This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json) Hash identifier: +dEKDABXc5IOpDXRVjAw9cApqv42ddSDcT5CzISQSHI= Subject key identifier: AC:0B:7E:53:87:03:B1:34:34:12:D2:01:60:47:C6:B9:BB:39:E8:8E Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89 Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689 Certificate serial: 019C446B9FB1169B51666591078102DD8737 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft Manifest number: 1813 Signing time: Mon 09 Feb 2026 22:00:29 +0000 Manifest this update: Mon 09 Feb 2026 22:00:29 +0000 Manifest next update: Tue 10 Feb 2026 22:00:29 +0000 Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: VHthlv2oQsvZX/XIKVs1O/cbsqB6Q0r/rhhyl9tzXM4=) 2: L3FElQgN_OK9ME85XjkPB5d4njo.roa (hash: 7fKQw9/kLDh7zT4p1MB3dQg/LI4nczVMbuMgYO277J0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:9f:b1:16:9b:51:66:65:91:07:81:02:dd:87:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689 Validity Not Before: Feb 9 22:00:29 2026 GMT Not After : Feb 10 22:00:29 2026 GMT Subject: CN=ac0b7e538703b1343412d2016047c6b9bb39e88e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ff:fe:fe:97:be:16:60:84:bb:0a:50:09:d6: b4:a7:af:f0:d4:83:23:f4:c0:d2:fa:22:5a:33:62: 7b:74:d9:53:37:bb:92:b4:b9:78:b6:77:08:dd:ab: 2e:5a:cb:2f:3c:a1:aa:81:77:b9:78:55:a8:8d:af: 39:13:1a:8c:bf:55:6f:07:d2:1f:d8:6a:39:41:db: c3:d5:b5:0f:7f:d7:0c:c2:61:57:51:57:7d:11:51: 1d:5b:a0:53:4e:26:d7:22:35:3c:32:61:1e:f7:6b: a8:19:79:aa:28:07:15:e0:1f:2b:87:90:8f:b9:6c: b8:7d:82:a5:32:6d:45:ad:f9:a9:e1:13:f0:c2:94: 17:f8:08:fd:66:ce:cc:8c:6c:83:83:1e:2e:27:f3: a2:b6:85:7c:cf:59:dd:a3:9c:e9:85:28:11:43:f5: c7:c5:e0:8e:4f:c8:49:1d:ea:d1:35:0c:91:18:eb: 68:1c:7b:30:a8:56:61:0e:57:d5:ec:45:a3:06:1b: e1:f2:d2:21:99:4e:19:16:51:44:0c:c4:d0:2b:62: 95:3b:46:3b:1e:74:1b:da:32:e3:46:59:9b:b7:f8: 0f:c2:d0:7a:42:f9:fe:9b:33:92:eb:5c:b1:ee:16: b9:97:7e:be:81:8d:bb:6f:27:3c:62:95:73:91:a3: b2:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0B:7E:53:87:03:B1:34:34:12:D2:01:60:47:C6:B9:BB:39:E8:8E X509v3 Authority Key Identifier: keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:29:7c:d0:99:4a:45:ad:f9:50:fa:af:c2:79:d8:b7:03:87: 7e:01:64:4e:4c:11:c7:d6:72:82:7f:48:22:c2:9a:e7:33:d7: e5:c3:1c:e7:77:c3:95:d9:39:23:1d:8b:25:71:4e:c3:e8:c0: 21:e8:74:46:25:0c:04:da:bb:02:66:4f:46:ec:bd:a1:82:c9: 5b:18:ff:2a:24:1b:82:f0:ee:86:f6:1f:44:47:47:85:b6:63: 25:9f:55:31:00:85:41:40:43:55:95:7c:43:34:2e:39:f6:04: 6b:77:22:30:8b:3f:b3:4e:03:e9:d1:36:3e:46:bc:e8:e4:ca: e9:a5:4b:9d:2e:b5:88:fb:11:25:3a:00:15:27:16:a5:13:a5: f6:22:63:b4:62:be:62:d5:ed:f1:c8:78:da:8e:23:71:c0:02: 65:36:92:22:d7:f4:01:46:3d:66:f5:f6:23:23:8a:ab:f7:99: 92:9e:3b:d9:7a:0d:0f:2f:ff:47:1a:d2:c5:ae:b9:a2:99:ca: 3a:f5:6d:17:66:ca:b2:fc:a3:d4:d6:cc:30:84:c4:ee:20:d7: 62:60:2a:47:fd:4f:b1:c4:c7:a3:f6:5f:77:32:fb:50:4f:9a: c8:a4:ad:b1:5d:d6:eb:38:23:e1:f1:94:af:e6:80:04:9a:e6: 77:57:dc:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa5+xFptRZmWRB4EC3Yc3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0YzY0OTk0ZTI0ZDRhZWZkYzQyYTg4MzFmZTBkY2UyMGQ2 MDQ2ODkwHhcNMjYwMjA5MjIwMDI5WhcNMjYwMjEwMjIwMDI5WjAzMTEwLwYDVQQD EyhhYzBiN2U1Mzg3MDNiMTM0MzQxMmQyMDE2MDQ3YzZiOWJiMzllODhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuv/+/pe+FmCEuwpQCda0p6/w1IMj 9MDS+iJaM2J7dNlTN7uStLl4tncI3asuWssvPKGqgXe5eFWoja85ExqMv1VvB9If 2Go5QdvD1bUPf9cMwmFXUVd9EVEdW6BTTibXIjU8MmEe92uoGXmqKAcV4B8rh5CP uWy4fYKlMm1Frfmp4RPwwpQX+Aj9Zs7MjGyDgx4uJ/OitoV8z1ndo5zphSgRQ/XH xeCOT8hJHerRNQyRGOtoHHswqFZhDlfV7EWjBhvh8tIhmU4ZFlFEDMTQK2KVO0Y7 HnQb2jLjRlmbt/gPwtB6Qvn+mzOS61yx7ha5l36+gY27byc8YpVzkaOyhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKwLflOHA7E0NBLSAWBHxrm7OeiOMB8GA1UdIwQY MBaAFPTGSZTiTUrv3EKogx/g3OINYEaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUt Mzg1NTY5OGZiNTdmLzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUtMzg1NTY5OGZiNTdm LzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANil80JlK Ra35UPqvwnnYtwOHfgFkTkwRx9Zygn9IIsKa5zPX5cMc53fDldk5Ix2LJXFOw+jA Ieh0RiUMBNq7AmZPRuy9oYLJWxj/KiQbgvDuhvYfREdHhbZjJZ9VMQCFQUBDVZV8 QzQuOfYEa3ciMIs/s04D6dE2Pka86OTK6aVLnS61iPsRJToAFScWpROl9iJjtGK+ YtXt8ch42o4jccACZTaSItf0AUY9ZvX2IyOKq/eZkp472XoNDy//RxrSxa65opnK OvVtF2bKsvyj1NbMMITE7iDXYmAqR/1PscTHo/ZfdzL7UE+ayKStsV3W6zgj4fGU r+aABJrmd1fcfg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:42 2026 by rpki-client