f5:cf:57:4d:23: c3:48:63:fb:d7:cf:5f:d7:4c:f0:b2:21:97:f8:c5:e0:46:5f: 1e:3c:b0:81:a9:ce:ab:1e:ee:2a:dd:c1:aa:34:58:c5:19:81: 53:21:a1:31:6f:21:8b:c1:ad:2c:f2:d6:98:c3:f5:f6:0b:78: 14:35:28:7e:2d:3f:e9:2d:80:39:5c:ec:40:d5:d1:b1:5e:69: 65:51:09:ff:1b:57:f6:0e:c8:6d:d4:b7:26:c5:11:78:c5:87: ec:35:6f:72:eb:43:ce:eb:8f:39:76:d3:cb:4e:fe:df:1d:a2: e2:0b:db:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtCGNB42VbTMZ1ll7PbMWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzYzhkMDFjYWYyYjA3NTFkMDM1YzUzNzU2NmY0NTYyNzky NWU0ZjYwHhcNMjYwMjA5MTQwMDI3WhcNMjYwMjEwMTQwMDI3WjAzMTEwLwYDVQQD Eyg5NDY5ZGIxMjYxMTdjNjk3ZjE3MGQzYWZkYzQ3ZmRhODBmNDE1ZDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkb+t+miat591hfUF9o75k4Qcj/xR WDmkpbY9veP3rf68Fo33ZxgEbw8zD4VlifLjxn81wBbT8ADflt03iJcmCLlTZh1E 5C2Va/r4u0WYqMGSTicjZZdsaKLh6PKuyU9Wa1/t4fPBQPGoLAIwF7DQ5S2nCVlw /fuelrlRgjFcImSOt9MC8AZNFPTsmMMFSZpnuWYV/fnTOXnCKyXc7kyz9YUF0VKO t/Uz+6OBK0fv6PR8Hym+2ubKobLyYrKlkxQ1hqst2zxCwEePNyhzq0+QSZ3UG1wA db28Ekl0tlPIYexniXiHqg3paGGWm4F1qZGoSFbfRqoDGeKEMxLni1bq3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJRp2xJhF8aX8XDTr9xH/agPQV0vMB8GA1UdIwQY MBaAFIPI0ByvKwdR0DXFN1ZvRWJ5JeT2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzhqUUhLOHJCMUhRTmNVM1ZtOUZZbmtsNVBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9jZmE3YzMtZjBjOC00NjIyLThhNDct OWFiMjZiMjY2YWE3LzEvZzhqUUhLOHJCMUhRTmNVM1ZtOUZZbmtsNVBZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9jZmE3YzMtZjBjOC00NjIyLThhNDctOWFiMjZiMjY2YWE3 LzEvZzhqUUhLOHJCMUhRTmNVM1ZtOUZZbmtsNVBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARPTaGXrp IepoTarl+JC6eeb+DLELNkajNmlePw6P8oudWzSUUv+LGL8woENgcM2aFYa3d+97 N/Uku24l0TwnPbFFOWUaJ+KEiIZKCKphPvBisPvVLZaIODGLgaatvLBct5gM2V5M V+YcTXtC/+oAIssuc/p3/lf0GNPbbcHXvNXv+bLJE1daUHjj6vXPV00jw0hj+9fP X9dM8LIhl/jF4EZfHjywganOqx7uKt3BqjRYxRmBUyGhMW8hi8GtLPLWmMP19gt4 FDUofi0/6S2AOVzsQNXRsV5pZVEJ/xtX9g7IbdS3JsUReMWH7DVvcutDzuuPOXbT y07+3x2i4gvbvA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:13:31 2026 by rpki-client