This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json) Hash identifier: 71IEIlXUd/T9zNiMKeti5pGTIbvYXk4/XbgC5U8xPvc= Subject key identifier: 79:13:BC:67:AB:73:87:8F:51:42:11:A2:B7:0D:CB:92:55:82:CF:AC Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b Certificate serial: 019C41A258C7961C64B67438F56A3D304960 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft Manifest number: 0B5B Signing time: Mon 09 Feb 2026 09:01:24 +0000 Manifest this update: Mon 09 Feb 2026 09:01:24 +0000 Manifest next update: Tue 10 Feb 2026 09:01:24 +0000 Files and hashes: 1: Cpe2_Ojc_FZLY2oGHgVbMwJjk9A.roa (hash: QYPBK9tLe2NLf5ToJsGlVRXUrRctKZptQZU1FwtQfmU=) 2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: k+qsIvV+Fi7U8XrTTM2ioaGUKMqLSTE36nOqFGQkHYU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:58:c7:96:1c:64:b6:74:38:f5:6a:3d:30:49:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=258f0753c033c1af091866d094264512696ca68b Validity Not Before: Feb 9 09:01:24 2026 GMT Not After : Feb 10 09:01:24 2026 GMT Subject: CN=7913bc67ab73878f514211a2b70dcb925582cfac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:df:da:c0:9d:e7:06:45:2a:53:71:7f:d9:a1: 46:c0:19:f7:81:af:70:c9:8d:e0:9b:60:8b:58:6e: 87:dc:a3:77:d5:3b:ae:c2:4c:7d:53:e2:16:ac:dc: 5a:71:fb:3a:0b:28:cf:49:b9:42:cc:84:b0:5a:47: 20:bb:5e:56:f1:a0:7c:9b:a8:57:de:ee:b0:00:25: 80:8f:8e:85:25:ca:04:0a:dd:c5:ca:a0:26:ed:c4: 73:4b:4a:2c:c2:c9:ad:ef:25:9b:1a:26:8a:ff:3c: 84:70:67:61:9d:60:b8:79:f0:71:c1:80:a2:2c:00: 9e:01:4e:ae:4b:a5:9a:4d:80:c4:9f:00:41:4a:44: e2:f3:77:a8:06:40:6c:b5:61:b7:9c:4c:8c:fe:ff: 00:45:de:33:db:77:80:bf:cd:9a:59:bb:4b:ab:7a: df:66:5e:ed:f6:d5:62:48:a6:f6:10:4a:e8:ab:dd: 9d:65:61:cc:02:66:47:5c:ed:9f:4a:3c:63:3c:44: ab:b4:2a:9c:97:a9:86:a8:73:8f:71:f7:f4:2a:41: 12:05:ed:c5:37:e4:24:cc:10:fc:b9:9e:f9:54:89: 1d:18:57:d8:40:2b:a0:4a:cf:e3:5c:ad:fc:14:a2: ea:a6:2e:a8:db:34:5b:18:2f:59:ae:2a:c5:f3:57: 02:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:13:BC:67:AB:73:87:8F:51:42:11:A2:B7:0D:CB:92:55:82:CF:AC X509v3 Authority Key Identifier: keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:63:d0:a8:a1:07:9a:fa:14:ed:a8:9b:6a:b0:84:d1:e9:b4: f4:64:ce:f4:f5:24:dc:34:72:c4:0b:02:1c:87:37:c3:7d:b5: ce:0d:24:88:3b:9b:bb:60:a7:46:75:87:8b:20:02:82:39:92: 76:10:bf:35:dd:40:4f:2f:84:94:99:9f:be:36:60:21:19:ec: de:03:80:f6:fe:f4:dc:01:4b:e6:2d:db:8a:dd:52:eb:59:00: a0:7e:43:9a:db:0b:4c:ec:54:dd:54:b8:d8:04:01:7c:60:2f: cb:be:9d:a9:ab:d8:8e:00:e5:bf:39:af:4d:ed:94:63:a4:e3: 04:f6:58:98:5c:e0:d4:c6:21:48:e4:05:9a:80:ac:16:33:35: 35:e6:a3:f3:33:f8:c2:f1:52:f7:8c:95:a1:52:72:7a:55:12: 95:0f:46:b5:94:1d:c6:5a:19:ee:a1:9d:b5:4d:16:74:26:47: 53:d4:c4:de:eb:80:13:c4:9b:ea:e2:57:57:43:ba:df:fa:b5: 4b:7f:b0:0f:dc:26:a9:a9:35:44:88:9c:f2:1d:18:8f:19:cb: 55:ba:5e:20:b8:48:04:56:7c:30:0b:18:bd:6b:be:c7:0c:39: 79:18:aa:51:87:3e:f5:4d:24:08:c2:d3:36:51:43:36:33:54: 86:66:3b:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoljHlhxktnQ49Wo9MElgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1OGYwNzUzYzAzM2MxYWYwOTE4NjZkMDk0MjY0NTEyNjk2 Y2E2OGIwHhcNMjYwMjA5MDkwMTI0WhcNMjYwMjEwMDkwMTI0WjAzMTEwLwYDVQQD Eyg3OTEzYmM2N2FiNzM4NzhmNTE0MjExYTJiNzBkY2I5MjU1ODJjZmFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9/awJ3nBkUqU3F/2aFGwBn3ga9w yY3gm2CLWG6H3KN31Tuuwkx9U+IWrNxacfs6CyjPSblCzISwWkcgu15W8aB8m6hX 3u6wACWAj46FJcoECt3FyqAm7cRzS0oswsmt7yWbGiaK/zyEcGdhnWC4efBxwYCi LACeAU6uS6WaTYDEnwBBSkTi83eoBkBstWG3nEyM/v8ARd4z23eAv82aWbtLq3rf Zl7t9tViSKb2EEroq92dZWHMAmZHXO2fSjxjPESrtCqcl6mGqHOPcff0KkESBe3F N+QkzBD8uZ75VIkdGFfYQCugSs/jXK38FKLqpi6o2zRbGC9ZrirF81cCnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHkTvGerc4ePUUIRorcNy5JVgs+sMB8GA1UdIwQY MBaAFCWPB1PAM8GvCRhm0JQmRRJpbKaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQt MmMyZjBkMjRmOTM2LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQtMmMyZjBkMjRmOTM2 LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjWPQqKEH mvoU7aibarCE0em09GTO9PUk3DRyxAsCHIc3w321zg0kiDubu2CnRnWHiyACgjmS dhC/Nd1ATy+ElJmfvjZgIRns3gOA9v703AFL5i3bit1S61kAoH5DmtsLTOxU3VS4 2AQBfGAvy76dqavYjgDlvzmvTe2UY6TjBPZYmFzg1MYhSOQFmoCsFjM1Neaj8zP4 wvFS94yVoVJyelUSlQ9GtZQdxloZ7qGdtU0WdCZHU9TE3uuAE8Sb6uJXV0O63/q1 S3+wD9wmqak1RIic8h0YjxnLVbpeILhIBFZ8MAsYvWu+xww5eRiqUYc+9U0kCMLT NlFDNjNUhmY7uQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:30 2026 by rpki-client