This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json) Hash identifier: p9jdQbs7VWC3jCiIAkTIOW/KEtccPeLfawbVtw5+mas= Subject key identifier: 60:F1:3C:7F:1C:89:71:2B:F6:F7:96:75:31:8C:AB:7D:C0:65:94:5E Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80 Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380 Certificate serial: 019C4210090E125498F6F576EB12E5C6AE41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft Manifest number: 0A97 Signing time: Mon 09 Feb 2026 11:01:12 +0000 Manifest this update: Mon 09 Feb 2026 11:01:12 +0000 Manifest next update: Tue 10 Feb 2026 11:01:12 +0000 Files and hashes: 1: BbwIiJ0dE-v7C232paq9FAoO3W4.roa (hash: WYFi/4LJa1Z0T8GMuSQAQGpR48GKoJ2nZUJN8YeKMtE=) 2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: xq2hEUUDfc+p4GksSqCkCXvfXGaQNv2qi2mnWYOna5U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:09:0e:12:54:98:f6:f5:76:eb:12:e5:c6:ae:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380 Validity Not Before: Feb 9 11:01:12 2026 GMT Not After : Feb 10 11:01:12 2026 GMT Subject: CN=60f13c7f1c89712bf6f79675318cab7dc065945e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:83:94:06:5f:88:9c:87:ff:fe:7f:a5:de:da: c8:bf:f9:cc:9d:96:8a:e5:68:33:a5:4b:25:42:c6: da:7d:a9:1d:db:30:5d:1c:0a:9e:d5:dc:7c:05:b5: 17:0b:8b:c9:59:58:e0:a9:42:5d:a8:36:e9:f5:8d: 79:27:ba:95:29:7a:4d:60:6d:77:3c:43:a4:12:b4: 15:55:a1:55:01:74:70:f6:96:f0:80:82:23:b9:be: 1b:b2:cf:f6:6d:be:0d:fb:3a:58:c6:17:6c:b7:bf: c2:d1:54:86:84:33:ec:62:d5:3c:36:1e:a9:07:fe: f1:d7:27:32:33:ad:03:62:17:bf:b9:a2:d0:1c:c5: f8:10:8a:13:e0:f4:33:ff:01:cb:5b:e7:76:e3:c3: 61:55:6f:7f:ea:e3:a0:56:a0:f8:ce:0a:3d:ed:21: 08:0d:57:5e:09:15:c8:21:71:c6:4a:3b:98:76:18: da:5c:50:3f:9a:24:cd:98:bd:2c:61:1a:48:df:1a: 0a:e4:42:0d:ec:43:f4:5c:7e:70:f2:57:1f:d2:e5: 71:e7:9f:8d:92:1a:a0:7b:6b:b6:4c:23:4f:b7:a4: 04:d0:cc:45:47:94:47:ef:99:35:f5:22:a2:8e:b3: 25:72:c9:ce:aa:e8:2c:18:db:8c:80:77:fb:58:9c: 1f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F1:3C:7F:1C:89:71:2B:F6:F7:96:75:31:8C:AB:7D:C0:65:94:5E X509v3 Authority Key Identifier: keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:2c:36:49:1e:75:f0:d5:3e:82:e1:b9:9d:06:a6:e9:12:81: 73:b0:1e:8f:41:9a:fc:84:38:2f:ba:38:d0:fb:03:c9:8a:cd: 6b:4c:48:8e:12:93:5a:3d:88:e6:f3:b3:f9:1d:09:dc:d4:c3: b2:78:d6:ae:d1:1b:80:1c:0e:e3:8e:4e:04:54:ec:b7:f5:fb: b1:ef:a3:51:39:ec:49:13:fe:70:fe:60:a8:7c:3e:8f:41:e2: 64:88:07:6c:5c:ef:67:04:93:56:04:fa:fc:25:0c:d6:f9:80: 21:6c:46:9c:c6:24:2c:57:f3:c5:8e:75:f8:70:47:49:1e:8f: 46:70:7d:90:41:4f:b4:d9:b5:38:eb:04:0c:47:f3:40:e8:91: 96:a8:74:79:c5:96:46:85:f8:29:f3:ec:06:e0:7a:ff:0c:51: 7f:37:8c:ce:3a:8d:14:6d:bc:30:f1:65:3e:ba:37:d7:cf:d3: 8e:76:a2:0f:f6:a8:ac:4a:31:fe:75:c0:8d:d3:c9:08:d3:54: c5:bc:b6:ef:b6:d8:d7:33:68:44:53:67:d4:ce:97:ea:62:ee: 8f:d9:5a:35:7b:7b:e6:da:6f:e4:6c:27:60:ab:39:a6:b7:e2: 22:00:ce:11:e3:76:57:79:e9:e4:77:0c:05:2b:77:e6:03:76: 70:29:aa:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEAkOElSY9vV26xLlxq5BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxNzA2N2U4MWE2MWEyMWZkYzE0ODU5OGVmNmJhNTk3NTdm YTAzODAwHhcNMjYwMjA5MTEwMTEyWhcNMjYwMjEwMTEwMTEyWjAzMTEwLwYDVQQD Eyg2MGYxM2M3ZjFjODk3MTJiZjZmNzk2NzUzMThjYWI3ZGMwNjU5NDVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoOUBl+InIf//n+l3trIv/nMnZaK 5WgzpUslQsbafakd2zBdHAqe1dx8BbUXC4vJWVjgqUJdqDbp9Y15J7qVKXpNYG13 PEOkErQVVaFVAXRw9pbwgIIjub4bss/2bb4N+zpYxhdst7/C0VSGhDPsYtU8Nh6p B/7x1ycyM60DYhe/uaLQHMX4EIoT4PQz/wHLW+d248NhVW9/6uOgVqD4zgo97SEI DVdeCRXIIXHGSjuYdhjaXFA/miTNmL0sYRpI3xoK5EIN7EP0XH5w8lcf0uVx55+N khqge2u2TCNPt6QE0MxFR5RH75k19SKijrMlcsnOqugsGNuMgHf7WJwfMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGDxPH8ciXEr9veWdTGMq33AZZReMB8GA1UdIwQY MBaAFDFwZ+gaYaIf3BSFmO9rpZdX+gOAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVhCbjZCcGhvaF9jRklXWTcydWxsMWY2QTRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi81OGE0ZTEtZGZjMS00ZDgxLWIyYzYt MjE2NTk3ZTAzZjExLzEvTVhCbjZCcGhvaF9jRklXWTcydWxsMWY2QTRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi81OGE0ZTEtZGZjMS00ZDgxLWIyYzYtMjE2NTk3ZTAzZjEx LzEvTVhCbjZCcGhvaF9jRklXWTcydWxsMWY2QTRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApCw2SR51 8NU+guG5nQam6RKBc7Aej0Ga/IQ4L7o40PsDyYrNa0xIjhKTWj2I5vOz+R0J3NTD snjWrtEbgBwO445OBFTst/X7se+jUTnsSRP+cP5gqHw+j0HiZIgHbFzvZwSTVgT6 /CUM1vmAIWxGnMYkLFfzxY51+HBHSR6PRnB9kEFPtNm1OOsEDEfzQOiRlqh0ecWW RoX4KfPsBuB6/wxRfzeMzjqNFG28MPFlPro318/TjnaiD/aorEox/nXAjdPJCNNU xby277bY1zNoRFNn1M6X6mLuj9laNXt75tpv5GwnYKs5prfiIgDOEeN2V3np5HcM BSt35gN2cCmq2A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:52 2026 by rpki-client